This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft File: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft (raw, json) Hash identifier: epVZB4mingPSuWImd+tdBi2ShRBgT4wiBv+Vzd99ilo= Subject key identifier: 54:74:DB:E2:86:19:47:AA:8F:92:2D:07:22:D3:BA:26:3C:AE:33:A3 Authority key identifier: D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09 Certificate issuer: /CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909 Certificate serial: 019C4246C9615A249FF02D7491999A4048EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 12:01:01 +0000 Manifest this update: Mon 09 Feb 2026 12:01:01 +0000 Manifest next update: Tue 10 Feb 2026 12:01:01 +0000 Files and hashes: 1: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl (hash: kGcRcl1uoBNMQcgMnuL2Os/wQ94zU9TGwnY0ZOyeE9E=) 2: qB-yYmmoZAETKywXU4O90SMz9p4.roa (hash: zSfrh0GvpLorIoRjiLIdctGLnu0vrYxfcdrku/RI+Pw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:c9:61:5a:24:9f:f0:2d:74:91:99:9a:40:48:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909 Validity Not Before: Feb 9 12:01:01 2026 GMT Not After : Feb 10 12:01:01 2026 GMT Subject: CN=5474dbe2861947aa8f922d0722d3ba263cae33a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:6d:38:83:e6:22:47:6b:dd:f9:a8:6e:e7:0c: a9:19:5f:b7:4a:47:f4:bd:a5:c9:c6:18:92:87:36: ec:29:78:fd:39:1e:62:78:48:51:4f:3b:9a:95:1e: 4d:2c:8e:36:15:8d:a2:30:fd:7b:5f:c2:e4:8a:c1: bd:86:6c:c2:10:4a:eb:5a:ae:7a:16:30:57:84:19: 33:a5:4e:2c:1f:5a:52:53:97:d2:5a:bb:f5:97:90: 31:58:46:54:f1:f6:ab:70:41:85:3f:6d:3c:30:03: 28:39:9b:83:8d:10:5e:8b:b5:4d:7b:98:54:b5:e3: 96:b6:17:03:2d:96:4a:49:a6:aa:b9:92:7c:d1:44: 48:1a:d1:bf:e2:23:7c:0f:d8:f2:9a:56:c6:08:cd: 60:b8:81:ea:9a:97:33:86:79:15:7e:5a:81:3c:2e: 01:7a:f0:b4:0e:75:b9:f6:8a:5d:03:92:b0:a6:92: 24:e7:c7:f6:c0:3c:c0:c0:23:80:00:e0:5e:4b:45: f9:ea:c6:a5:ed:85:8a:3c:69:e9:b2:7e:b2:85:54: d4:bb:be:b9:54:13:63:73:8b:d2:06:0f:64:36:ce: ab:52:8f:97:68:c1:56:a0:1b:47:a2:6c:8a:e0:32: 38:89:df:72:7e:fa:11:4c:30:a6:ee:e8:c8:70:9b: 04:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:74:DB:E2:86:19:47:AA:8F:92:2D:07:22:D3:BA:26:3C:AE:33:A3 X509v3 Authority Key Identifier: keyid:D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ce:f3:05:ed:27:4b:6e:58:ac:63:1d:35:21:d3:a3:28:37:5b: 7c:01:91:56:96:f7:a2:8d:2a:c7:2e:50:0e:75:79:cb:de:8b: 8d:99:19:15:92:1b:78:f0:e6:db:ae:33:b2:fa:c1:1f:86:68: ea:d2:2d:a8:b6:dd:0c:3c:cc:bf:ae:af:fb:b6:bf:be:d8:35: ec:c0:4e:db:12:92:42:b8:26:0c:d3:8c:1a:29:cd:70:af:4b: 27:c2:23:7b:11:03:ad:91:8e:72:ec:d5:40:42:b6:b9:26:35: f0:11:60:6a:53:24:a0:eb:b4:b4:d3:30:00:c6:cc:b9:7e:82: 87:a7:42:b7:a1:d7:a9:6f:aa:d1:bf:ec:71:0b:bc:41:85:12: 3d:35:f4:d6:a3:36:66:21:a8:b4:85:05:ed:a4:48:b4:9a:2a: 15:0e:34:45:d2:86:83:63:89:50:06:fe:4b:7e:34:56:17:5b: d2:85:1b:88:d9:3f:4d:79:6e:fd:29:36:29:18:14:a2:15:7a: ce:5f:a1:42:fa:91:34:0e:1d:af:9b:42:66:ce:89:e1:e6:67: 08:4a:8a:91:4a:2c:f0:be:f7:e2:88:84:c6:a7:3f:cb:2c:8f: 6b:f2:56:40:4c:c1:b5:a1:3e:99:cb:f3:39:6f:6f:82:96:6a: d0:d2:57:9a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRslhWiSf8C10kZmaQEjrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNzAyYTNiMjdjZTliZDA0ZGRjYTI4YzIxZDlkMGY1ZmYz MmE5MDkwHhcNMjYwMjA5MTIwMTAxWhcNMjYwMjEwMTIwMTAxWjAzMTEwLwYDVQQD Eyg1NDc0ZGJlMjg2MTk0N2FhOGY5MjJkMDcyMmQzYmEyNjNjYWUzM2EzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl204g+YiR2vd+ahu5wypGV+3Skf0 vaXJxhiShzbsKXj9OR5ieEhRTzualR5NLI42FY2iMP17X8LkisG9hmzCEErrWq56 FjBXhBkzpU4sH1pSU5fSWrv1l5AxWEZU8farcEGFP208MAMoOZuDjRBei7VNe5hU teOWthcDLZZKSaaquZJ80URIGtG/4iN8D9jymlbGCM1guIHqmpczhnkVflqBPC4B evC0DnW59opdA5KwppIk58f2wDzAwCOAAOBeS0X56sal7YWKPGnpsn6yhVTUu765 VBNjc4vSBg9kNs6rUo+XaMFWoBtHomyK4DI4id9yfvoRTDCm7ujIcJsEyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFR02+KGGUeqj5ItByLTuiY8rjOjMB8GA1UdIwQY MBaAFNJwKjsnzpvQTdyijCHZ0PX/MqkJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMG5BcU95Zk9tOUJOM0tLTUlkblE5Zjh5cVFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi80OWY1MjgtZTcyZi00ZGE3LTkwMmUt Njk3NWNhZGIyMjYyLzEvMG5BcU95Zk9tOUJOM0tLTUlkblE5Zjh5cVFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi80OWY1MjgtZTcyZi00ZGE3LTkwMmUtNjk3NWNhZGIyMjYy LzEvMG5BcU95Zk9tOUJOM0tLTUlkblE5Zjh5cVFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzvMF7SdL blisYx01IdOjKDdbfAGRVpb3oo0qxy5QDnV5y96LjZkZFZIbePDm264zsvrBH4Zo 6tItqLbdDDzMv66v+7a/vtg17MBO2xKSQrgmDNOMGinNcK9LJ8IjexEDrZGOcuzV QEK2uSY18BFgalMkoOu0tNMwAMbMuX6Ch6dCt6HXqW+q0b/scQu8QYUSPTX01qM2 ZiGotIUF7aRItJoqFQ40RdKGg2OJUAb+S340Vhdb0oUbiNk/TXlu/Sk2KRgUohV6 zl+hQvqRNA4dr5tCZs6J4eZnCEqKkUos8L734oiExqc/yyyPa/JWQEzBtaE+mcvz OW9vgpZq0NJXmg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:32 2026 by rpki-client