This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.mft File: ojIkxQF9NOzcKNDPNkQtZb754KA.mft (raw, json) Hash identifier: ksiUKkqGjnz2zeGJ3GDoPQhFR/siLD9wRlK/pVW/e+8= Subject key identifier: 1C:EF:E3:B7:D5:03:A8:55:E7:27:00:C9:A8:BC:05:DA:80:21:4D:2F Authority key identifier: A2:32:24:C5:01:7D:34:EC:DC:28:D0:CF:36:44:2D:65:BE:F9:E0:A0 Certificate issuer: /CN=a23224c5017d34ecdc28d0cf36442d65bef9e0a0 Certificate serial: 019C41D8AD11EB69BD0875006A834CCCAD0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ojIkxQF9NOzcKNDPNkQtZb754KA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.mft Manifest number: 1819 Signing time: Mon 09 Feb 2026 10:00:44 +0000 Manifest this update: Mon 09 Feb 2026 10:00:44 +0000 Manifest next update: Tue 10 Feb 2026 10:00:44 +0000 Files and hashes: 1: 1nYeCdEIBl74RW5H49WfsI_nh5E.roa (hash: EcWzaBWnHXuF+60jlRtvVMtfG/DsbN91ytwmWQKXBaU=) 2: WJ5q-_YpjemWY4gDwOrsfg8-7ps.roa (hash: 7c7RZOTv3Be2R6ZcFGTG+yBTp0jpJb35qh0V1e0nACU=) 3: ojIkxQF9NOzcKNDPNkQtZb754KA.crl (hash: N0E2TXTUQDlX13n2glURI0kuHtXcDeFvh3FQhxJCoX0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.mft rsync://rpki.ripe.net/repository/DEFAULT/ojIkxQF9NOzcKNDPNkQtZb754KA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:ad:11:eb:69:bd:08:75:00:6a:83:4c:cc:ad:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a23224c5017d34ecdc28d0cf36442d65bef9e0a0 Validity Not Before: Feb 9 10:00:44 2026 GMT Not After : Feb 10 10:00:44 2026 GMT Subject: CN=1cefe3b7d503a855e72700c9a8bc05da80214d2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8c:5f:91:e1:eb:80:66:0b:88:58:77:1e:57: 41:ab:67:c7:77:ce:ff:82:ad:2e:d7:60:18:6a:4f: b0:73:9d:4f:ad:56:ac:17:eb:df:e5:d9:c8:17:14: 62:07:70:5d:03:01:b0:3a:4f:b0:d2:13:bf:f4:8d: c5:d7:39:48:3f:81:6c:80:91:be:56:4b:86:58:17: ff:dd:52:5a:06:0f:37:99:67:f8:44:5d:99:a5:bb: 67:2f:01:f2:49:ca:c9:5f:af:2b:e2:16:3d:a0:f9: 1b:d1:75:e5:e7:54:ec:ff:b4:08:b2:35:46:fa:da: 69:29:29:f9:07:18:c6:95:e7:bc:a3:af:4f:db:1c: e0:b0:ee:f7:88:3b:70:d9:53:21:62:d6:86:95:4d: b9:19:e3:60:cf:e9:de:ce:90:fc:0e:d3:9c:a7:d1: 69:f5:ff:a7:db:80:b8:77:30:7c:c9:ca:7f:01:67: 69:40:46:98:d4:35:6c:61:29:b6:79:e7:d8:27:f1: 54:e0:5b:2c:ed:da:7b:f4:69:15:7e:91:d7:fb:8d: 65:5b:97:1e:c6:80:94:37:de:db:f4:1f:01:da:bc: 86:30:d3:a3:95:54:c6:75:a3:d6:03:29:fa:fd:d2: b7:9f:e9:fc:7d:7d:d6:0e:b2:3f:9c:c7:d1:02:84: e9:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:EF:E3:B7:D5:03:A8:55:E7:27:00:C9:A8:BC:05:DA:80:21:4D:2F X509v3 Authority Key Identifier: keyid:A2:32:24:C5:01:7D:34:EC:DC:28:D0:CF:36:44:2D:65:BE:F9:E0:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ojIkxQF9NOzcKNDPNkQtZb754KA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:30:ee:df:ca:33:29:76:ab:5d:5d:ff:5d:e5:ac:81:8d:30: bb:a1:6c:7f:09:2f:25:12:b0:9c:b5:1e:dc:03:4d:52:bb:df: 6c:29:02:99:1a:3d:4e:99:31:59:03:ee:59:ea:cc:a4:a6:6a: eb:77:ab:c7:4e:fd:03:4e:cb:97:3c:68:ab:7a:92:4c:23:b3: b1:b0:8e:f5:24:3d:a3:bd:d2:f2:c6:66:a1:a5:17:8e:06:1a: 4e:c4:0e:60:e7:08:ca:c0:50:0a:9b:eb:4a:c7:9a:95:e5:e0: 70:a4:ad:8f:03:8c:a5:9b:c1:10:43:62:8e:9c:b3:97:0d:c0: 3d:37:90:a9:b8:40:72:e4:41:b0:00:2c:e2:dc:51:01:0f:9d: ba:91:b8:b8:a6:75:e5:61:9f:52:39:45:09:d4:6a:e1:0a:b2: 93:c9:32:27:16:97:f7:93:47:6b:d0:79:49:cd:54:73:ce:ef: eb:8f:9b:57:e5:93:15:a5:8f:e4:40:8a:90:af:bf:7d:a3:c3: f8:8d:b2:82:c7:ca:ba:f0:e2:e4:5c:a6:ee:0a:85:bb:dc:a5: 01:58:fe:41:f6:42:14:3a:41:24:46:11:f3:fe:40:eb:49:39: 49:f3:dd:ba:d1:6f:53:2b:83:6b:13:b8:7f:1e:01:83:10:9c: 1d:4e:2c:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2K0R62m9CHUAaoNMzK0OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyMzIyNGM1MDE3ZDM0ZWNkYzI4ZDBjZjM2NDQyZDY1YmVm OWUwYTAwHhcNMjYwMjA5MTAwMDQ0WhcNMjYwMjEwMTAwMDQ0WjAzMTEwLwYDVQQD EygxY2VmZTNiN2Q1MDNhODU1ZTcyNzAwYzlhOGJjMDVkYTgwMjE0ZDJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4xfkeHrgGYLiFh3HldBq2fHd87/ gq0u12AYak+wc51PrVasF+vf5dnIFxRiB3BdAwGwOk+w0hO/9I3F1zlIP4FsgJG+ VkuGWBf/3VJaBg83mWf4RF2ZpbtnLwHyScrJX68r4hY9oPkb0XXl51Ts/7QIsjVG +tppKSn5BxjGlee8o69P2xzgsO73iDtw2VMhYtaGlU25GeNgz+nezpD8DtOcp9Fp 9f+n24C4dzB8ycp/AWdpQEaY1DVsYSm2eefYJ/FU4Fss7dp79GkVfpHX+41lW5ce xoCUN97b9B8B2ryGMNOjlVTGdaPWAyn6/dK3n+n8fX3WDrI/nMfRAoTp4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBzv47fVA6hV5ycAyai8BdqAIU0vMB8GA1UdIwQY MBaAFKIyJMUBfTTs3CjQzzZELWW++eCgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2pJa3hRRjlOT3pjS05EUE5rUXRaYjc1NEtBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8yMjdkMTQtZDc1MS00NTczLTk5MTkt ZmVjOGE4MGVkMjMzLzEvb2pJa3hRRjlOT3pjS05EUE5rUXRaYjc1NEtBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi8yMjdkMTQtZDc1MS00NTczLTk5MTktZmVjOGE4MGVkMjMz LzEvb2pJa3hRRjlOT3pjS05EUE5rUXRaYjc1NEtBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPDDu38oz KXarXV3/XeWsgY0wu6FsfwkvJRKwnLUe3ANNUrvfbCkCmRo9TpkxWQPuWerMpKZq 63erx079A07Llzxoq3qSTCOzsbCO9SQ9o73S8sZmoaUXjgYaTsQOYOcIysBQCpvr SsealeXgcKStjwOMpZvBEENijpyzlw3APTeQqbhAcuRBsAAs4txRAQ+dupG4uKZ1 5WGfUjlFCdRq4Qqyk8kyJxaX95NHa9B5Sc1Uc87v64+bV+WTFaWP5ECKkK+/faPD +I2ygsfKuvDi5Fym7gqFu9ylAVj+QfZCFDpBJEYR8/5A60k5SfPdutFvUyuDaxO4 fx4BgxCcHU4sdA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:29 2026 by rpki-client