This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/d9df20-f633-44df-bc3a-0d53fc10a8e9/1/oOWh7YHyM49feJpE6u2w7uP3EJ4.mft File: oOWh7YHyM49feJpE6u2w7uP3EJ4.mft (raw, json) Hash identifier: 5ODyHmyzfDjPYlFlx97J5V7vNXHjwZs73sGuaCsNubU= Subject key identifier: 77:DB:D0:9D:D9:86:17:B0:AA:C9:4B:97:0C:F1:4F:79:4F:B4:BE:14 Authority key identifier: A0:E5:A1:ED:81:F2:33:8F:5F:78:9A:44:EA:ED:B0:EE:E3:F7:10:9E Certificate issuer: /CN=a0e5a1ed81f2338f5f789a44eaedb0eee3f7109e Certificate serial: 019C424677A1CE411D2F8F45D1352F4039E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOWh7YHyM49feJpE6u2w7uP3EJ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/d9df20-f633-44df-bc3a-0d53fc10a8e9/1/oOWh7YHyM49feJpE6u2w7uP3EJ4.mft Manifest number: F3 Signing time: Mon 09 Feb 2026 12:00:40 +0000 Manifest this update: Mon 09 Feb 2026 12:00:40 +0000 Manifest next update: Tue 10 Feb 2026 12:00:40 +0000 Files and hashes: 1: oOWh7YHyM49feJpE6u2w7uP3EJ4.crl (hash: CZtChZS5QKikH9cGk1GuhsrOxG4C2F5kh+zChaNJGhc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/d9df20-f633-44df-bc3a-0d53fc10a8e9/1/oOWh7YHyM49feJpE6u2w7uP3EJ4.crl rsync://rpki.ripe.net/repository/DEFAULT/21/d9df20-f633-44df-bc3a-0d53fc10a8e9/1/oOWh7YHyM49feJpE6u2w7uP3EJ4.mft rsync://rpki.ripe.net/repository/DEFAULT/oOWh7YHyM49feJpE6u2w7uP3EJ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:77:a1:ce:41:1d:2f:8f:45:d1:35:2f:40:39:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0e5a1ed81f2338f5f789a44eaedb0eee3f7109e Validity Not Before: Feb 9 12:00:40 2026 GMT Not After : Feb 10 12:00:40 2026 GMT Subject: CN=77dbd09dd98617b0aac94b970cf14f794fb4be14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d9:28:72:a2:2e:1e:38:7d:f1:05:f0:b3:a7: 56:97:5e:75:ba:81:25:20:d4:7c:ab:9d:9f:e4:77: ce:57:96:4b:95:ab:d3:98:f0:29:b0:90:96:92:55: 07:89:ac:29:88:dc:33:84:e6:c5:4f:99:9a:46:56: 2f:c8:ff:3c:8e:8f:12:8e:f9:c0:31:0e:50:45:08: 79:ea:46:42:96:6b:c8:bf:e5:18:19:00:a8:d9:69: 8a:75:50:13:6a:7e:c9:c6:35:61:bf:cd:f5:3d:cc: 73:b7:18:0c:5e:cd:98:9a:d4:b3:d6:07:16:5f:9c: d6:7e:c4:f3:03:82:44:ca:36:c5:86:5c:ef:da:a0: b7:08:a3:be:b8:81:db:25:d2:f5:d7:b9:c7:10:1e: c7:10:90:a6:29:2f:e5:81:3a:23:39:66:71:85:d6: e2:a5:4a:bc:6d:bb:1f:a9:9a:1e:db:1a:81:36:c1: af:2f:e2:54:84:25:06:f5:82:f3:f1:45:6e:f6:4e: ca:3a:78:06:3d:32:2e:36:6b:48:76:99:ca:75:20: c7:76:19:be:80:a2:47:92:65:50:75:16:53:2e:5d: 30:a9:ba:af:d3:09:9e:ba:66:2c:4c:8c:4d:68:8e: 31:cf:f2:ca:18:c1:6c:f4:5d:0e:23:5a:df:a1:df: ee:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:DB:D0:9D:D9:86:17:B0:AA:C9:4B:97:0C:F1:4F:79:4F:B4:BE:14 X509v3 Authority Key Identifier: keyid:A0:E5:A1:ED:81:F2:33:8F:5F:78:9A:44:EA:ED:B0:EE:E3:F7:10:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOWh7YHyM49feJpE6u2w7uP3EJ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d9df20-f633-44df-bc3a-0d53fc10a8e9/1/oOWh7YHyM49feJpE6u2w7uP3EJ4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d9df20-f633-44df-bc3a-0d53fc10a8e9/1/oOWh7YHyM49feJpE6u2w7uP3EJ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:0d:54:40:af:de:1f:60:9c:20:22:6e:7c:27:19:27:a2:63: a1:81:f7:53:2e:78:d3:80:8b:4c:a8:69:4d:b5:b5:96:b4:98: bf:6e:7f:21:ed:54:d8:28:3a:c4:04:6d:15:fa:31:c5:50:1f: 95:ae:9d:7f:d7:89:d9:56:d6:83:62:9e:5a:c3:4c:e8:31:7e: f4:aa:62:00:66:22:76:12:a8:16:a1:07:49:91:f9:70:2a:7b: cf:a4:52:5e:05:33:90:85:e1:4e:dc:a4:28:44:c4:99:1d:be: ef:4a:3d:65:bf:2b:47:2b:ab:fd:2e:e2:9f:9f:41:6f:5e:5e: 11:ea:30:e7:11:91:a3:72:3d:22:65:b4:cb:91:c4:65:68:5f: 9a:39:6b:4e:3c:0a:69:80:db:a2:4b:f1:27:e5:d3:eb:3c:98: 49:f5:32:83:d7:39:0f:c6:dd:ee:98:46:6e:9f:e0:3d:61:30: 34:c4:a8:4f:ba:3b:65:87:83:87:14:54:9e:b5:5b:fe:39:bc: cf:fb:3f:3e:63:90:bd:c6:32:10:64:e0:e7:a3:21:a8:9b:a1: 44:c7:f2:2a:70:dd:4c:9d:1e:31:2e:7c:6f:13:6a:d6:7d:1f: 3c:ad:9c:b3:b7:13:12:55:ea:4c:a5:66:70:dd:e5:40:22:47: 38:cc:b6:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRnehzkEdL49F0TUvQDnmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwZTVhMWVkODFmMjMzOGY1Zjc4OWE0NGVhZWRiMGVlZTNm NzEwOWUwHhcNMjYwMjA5MTIwMDQwWhcNMjYwMjEwMTIwMDQwWjAzMTEwLwYDVQQD Eyg3N2RiZDA5ZGQ5ODYxN2IwYWFjOTRiOTcwY2YxNGY3OTRmYjRiZTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo9kocqIuHjh98QXws6dWl151uoEl INR8q52f5HfOV5ZLlavTmPApsJCWklUHiawpiNwzhObFT5maRlYvyP88jo8SjvnA MQ5QRQh56kZClmvIv+UYGQCo2WmKdVATan7JxjVhv831PcxztxgMXs2YmtSz1gcW X5zWfsTzA4JEyjbFhlzv2qC3CKO+uIHbJdL117nHEB7HEJCmKS/lgTojOWZxhdbi pUq8bbsfqZoe2xqBNsGvL+JUhCUG9YLz8UVu9k7KOngGPTIuNmtIdpnKdSDHdhm+ gKJHkmVQdRZTLl0wqbqv0wmeumYsTIxNaI4xz/LKGMFs9F0OI1rfod/uuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHfb0J3ZhhewqslLlwzxT3lPtL4UMB8GA1UdIwQY MBaAFKDloe2B8jOPX3iaROrtsO7j9xCeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb09XaDdZSHlNNDlmZUpwRTZ1Mnc3dVAzRUo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9kOWRmMjAtZjYzMy00NGRmLWJjM2Et MGQ1M2ZjMTBhOGU5LzEvb09XaDdZSHlNNDlmZUpwRTZ1Mnc3dVAzRUo0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS9kOWRmMjAtZjYzMy00NGRmLWJjM2EtMGQ1M2ZjMTBhOGU5 LzEvb09XaDdZSHlNNDlmZUpwRTZ1Mnc3dVAzRUo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANw1UQK/e H2CcICJufCcZJ6JjoYH3Uy5404CLTKhpTbW1lrSYv25/Ie1U2Cg6xARtFfoxxVAf la6df9eJ2VbWg2KeWsNM6DF+9KpiAGYidhKoFqEHSZH5cCp7z6RSXgUzkIXhTtyk KETEmR2+70o9Zb8rRyur/S7in59Bb15eEeow5xGRo3I9ImW0y5HEZWhfmjlrTjwK aYDbokvxJ+XT6zyYSfUyg9c5D8bd7phGbp/gPWEwNMSoT7o7ZYeDhxRUnrVb/jm8 z/s/PmOQvcYyEGTg56MhqJuhRMfyKnDdTJ0eMS58bxNq1n0fPK2cs7cTElXqTKVm cN3lQCJHOMy2Fw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:56 2026 by rpki-client