This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c9ca65-9253-4fc4-9bbf-01dc944c4477/1/oCUv6bQqZD9HflhGYZquiGkX7_s.mft File: oCUv6bQqZD9HflhGYZquiGkX7_s.mft (raw, json) Hash identifier: IVAlAMYCYGoh6UNrTs6b1UsP4BA6gdIaT/OLdVTf3eg= Subject key identifier: 3E:42:0B:DD:03:B2:18:CC:BE:F7:BF:37:9F:24:61:36:46:7A:6B:3F Authority key identifier: A0:25:2F:E9:B4:2A:64:3F:47:7E:58:46:61:9A:AE:88:69:17:EF:FB Certificate issuer: /CN=a0252fe9b42a643f477e5846619aae886917effb Certificate serial: 019C420F3828BD7A943049A92F5928D9DFED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oCUv6bQqZD9HflhGYZquiGkX7_s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c9ca65-9253-4fc4-9bbf-01dc944c4477/1/oCUv6bQqZD9HflhGYZquiGkX7_s.mft Manifest number: 15F8 Signing time: Mon 09 Feb 2026 11:00:19 +0000 Manifest this update: Mon 09 Feb 2026 11:00:19 +0000 Manifest next update: Tue 10 Feb 2026 11:00:19 +0000 Files and hashes: 1: oCUv6bQqZD9HflhGYZquiGkX7_s.crl (hash: 2VhBLsKGVY7BVFbWSkgmWZVVuMurh3uOY861ZQ+v5XU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c9ca65-9253-4fc4-9bbf-01dc944c4477/1/oCUv6bQqZD9HflhGYZquiGkX7_s.crl rsync://rpki.ripe.net/repository/DEFAULT/43/c9ca65-9253-4fc4-9bbf-01dc944c4477/1/oCUv6bQqZD9HflhGYZquiGkX7_s.mft rsync://rpki.ripe.net/repository/DEFAULT/oCUv6bQqZD9HflhGYZquiGkX7_s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:38:28:bd:7a:94:30:49:a9:2f:59:28:d9:df:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0252fe9b42a643f477e5846619aae886917effb Validity Not Before: Feb 9 11:00:19 2026 GMT Not After : Feb 10 11:00:19 2026 GMT Subject: CN=3e420bdd03b218ccbef7bf379f246136467a6b3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:34:45:34:ab:49:92:40:68:08:c9:24:94:3b: e3:51:26:5b:7f:82:01:fe:6b:f7:b9:2b:81:ab:ec: eb:b8:dd:44:40:6a:31:4e:0c:69:63:6a:80:f8:45: 6d:c0:40:17:64:0b:7d:82:f9:63:6e:12:47:3e:42: 89:1b:f1:34:c2:9d:56:4a:49:10:02:a2:27:4d:67: e4:4c:62:1c:4b:71:1b:9f:90:43:9d:c8:ee:53:0b: 33:e7:a2:28:53:ce:e8:04:1d:a8:bf:f5:b2:6b:69: 16:ef:09:c7:93:0e:d2:71:54:f3:ae:8e:97:d2:2b: 0b:44:63:bc:03:4b:1e:87:ea:5f:ae:db:7e:29:36: 1d:e5:17:7f:61:c4:e5:2e:2a:9a:ef:70:86:46:d6: 81:99:4a:cf:ad:18:78:5a:83:52:53:5e:a2:2f:14: de:3e:1c:1d:43:8f:e4:b5:68:5f:09:9f:14:53:cc: b5:6f:6d:b3:4f:5d:3e:93:b5:eb:c6:4d:23:d2:b4: b1:b2:56:bc:0b:34:f5:07:c6:b4:a1:da:95:95:56: 44:df:dd:93:1c:da:a1:14:d3:77:c8:38:af:d3:f0: b9:62:dc:07:3e:49:e6:c7:49:01:db:dd:3b:d4:4c: fd:c9:de:db:ac:ab:91:6a:9f:3c:d7:03:f1:c8:a6: d1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:42:0B:DD:03:B2:18:CC:BE:F7:BF:37:9F:24:61:36:46:7A:6B:3F X509v3 Authority Key Identifier: keyid:A0:25:2F:E9:B4:2A:64:3F:47:7E:58:46:61:9A:AE:88:69:17:EF:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oCUv6bQqZD9HflhGYZquiGkX7_s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c9ca65-9253-4fc4-9bbf-01dc944c4477/1/oCUv6bQqZD9HflhGYZquiGkX7_s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c9ca65-9253-4fc4-9bbf-01dc944c4477/1/oCUv6bQqZD9HflhGYZquiGkX7_s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:98:68:f3:15:56:bb:ba:e0:96:05:47:9b:72:f3:f0:19:a7: 24:f4:23:bf:f9:d1:f8:58:3a:27:9a:b9:75:bc:73:29:d8:13: 5d:19:57:ad:df:d6:3d:3c:99:c2:9f:5b:2f:c6:05:7f:f8:1b: b7:df:e6:81:70:c3:ba:5d:88:f5:a7:6d:26:d2:4b:e7:d0:da: 8e:d3:28:55:1a:f7:08:b9:c8:5a:6f:b5:6d:21:df:c5:9a:4a: e7:8c:93:be:1a:ca:5c:c7:de:7d:a4:76:ed:bd:c7:e7:42:62: a7:c0:2b:c2:21:a5:6b:c8:b3:fa:f6:d5:2f:42:14:ef:3d:f4: b7:60:d1:a6:7b:50:53:71:28:41:03:0f:63:28:02:d4:fd:6f: 87:21:9a:6d:6a:32:65:0e:7d:6f:dc:f4:b2:1e:26:fd:ce:c5: 9e:2c:4e:ce:12:d7:a6:d9:12:6f:bf:23:82:cd:ec:5d:11:d1: 80:e5:d4:ec:74:52:fc:39:b8:1c:ad:1b:fa:33:07:31:06:5b: ab:58:db:b4:0c:5f:b4:45:44:0a:b2:54:63:f9:ed:a0:32:66: 42:18:be:05:1d:6f:97:22:58:c5:d5:a8:62:d2:b5:9b:53:26: a4:d0:ae:da:60:f7:14:a5:7c:e5:b4:1e:a7:55:f7:37:2a:03: 7f:3c:46:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCDzgovXqUMEmpL1ko2d/tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwMjUyZmU5YjQyYTY0M2Y0NzdlNTg0NjYxOWFhZTg4Njkx N2VmZmIwHhcNMjYwMjA5MTEwMDE5WhcNMjYwMjEwMTEwMDE5WjAzMTEwLwYDVQQD EygzZTQyMGJkZDAzYjIxOGNjYmVmN2JmMzc5ZjI0NjEzNjQ2N2E2YjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAizRFNKtJkkBoCMkklDvjUSZbf4IB /mv3uSuBq+zruN1EQGoxTgxpY2qA+EVtwEAXZAt9gvljbhJHPkKJG/E0wp1WSkkQ AqInTWfkTGIcS3Ebn5BDncjuUwsz56IoU87oBB2ov/Wya2kW7wnHkw7ScVTzro6X 0isLRGO8A0seh+pfrtt+KTYd5Rd/YcTlLiqa73CGRtaBmUrPrRh4WoNSU16iLxTe PhwdQ4/ktWhfCZ8UU8y1b22zT10+k7Xrxk0j0rSxsla8CzT1B8a0odqVlVZE392T HNqhFNN3yDiv0/C5YtwHPknmx0kB29071Ez9yd7brKuRap881wPxyKbRdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD5CC90DshjMvve/N58kYTZGems/MB8GA1UdIwQY MBaAFKAlL+m0KmQ/R35YRmGarohpF+/7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0NVdjZiUXFaRDlIZmxoR1lacXVpR2tYN19zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9jOWNhNjUtOTI1My00ZmM0LTliYmYt MDFkYzk0NGM0NDc3LzEvb0NVdjZiUXFaRDlIZmxoR1lacXVpR2tYN19zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9jOWNhNjUtOTI1My00ZmM0LTliYmYtMDFkYzk0NGM0NDc3 LzEvb0NVdjZiUXFaRDlIZmxoR1lacXVpR2tYN19zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPZho8xVW u7rglgVHm3Lz8BmnJPQjv/nR+Fg6J5q5dbxzKdgTXRlXrd/WPTyZwp9bL8YFf/gb t9/mgXDDul2I9adtJtJL59DajtMoVRr3CLnIWm+1bSHfxZpK54yTvhrKXMfefaR2 7b3H50Jip8ArwiGla8iz+vbVL0IU7z30t2DRpntQU3EoQQMPYygC1P1vhyGabWoy ZQ59b9z0sh4m/c7FnixOzhLXptkSb78jgs3sXRHRgOXU7HRS/Dm4HK0b+jMHMQZb q1jbtAxftEVECrJUY/ntoDJmQhi+BR1vlyJYxdWoYtK1m1MmpNCu2mD3FKV85bQe p1X3NyoDfzxGzw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:33 2026 by rpki-client