This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft File: oED5aPpS5ssv5lcQlwD6B0wZC4U.mft (raw, json) Hash identifier: rldFWp6rjHbjF+0pM4UzPeC/IdQiZ9/9noi+s/dw5tE= Subject key identifier: BE:5E:67:C0:13:73:D4:B6:43:B2:37:3A:EF:A6:48:1C:E6:59:2D:46 Authority key identifier: A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85 Certificate issuer: /CN=a040f968fa52e6cb2fe657109700fa074c190b85 Certificate serial: 019C42B41961CC550D1F58F8126E190DF7BD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft Manifest number: 07BB Signing time: Mon 09 Feb 2026 14:00:24 +0000 Manifest this update: Mon 09 Feb 2026 14:00:24 +0000 Manifest next update: Tue 10 Feb 2026 14:00:24 +0000 Files and hashes: 1: oED5aPpS5ssv5lcQlwD6B0wZC4U.crl (hash: /WLJF9WnzJfUvVC1m05yaH9nydgaM4icRMxPKn2xad4=) 2: x2674gpeOOkrgbaldgBcetLScA0.roa (hash: slI9OZiOgpY/PPO59egGhNigxJguaSBoswQUZlXaUCM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:19:61:cc:55:0d:1f:58:f8:12:6e:19:0d:f7:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a040f968fa52e6cb2fe657109700fa074c190b85 Validity Not Before: Feb 9 14:00:24 2026 GMT Not After : Feb 10 14:00:24 2026 GMT Subject: CN=be5e67c01373d4b643b2373aefa6481ce6592d46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fe:3f:73:08:bd:06:ed:0e:08:46:1b:2b:d9: 90:78:77:8f:d9:d1:f7:c3:46:a1:11:f3:15:7b:1d: cc:f5:79:8a:b1:fb:d6:0b:ae:72:31:15:91:e1:e2: 64:d6:d1:a9:a9:54:47:4c:b8:58:10:c3:5b:d2:03: 8f:92:f6:5f:7b:39:b0:af:8b:13:67:3f:a0:35:50: 81:d0:d1:b4:f2:bb:ad:c3:d4:21:92:e8:5e:52:9d: 78:be:4b:2f:0f:73:0d:67:79:1a:fe:bf:e5:bb:80: ff:06:1e:d9:43:eb:26:fe:27:bf:ba:ae:ae:0f:4e: 49:84:2c:50:2a:bd:67:d6:40:a1:ca:dd:e7:e4:59: b8:27:39:7f:2d:ff:d5:a8:b7:e5:28:49:5e:b2:60: 9b:9e:5b:f8:b0:64:ca:41:49:ff:fb:a7:52:3d:36: 52:a0:5a:d2:f9:52:69:3b:2f:28:86:9f:a4:c7:cd: 31:f1:c4:1c:e0:3b:97:a5:a9:42:10:da:24:5e:43: a8:96:f4:b3:7f:08:c7:a7:b7:9f:db:3f:c1:50:f0: 65:ac:9c:52:a2:c6:e7:35:03:a9:e1:ed:1a:3a:26: 99:2c:7d:4e:a1:8c:2b:05:ca:58:96:a2:e6:0a:ac: af:6d:a2:63:30:72:84:57:68:42:9d:8c:24:41:ec: 2e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:5E:67:C0:13:73:D4:B6:43:B2:37:3A:EF:A6:48:1C:E6:59:2D:46 X509v3 Authority Key Identifier: keyid:A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:0a:ae:b7:4b:07:a3:d2:36:95:6e:a6:11:38:66:e8:fa:fb: 56:99:46:6b:24:fd:1c:3e:48:db:58:9e:3b:45:5a:80:e9:9b: 3a:a2:b9:32:f3:c6:a3:ee:fb:75:31:98:e3:fa:c2:14:92:01: bf:bf:05:19:b5:3a:69:bf:18:0f:9b:37:25:fa:b9:05:b6:87: 1c:8f:9f:13:04:89:e0:8e:da:48:00:fe:98:fe:28:33:69:14: 9a:0a:58:ca:26:d5:e8:db:cd:84:3b:86:ba:20:47:4e:11:ac: bc:48:56:4c:56:2e:ca:a9:19:34:6e:41:a4:a8:dd:e5:4c:f0: 77:b2:ec:0b:00:91:9e:46:bf:34:f8:f2:9a:97:5c:70:6f:98: b4:57:01:17:e0:cd:67:b9:4d:37:a0:ca:f7:c9:08:58:68:bf: fc:e4:68:8c:76:e1:ba:2e:f1:9d:f1:05:45:55:98:90:17:9c: ab:a4:36:ea:cf:8b:4c:a4:c5:15:4a:e2:d9:a6:d0:ed:0b:08: d2:d5:af:bd:2f:4d:da:ff:7f:85:9f:91:9e:40:68:c2:f3:b4: 26:ee:46:ed:49:fa:32:92:8b:c2:3f:ed:cb:56:1e:b7:b3:57: d0:ed:d6:bb:e6:f5:db:cd:62:91:09:3f:ee:da:f7:21:c0:35: 33:f8:50:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtBlhzFUNH1j4Em4ZDfe9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwNDBmOTY4ZmE1MmU2Y2IyZmU2NTcxMDk3MDBmYTA3NGMx OTBiODUwHhcNMjYwMjA5MTQwMDI0WhcNMjYwMjEwMTQwMDI0WjAzMTEwLwYDVQQD EyhiZTVlNjdjMDEzNzNkNGI2NDNiMjM3M2FlZmE2NDgxY2U2NTkyZDQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3P4/cwi9Bu0OCEYbK9mQeHeP2dH3 w0ahEfMVex3M9XmKsfvWC65yMRWR4eJk1tGpqVRHTLhYEMNb0gOPkvZfezmwr4sT Zz+gNVCB0NG08rutw9QhkuheUp14vksvD3MNZ3ka/r/lu4D/Bh7ZQ+sm/ie/uq6u D05JhCxQKr1n1kChyt3n5Fm4Jzl/Lf/VqLflKElesmCbnlv4sGTKQUn/+6dSPTZS oFrS+VJpOy8ohp+kx80x8cQc4DuXpalCENokXkOolvSzfwjHp7ef2z/BUPBlrJxS osbnNQOp4e0aOiaZLH1OoYwrBcpYlqLmCqyvbaJjMHKEV2hCnYwkQewuPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL5eZ8ATc9S2Q7I3Ou+mSBzmWS1GMB8GA1UdIwQY MBaAFKBA+Wj6UubLL+ZXEJcA+gdMGQuFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0VENWFQcFM1c3N2NWxjUWx3RDZCMHdaQzRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC84OTU1MDItNGUxNC00OTYzLWEzMDUt M2I2YjBhNTU1NWVmLzEvb0VENWFQcFM1c3N2NWxjUWx3RDZCMHdaQzRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC84OTU1MDItNGUxNC00OTYzLWEzMDUtM2I2YjBhNTU1NWVm LzEvb0VENWFQcFM1c3N2NWxjUWx3RDZCMHdaQzRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiwqut0sH o9I2lW6mEThm6Pr7VplGayT9HD5I21ieO0VagOmbOqK5MvPGo+77dTGY4/rCFJIB v78FGbU6ab8YD5s3Jfq5BbaHHI+fEwSJ4I7aSAD+mP4oM2kUmgpYyibV6NvNhDuG uiBHThGsvEhWTFYuyqkZNG5BpKjd5Uzwd7LsCwCRnka/NPjympdccG+YtFcBF+DN Z7lNN6DK98kIWGi//ORojHbhui7xnfEFRVWYkBecq6Q26s+LTKTFFUri2abQ7QsI 0tWvvS9N2v9/hZ+RnkBowvO0Ju5G7Un6MpKLwj/ty1Yet7NX0O3Wu+b1281ikQk/ 7tr3IcA1M/hQxA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:51 2026 by rpki-client