This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.mft File: OFt-lPpg22hRcc8TabHO-24g8zQ.mft (raw, json) Hash identifier: wgPe8/Buwt0Uyoi09gHMigHMjLNGfcLMXGx6RuE1WKI= Subject key identifier: FD:EF:18:F9:EC:CE:B8:94:F6:A5:5A:5D:37:D5:98:F8:D8:4D:38:E5 Authority key identifier: 38:5B:7E:94:FA:60:DB:68:51:71:CF:13:69:B1:CE:FB:6E:20:F3:34 Certificate issuer: /CN=385b7e94fa60db685171cf1369b1cefb6e20f334 Certificate serial: 019C43227DEB4B451BE40240AA063EF3BE5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFt-lPpg22hRcc8TabHO-24g8zQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.mft Manifest number: 0763 Signing time: Mon 09 Feb 2026 16:00:59 +0000 Manifest this update: Mon 09 Feb 2026 16:00:59 +0000 Manifest next update: Tue 10 Feb 2026 16:00:59 +0000 Files and hashes: 1: OFt-lPpg22hRcc8TabHO-24g8zQ.crl (hash: SqSn3GkZfKpsLtGF5V1D+UuXsy44Rr2wiwOXK+Q899M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OFt-lPpg22hRcc8TabHO-24g8zQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:7d:eb:4b:45:1b:e4:02:40:aa:06:3e:f3:be:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=385b7e94fa60db685171cf1369b1cefb6e20f334 Validity Not Before: Feb 9 16:00:59 2026 GMT Not After : Feb 10 16:00:59 2026 GMT Subject: CN=fdef18f9ecceb894f6a55a5d37d598f8d84d38e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:32:cf:7e:62:b5:e7:95:38:09:d6:af:33:02: 5e:2d:7d:14:61:62:8e:a0:27:db:1c:bc:4f:2e:92: 56:f1:af:45:b4:b7:3d:17:18:da:fe:5f:b4:45:74: 46:28:97:d9:80:6c:e7:83:09:2a:0c:66:1e:b3:f6: 45:79:ce:c5:37:fa:21:16:04:76:9e:95:48:a6:4f: 44:ed:5c:f4:a0:25:0b:f3:4e:fb:1b:74:28:f0:57: b6:e2:25:37:42:f9:6d:70:6a:4b:75:0a:36:91:03: 70:66:41:46:01:d0:c9:9e:9d:cc:0b:49:75:50:c9: 1b:33:86:a9:b3:ef:56:89:27:4b:de:3c:9e:83:ad: 00:dd:90:59:6e:64:a3:98:fb:35:a5:7f:09:c8:01: c6:d0:75:f2:4b:1d:0a:da:ec:d4:ec:e2:52:08:19: cc:5f:51:44:76:9d:07:28:22:cc:9c:84:5d:73:95: 49:db:5a:27:e8:fe:46:a6:c9:f3:9a:a8:2a:cc:d8: 3f:a8:71:25:b1:64:6d:f5:ae:f8:7f:e6:e4:a5:0b: 95:b8:94:34:b7:10:e3:c8:17:d2:5f:e6:fe:f0:10: 05:a2:0c:53:82:b6:3b:20:77:37:20:73:a1:44:5b: 68:4b:0d:95:e0:94:50:fe:3d:d2:4e:2a:2e:83:32: 39:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:EF:18:F9:EC:CE:B8:94:F6:A5:5A:5D:37:D5:98:F8:D8:4D:38:E5 X509v3 Authority Key Identifier: keyid:38:5B:7E:94:FA:60:DB:68:51:71:CF:13:69:B1:CE:FB:6E:20:F3:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFt-lPpg22hRcc8TabHO-24g8zQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:1f:4f:9c:73:5e:4a:84:a7:10:a2:89:6e:6e:d4:9c:5e:bb: 08:4d:85:99:c2:8d:ce:c2:52:46:dd:e5:a9:44:46:40:67:52: 30:4f:ed:56:03:13:2a:1a:12:e1:22:d2:b1:85:d3:58:12:9d: b1:18:28:47:15:8a:fb:87:84:e2:78:e3:f0:27:55:07:16:02: 76:49:31:f5:7e:bb:b9:d1:f7:63:ff:dd:01:55:09:e0:e4:f2: 66:c4:94:56:ea:76:d3:b0:96:35:3d:ad:75:7a:0d:d7:2b:00: 98:0f:60:e9:03:13:a7:93:85:99:06:e2:5e:80:d1:c8:8d:16: f5:ba:de:13:ec:dd:b0:1e:ad:ad:85:02:a2:ff:52:44:65:a9: 26:e6:b6:7b:fd:0e:21:dc:6d:9c:15:45:39:5e:2c:ac:6d:62: 12:fa:e5:43:a5:80:f6:bf:9d:8b:fe:ab:a0:f1:49:66:43:60: bf:ee:cf:81:09:2b:a2:fb:1a:e6:fa:1d:e1:6f:32:4f:ad:4b: e5:e6:94:58:c4:4e:a6:c8:88:48:80:c5:24:d1:f1:4a:38:c8: de:27:eb:bc:b0:e3:45:24:33:00:15:84:b8:85:c0:62:e4:38: 0a:30:53:0d:c1:e5:37:c3:44:32:7b:c5:50:22:83:42:dc:9b: be:db:60:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIn3rS0Ub5AJAqgY+875dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4NWI3ZTk0ZmE2MGRiNjg1MTcxY2YxMzY5YjFjZWZiNmUy MGYzMzQwHhcNMjYwMjA5MTYwMDU5WhcNMjYwMjEwMTYwMDU5WjAzMTEwLwYDVQQD EyhmZGVmMThmOWVjY2ViODk0ZjZhNTVhNWQzN2Q1OThmOGQ4NGQzOGU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjjLPfmK155U4CdavMwJeLX0UYWKO oCfbHLxPLpJW8a9FtLc9Fxja/l+0RXRGKJfZgGzngwkqDGYes/ZFec7FN/ohFgR2 npVIpk9E7Vz0oCUL8077G3Qo8Fe24iU3QvltcGpLdQo2kQNwZkFGAdDJnp3MC0l1 UMkbM4aps+9WiSdL3jyeg60A3ZBZbmSjmPs1pX8JyAHG0HXySx0K2uzU7OJSCBnM X1FEdp0HKCLMnIRdc5VJ21on6P5GpsnzmqgqzNg/qHElsWRt9a74f+bkpQuVuJQ0 txDjyBfSX+b+8BAFogxTgrY7IHc3IHOhRFtoSw2V4JRQ/j3STiougzI57QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP3vGPnszriU9qVaXTfVmPjYTTjlMB8GA1UdIwQY MBaAFDhbfpT6YNtoUXHPE2mxzvtuIPM0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0Z0LWxQcGcyMmhSY2M4VGFiSE8tMjRnOHpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy8xOWEzMDctZWNiYS00MTU4LWEyZDEt YzNiNDZhYzlmMjZkLzEvT0Z0LWxQcGcyMmhSY2M4VGFiSE8tMjRnOHpRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy8xOWEzMDctZWNiYS00MTU4LWEyZDEtYzNiNDZhYzlmMjZk LzEvT0Z0LWxQcGcyMmhSY2M4VGFiSE8tMjRnOHpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADR9PnHNe SoSnEKKJbm7UnF67CE2FmcKNzsJSRt3lqURGQGdSME/tVgMTKhoS4SLSsYXTWBKd sRgoRxWK+4eE4njj8CdVBxYCdkkx9X67udH3Y//dAVUJ4OTyZsSUVup207CWNT2t dXoN1ysAmA9g6QMTp5OFmQbiXoDRyI0W9breE+zdsB6trYUCov9SRGWpJua2e/0O IdxtnBVFOV4srG1iEvrlQ6WA9r+di/6roPFJZkNgv+7PgQkrovsa5vod4W8yT61L 5eaUWMROpsiISIDFJNHxSjjI3ifrvLDjRSQzABWEuIXAYuQ4CjBTDcHlN8NEMnvF UCKDQtybvttgXQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:19 2026 by rpki-client