This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft File: OBssWXKaU7hBEqryyhIo80JHo5s.mft (raw, json) Hash identifier: OVlh8V1Zkuk536zY+6p8y+aoQvsGifGx42RcFW5DThQ= Subject key identifier: E3:69:1C:5D:57:DB:E9:9B:BE:1C:E6:76:64:F9:29:2A:5A:8C:16:11 Authority key identifier: 38:1B:2C:59:72:9A:53:B8:41:12:AA:F2:CA:12:28:F3:42:47:A3:9B Certificate issuer: /CN=381b2c59729a53b84112aaf2ca1228f34247a39b Certificate serial: 019C43221DC9E9F33A9F717F4473627276C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBssWXKaU7hBEqryyhIo80JHo5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:00:35 +0000 Manifest this update: Mon 09 Feb 2026 16:00:35 +0000 Manifest next update: Tue 10 Feb 2026 16:00:35 +0000 Files and hashes: 1: OBssWXKaU7hBEqryyhIo80JHo5s.crl (hash: X3/MuQuEEk4O1+W1orQkiE61S4lS3Y0OUnoc86djC08=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.crl rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft rsync://rpki.ripe.net/repository/DEFAULT/OBssWXKaU7hBEqryyhIo80JHo5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:1d:c9:e9:f3:3a:9f:71:7f:44:73:62:72:76:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=381b2c59729a53b84112aaf2ca1228f34247a39b Validity Not Before: Feb 9 16:00:35 2026 GMT Not After : Feb 10 16:00:35 2026 GMT Subject: CN=e3691c5d57dbe99bbe1ce67664f9292a5a8c1611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:15:da:be:3c:82:0a:f0:8a:88:8a:da:a3:0c: a6:d8:33:ad:f0:36:a9:c3:4c:6c:0f:4b:30:51:f6: f6:8d:0f:50:ae:fc:f4:55:d1:01:73:8a:04:70:c3: 27:ad:3e:d7:c7:89:f1:29:95:7c:0e:49:ab:82:22: 7e:70:1c:fe:ea:b8:7e:c0:6d:46:ea:bb:b8:d0:dc: 5c:9a:bd:9f:9b:23:a4:8a:a9:ab:4d:62:3d:b4:16: 86:86:18:3d:e3:26:c5:00:b4:01:f6:1c:f1:19:f9: f8:64:48:6c:5f:e8:db:c6:ff:b7:a6:dc:06:c0:f1: 6a:ad:79:02:bf:74:db:52:72:db:52:3f:d9:3d:cf: 33:10:73:37:36:70:24:0f:76:96:0b:fd:5b:89:24: 7f:87:49:5d:d9:05:2c:96:d0:c8:30:62:49:b1:42: c4:05:44:28:4c:8a:c9:70:8b:64:8d:1f:60:0b:38: df:b0:01:c0:d1:e5:03:79:08:8c:73:4d:28:84:e9: d5:95:f9:b2:b7:57:51:b3:d3:13:60:4c:8f:1a:4c: 14:8d:83:0d:d2:f4:a2:b1:bc:af:56:75:07:4c:24: fd:ec:57:3c:d4:34:81:0c:87:e1:65:3d:b6:d5:5c: f7:09:0a:2b:bf:d2:dd:79:71:2c:c1:b8:32:3d:8b: 42:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:69:1C:5D:57:DB:E9:9B:BE:1C:E6:76:64:F9:29:2A:5A:8C:16:11 X509v3 Authority Key Identifier: keyid:38:1B:2C:59:72:9A:53:B8:41:12:AA:F2:CA:12:28:F3:42:47:A3:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBssWXKaU7hBEqryyhIo80JHo5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/14917a-4911-4c3b-b2a7-27d5ace0307f/1/OBssWXKaU7hBEqryyhIo80JHo5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:8f:fc:c1:75:a6:d7:14:27:0a:91:60:8c:13:a0:be:01:cf: 4a:3a:d3:82:54:b0:2a:5f:98:d9:bf:77:7c:a8:01:80:e8:4c: eb:2e:8d:76:cc:2f:d0:d2:d5:9e:0f:60:5b:97:ef:71:11:ff: 88:f1:b0:9b:d3:b8:b3:7d:77:fc:6e:f1:5e:d8:bc:42:50:52: dc:c1:61:d7:4e:d1:7b:2e:cb:0b:bb:da:9b:98:38:c7:c4:49: 27:ad:8b:4f:48:0d:0b:56:cf:99:d5:7f:23:10:0e:f3:b9:bb: a2:55:8d:ae:3d:32:a5:5b:0b:36:30:14:c7:fb:4c:95:bb:ed: b5:89:4b:c0:da:f7:5c:2d:61:5f:26:ac:c6:f9:84:e0:59:3d: 8b:6f:97:b2:41:d7:40:a1:f2:4f:29:94:71:a3:a9:43:dc:5c: 86:b5:53:b7:3d:59:e7:b4:26:92:d3:c6:30:18:e1:c3:73:19: 5b:76:ca:75:f7:f8:6f:28:1d:8a:d5:38:b3:19:44:27:14:7b: 0d:ff:90:1f:63:c9:54:cd:d4:eb:16:0d:92:25:32:6e:94:64: 8e:13:37:d4:e3:22:0e:17:8f:03:55:d5:f4:13:bc:8e:11:83: 05:83:30:79:ce:4e:33:d5:e6:24:42:a0:f7:f5:56:40:76:25: 8a:b3:d2:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIh3J6fM6n3F/RHNicnbIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MWIyYzU5NzI5YTUzYjg0MTEyYWFmMmNhMTIyOGYzNDI0 N2EzOWIwHhcNMjYwMjA5MTYwMDM1WhcNMjYwMjEwMTYwMDM1WjAzMTEwLwYDVQQD EyhlMzY5MWM1ZDU3ZGJlOTliYmUxY2U2NzY2NGY5MjkyYTVhOGMxNjExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwRXavjyCCvCKiIraowym2DOt8Dap w0xsD0swUfb2jQ9Qrvz0VdEBc4oEcMMnrT7Xx4nxKZV8DkmrgiJ+cBz+6rh+wG1G 6ru40Nxcmr2fmyOkiqmrTWI9tBaGhhg94ybFALQB9hzxGfn4ZEhsX+jbxv+3ptwG wPFqrXkCv3TbUnLbUj/ZPc8zEHM3NnAkD3aWC/1biSR/h0ld2QUsltDIMGJJsULE BUQoTIrJcItkjR9gCzjfsAHA0eUDeQiMc00ohOnVlfmyt1dRs9MTYEyPGkwUjYMN 0vSisbyvVnUHTCT97Fc81DSBDIfhZT221Vz3CQorv9LdeXEswbgyPYtCdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFONpHF1X2+mbvhzmdmT5KSpajBYRMB8GA1UdIwQY MBaAFDgbLFlymlO4QRKq8soSKPNCR6ObMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0Jzc1dYS2FVN2hCRXFyeXloSW84MEpIbzVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8xNDkxN2EtNDkxMS00YzNiLWIyYTct MjdkNWFjZTAzMDdmLzEvT0Jzc1dYS2FVN2hCRXFyeXloSW84MEpIbzVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi8xNDkxN2EtNDkxMS00YzNiLWIyYTctMjdkNWFjZTAzMDdm LzEvT0Jzc1dYS2FVN2hCRXFyeXloSW84MEpIbzVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoY/8wXWm 1xQnCpFgjBOgvgHPSjrTglSwKl+Y2b93fKgBgOhM6y6Ndswv0NLVng9gW5fvcRH/ iPGwm9O4s313/G7xXti8QlBS3MFh107Rey7LC7vam5g4x8RJJ62LT0gNC1bPmdV/ IxAO87m7olWNrj0ypVsLNjAUx/tMlbvttYlLwNr3XC1hXyasxvmE4Fk9i2+XskHX QKHyTymUcaOpQ9xchrVTtz1Z57QmktPGMBjhw3MZW3bKdff4bygditU4sxlEJxR7 Df+QH2PJVM3U6xYNkiUybpRkjhM31OMiDhePA1XV9BO8jhGDBYMwec5OM9XmJEKg 9/VWQHYlirPSTQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:45:58 2026 by rpki-client