This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9af033-234d-4404-8096-c73bedcdca6d/1/_oN5mWfs0ExTYUie5M-gmM5DaHE.mft File: _oN5mWfs0ExTYUie5M-gmM5DaHE.mft (raw, json) Hash identifier: cgSuv8kg5LIN2usECjyIqfC17M83AmAYJvUBzzd5ksQ= Subject key identifier: 2C:3E:55:DF:61:3B:43:2F:7E:92:57:9A:89:13:DB:2B:36:A7:BA:DB Authority key identifier: FE:83:79:99:67:EC:D0:4C:53:61:48:9E:E4:CF:A0:98:CE:43:68:71 Certificate issuer: /CN=fe83799967ecd04c5361489ee4cfa098ce436871 Certificate serial: 019C41344CD9AD7CCA32BA7B8AB966C1A531 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_oN5mWfs0ExTYUie5M-gmM5DaHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9af033-234d-4404-8096-c73bedcdca6d/1/_oN5mWfs0ExTYUie5M-gmM5DaHE.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 07:01:12 +0000 Manifest this update: Mon 09 Feb 2026 07:01:12 +0000 Manifest next update: Tue 10 Feb 2026 07:01:12 +0000 Files and hashes: 1: _oN5mWfs0ExTYUie5M-gmM5DaHE.crl (hash: Df7jjrg0UvZ+Ui2QicbwHB5GVPzQUDV6tcG7gyUqzfE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9af033-234d-4404-8096-c73bedcdca6d/1/_oN5mWfs0ExTYUie5M-gmM5DaHE.crl rsync://rpki.ripe.net/repository/DEFAULT/34/9af033-234d-4404-8096-c73bedcdca6d/1/_oN5mWfs0ExTYUie5M-gmM5DaHE.mft rsync://rpki.ripe.net/repository/DEFAULT/_oN5mWfs0ExTYUie5M-gmM5DaHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:4c:d9:ad:7c:ca:32:ba:7b:8a:b9:66:c1:a5:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe83799967ecd04c5361489ee4cfa098ce436871 Validity Not Before: Feb 9 07:01:12 2026 GMT Not After : Feb 10 07:01:12 2026 GMT Subject: CN=2c3e55df613b432f7e92579a8913db2b36a7badb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1b:4b:f0:61:14:67:4c:8a:05:fd:4e:39:c9: 79:f9:64:84:fc:39:d5:97:1d:4c:f6:65:c1:56:d7: d8:fc:e0:c6:c9:76:ed:24:4c:8e:7f:28:f2:08:c8: 4c:ef:65:41:5b:e6:7e:98:bf:a5:69:89:13:e8:21: 3a:68:d7:f6:bb:c1:de:cc:21:16:e1:70:8d:d4:9e: 5d:43:97:80:60:07:2e:b4:b5:73:88:dd:f1:73:34: e1:d2:ce:49:b4:ac:16:2f:7c:bb:fe:de:ee:83:b5: c5:d0:b3:d9:81:91:44:c2:5d:85:64:06:59:18:12: 8e:11:be:ac:93:af:10:7c:e8:64:8c:e8:bc:e5:d9: 3a:41:9f:27:86:a5:3a:f0:3c:8d:b1:d1:41:8b:ca: 1a:da:27:eb:be:45:4a:2b:de:c4:2b:0d:b8:33:59: ea:20:a5:05:61:cc:7e:81:02:6d:52:0f:d8:47:8f: f7:47:bb:87:53:59:59:10:79:57:b0:40:a1:5a:3f: e6:60:0a:9b:0f:51:1c:97:03:cc:b3:c1:fe:15:d7: c9:5f:35:39:6a:a0:94:73:47:80:e8:35:a5:c1:e2: 7c:36:54:ab:ed:8c:eb:8e:89:2b:d2:44:68:41:5f: 46:7d:5d:0d:d7:1e:13:ec:7b:3e:c1:bc:35:82:b2: bd:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:3E:55:DF:61:3B:43:2F:7E:92:57:9A:89:13:DB:2B:36:A7:BA:DB X509v3 Authority Key Identifier: keyid:FE:83:79:99:67:EC:D0:4C:53:61:48:9E:E4:CF:A0:98:CE:43:68:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_oN5mWfs0ExTYUie5M-gmM5DaHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9af033-234d-4404-8096-c73bedcdca6d/1/_oN5mWfs0ExTYUie5M-gmM5DaHE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9af033-234d-4404-8096-c73bedcdca6d/1/_oN5mWfs0ExTYUie5M-gmM5DaHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:fc:dd:f4:b6:d3:6d:72:8c:29:d4:2f:9c:66:38:56:b8:5e: fc:99:eb:9f:21:f7:de:f1:5d:7d:e9:f1:e9:27:78:64:77:a6: ef:3d:ed:e3:c4:5b:9b:38:f0:fd:b6:e3:da:33:f0:6b:c9:c7: 2f:cd:3d:6e:58:ef:f7:4d:c4:db:74:a8:e0:4e:ba:c1:31:60: 76:e5:6c:7d:45:30:e6:46:c4:da:48:f8:81:fb:21:52:f2:5f: 41:4d:9d:ec:92:19:9b:30:3d:8d:4d:23:ba:af:b1:83:e1:31: 46:e9:f3:2b:66:ee:53:f1:21:11:1d:d2:44:8d:23:f4:39:81: 7e:2c:95:c6:94:02:8d:14:74:74:09:fa:e7:1c:09:c6:e5:29: dc:49:e0:0d:3f:e3:20:97:bc:06:9e:d1:45:67:e5:5f:e1:34: 08:e8:16:31:4e:8c:ed:4e:d3:c8:c7:24:1a:07:6f:aa:13:91: e4:f4:d5:c6:ea:86:84:a4:de:ae:04:f5:70:5c:33:86:50:13: 93:2d:67:62:3c:68:df:4f:79:d0:f7:da:47:1a:a7:79:f8:b7: fa:32:16:bd:f7:b9:c0:d9:15:8a:5f:44:67:fe:28:ff:9a:f5: 2b:6c:86:fd:fa:2f:d9:5a:89:ec:ec:35:17:94:c7:a5:4c:6d: ba:85:c7:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNEzZrXzKMrp7irlmwaUxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlODM3OTk5NjdlY2QwNGM1MzYxNDg5ZWU0Y2ZhMDk4Y2U0 MzY4NzEwHhcNMjYwMjA5MDcwMTEyWhcNMjYwMjEwMDcwMTEyWjAzMTEwLwYDVQQD EygyYzNlNTVkZjYxM2I0MzJmN2U5MjU3OWE4OTEzZGIyYjM2YTdiYWRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzhtL8GEUZ0yKBf1OOcl5+WSE/DnV lx1M9mXBVtfY/ODGyXbtJEyOfyjyCMhM72VBW+Z+mL+laYkT6CE6aNf2u8HezCEW 4XCN1J5dQ5eAYAcutLVziN3xczTh0s5JtKwWL3y7/t7ug7XF0LPZgZFEwl2FZAZZ GBKOEb6sk68QfOhkjOi85dk6QZ8nhqU68DyNsdFBi8oa2ifrvkVKK97EKw24M1nq IKUFYcx+gQJtUg/YR4/3R7uHU1lZEHlXsEChWj/mYAqbD1EclwPMs8H+FdfJXzU5 aqCUc0eA6DWlweJ8NlSr7Yzrjokr0kRoQV9GfV0N1x4T7Hs+wbw1grK9uwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCw+Vd9hO0MvfpJXmokT2ys2p7rbMB8GA1UdIwQY MBaAFP6DeZln7NBMU2FInuTPoJjOQ2hxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX29ONW1XZnMwRXhUWVVpZTVNLWdtTTVEYUhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC85YWYwMzMtMjM0ZC00NDA0LTgwOTYt YzczYmVkY2RjYTZkLzEvX29ONW1XZnMwRXhUWVVpZTVNLWdtTTVEYUhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC85YWYwMzMtMjM0ZC00NDA0LTgwOTYtYzczYmVkY2RjYTZk LzEvX29ONW1XZnMwRXhUWVVpZTVNLWdtTTVEYUhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACPzd9LbT bXKMKdQvnGY4Vrhe/JnrnyH33vFdfenx6Sd4ZHem7z3t48Rbmzjw/bbj2jPwa8nH L809bljv903E23So4E66wTFgduVsfUUw5kbE2kj4gfshUvJfQU2d7JIZmzA9jU0j uq+xg+ExRunzK2buU/EhER3SRI0j9DmBfiyVxpQCjRR0dAn65xwJxuUp3EngDT/j IJe8Bp7RRWflX+E0COgWMU6M7U7TyMckGgdvqhOR5PTVxuqGhKTergT1cFwzhlAT ky1nYjxo30950PfaRxqnefi3+jIWvfe5wNkVil9EZ/4o/5r1K2yG/fov2VqJ7Ow1 F5THpUxtuoXHYQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:33 2026 by rpki-client