This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft File: OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft (raw, json) Hash identifier: 3OkMZZrrhc1AyWpfE5CFEUUtUlkDhOcpoHNbJBf2mLE= Subject key identifier: C5:2A:6B:2D:CA:D4:24:9A:65:5A:83:63:36:EA:FA:14:44:9E:65:78 Authority key identifier: 38:53:AF:50:14:49:9B:2F:B5:CD:2C:1E:68:A2:4F:F8:25:6D:0D:0D Certificate issuer: /CN=3853af5014499b2fb5cd2c1e68a24ff8256d0d0d Certificate serial: 019C439049069A6BE8FF712A28DE2394B944 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft Manifest number: 14AD Signing time: Mon 09 Feb 2026 18:00:55 +0000 Manifest this update: Mon 09 Feb 2026 18:00:55 +0000 Manifest next update: Tue 10 Feb 2026 18:00:55 +0000 Files and hashes: 1: OFOvUBRJmy-1zSweaKJP-CVtDQ0.crl (hash: qH8Ze49GoOIhWvkKt7uSmGyr95snYdjx7ptOgqXXIAQ=) 2: yx9kD1LZqyaIsOvaZePm4Qmu_lc.roa (hash: mBiEmcBw4gmmOpAdt+VnRKLKQFDXrLV0M/SqI72yrjg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:49:06:9a:6b:e8:ff:71:2a:28:de:23:94:b9:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3853af5014499b2fb5cd2c1e68a24ff8256d0d0d Validity Not Before: Feb 9 18:00:55 2026 GMT Not After : Feb 10 18:00:55 2026 GMT Subject: CN=c52a6b2dcad4249a655a836336eafa14449e6578 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:67:27:75:f9:80:46:85:1c:2c:b7:b3:63:ef: 22:cb:64:86:68:d2:16:89:37:0e:1f:5d:42:10:75: c8:e1:6f:97:73:6a:2c:32:d6:6b:c3:2f:74:94:6f: 33:80:bb:25:23:c2:b4:c9:3a:6e:8e:ad:59:f5:c6: 84:98:39:01:39:ee:25:52:3d:dc:5a:5d:2d:fd:3a: 35:3e:8e:1d:cf:85:1f:0c:c4:5e:8e:b7:97:67:ac: d8:52:91:08:ca:11:f2:8d:72:a2:fd:78:93:23:c4: 21:66:99:c4:29:42:08:55:43:94:5d:fd:68:d7:76: dc:8d:62:92:39:e2:5f:5a:9b:9e:f7:ca:37:20:c9: 46:be:4e:42:0c:32:ea:8c:2e:7a:c7:e9:e9:44:48: 88:c8:2a:b1:5a:28:94:0d:42:71:dc:67:f5:61:00: 04:fa:9b:97:2d:f9:51:4f:fc:a6:8b:49:4e:1f:5e: 53:d0:50:7b:15:9e:93:cf:2d:3a:76:24:6d:d2:ce: 0a:5b:c2:15:08:ad:e4:11:0a:18:a9:fd:6e:a0:99: d8:03:07:06:95:cc:f2:25:7a:e4:a1:43:18:ff:7e: a2:af:a6:ce:0c:36:04:6e:c3:7f:cf:98:b3:32:5f: e9:f6:0e:fd:13:03:f1:ed:33:f4:3b:91:7c:ca:1f: 70:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:2A:6B:2D:CA:D4:24:9A:65:5A:83:63:36:EA:FA:14:44:9E:65:78 X509v3 Authority Key Identifier: keyid:38:53:AF:50:14:49:9B:2F:B5:CD:2C:1E:68:A2:4F:F8:25:6D:0D:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:3c:9e:a5:18:dc:f6:d3:4e:1b:31:1f:ca:9f:b8:b3:39:87: a8:93:cb:c5:30:bf:93:a0:9b:55:c6:ee:57:98:7c:8d:58:01: 01:ba:5f:6e:4a:4c:4c:46:7a:3c:16:1b:de:6f:4d:7c:af:4a: 99:02:cd:ff:cd:0a:79:19:ee:5a:c1:2b:36:77:25:3b:c7:25: e5:d3:f2:fa:26:6a:b5:cb:03:5f:56:12:13:f1:f7:1c:53:82: 6b:59:b8:7c:25:12:4b:7b:66:f8:d0:47:2f:e6:81:b4:a6:f0: ce:e8:3e:29:6d:41:6f:31:98:90:3a:45:78:eb:68:ba:27:ca: 4b:fb:7d:15:20:d0:07:ce:6c:06:bc:48:62:2f:ee:ba:94:a1: 58:07:34:10:e2:bd:1e:fc:8b:83:6a:ca:52:1e:72:6e:ca:30: 9c:9d:98:5e:d2:c1:6b:e8:ac:c8:8c:47:82:73:af:6d:ec:d5: 73:d1:9a:6a:57:e8:48:d4:b5:8a:15:bf:bb:84:ad:5c:a8:2e: b6:94:1c:7e:c0:89:08:33:0d:53:e2:bb:5d:ad:cf:34:f6:b3: fa:de:7d:08:d0:99:3a:4f:2d:76:a8:2e:80:31:6d:04:e9:65: 51:fb:1e:e5:b9:21:97:fe:90:0a:25:34:4f:ad:36:10:c1:07: ed:c8:68:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkEkGmmvo/3EqKN4jlLlEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4NTNhZjUwMTQ0OTliMmZiNWNkMmMxZTY4YTI0ZmY4MjU2 ZDBkMGQwHhcNMjYwMjA5MTgwMDU1WhcNMjYwMjEwMTgwMDU1WjAzMTEwLwYDVQQD EyhjNTJhNmIyZGNhZDQyNDlhNjU1YTgzNjMzNmVhZmExNDQ0OWU2NTc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGcndfmARoUcLLezY+8iy2SGaNIW iTcOH11CEHXI4W+Xc2osMtZrwy90lG8zgLslI8K0yTpujq1Z9caEmDkBOe4lUj3c Wl0t/To1Po4dz4UfDMRejreXZ6zYUpEIyhHyjXKi/XiTI8QhZpnEKUIIVUOUXf1o 13bcjWKSOeJfWpue98o3IMlGvk5CDDLqjC56x+npREiIyCqxWiiUDUJx3Gf1YQAE +puXLflRT/ymi0lOH15T0FB7FZ6Tzy06diRt0s4KW8IVCK3kEQoYqf1uoJnYAwcG lczyJXrkoUMY/36ir6bODDYEbsN/z5izMl/p9g79EwPx7TP0O5F8yh9wpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMUqay3K1CSaZVqDYzbq+hREnmV4MB8GA1UdIwQY MBaAFDhTr1AUSZsvtc0sHmiiT/glbQ0NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0ZPdlVCUkpteS0xelN3ZWFLSlAtQ1Z0RFEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8zMGNjNDEtOGFhYi00NDYzLTk5Zjgt ZGNiNTZhY2I3NzdmLzEvT0ZPdlVCUkpteS0xelN3ZWFLSlAtQ1Z0RFEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC8zMGNjNDEtOGFhYi00NDYzLTk5ZjgtZGNiNTZhY2I3Nzdm LzEvT0ZPdlVCUkpteS0xelN3ZWFLSlAtQ1Z0RFEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHjyepRjc 9tNOGzEfyp+4szmHqJPLxTC/k6CbVcbuV5h8jVgBAbpfbkpMTEZ6PBYb3m9NfK9K mQLN/80KeRnuWsErNnclO8cl5dPy+iZqtcsDX1YSE/H3HFOCa1m4fCUSS3tm+NBH L+aBtKbwzug+KW1BbzGYkDpFeOtouifKS/t9FSDQB85sBrxIYi/uupShWAc0EOK9 HvyLg2rKUh5ybsownJ2YXtLBa+isyIxHgnOvbezVc9GaalfoSNS1ihW/u4StXKgu tpQcfsCJCDMNU+K7Xa3PNPaz+t59CNCZOk8tdqgugDFtBOllUfse5bkhl/6QCiU0 T602EMEH7choxA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:28 2026 by rpki-client