This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft File: OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft (raw, json) Hash identifier: rJH880/QSpUx7gMdK/kBedx2VYXH7y6PQyDT9JdyIk0= Subject key identifier: AE:9D:FC:58:FF:73:A3:DE:B4:86:3B:36:72:BF:B0:1E:4D:A3:26:61 Authority key identifier: 38:14:B6:48:DD:57:42:02:5C:3D:DA:5E:AA:66:49:1F:FD:B2:E5:D9 Certificate issuer: /CN=3814b648dd5742025c3dda5eaa66491ffdb2e5d9 Certificate serial: 019C4246ACAA443686B3850B57D75133BCE6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft Manifest number: 0EEF Signing time: Mon 09 Feb 2026 12:00:53 +0000 Manifest this update: Mon 09 Feb 2026 12:00:53 +0000 Manifest next update: Tue 10 Feb 2026 12:00:53 +0000 Files and hashes: 1: OBS2SN1XQgJcPdpeqmZJH_2y5dk.crl (hash: PorEVI1uDRj5sdkR6PkkzXqZbK5jlfLxtRv2KbYjYz8=) 2: WuAHwEu_e_sftMlPkZv_UwtWX5Q.roa (hash: mzprPhNPF3MzVig/0gIEkHNJI2y+MkDSYbRMreX4qBk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.crl rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:ac:aa:44:36:86:b3:85:0b:57:d7:51:33:bc:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3814b648dd5742025c3dda5eaa66491ffdb2e5d9 Validity Not Before: Feb 9 12:00:53 2026 GMT Not After : Feb 10 12:00:53 2026 GMT Subject: CN=ae9dfc58ff73a3deb4863b3672bfb01e4da32661 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5c:ec:97:64:45:46:0b:8a:64:e7:99:2b:aa: 62:fd:58:58:b6:92:2b:04:16:c1:ed:ed:27:0f:49: c6:a3:43:8b:fa:05:6f:6f:a0:be:9e:16:32:83:51: ab:f9:bc:02:d2:fb:c5:1f:92:81:4d:46:ae:d1:e2: d4:19:ff:c0:e6:88:df:40:4e:e7:e5:89:ee:00:83: 98:6b:3d:95:2e:d5:b3:f1:7f:ea:7e:8b:e8:0d:23: eb:77:9b:cb:3c:70:fb:77:16:ee:95:db:46:a4:08: 66:8d:c4:08:a0:99:ab:c0:da:c8:43:6b:25:4e:78: ee:77:58:64:3e:7b:e9:4b:29:6c:f3:df:65:87:b7: f3:cc:a8:0f:d1:8e:ae:87:f5:96:50:b4:93:3d:b2: 98:b0:11:bf:1e:32:8d:fe:34:8e:26:3c:eb:0d:e7: 4e:37:05:ff:c5:7e:c7:a1:71:e2:45:cb:e9:e2:90: 24:7c:93:6c:de:18:4a:88:b7:84:60:14:75:33:b3: 05:cf:b0:4c:16:39:d0:e3:39:c8:bd:63:a3:e2:a6: 0e:48:a6:f9:2b:fd:64:95:c1:2f:4d:e8:c3:1f:50: ab:ed:79:e4:0e:e9:d9:aa:06:94:46:75:4a:ed:38: b3:88:20:4a:cd:1d:60:e6:68:39:6e:bb:02:1a:5c: 0d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:9D:FC:58:FF:73:A3:DE:B4:86:3B:36:72:BF:B0:1E:4D:A3:26:61 X509v3 Authority Key Identifier: keyid:38:14:B6:48:DD:57:42:02:5C:3D:DA:5E:AA:66:49:1F:FD:B2:E5:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:f0:b6:0f:ff:69:23:de:0c:e9:b1:69:7e:8c:28:31:d1:0d: 17:55:5b:d8:79:97:dd:eb:18:2e:20:1f:d8:ce:e8:49:6a:2d: da:09:7f:41:0e:69:26:4d:0f:cb:00:d9:a9:d7:bc:f0:aa:cf: ef:0e:6f:94:9c:4b:c0:49:a6:c6:47:7e:6a:f4:b4:e4:14:05: 24:2d:28:59:ea:56:d7:ed:75:5d:f4:67:12:ba:e4:c9:60:b9: e2:47:83:02:29:9a:6c:99:97:f1:6c:fc:3b:7c:67:0a:e2:81: 39:1d:21:bf:69:6e:3a:1f:59:8d:dc:3b:81:de:dc:60:27:48: 20:b0:c7:a5:b5:e1:52:38:e0:42:24:bb:85:08:30:60:84:06: a5:b8:e9:86:6a:38:b5:78:42:90:07:6f:ec:bd:50:f3:6f:30: 13:69:6f:11:09:2f:96:18:2a:43:cf:26:bd:ed:4d:13:56:b1: 9b:8d:85:5c:5d:85:d7:3e:63:4e:38:f4:a6:8f:e8:4b:cc:dc: 18:2a:b7:71:57:7f:39:26:c3:ba:98:47:6b:65:e7:12:f6:a1: 56:5f:39:53:5b:1b:a7:c1:29:da:28:84:08:ad:91:06:2c:8b: 3c:58:3e:53:13:8a:de:dd:1a:4e:95:ef:2a:89:5f:85:52:aa: 78:8b:01:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRqyqRDaGs4ULV9dRM7zmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MTRiNjQ4ZGQ1NzQyMDI1YzNkZGE1ZWFhNjY0OTFmZmRi MmU1ZDkwHhcNMjYwMjA5MTIwMDUzWhcNMjYwMjEwMTIwMDUzWjAzMTEwLwYDVQQD EyhhZTlkZmM1OGZmNzNhM2RlYjQ4NjNiMzY3MmJmYjAxZTRkYTMyNjYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1zsl2RFRguKZOeZK6pi/VhYtpIr BBbB7e0nD0nGo0OL+gVvb6C+nhYyg1Gr+bwC0vvFH5KBTUau0eLUGf/A5ojfQE7n 5YnuAIOYaz2VLtWz8X/qfovoDSPrd5vLPHD7dxbuldtGpAhmjcQIoJmrwNrIQ2sl Tnjud1hkPnvpSyls899lh7fzzKgP0Y6uh/WWULSTPbKYsBG/HjKN/jSOJjzrDedO NwX/xX7HoXHiRcvp4pAkfJNs3hhKiLeEYBR1M7MFz7BMFjnQ4znIvWOj4qYOSKb5 K/1klcEvTejDH1Cr7XnkDunZqgaURnVK7TiziCBKzR1g5mg5brsCGlwNqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK6d/Fj/c6PetIY7NnK/sB5NoyZhMB8GA1UdIwQY MBaAFDgUtkjdV0ICXD3aXqpmSR/9suXZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0JTMlNOMVhRZ0pjUGRwZXFtWkpIXzJ5NWRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8xMmRmMmQtOTRmMS00ZDEwLTk0YTQt MWY4MzY4ODAxZmRjLzEvT0JTMlNOMVhRZ0pjUGRwZXFtWkpIXzJ5NWRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy8xMmRmMmQtOTRmMS00ZDEwLTk0YTQtMWY4MzY4ODAxZmRj LzEvT0JTMlNOMVhRZ0pjUGRwZXFtWkpIXzJ5NWRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR/C2D/9p I94M6bFpfowoMdENF1Vb2HmX3esYLiAf2M7oSWot2gl/QQ5pJk0PywDZqde88KrP 7w5vlJxLwEmmxkd+avS05BQFJC0oWepW1+11XfRnErrkyWC54keDAimabJmX8Wz8 O3xnCuKBOR0hv2luOh9Zjdw7gd7cYCdIILDHpbXhUjjgQiS7hQgwYIQGpbjphmo4 tXhCkAdv7L1Q828wE2lvEQkvlhgqQ88mve1NE1axm42FXF2F1z5jTjj0po/oS8zc GCq3cVd/OSbDuphHa2XnEvahVl85U1sbp8Ep2iiECK2RBiyLPFg+UxOK3t0aTpXv KolfhVKqeIsBwQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:10 2026 by rpki-client