This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft File: o8lj0aEdANOEre35u4blOEmpsYw.mft (raw, json) Hash identifier: 5hLIv5nZ5T9/Nphv9e/AmN5yCPwARVh07fXUDWhl/sY= Subject key identifier: 68:DE:BA:D6:76:9B:70:5B:71:F7:0F:1C:5F:F8:14:76:A6:1A:89:0E Authority key identifier: A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C Certificate issuer: /CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c Certificate serial: 019C41D863D44879CE3251B95F496FDCF777 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 10:00:26 +0000 Manifest this update: Mon 09 Feb 2026 10:00:26 +0000 Manifest next update: Tue 10 Feb 2026 10:00:26 +0000 Files and hashes: 1: o8lj0aEdANOEre35u4blOEmpsYw.crl (hash: qFwSsq8Z7KI1N9YESgyEy+0mboIZg9ssFK2bMvEZgv4=) 2: sbWj3cDEvspo2pzFM90qmBN7XGY.roa (hash: ZCuFftw5Wl2QKtDaCFVmcabJrAkBRibR6g/1SyLs2gs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:63:d4:48:79:ce:32:51:b9:5f:49:6f:dc:f7:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c Validity Not Before: Feb 9 10:00:26 2026 GMT Not After : Feb 10 10:00:26 2026 GMT Subject: CN=68debad6769b705b71f70f1c5ff81476a61a890e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:27:1c:18:b8:b9:77:07:f9:7d:eb:93:74:64: 29:44:2c:22:dd:7d:a4:ce:93:67:3e:ca:05:38:b0: 33:ad:6a:2f:5a:0d:90:02:cc:c4:8f:9d:ca:c1:74: ac:ab:48:9e:9e:a2:9e:dd:ae:82:b3:9c:1a:ba:5b: 6a:ef:f9:37:c7:6d:3c:54:d0:18:92:4d:1b:a3:d6: b7:ff:00:d2:85:c0:80:d6:9d:f1:b7:74:94:10:a3: 6f:f4:98:60:3f:56:41:98:bc:ee:2a:bc:11:5a:54: 61:76:6e:17:34:c7:d5:91:9f:4e:61:b7:4a:a3:24: d8:57:d0:dc:35:40:e4:b5:b0:d2:bf:c1:51:cd:89: 2a:5d:f0:62:19:56:99:40:94:14:04:83:b4:3e:2a: 74:06:db:49:76:ef:15:d6:39:a1:fe:12:29:89:8d: 29:ce:af:54:8a:b2:21:b4:23:6a:ff:27:d0:f1:e9: 67:00:fa:57:ab:5f:41:d2:f4:8e:d0:a3:9b:bc:d8: 8c:58:3d:e0:46:73:79:71:ce:40:8a:ea:7d:4c:9e: ab:81:c8:e5:86:24:13:8e:f4:29:3c:f7:74:8f:b8: 40:6b:78:ee:d2:c9:e6:a9:b3:74:dd:37:ca:85:2b: 57:56:5e:9f:80:7a:f5:9f:42:66:a7:d7:d3:6f:07: 33:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:DE:BA:D6:76:9B:70:5B:71:F7:0F:1C:5F:F8:14:76:A6:1A:89:0E X509v3 Authority Key Identifier: keyid:A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:46:00:4b:ee:4d:24:fc:96:6e:1e:fc:37:3d:6e:8e:60:42: db:44:91:02:30:64:b4:86:fd:dc:f9:73:43:44:ed:3a:8a:ce: 04:61:54:84:f8:43:aa:c2:96:75:58:a5:e6:0a:fc:b6:79:03: eb:b2:b6:84:92:03:50:72:88:17:1a:5b:b1:06:d1:80:fe:d3: 0e:c5:0c:d7:54:c6:37:7f:c8:a4:3a:5c:ab:62:b9:00:09:ce: 40:a4:a8:9f:92:3b:c7:90:26:9f:c2:a5:7f:05:82:f4:d4:0f: 01:3e:92:35:05:70:f0:17:d8:18:0d:80:18:a1:f4:82:27:42: d6:b0:32:97:30:70:f8:da:4e:da:7d:30:a6:c7:ba:37:82:04: 6f:3f:60:bf:2c:c9:83:ee:07:15:40:b3:7f:15:af:9a:57:b4: c3:26:b3:84:5d:24:e6:32:fd:0b:33:3c:1c:cb:a5:fd:74:f6: e9:d1:74:7e:c5:db:3b:a1:88:61:fe:0a:e9:01:78:15:b1:c4: ce:7e:ab:4a:d5:07:2e:1d:88:26:06:32:d7:5a:a1:00:6b:aa: 6e:19:13:65:1c:24:94:02:62:46:a3:96:ac:a9:17:ad:fe:fa: 1c:2f:32:a6:40:c0:61:bc:21:b8:37:be:dd:e3:e2:b4:bc:72: 86:9e:53:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2GPUSHnOMlG5X0lv3Pd3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzYzk2M2QxYTExZDAwZDM4NGFkZWRmOWJiODZlNTM4NDlh OWIxOGMwHhcNMjYwMjA5MTAwMDI2WhcNMjYwMjEwMTAwMDI2WjAzMTEwLwYDVQQD Eyg2OGRlYmFkNjc2OWI3MDViNzFmNzBmMWM1ZmY4MTQ3NmE2MWE4OTBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5SccGLi5dwf5feuTdGQpRCwi3X2k zpNnPsoFOLAzrWovWg2QAszEj53KwXSsq0ienqKe3a6Cs5waultq7/k3x208VNAY kk0bo9a3/wDShcCA1p3xt3SUEKNv9JhgP1ZBmLzuKrwRWlRhdm4XNMfVkZ9OYbdK oyTYV9DcNUDktbDSv8FRzYkqXfBiGVaZQJQUBIO0Pip0BttJdu8V1jmh/hIpiY0p zq9UirIhtCNq/yfQ8elnAPpXq19B0vSO0KObvNiMWD3gRnN5cc5Aiup9TJ6rgcjl hiQTjvQpPPd0j7hAa3ju0snmqbN03TfKhStXVl6fgHr1n0Jmp9fTbwczbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGjeutZ2m3BbcfcPHF/4FHamGokOMB8GA1UdIwQY MBaAFKPJY9GhHQDThK3t+buG5ThJqbGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzhsajBhRWRBTk9FcmUzNXU0YmxPRW1wc1l3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9mYzUyYTAtZTBmNy00ODBiLWJhN2Qt MTA0MmVhOGUzYmZiLzEvbzhsajBhRWRBTk9FcmUzNXU0YmxPRW1wc1l3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9mYzUyYTAtZTBmNy00ODBiLWJhN2QtMTA0MmVhOGUzYmZi LzEvbzhsajBhRWRBTk9FcmUzNXU0YmxPRW1wc1l3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFEYAS+5N JPyWbh78Nz1ujmBC20SRAjBktIb93PlzQ0TtOorOBGFUhPhDqsKWdVil5gr8tnkD 67K2hJIDUHKIFxpbsQbRgP7TDsUM11TGN3/IpDpcq2K5AAnOQKSon5I7x5Amn8Kl fwWC9NQPAT6SNQVw8BfYGA2AGKH0gidC1rAylzBw+NpO2n0wpse6N4IEbz9gvyzJ g+4HFUCzfxWvmle0wyazhF0k5jL9CzM8HMul/XT26dF0fsXbO6GIYf4K6QF4FbHE zn6rStUHLh2IJgYy11qhAGuqbhkTZRwklAJiRqOWrKkXrf76HC8ypkDAYbwhuDe+ 3ePitLxyhp5TFQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:30 2026 by rpki-client