This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/df32dd-75ae-48b2-a1b2-2929b9f1d15b/1/cwOM3GJSLkhLBhXEJBx-eqgh2NY.mft File: cwOM3GJSLkhLBhXEJBx-eqgh2NY.mft (raw, json) Hash identifier: r5sj80Revs/fIjozN4iIF1jtRth5CcQhDtpXVjha0PA= Subject key identifier: B7:B7:CF:95:E0:6C:9A:D0:E4:87:80:65:8F:AE:94:7D:E2:E6:FD:A3 Authority key identifier: 73:03:8C:DC:62:52:2E:48:4B:06:15:C4:24:1C:7E:7A:A8:21:D8:D6 Certificate issuer: /CN=73038cdc62522e484b0615c4241c7e7aa821d8d6 Certificate serial: 019C432238727AADFD14EBDFB789D368A0CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cwOM3GJSLkhLBhXEJBx-eqgh2NY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/df32dd-75ae-48b2-a1b2-2929b9f1d15b/1/cwOM3GJSLkhLBhXEJBx-eqgh2NY.mft Manifest number: 03E4 Signing time: Mon 09 Feb 2026 16:00:41 +0000 Manifest this update: Mon 09 Feb 2026 16:00:41 +0000 Manifest next update: Tue 10 Feb 2026 16:00:41 +0000 Files and hashes: 1: cwOM3GJSLkhLBhXEJBx-eqgh2NY.crl (hash: oTVeorpAny6+PZZaSLzj22xVjlcyRiLK6xYm2f/o3PM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/df32dd-75ae-48b2-a1b2-2929b9f1d15b/1/cwOM3GJSLkhLBhXEJBx-eqgh2NY.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/df32dd-75ae-48b2-a1b2-2929b9f1d15b/1/cwOM3GJSLkhLBhXEJBx-eqgh2NY.mft rsync://rpki.ripe.net/repository/DEFAULT/cwOM3GJSLkhLBhXEJBx-eqgh2NY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:38:72:7a:ad:fd:14:eb:df:b7:89:d3:68:a0:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73038cdc62522e484b0615c4241c7e7aa821d8d6 Validity Not Before: Feb 9 16:00:41 2026 GMT Not After : Feb 10 16:00:41 2026 GMT Subject: CN=b7b7cf95e06c9ad0e48780658fae947de2e6fda3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:df:1e:a0:cb:85:cf:a3:0e:24:e9:d9:77:e9: 5e:47:06:0b:04:61:d8:53:71:cc:ed:ac:18:53:8e: 35:02:08:1b:01:56:66:74:ca:bc:09:dd:7d:f6:8c: 35:ce:25:91:d3:6f:a1:2c:96:6d:da:07:b4:89:5e: 74:32:5b:f0:80:b9:32:12:ac:ad:6e:66:27:da:e9: 50:18:9e:e8:99:a7:61:14:a7:20:55:c9:1c:62:0f: 95:34:2e:81:df:45:9f:75:72:b2:4f:8b:ae:05:07: 20:26:4d:98:5c:1d:c0:e2:03:f0:32:c7:63:23:4e: 0b:b6:67:2e:5b:0e:d1:58:a9:b6:ea:89:3d:a8:6e: bd:95:7c:97:b2:76:5d:ff:19:67:48:0c:16:1b:a9: ef:6b:be:ff:35:e2:7d:7f:93:36:e8:03:70:b8:7e: 41:eb:59:03:3a:b3:80:d5:56:dd:50:f7:a8:d3:13: 4b:aa:33:28:36:55:0e:4b:2a:ff:47:cb:76:94:50: 18:0c:ed:98:f9:df:70:4b:c9:04:41:b6:39:40:82: 78:60:08:a4:ff:83:83:ed:d7:29:04:03:1f:c1:c9: c9:5b:e7:4f:5f:28:cf:02:d9:eb:9c:d2:92:b0:1e: a2:c9:dc:07:fe:e2:9e:c1:54:4f:e6:75:3e:02:e6: 21:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:B7:CF:95:E0:6C:9A:D0:E4:87:80:65:8F:AE:94:7D:E2:E6:FD:A3 X509v3 Authority Key Identifier: keyid:73:03:8C:DC:62:52:2E:48:4B:06:15:C4:24:1C:7E:7A:A8:21:D8:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwOM3GJSLkhLBhXEJBx-eqgh2NY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/df32dd-75ae-48b2-a1b2-2929b9f1d15b/1/cwOM3GJSLkhLBhXEJBx-eqgh2NY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/df32dd-75ae-48b2-a1b2-2929b9f1d15b/1/cwOM3GJSLkhLBhXEJBx-eqgh2NY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:f3:45:6c:e3:9a:ec:ee:85:b6:32:b2:43:16:4b:a6:36:24: ca:06:c6:a3:a2:eb:3d:46:99:76:48:9d:36:39:d0:ad:5c:11: 05:ec:72:cf:3d:99:ad:ca:06:c4:14:90:de:2b:cc:d7:76:39: 47:36:78:a8:1a:9f:13:19:3f:45:3b:7b:24:36:57:2b:37:98: 25:cd:c6:50:a8:1f:72:e5:0c:6b:b7:46:8b:fc:c8:fd:db:12: ad:53:94:77:3c:4c:fe:95:23:1f:bc:bc:1d:86:c7:f8:e9:14: 6d:8b:06:10:24:af:16:e4:dd:74:0d:66:cd:03:0b:7a:f1:5a: b8:a4:af:aa:01:9c:69:2d:da:72:bf:b1:20:8e:f4:9a:f6:e5: 05:5b:42:fa:a9:9d:61:ea:b3:83:8f:0f:ca:07:f0:dd:8c:32: b6:b4:63:07:a3:5d:ee:6d:aa:ee:e9:29:cd:33:62:f0:17:0b: 33:c2:b5:61:b0:5b:05:cb:85:91:fc:c0:58:1c:1d:89:1e:d0: 20:bb:82:57:f7:55:5b:cb:32:98:12:64:4a:cd:02:4c:08:d3: af:93:97:5a:a0:d6:3b:24:3b:32:89:22:be:a4:fe:62:eb:a3: a3:8f:47:fd:c0:27:c0:7d:33:c9:a8:5f:19:84:a2:a3:ad:54: 54:d6:80:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIjhyeq39FOvft4nTaKDLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczMDM4Y2RjNjI1MjJlNDg0YjA2MTVjNDI0MWM3ZTdhYTgy MWQ4ZDYwHhcNMjYwMjA5MTYwMDQxWhcNMjYwMjEwMTYwMDQxWjAzMTEwLwYDVQQD EyhiN2I3Y2Y5NWUwNmM5YWQwZTQ4NzgwNjU4ZmFlOTQ3ZGUyZTZmZGEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+N8eoMuFz6MOJOnZd+leRwYLBGHY U3HM7awYU441AggbAVZmdMq8Cd199ow1ziWR02+hLJZt2ge0iV50MlvwgLkyEqyt bmYn2ulQGJ7omadhFKcgVckcYg+VNC6B30WfdXKyT4uuBQcgJk2YXB3A4gPwMsdj I04LtmcuWw7RWKm26ok9qG69lXyXsnZd/xlnSAwWG6nva77/NeJ9f5M26ANwuH5B 61kDOrOA1VbdUPeo0xNLqjMoNlUOSyr/R8t2lFAYDO2Y+d9wS8kEQbY5QIJ4YAik /4OD7dcpBAMfwcnJW+dPXyjPAtnrnNKSsB6iydwH/uKewVRP5nU+AuYhtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLe3z5XgbJrQ5IeAZY+ulH3i5v2jMB8GA1UdIwQY MBaAFHMDjNxiUi5ISwYVxCQcfnqoIdjWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3dPTTNHSlNMa2hMQmhYRUpCeC1lcWdoMk5ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9kZjMyZGQtNzVhZS00OGIyLWExYjIt MjkyOWI5ZjFkMTViLzEvY3dPTTNHSlNMa2hMQmhYRUpCeC1lcWdoMk5ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS9kZjMyZGQtNzVhZS00OGIyLWExYjItMjkyOWI5ZjFkMTVi LzEvY3dPTTNHSlNMa2hMQmhYRUpCeC1lcWdoMk5ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUfNFbOOa 7O6FtjKyQxZLpjYkygbGo6LrPUaZdkidNjnQrVwRBexyzz2ZrcoGxBSQ3ivM13Y5 RzZ4qBqfExk/RTt7JDZXKzeYJc3GUKgfcuUMa7dGi/zI/dsSrVOUdzxM/pUjH7y8 HYbH+OkUbYsGECSvFuTddA1mzQMLevFauKSvqgGcaS3acr+xII70mvblBVtC+qmd Yeqzg48Pygfw3YwytrRjB6Nd7m2q7ukpzTNi8BcLM8K1YbBbBcuFkfzAWBwdiR7Q ILuCV/dVW8symBJkSs0CTAjTr5OXWqDWOyQ7MokivqT+Yuujo49H/cAnwH0zyahf GYSio61UVNaAag== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:13 2026 by rpki-client