This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft File: oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft (raw, json) Hash identifier: ccYZ5oPJHPhfxMvYbURaYE4JUOe2/wZUwuY0V9jF4GM= Subject key identifier: 89:A1:26:CB:AD:F7:64:ED:E9:D1:C7:D6:88:EF:D1:2F:66:F7:E3:27 Authority key identifier: A3:23:E0:41:DD:45:96:53:33:E2:B1:47:4F:C5:0B:E2:F0:FA:95:0E Certificate issuer: /CN=a323e041dd45965333e2b1474fc50be2f0fa950e Certificate serial: 019C427D53D8971475C557D81F18B622F9B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oyPgQd1FllMz4rFHT8UL4vD6lQ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft Manifest number: 0C20 Signing time: Mon 09 Feb 2026 13:00:35 +0000 Manifest this update: Mon 09 Feb 2026 13:00:35 +0000 Manifest next update: Tue 10 Feb 2026 13:00:35 +0000 Files and hashes: 1: oyPgQd1FllMz4rFHT8UL4vD6lQ4.crl (hash: S8EPILmSJEGF0gDEPVOyzWAvE/UVW1PRdmF2qIWSxW0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.crl rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft rsync://rpki.ripe.net/repository/DEFAULT/oyPgQd1FllMz4rFHT8UL4vD6lQ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:53:d8:97:14:75:c5:57:d8:1f:18:b6:22:f9:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a323e041dd45965333e2b1474fc50be2f0fa950e Validity Not Before: Feb 9 13:00:35 2026 GMT Not After : Feb 10 13:00:35 2026 GMT Subject: CN=89a126cbadf764ede9d1c7d688efd12f66f7e327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ef:49:66:50:47:d6:f4:00:54:f2:0e:e5:e0: 53:ec:9a:1d:b0:35:fd:14:ea:b8:a7:11:f8:35:fd: 64:1d:b1:92:f9:40:d0:18:42:97:f8:9e:05:c8:5e: e2:df:85:33:9f:69:9d:c8:07:1f:c9:8c:88:c2:ab: 6e:cd:7c:b9:4e:c4:a9:8b:bb:54:5a:1f:0f:61:0b: f9:00:6b:94:1f:1a:cc:f5:18:3c:aa:bf:f1:70:f0: 2f:97:6b:1d:91:96:75:ab:5a:a1:ff:82:00:96:d7: 24:93:e8:38:0e:d8:ae:84:38:21:84:cd:de:19:84: 4a:c8:21:5a:93:c0:4a:cb:e0:77:3f:98:29:69:5f: 38:83:08:e3:39:b3:34:58:f3:2e:65:b7:02:34:5f: d7:cf:99:30:b0:cf:a4:c3:14:ea:16:42:4f:cd:f8: 16:73:4c:56:8d:86:4a:11:69:db:7c:32:16:80:bb: 7d:d7:6a:94:91:7e:31:73:81:93:38:87:4b:f1:88: 24:13:7b:04:25:5d:2c:88:1a:a3:51:0d:e7:d2:04: 19:01:31:59:a3:7f:b2:c8:a1:c9:eb:ff:2d:ca:f9: 71:a8:db:1d:bf:ce:6e:45:52:b1:39:65:28:2f:dd: 1b:e2:39:65:7f:39:75:6b:d8:05:0d:32:c8:e6:ca: 98:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A1:26:CB:AD:F7:64:ED:E9:D1:C7:D6:88:EF:D1:2F:66:F7:E3:27 X509v3 Authority Key Identifier: keyid:A3:23:E0:41:DD:45:96:53:33:E2:B1:47:4F:C5:0B:E2:F0:FA:95:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oyPgQd1FllMz4rFHT8UL4vD6lQ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:f5:2b:c9:fe:fa:29:ea:34:9d:aa:44:c1:17:12:4b:06:e0: 03:1c:0d:c0:45:b5:16:ea:6a:a5:71:7b:fb:dd:7c:2f:9b:34: 1c:ee:04:b5:3a:66:78:b7:dd:37:f0:59:5c:01:e6:74:65:cd: 34:ad:7c:8e:bb:a7:f6:c2:c9:12:9b:d9:a3:5d:4d:28:d8:01: e7:97:85:0d:6f:b2:43:2b:4f:37:73:33:f8:5e:62:f2:07:2d: 63:14:69:55:12:d3:84:fc:b5:cf:2f:02:9e:9d:e7:10:55:93: 5d:d9:7d:6a:0b:f2:d6:27:ba:17:ef:5a:d2:78:c6:0c:9c:bc: 3d:41:ad:fc:83:be:4b:d8:86:b0:fb:67:7f:11:85:09:39:5d: 5a:01:33:2b:bf:86:6f:eb:f6:fb:70:4c:cf:21:b7:a6:73:30: 14:be:af:33:9a:e4:f3:93:7e:d1:cc:4e:6b:8f:28:d5:7a:8d: 34:08:59:71:5c:17:10:6f:cd:25:6a:9b:b0:31:03:30:81:64: d2:4f:c4:d4:7f:b6:03:7e:c9:d4:78:9c:a8:61:69:4f:3a:a0: 33:67:07:68:99:ca:72:f9:b4:8c:40:74:d7:dd:01:92:ba:f4: 7e:a8:aa:a8:08:0f:0d:09:c6:15:03:8e:93:05:a2:9e:c3:68: f2:a0:48:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfVPYlxR1xVfYHxi2Ivm4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzMjNlMDQxZGQ0NTk2NTMzM2UyYjE0NzRmYzUwYmUyZjBm YTk1MGUwHhcNMjYwMjA5MTMwMDM1WhcNMjYwMjEwMTMwMDM1WjAzMTEwLwYDVQQD Eyg4OWExMjZjYmFkZjc2NGVkZTlkMWM3ZDY4OGVmZDEyZjY2ZjdlMzI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3+9JZlBH1vQAVPIO5eBT7JodsDX9 FOq4pxH4Nf1kHbGS+UDQGEKX+J4FyF7i34Uzn2mdyAcfyYyIwqtuzXy5TsSpi7tU Wh8PYQv5AGuUHxrM9Rg8qr/xcPAvl2sdkZZ1q1qh/4IAltckk+g4DtiuhDghhM3e GYRKyCFak8BKy+B3P5gpaV84gwjjObM0WPMuZbcCNF/Xz5kwsM+kwxTqFkJPzfgW c0xWjYZKEWnbfDIWgLt912qUkX4xc4GTOIdL8YgkE3sEJV0siBqjUQ3n0gQZATFZ o3+yyKHJ6/8tyvlxqNsdv85uRVKxOWUoL90b4jllfzl1a9gFDTLI5sqYPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFImhJsut92Tt6dHH1ojv0S9m9+MnMB8GA1UdIwQY MBaAFKMj4EHdRZZTM+KxR0/FC+Lw+pUOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3lQZ1FkMUZsbE16NHJGSFQ4VUw0dkQ2bFE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9lODMzOWUtZmQ2ZC00MDRkLWE2NGMt Y2FkYzUxNGFjZTcyLzEvb3lQZ1FkMUZsbE16NHJGSFQ4VUw0dkQ2bFE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9lODMzOWUtZmQ2ZC00MDRkLWE2NGMtY2FkYzUxNGFjZTcy LzEvb3lQZ1FkMUZsbE16NHJGSFQ4VUw0dkQ2bFE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK/Uryf76 Keo0napEwRcSSwbgAxwNwEW1FupqpXF7+918L5s0HO4EtTpmeLfdN/BZXAHmdGXN NK18jrun9sLJEpvZo11NKNgB55eFDW+yQytPN3Mz+F5i8gctYxRpVRLThPy1zy8C np3nEFWTXdl9agvy1ie6F+9a0njGDJy8PUGt/IO+S9iGsPtnfxGFCTldWgEzK7+G b+v2+3BMzyG3pnMwFL6vM5rk85N+0cxOa48o1XqNNAhZcVwXEG/NJWqbsDEDMIFk 0k/E1H+2A37J1HicqGFpTzqgM2cHaJnKcvm0jEB0190Bkrr0fqiqqAgPDQnGFQOO kwWinsNo8qBISQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:58 2026 by rpki-client