This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft File: OQlq7uS6fDS4EkCtSRrEba90wx0.mft (raw, json) Hash identifier: 6ngArwdZkvO9ZqYfVzXAQ2Dmaez+TeLk7MGfwdA8PMc= Subject key identifier: 56:A3:8D:C2:22:34:21:F7:7C:C7:0E:CB:E6:7A:D6:AF:21:1E:93:B9 Authority key identifier: 39:09:6A:EE:E4:BA:7C:34:B8:12:40:AD:49:1A:C4:6D:AF:74:C3:1D Certificate issuer: /CN=39096aeee4ba7c34b81240ad491ac46daf74c31d Certificate serial: 019C43C72DB9301A30FD5414CDA2466BF584 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQlq7uS6fDS4EkCtSRrEba90wx0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 19:00:52 +0000 Manifest this update: Mon 09 Feb 2026 19:00:52 +0000 Manifest next update: Tue 10 Feb 2026 19:00:52 +0000 Files and hashes: 1: OQlq7uS6fDS4EkCtSRrEba90wx0.crl (hash: JQkDICaEuR+lqabo5MRlglgyrd2qIcw76AYQ7EAToQg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft rsync://rpki.ripe.net/repository/DEFAULT/OQlq7uS6fDS4EkCtSRrEba90wx0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:2d:b9:30:1a:30:fd:54:14:cd:a2:46:6b:f5:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39096aeee4ba7c34b81240ad491ac46daf74c31d Validity Not Before: Feb 9 19:00:52 2026 GMT Not After : Feb 10 19:00:52 2026 GMT Subject: CN=56a38dc2223421f77cc70ecbe67ad6af211e93b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:87:c5:cf:5d:e8:12:6d:9e:15:c8:61:b6:59: 4e:1a:b0:ba:d0:79:6a:5c:9e:13:ae:04:c5:2e:5f: 77:c9:43:2b:94:2d:12:41:fe:3c:33:b7:4c:96:6e: 1d:7f:61:ed:e2:e7:ac:af:1d:59:01:ff:c8:65:09: 45:46:dd:b3:14:44:30:6b:06:35:c2:cf:24:d8:7f: 49:85:ad:bb:d2:ea:15:4b:3c:e2:11:20:54:05:07: 9f:6f:4a:21:14:5f:03:54:5a:25:8a:c8:78:eb:7e: 60:d1:41:a9:10:18:61:41:b2:ea:43:7b:57:0a:91: 6f:1a:68:69:39:50:e3:84:40:04:90:d3:58:eb:60: 14:fa:7c:5b:2b:5e:4b:62:78:13:d0:5a:1e:6d:b2: 36:62:a9:df:c3:cb:44:55:28:97:1c:9c:e2:35:e4: fb:7b:76:c8:6a:e1:fa:d8:b1:f7:ea:cb:29:af:23: 74:cf:27:67:e0:53:5a:38:1d:27:ef:1b:f9:f9:47: 01:8a:95:32:62:21:ae:a4:c4:8d:a8:5d:09:a6:4d: 14:96:f5:b0:1b:af:a6:1f:8b:6b:84:90:8d:fe:c1: 20:27:01:a9:94:37:17:73:c5:32:78:33:3e:83:a1: dd:17:97:f3:ea:58:d6:c4:73:ac:3a:45:5b:6f:55: 0a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:A3:8D:C2:22:34:21:F7:7C:C7:0E:CB:E6:7A:D6:AF:21:1E:93:B9 X509v3 Authority Key Identifier: keyid:39:09:6A:EE:E4:BA:7C:34:B8:12:40:AD:49:1A:C4:6D:AF:74:C3:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQlq7uS6fDS4EkCtSRrEba90wx0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:d6:19:4f:b9:e2:0a:07:e1:96:a2:8b:a9:8f:ad:6d:b6:4a: 95:06:c7:fc:48:8e:53:c2:c4:bf:a5:5d:2a:fe:9c:11:8d:26: 35:50:09:c7:fc:5f:99:ee:da:fb:22:85:b1:bd:3d:99:6b:55: 1c:cb:8a:88:98:b4:3c:d8:ea:c9:66:1f:27:ff:f9:5f:93:69: 53:84:d1:4f:ae:9d:57:22:30:47:a3:41:47:a2:a6:22:82:80: e1:a7:0f:fa:5e:93:48:be:65:b4:cb:80:bd:a6:3f:08:a7:ca: 99:0a:7d:de:e6:8c:40:23:7f:e8:ee:b0:a4:3d:07:3e:94:b3: 44:cc:66:b3:56:69:a8:11:2d:19:59:27:18:03:49:8b:bd:08: c3:97:37:24:f8:64:e4:a2:6f:fb:32:29:86:b8:8f:dc:42:78: b3:06:41:96:2a:d2:77:36:14:32:ce:5b:1e:58:05:cd:b1:2a: b7:25:c3:19:20:7b:e0:f4:10:ba:52:05:24:8f:3f:62:17:73: dc:24:8a:bf:58:2b:d3:a0:51:29:33:ad:2f:21:b7:8c:73:46: 2b:8c:89:9e:45:fc:c2:b1:ca:f6:99:7d:9a:4c:97:f9:61:6f: aa:d2:dd:5b:a4:57:41:ed:ff:b3:fe:43:d9:52:19:a0:39:aa: d7:ee:20:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxy25MBow/VQUzaJGa/WEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5MDk2YWVlZTRiYTdjMzRiODEyNDBhZDQ5MWFjNDZkYWY3 NGMzMWQwHhcNMjYwMjA5MTkwMDUyWhcNMjYwMjEwMTkwMDUyWjAzMTEwLwYDVQQD Eyg1NmEzOGRjMjIyMzQyMWY3N2NjNzBlY2JlNjdhZDZhZjIxMWU5M2I5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo4fFz13oEm2eFchhtllOGrC60Hlq XJ4TrgTFLl93yUMrlC0SQf48M7dMlm4df2Ht4uesrx1ZAf/IZQlFRt2zFEQwawY1 ws8k2H9Jha270uoVSzziESBUBQefb0ohFF8DVFolish4635g0UGpEBhhQbLqQ3tX CpFvGmhpOVDjhEAEkNNY62AU+nxbK15LYngT0FoebbI2Yqnfw8tEVSiXHJziNeT7 e3bIauH62LH36sspryN0zydn4FNaOB0n7xv5+UcBipUyYiGupMSNqF0Jpk0UlvWw G6+mH4trhJCN/sEgJwGplDcXc8UyeDM+g6HdF5fz6ljWxHOsOkVbb1UKkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFajjcIiNCH3fMcOy+Z61q8hHpO5MB8GA1UdIwQY MBaAFDkJau7kunw0uBJArUkaxG2vdMMdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1FscTd1UzZmRFM0RWtDdFNSckViYTkwd3gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9iYjFhYTctNzQ1NS00ZDJkLTgyZGEt MTA1NjE3NjM4NzI2LzEvT1FscTd1UzZmRFM0RWtDdFNSckViYTkwd3gwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC9iYjFhYTctNzQ1NS00ZDJkLTgyZGEtMTA1NjE3NjM4NzI2 LzEvT1FscTd1UzZmRFM0RWtDdFNSckViYTkwd3gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhtYZT7ni CgfhlqKLqY+tbbZKlQbH/EiOU8LEv6VdKv6cEY0mNVAJx/xfme7a+yKFsb09mWtV HMuKiJi0PNjqyWYfJ//5X5NpU4TRT66dVyIwR6NBR6KmIoKA4acP+l6TSL5ltMuA vaY/CKfKmQp93uaMQCN/6O6wpD0HPpSzRMxms1ZpqBEtGVknGANJi70Iw5c3JPhk 5KJv+zIphriP3EJ4swZBlirSdzYUMs5bHlgFzbEqtyXDGSB74PQQulIFJI8/Yhdz 3CSKv1gr06BRKTOtLyG3jHNGK4yJnkX8wrHK9pl9mkyX+WFvqtLdW6RXQe3/s/5D 2VIZoDmq1+4gCQ== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:35 2026 by rpki-client