This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c34e04-f7ac-41eb-a561-dde83151ba76/1/otGlH74MLlJmesWiVSySo3nOre4.mft File: otGlH74MLlJmesWiVSySo3nOre4.mft (raw, json) Hash identifier: OxoPvggKqWdGfBrQnZzBo1L4sFNLPiuiV0GAmSivUP4= Subject key identifier: B8:AD:B5:8B:C9:DD:88:77:0D:B3:7E:7D:48:B3:FD:2F:C6:64:D5:E6 Authority key identifier: A2:D1:A5:1F:BE:0C:2E:52:66:7A:C5:A2:55:2C:92:A3:79:CE:AD:EE Certificate issuer: /CN=a2d1a51fbe0c2e52667ac5a2552c92a379ceadee Certificate serial: 019C42B44202C687825C89B923275C25241E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otGlH74MLlJmesWiVSySo3nOre4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c34e04-f7ac-41eb-a561-dde83151ba76/1/otGlH74MLlJmesWiVSySo3nOre4.mft Manifest number: 03E9 Signing time: Mon 09 Feb 2026 14:00:35 +0000 Manifest this update: Mon 09 Feb 2026 14:00:35 +0000 Manifest next update: Tue 10 Feb 2026 14:00:35 +0000 Files and hashes: 1: otGlH74MLlJmesWiVSySo3nOre4.crl (hash: yr/54S2QUy+oUn78VazSjH4OUESSUBGpkTMK8TRtLPY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c34e04-f7ac-41eb-a561-dde83151ba76/1/otGlH74MLlJmesWiVSySo3nOre4.crl rsync://rpki.ripe.net/repository/DEFAULT/27/c34e04-f7ac-41eb-a561-dde83151ba76/1/otGlH74MLlJmesWiVSySo3nOre4.mft rsync://rpki.ripe.net/repository/DEFAULT/otGlH74MLlJmesWiVSySo3nOre4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:42:02:c6:87:82:5c:89:b9:23:27:5c:25:24:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2d1a51fbe0c2e52667ac5a2552c92a379ceadee Validity Not Before: Feb 9 14:00:35 2026 GMT Not After : Feb 10 14:00:35 2026 GMT Subject: CN=b8adb58bc9dd88770db37e7d48b3fd2fc664d5e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:32:93:62:bf:a0:fa:95:6e:2d:29:c9:56:9e: 4e:6d:06:dc:e9:c9:0b:8d:8b:c9:48:db:f9:ff:b5: a9:1a:c8:ae:4d:a1:4a:10:c3:ae:82:7e:c6:28:d1: f3:09:19:09:eb:fb:41:6d:89:e2:2e:b8:74:9f:1f: bb:31:36:d0:d2:1e:58:7e:06:89:b6:05:b5:80:d3: 32:13:51:ae:35:45:84:35:01:09:1a:8f:54:ce:f5: da:3b:3a:f1:d3:ba:6f:f5:21:55:5c:44:65:e1:1a: 10:a8:48:2c:53:10:47:cd:5c:62:20:81:64:e9:b0: 1c:79:41:3e:cc:d5:0f:21:95:da:c3:0d:13:d6:ad: 08:37:89:40:3a:ef:77:0a:43:a9:26:bb:38:ba:96: 86:4f:05:7f:d6:ee:59:0e:2a:bf:e7:19:c6:ea:0e: 9e:c8:00:cc:56:57:08:d3:b9:e8:85:39:bd:e2:48: 68:d9:70:5d:71:64:3c:74:e8:2c:97:3f:0c:0d:80: 2e:5a:37:64:e6:d7:5c:4e:e0:19:fc:2c:a4:15:c6: 92:51:7f:5b:bc:0f:cb:09:f3:47:ad:1d:ef:ad:ee: 63:25:06:fe:a3:46:67:ce:96:f4:88:ad:19:14:23: b8:50:9a:3b:29:9b:83:aa:d7:83:fa:dd:9d:c6:a6: 45:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:AD:B5:8B:C9:DD:88:77:0D:B3:7E:7D:48:B3:FD:2F:C6:64:D5:E6 X509v3 Authority Key Identifier: keyid:A2:D1:A5:1F:BE:0C:2E:52:66:7A:C5:A2:55:2C:92:A3:79:CE:AD:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otGlH74MLlJmesWiVSySo3nOre4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c34e04-f7ac-41eb-a561-dde83151ba76/1/otGlH74MLlJmesWiVSySo3nOre4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c34e04-f7ac-41eb-a561-dde83151ba76/1/otGlH74MLlJmesWiVSySo3nOre4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:05:06:c2:f6:7a:9e:57:45:b6:4e:ff:6f:e7:b1:f3:4a:8d: 05:2b:ff:fe:49:1d:01:bc:f0:a3:a1:55:f9:b6:6c:4e:51:45: ef:0c:84:b7:41:57:b5:8f:e9:8f:2a:3b:22:b1:92:79:00:56: 16:6a:d5:0d:66:4e:7c:56:96:88:10:4a:a0:c1:81:81:d2:fc: c5:72:23:c2:cf:eb:4f:a5:49:f8:d9:78:e3:2e:6c:ae:aa:24: 86:ab:0f:73:c8:5e:6a:31:54:72:c7:33:86:69:5c:8a:f1:c5: 43:ef:3b:8e:60:c7:63:0a:a0:ce:e2:23:ea:a7:b7:1a:cc:8a: 36:41:d7:85:75:a8:93:17:d2:b4:ef:c8:10:4b:fb:f1:13:89: c7:05:5f:41:82:89:2b:dc:c6:80:fb:e0:23:5c:5c:00:67:8f: 8e:77:b2:83:60:b6:6d:b1:68:25:bc:64:5f:0a:76:de:9a:79: 43:2a:97:35:b9:8a:53:df:ce:cc:e3:b8:f2:ea:86:f7:27:6a: dc:81:81:4a:c3:26:d9:30:20:c6:89:20:ae:a9:18:ba:35:b1: 39:df:e7:61:52:06:94:5e:0a:eb:fc:d1:a1:d7:47:ab:0f:26: 82:db:82:cd:01:22:5e:31:8c:d3:8b:b8:72:3b:4e:c0:f3:f5: f3:d8:91:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtEICxoeCXIm5IydcJSQeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyZDFhNTFmYmUwYzJlNTI2NjdhYzVhMjU1MmM5MmEzNzlj ZWFkZWUwHhcNMjYwMjA5MTQwMDM1WhcNMjYwMjEwMTQwMDM1WjAzMTEwLwYDVQQD EyhiOGFkYjU4YmM5ZGQ4ODc3MGRiMzdlN2Q0OGIzZmQyZmM2NjRkNWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5zKTYr+g+pVuLSnJVp5ObQbc6ckL jYvJSNv5/7WpGsiuTaFKEMOugn7GKNHzCRkJ6/tBbYniLrh0nx+7MTbQ0h5YfgaJ tgW1gNMyE1GuNUWENQEJGo9UzvXaOzrx07pv9SFVXERl4RoQqEgsUxBHzVxiIIFk 6bAceUE+zNUPIZXaww0T1q0IN4lAOu93CkOpJrs4upaGTwV/1u5ZDiq/5xnG6g6e yADMVlcI07nohTm94kho2XBdcWQ8dOgslz8MDYAuWjdk5tdcTuAZ/CykFcaSUX9b vA/LCfNHrR3vre5jJQb+o0Znzpb0iK0ZFCO4UJo7KZuDqteD+t2dxqZFHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLittYvJ3Yh3DbN+fUiz/S/GZNXmMB8GA1UdIwQY MBaAFKLRpR++DC5SZnrFolUskqN5zq3uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3RHbEg3NE1MbEptZXNXaVZTeVNvM25PcmU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9jMzRlMDQtZjdhYy00MWViLWE1NjEt ZGRlODMxNTFiYTc2LzEvb3RHbEg3NE1MbEptZXNXaVZTeVNvM25PcmU0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9jMzRlMDQtZjdhYy00MWViLWE1NjEtZGRlODMxNTFiYTc2 LzEvb3RHbEg3NE1MbEptZXNXaVZTeVNvM25PcmU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArwUGwvZ6 nldFtk7/b+ex80qNBSv//kkdAbzwo6FV+bZsTlFF7wyEt0FXtY/pjyo7IrGSeQBW FmrVDWZOfFaWiBBKoMGBgdL8xXIjws/rT6VJ+Nl44y5srqokhqsPc8heajFUcscz hmlcivHFQ+87jmDHYwqgzuIj6qe3GsyKNkHXhXWokxfStO/IEEv78ROJxwVfQYKJ K9zGgPvgI1xcAGePjneyg2C2bbFoJbxkXwp23pp5QyqXNbmKU9/OzOO48uqG9ydq 3IGBSsMm2TAgxokgrqkYujWxOd/nYVIGlF4K6/zRoddHqw8mgtuCzQEiXjGM04u4 cjtOwPP189iRoQ== -----END CERTIFICATE-----Generated at Mon Feb 9 23:53:08 2026 by rpki-client