This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft File: O95jhoTGRf7dYA7TxQzfMQsRbT4.mft (raw, json) Hash identifier: 8BgK/TsW/bbpzf2mc+QrGzM1WQRWbjxNBZe8suqB8fo= Subject key identifier: 2D:C5:FD:43:16:07:4D:9B:8D:6B:02:75:2C:AC:53:BC:52:56:E0:02 Authority key identifier: 3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E Certificate issuer: /CN=3bde638684c645fedd600ed3c50cdf310b116d3e Certificate serial: 019C420FC6C9AE37D19C18BB54DA9632E25E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft Manifest number: 132D Signing time: Mon 09 Feb 2026 11:00:55 +0000 Manifest this update: Mon 09 Feb 2026 11:00:55 +0000 Manifest next update: Tue 10 Feb 2026 11:00:55 +0000 Files and hashes: 1: O95jhoTGRf7dYA7TxQzfMQsRbT4.crl (hash: 1Dj9E8oBxPMGnr3uvOx/DScLbEtIt//fQMIXZ1DfZuI=) 2: Z7DXzXjQ1iWsLhA7bX6hUr5-ljA.roa (hash: 3kmZN3nQ/QKEMXaSVLOkM6zDUNMkeL4tJG0CWoaKc6Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:c6:c9:ae:37:d1:9c:18:bb:54:da:96:32:e2:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3bde638684c645fedd600ed3c50cdf310b116d3e Validity Not Before: Feb 9 11:00:55 2026 GMT Not After : Feb 10 11:00:55 2026 GMT Subject: CN=2dc5fd4316074d9b8d6b02752cac53bc5256e002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fc:9b:f1:a6:6d:fe:cc:d0:f5:44:86:8b:b2: 52:6b:2c:4e:79:60:45:68:69:a9:c3:69:fb:d5:b0: e7:c4:1b:82:7a:b0:54:9d:d4:75:34:a2:97:a0:33: bf:f7:c8:22:86:16:57:17:e6:69:6c:fc:5d:b2:ec: a4:c2:3f:fd:3d:ba:12:86:64:4f:7f:b4:c0:09:b9: 29:0b:34:45:2d:26:ec:03:24:d7:1a:ea:12:e1:4b: 27:7d:8e:af:85:2b:48:83:fe:c1:b6:dd:c2:31:e0: 7b:ac:ba:40:83:bc:2d:af:80:33:d8:0e:7d:98:ce: 6e:c6:8f:4a:2f:00:48:e9:22:f5:ed:07:54:91:3f: 23:02:52:13:7f:56:0e:b7:64:2b:28:67:90:5f:af: 86:67:cd:dc:9a:33:5a:dc:77:33:72:75:a5:2e:52: 40:4f:20:d5:f4:4a:ac:bd:d0:c0:99:13:b9:ae:da: b7:f6:dc:b5:8a:af:1b:ce:98:c5:bb:c8:a6:e0:5c: 6f:92:a1:bb:a3:62:2b:be:be:a1:79:c4:c8:ec:af: 72:25:15:31:b9:e1:c3:13:14:59:5f:d4:9b:0c:b6: a2:4c:3c:2e:1d:7f:cb:a6:f9:77:ef:5d:14:c7:23: 56:65:6f:86:60:20:cd:67:f0:20:82:c9:e0:2c:e6: 2c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:C5:FD:43:16:07:4D:9B:8D:6B:02:75:2C:AC:53:BC:52:56:E0:02 X509v3 Authority Key Identifier: keyid:3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:c7:03:86:a2:60:43:ee:54:76:8c:08:c9:49:28:27:ab:18: d9:67:85:92:09:ad:69:f6:a3:6f:c1:ab:31:07:0c:49:26:75: 01:3b:2d:c8:34:7b:81:35:8d:3f:f5:9e:c2:3f:29:ee:88:5d: 76:9a:22:7b:06:48:a9:a1:4e:9c:59:fa:2e:d7:4c:44:11:4a: 17:74:60:fb:94:89:ef:33:b5:90:a8:8e:7b:de:c7:e5:63:6f: ae:04:e4:3d:f0:70:02:32:c6:07:52:67:2d:4e:c7:96:a8:11: 99:ab:4d:5b:37:11:06:9f:1e:e0:c1:1d:3c:ac:4f:1c:00:d0: 76:48:d8:db:98:04:a3:5d:b5:41:a8:65:f5:0f:c3:46:e5:f6: e2:0a:c2:48:b0:c6:f0:90:61:e3:f6:25:6e:c0:33:32:91:75: 37:79:fa:7f:d4:84:ef:de:41:24:2d:7d:6a:90:64:9d:11:ec: 3c:36:d7:6e:81:5b:83:c4:92:09:1d:a5:10:91:3e:dd:99:c5: c2:55:59:00:98:a1:c9:21:76:60:64:aa:b2:44:93:f2:39:44: 6f:25:0d:d4:c3:76:5b:be:33:5c:b2:f7:04:88:89:a6:ff:8a: 07:6f:b9:e8:0f:d9:e9:74:9f:cf:0d:de:d9:46:72:f1:05:44: 4d:df:63:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD8bJrjfRnBi7VNqWMuJeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiZGU2Mzg2ODRjNjQ1ZmVkZDYwMGVkM2M1MGNkZjMxMGIx MTZkM2UwHhcNMjYwMjA5MTEwMDU1WhcNMjYwMjEwMTEwMDU1WjAzMTEwLwYDVQQD EygyZGM1ZmQ0MzE2MDc0ZDliOGQ2YjAyNzUyY2FjNTNiYzUyNTZlMDAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvyb8aZt/szQ9USGi7JSayxOeWBF aGmpw2n71bDnxBuCerBUndR1NKKXoDO/98gihhZXF+ZpbPxdsuykwj/9PboShmRP f7TACbkpCzRFLSbsAyTXGuoS4UsnfY6vhStIg/7Btt3CMeB7rLpAg7wtr4Az2A59 mM5uxo9KLwBI6SL17QdUkT8jAlITf1YOt2QrKGeQX6+GZ83cmjNa3HczcnWlLlJA TyDV9EqsvdDAmRO5rtq39ty1iq8bzpjFu8im4FxvkqG7o2Irvr6hecTI7K9yJRUx ueHDExRZX9SbDLaiTDwuHX/Lpvl3710UxyNWZW+GYCDNZ/AggsngLOYsvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC3F/UMWB02bjWsCdSysU7xSVuACMB8GA1UdIwQY MBaAFDveY4aExkX+3WAO08UM3zELEW0+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzk1amhvVEdSZjdkWUE3VHhRemZNUXNSYlQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS82MmIxNWQtZWU1MC00NTBiLThlMmQt MDk3YjA1MTBkM2UyLzEvTzk1amhvVEdSZjdkWUE3VHhRemZNUXNSYlQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS82MmIxNWQtZWU1MC00NTBiLThlMmQtMDk3YjA1MTBkM2Uy LzEvTzk1amhvVEdSZjdkWUE3VHhRemZNUXNSYlQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI8cDhqJg Q+5UdowIyUkoJ6sY2WeFkgmtafajb8GrMQcMSSZ1ATstyDR7gTWNP/Wewj8p7ohd dpoiewZIqaFOnFn6LtdMRBFKF3Rg+5SJ7zO1kKiOe97H5WNvrgTkPfBwAjLGB1Jn LU7HlqgRmatNWzcRBp8e4MEdPKxPHADQdkjY25gEo121Qahl9Q/DRuX24grCSLDG 8JBh4/YlbsAzMpF1N3n6f9SE795BJC19apBknRHsPDbXboFbg8SSCR2lEJE+3ZnF wlVZAJihySF2YGSqskST8jlEbyUN1MN2W74zXLL3BIiJpv+KB2+56A/Z6XSfzw3e 2UZy8QVETd9jyQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:27 2026 by rpki-client