This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/fceb02-b0f1-4917-85c2-706ab3e83d1d/1/o8B3uDdyoALVxPi5IY7A3H8EDL8.mft File: o8B3uDdyoALVxPi5IY7A3H8EDL8.mft (raw, json) Hash identifier: UcjvK8rTBAzRUg4MIrY7OyEfaejr7MC+50HlakznfOY= Subject key identifier: CD:E9:83:5A:62:C9:E9:A0:7B:62:AD:C4:CD:4D:07:81:E5:50:01:6A Authority key identifier: A3:C0:77:B8:37:72:A0:02:D5:C4:F8:B9:21:8E:C0:DC:7F:04:0C:BF Certificate issuer: /CN=a3c077b83772a002d5c4f8b9218ec0dc7f040cbf Certificate serial: 019C420F998679344B405380B8235FA791A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8B3uDdyoALVxPi5IY7A3H8EDL8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/fceb02-b0f1-4917-85c2-706ab3e83d1d/1/o8B3uDdyoALVxPi5IY7A3H8EDL8.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 11:00:44 +0000 Manifest this update: Mon 09 Feb 2026 11:00:44 +0000 Manifest next update: Tue 10 Feb 2026 11:00:44 +0000 Files and hashes: 1: o8B3uDdyoALVxPi5IY7A3H8EDL8.crl (hash: k6Zfd6/LCu814tioM9l3UWDX1Zp0pOvqMXYPNGFvSp8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/fceb02-b0f1-4917-85c2-706ab3e83d1d/1/o8B3uDdyoALVxPi5IY7A3H8EDL8.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/fceb02-b0f1-4917-85c2-706ab3e83d1d/1/o8B3uDdyoALVxPi5IY7A3H8EDL8.mft rsync://rpki.ripe.net/repository/DEFAULT/o8B3uDdyoALVxPi5IY7A3H8EDL8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:99:86:79:34:4b:40:53:80:b8:23:5f:a7:91:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3c077b83772a002d5c4f8b9218ec0dc7f040cbf Validity Not Before: Feb 9 11:00:44 2026 GMT Not After : Feb 10 11:00:44 2026 GMT Subject: CN=cde9835a62c9e9a07b62adc4cd4d0781e550016a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fa:d2:ac:73:d2:0b:52:65:3a:f2:df:6b:27: 13:c4:14:14:7b:5b:78:3a:2c:6b:63:00:8e:c3:64: a4:a7:ea:f8:f0:7e:b8:f6:43:a5:21:a7:3a:02:7c: ef:09:17:1b:b0:84:b6:32:6b:b7:03:44:18:ff:b5: b6:fe:07:88:1e:3c:e7:27:7e:35:36:af:7b:31:8f: 41:e0:00:9a:09:34:12:0d:25:bc:e0:18:b5:b8:08: 79:91:1f:86:d2:12:2c:cb:00:f1:ca:34:a1:cf:04: 8c:ab:21:22:6b:c3:ee:57:ca:23:3b:8a:94:3e:a6: f9:a8:83:7e:01:98:24:ee:b2:44:3c:6a:27:be:8f: 71:bb:4c:56:b5:68:eb:47:35:fb:e7:ec:48:36:17: 35:88:5e:f6:0a:4f:f7:fc:98:44:42:7e:bb:44:1d: 17:15:fb:5f:cb:e6:ea:c0:17:bf:c5:f3:2f:c0:7c: ac:41:f2:67:ae:08:a6:fb:6e:77:21:c6:02:74:4a: 18:77:63:cf:ac:74:e1:e2:e4:3e:65:eb:0d:81:03: 77:b4:54:88:3f:1f:6c:39:1b:a8:8e:c9:c4:a2:7d: d0:e7:58:e6:e4:66:62:0a:8b:f7:c3:b5:d4:cd:f5: 5b:80:6b:24:ce:98:4f:0d:ca:f5:15:bb:93:8c:20: 20:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E9:83:5A:62:C9:E9:A0:7B:62:AD:C4:CD:4D:07:81:E5:50:01:6A X509v3 Authority Key Identifier: keyid:A3:C0:77:B8:37:72:A0:02:D5:C4:F8:B9:21:8E:C0:DC:7F:04:0C:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8B3uDdyoALVxPi5IY7A3H8EDL8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/fceb02-b0f1-4917-85c2-706ab3e83d1d/1/o8B3uDdyoALVxPi5IY7A3H8EDL8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/fceb02-b0f1-4917-85c2-706ab3e83d1d/1/o8B3uDdyoALVxPi5IY7A3H8EDL8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:f3:0b:36:7b:ad:9c:3f:88:39:75:d9:7d:15:81:65:90:9a: 18:9e:b9:39:18:bb:c9:0c:7b:14:85:78:e9:82:2a:e0:34:2d: d6:f6:85:f3:2c:e9:37:80:5f:b5:5c:c2:66:62:d9:e1:57:84: 6a:2e:b1:ac:0b:fc:b7:d5:ca:d2:dc:16:2f:6a:ec:18:e4:7d: a6:c7:ff:69:1c:da:2d:e9:88:54:32:4c:54:df:83:30:40:8f: 2f:e5:f2:de:f7:65:ec:ad:70:74:d6:91:a6:a8:e4:86:c7:df: 68:a6:d9:7c:f4:b8:a2:8b:b0:48:d0:d5:f2:1e:12:4b:6b:2d: 98:4c:77:ae:55:6e:13:33:ee:19:ea:74:53:1c:6a:de:8a:3c: dc:55:ea:2c:3f:96:6f:18:89:21:01:66:f8:30:1f:40:ae:8e: 8f:9a:76:6e:2e:27:0b:89:e7:ec:13:fe:b9:c8:91:87:bf:23: 05:0c:ad:b2:d7:c9:34:87:e4:48:4a:9b:ea:03:b6:ed:6e:45: 2e:bc:93:ff:e2:d7:cc:fb:c2:46:4d:44:57:c5:91:fe:cb:ec: 9f:e6:9d:2c:8a:2e:25:52:e9:f6:2c:e9:d6:80:9c:99:e5:fc: 7f:49:9a:14:a9:08:7a:62:0f:5e:33:ca:a4:c3:ec:76:9a:44: 3d:b1:83:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD5mGeTRLQFOAuCNfp5GhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzYzA3N2I4Mzc3MmEwMDJkNWM0ZjhiOTIxOGVjMGRjN2Yw NDBjYmYwHhcNMjYwMjA5MTEwMDQ0WhcNMjYwMjEwMTEwMDQ0WjAzMTEwLwYDVQQD EyhjZGU5ODM1YTYyYzllOWEwN2I2MmFkYzRjZDRkMDc4MWU1NTAwMTZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuPrSrHPSC1JlOvLfaycTxBQUe1t4 OixrYwCOw2Skp+r48H649kOlIac6AnzvCRcbsIS2Mmu3A0QY/7W2/geIHjznJ341 Nq97MY9B4ACaCTQSDSW84Bi1uAh5kR+G0hIsywDxyjShzwSMqyEia8PuV8ojO4qU Pqb5qIN+AZgk7rJEPGonvo9xu0xWtWjrRzX75+xINhc1iF72Ck/3/JhEQn67RB0X Fftfy+bqwBe/xfMvwHysQfJnrgim+253IcYCdEoYd2PPrHTh4uQ+ZesNgQN3tFSI Px9sORuojsnEon3Q51jm5GZiCov3w7XUzfVbgGskzphPDcr1FbuTjCAgDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM3pg1piyemge2KtxM1NB4HlUAFqMB8GA1UdIwQY MBaAFKPAd7g3cqAC1cT4uSGOwNx/BAy/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzhCM3VEZHlvQUxWeFBpNUlZN0EzSDhFREw4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9mY2ViMDItYjBmMS00OTE3LTg1YzIt NzA2YWIzZTgzZDFkLzEvbzhCM3VEZHlvQUxWeFBpNUlZN0EzSDhFREw4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9mY2ViMDItYjBmMS00OTE3LTg1YzItNzA2YWIzZTgzZDFk LzEvbzhCM3VEZHlvQUxWeFBpNUlZN0EzSDhFREw4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYPMLNnut nD+IOXXZfRWBZZCaGJ65ORi7yQx7FIV46YIq4DQt1vaF8yzpN4BftVzCZmLZ4VeE ai6xrAv8t9XK0twWL2rsGOR9psf/aRzaLemIVDJMVN+DMECPL+Xy3vdl7K1wdNaR pqjkhsffaKbZfPS4oouwSNDV8h4SS2stmEx3rlVuEzPuGep0Uxxq3oo83FXqLD+W bxiJIQFm+DAfQK6Oj5p2bi4nC4nn7BP+uciRh78jBQytstfJNIfkSEqb6gO27W5F LryT/+LXzPvCRk1EV8WR/svsn+adLIouJVLp9izp1oCcmeX8f0maFKkIemIPXjPK pMPsdppEPbGDBA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:26 2026 by rpki-client