This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.mft File: o5L8lqSHiVFOsJ9WdLWdpSyRFIM.mft (raw, json) Hash identifier: I2JJyBCe63uTFbIVe91l9HnQHNHkIn35p2+ZKLerumA= Subject key identifier: 7D:12:56:08:1E:92:69:E0:16:F1:3C:F4:E2:A5:96:1D:91:4B:C5:0E Authority key identifier: A3:92:FC:96:A4:87:89:51:4E:B0:9F:56:74:B5:9D:A5:2C:91:14:83 Certificate issuer: /CN=a392fc96a48789514eb09f5674b59da52c911483 Certificate serial: 019C43905AA0452072FA310A8E3AA17C7824 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.mft Manifest number: 0C86 Signing time: Mon 09 Feb 2026 18:00:59 +0000 Manifest this update: Mon 09 Feb 2026 18:00:59 +0000 Manifest next update: Tue 10 Feb 2026 18:00:59 +0000 Files and hashes: 1: o5L8lqSHiVFOsJ9WdLWdpSyRFIM.crl (hash: mUCfaTpAMfR5X1o/Z8F2q5BbjSJYJhHt3yq4qvDB994=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.mft rsync://rpki.ripe.net/repository/DEFAULT/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:5a:a0:45:20:72:fa:31:0a:8e:3a:a1:7c:78:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a392fc96a48789514eb09f5674b59da52c911483 Validity Not Before: Feb 9 18:00:59 2026 GMT Not After : Feb 10 18:00:59 2026 GMT Subject: CN=7d1256081e9269e016f13cf4e2a5961d914bc50e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:50:d6:22:4c:ab:94:6f:98:0a:7e:b5:92:94: d8:b9:27:13:9a:3d:b8:9a:65:f9:bb:83:93:d7:80: e1:07:7a:28:2a:1e:a1:72:d1:91:19:11:c9:62:9a: a1:83:b6:97:cc:19:df:89:6f:47:bc:75:85:1f:e5: 5e:21:fe:30:8d:aa:b3:d4:7d:69:47:2f:8f:c4:8d: b8:5b:c6:70:40:f5:6b:73:c9:db:87:49:bf:24:ff: 8a:ac:30:23:42:a6:53:1a:b6:4e:12:09:9d:5e:45: bb:65:6c:cc:d1:1b:32:0e:bc:60:4d:4f:77:e1:b5: 36:d4:d4:01:61:3a:68:d0:2c:60:2a:bb:1c:52:16: 6c:6e:03:8a:19:f3:18:bc:9d:85:76:6f:f6:7d:69: da:5b:6e:c6:de:1f:b6:1f:e4:9b:89:95:f3:5b:d3: bb:84:f0:a0:1f:a6:ac:52:ae:41:9b:94:00:b7:0c: 28:57:2c:77:38:df:67:e1:62:64:57:50:e4:3c:25: 34:67:aa:5f:e4:4a:8a:17:09:6c:d2:e0:2b:3a:ac: b7:f0:20:2d:cc:c6:08:02:d5:91:62:91:8b:b8:22: f8:e2:a1:e1:58:c3:28:69:d9:c6:94:9d:53:e9:77: 9e:a7:e6:9e:7a:ab:ab:f2:80:3a:ad:e3:69:7b:c1: b8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:12:56:08:1E:92:69:E0:16:F1:3C:F4:E2:A5:96:1D:91:4B:C5:0E X509v3 Authority Key Identifier: keyid:A3:92:FC:96:A4:87:89:51:4E:B0:9F:56:74:B5:9D:A5:2C:91:14:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:27:6f:e1:38:f5:fb:f4:c4:9d:e6:24:cd:76:37:6e:9d:e0: 00:58:ae:6d:13:da:c5:db:b9:ac:88:e3:2e:77:df:05:49:54: 7c:1f:9e:10:99:ef:56:92:e0:97:43:4e:98:83:99:de:50:ee: f8:e5:8d:73:45:9b:6a:ee:bb:c9:c8:5a:99:ba:48:88:36:b2: dd:e0:e8:c9:f4:56:14:65:7f:dd:d6:6f:0b:1c:fb:bc:cc:2c: 7c:65:d8:1d:f6:59:04:6d:0e:74:17:63:a3:34:20:b3:0d:ef: ce:5d:94:17:85:86:bd:93:f7:84:a8:22:9c:1f:03:7e:b5:70: 86:0c:59:98:46:91:2e:59:00:c0:33:47:dc:3d:4e:18:c0:2d: 72:53:b1:d9:5e:df:49:b9:ba:8b:2d:e7:11:13:4e:19:d1:b2: 5d:4e:ef:b3:72:18:33:a7:3d:86:6d:71:8d:8d:e4:b1:a1:82: 22:1a:a9:4d:ea:b7:04:ec:1a:82:36:44:21:24:16:69:a8:e5: 85:ff:1f:0c:17:1a:81:9e:ef:57:73:46:61:5a:71:a5:c9:29: c9:19:7d:11:fa:a0:46:ee:2c:c1:ae:9c:02:0b:c2:b3:33:cb: f3:07:15:7e:71:3a:26:47:32:ba:da:a3:98:ee:cf:33:96:24: c2:a6:3e:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkFqgRSBy+jEKjjqhfHgkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzOTJmYzk2YTQ4Nzg5NTE0ZWIwOWY1Njc0YjU5ZGE1MmM5 MTE0ODMwHhcNMjYwMjA5MTgwMDU5WhcNMjYwMjEwMTgwMDU5WjAzMTEwLwYDVQQD Eyg3ZDEyNTYwODFlOTI2OWUwMTZmMTNjZjRlMmE1OTYxZDkxNGJjNTBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA41DWIkyrlG+YCn61kpTYuScTmj24 mmX5u4OT14DhB3ooKh6hctGRGRHJYpqhg7aXzBnfiW9HvHWFH+VeIf4wjaqz1H1p Ry+PxI24W8ZwQPVrc8nbh0m/JP+KrDAjQqZTGrZOEgmdXkW7ZWzM0RsyDrxgTU93 4bU21NQBYTpo0CxgKrscUhZsbgOKGfMYvJ2Fdm/2fWnaW27G3h+2H+SbiZXzW9O7 hPCgH6asUq5Bm5QAtwwoVyx3ON9n4WJkV1DkPCU0Z6pf5EqKFwls0uArOqy38CAt zMYIAtWRYpGLuCL44qHhWMMoadnGlJ1T6Xeep+aeequr8oA6reNpe8G4oQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH0SVggekmngFvE89OKllh2RS8UOMB8GA1UdIwQY MBaAFKOS/Jakh4lRTrCfVnS1naUskRSDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzVMOGxxU0hpVkZPc0o5V2RMV2RwU3lSRklNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9lNzhmODMtNTM4NC00YzM2LThmNTEt ODgzZjJmNmNiZjA0LzEvbzVMOGxxU0hpVkZPc0o5V2RMV2RwU3lSRklNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9lNzhmODMtNTM4NC00YzM2LThmNTEtODgzZjJmNmNiZjA0 LzEvbzVMOGxxU0hpVkZPc0o5V2RMV2RwU3lSRklNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjCdv4Tj1 +/TEneYkzXY3bp3gAFiubRPaxdu5rIjjLnffBUlUfB+eEJnvVpLgl0NOmIOZ3lDu +OWNc0Wbau67ychambpIiDay3eDoyfRWFGV/3dZvCxz7vMwsfGXYHfZZBG0OdBdj ozQgsw3vzl2UF4WGvZP3hKginB8DfrVwhgxZmEaRLlkAwDNH3D1OGMAtclOx2V7f Sbm6iy3nERNOGdGyXU7vs3IYM6c9hm1xjY3ksaGCIhqpTeq3BOwagjZEISQWaajl hf8fDBcagZ7vV3NGYVpxpckpyRl9EfqgRu4swa6cAgvCszPL8wcVfnE6Jkcyutqj mO7PM5YkwqY+2A== -----END CERTIFICATE-----Generated at Tue Feb 10 02:55:04 2026 by rpki-client