This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft File: orO6gtodtcGUN6wzeDhG8vK_9GI.mft (raw, json) Hash identifier: JG2k1w3wAB2eG7LT2XN2c8NVEU6pv5r5B/JekGOM7v4= Subject key identifier: D9:A1:87:55:2D:6D:E3:64:79:D4:83:08:79:FC:F8:01:DB:43:EF:B1 Authority key identifier: A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62 Certificate issuer: /CN=a2b3ba82da1db5c19437ac33783846f2f2bff462 Certificate serial: 019C4321D25E2DDF186E6DD99B30C1BC925C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft Manifest number: 05B0 Signing time: Mon 09 Feb 2026 16:00:15 +0000 Manifest this update: Mon 09 Feb 2026 16:00:15 +0000 Manifest next update: Tue 10 Feb 2026 16:00:15 +0000 Files and hashes: 1: orO6gtodtcGUN6wzeDhG8vK_9GI.crl (hash: fGHZdH+Gn1OYkRrCi+iF+S3cy4LiS9XeqL52C5Y7Nm8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:d2:5e:2d:df:18:6e:6d:d9:9b:30:c1:bc:92:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2b3ba82da1db5c19437ac33783846f2f2bff462 Validity Not Before: Feb 9 16:00:15 2026 GMT Not After : Feb 10 16:00:15 2026 GMT Subject: CN=d9a187552d6de36479d4830879fcf801db43efb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0d:7b:9c:d9:f3:ab:8e:c1:11:b4:3d:c5:41: 0b:d6:2a:75:36:6d:29:db:dc:a1:69:58:e6:b5:bf: 27:69:1d:12:5b:2e:1b:83:5f:bb:d9:73:ff:34:b8: df:1a:70:80:db:78:ee:01:06:59:74:6a:fe:6b:c2: 36:f0:40:f2:24:d5:02:35:67:4c:6f:cb:7a:24:a1: 78:06:eb:f3:6d:ef:e0:92:29:af:a7:c6:a8:4e:46: 14:0b:f9:0e:e0:d2:01:38:77:bb:1c:c7:f9:57:36: 20:e1:d7:18:a5:d9:09:55:dd:e3:87:b3:ec:ed:29: ed:e6:23:52:7a:83:96:2d:d5:30:5e:41:f8:91:64: 99:84:71:0e:f5:0a:5c:89:32:65:d0:9e:70:5b:57: 3a:a8:05:05:45:9e:6e:55:a5:50:4e:ed:e5:26:00: 87:a6:3b:74:4c:73:aa:4c:e1:64:f5:08:12:8f:05: 18:1d:c2:77:b8:b8:63:60:f7:11:b6:3a:c0:64:31: 4c:18:da:fb:b5:d9:27:2e:ea:db:da:c2:94:3e:29: 2e:01:6d:85:fa:44:1f:d0:14:02:06:5e:b7:d5:27: cd:3f:e1:56:a9:6c:ca:19:3b:5a:cf:1c:1a:af:c6: 81:af:26:b1:7c:87:db:4d:09:db:22:c9:f9:27:6e: c6:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:A1:87:55:2D:6D:E3:64:79:D4:83:08:79:FC:F8:01:DB:43:EF:B1 X509v3 Authority Key Identifier: keyid:A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:50:0a:14:2c:37:15:2f:ec:a2:d7:43:6f:00:2e:b9:76:d5: 49:a2:b5:c9:3b:69:30:9f:46:2a:6b:2f:2d:02:b4:c8:5a:fe: 7d:b6:0a:2d:5f:68:26:2c:9a:be:3c:5a:81:c3:d2:d5:7a:7a: 8b:27:95:8b:05:34:ab:84:e6:92:c6:7c:ea:c3:bf:90:10:57: d3:f2:2d:9c:5d:ca:57:0e:a5:57:e9:65:b8:47:62:0c:97:a5: 11:f5:0d:82:3e:e0:1e:98:95:a4:a6:df:a6:22:a1:08:8e:58: d1:68:a3:cb:c3:1b:42:23:04:27:77:9c:b5:48:c7:75:a6:e8: fd:36:1e:ed:24:c2:03:7a:0b:64:34:e4:b9:57:bf:3d:a9:6f: 23:47:82:24:31:75:3c:52:ca:ae:c3:8c:7a:39:07:ca:87:b9: 45:d6:b6:ea:26:26:ff:78:f7:37:b7:f4:f6:ff:30:84:b1:d0: 06:92:24:57:09:50:b4:b5:d3:60:a6:5d:bb:6b:9f:7c:e3:8c: 8f:bf:c2:28:b5:84:cd:6a:19:f6:6d:c6:f0:84:d7:d2:85:26: 4b:09:23:62:67:b5:9f:fc:f7:63:6d:75:b5:e2:e8:ea:08:a4: 5b:e6:60:3a:06:a6:74:89:bd:b9:ef:d0:28:6e:5b:0c:7e:68: 60:86:4e:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIdJeLd8Ybm3ZmzDBvJJcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyYjNiYTgyZGExZGI1YzE5NDM3YWMzMzc4Mzg0NmYyZjJi ZmY0NjIwHhcNMjYwMjA5MTYwMDE1WhcNMjYwMjEwMTYwMDE1WjAzMTEwLwYDVQQD EyhkOWExODc1NTJkNmRlMzY0NzlkNDgzMDg3OWZjZjgwMWRiNDNlZmIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArw17nNnzq47BEbQ9xUEL1ip1Nm0p 29yhaVjmtb8naR0SWy4bg1+72XP/NLjfGnCA23juAQZZdGr+a8I28EDyJNUCNWdM b8t6JKF4Buvzbe/gkimvp8aoTkYUC/kO4NIBOHe7HMf5VzYg4dcYpdkJVd3jh7Ps 7Snt5iNSeoOWLdUwXkH4kWSZhHEO9QpciTJl0J5wW1c6qAUFRZ5uVaVQTu3lJgCH pjt0THOqTOFk9QgSjwUYHcJ3uLhjYPcRtjrAZDFMGNr7tdknLurb2sKUPikuAW2F +kQf0BQCBl631SfNP+FWqWzKGTtazxwar8aBryaxfIfbTQnbIsn5J27GzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNmhh1UtbeNkedSDCHn8+AHbQ++xMB8GA1UdIwQY MBaAFKKzuoLaHbXBlDesM3g4RvLyv/RiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3JPNmd0b2R0Y0dVTjZ3emVEaEc4dktfOUdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS80NDk4MWMtOTZmOC00ODY2LWI3ZmUt Zjg5OGQyMDRlYjRlLzEvb3JPNmd0b2R0Y0dVTjZ3emVEaEc4dktfOUdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS80NDk4MWMtOTZmOC00ODY2LWI3ZmUtZjg5OGQyMDRlYjRl LzEvb3JPNmd0b2R0Y0dVTjZ3emVEaEc4dktfOUdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC1AKFCw3 FS/sotdDbwAuuXbVSaK1yTtpMJ9GKmsvLQK0yFr+fbYKLV9oJiyavjxagcPS1Xp6 iyeViwU0q4TmksZ86sO/kBBX0/ItnF3KVw6lV+lluEdiDJelEfUNgj7gHpiVpKbf piKhCI5Y0Wijy8MbQiMEJ3ectUjHdabo/TYe7STCA3oLZDTkuVe/PalvI0eCJDF1 PFLKrsOMejkHyoe5Rda26iYm/3j3N7f09v8whLHQBpIkVwlQtLXTYKZdu2uffOOM j7/CKLWEzWoZ9m3G8ITX0oUmSwkjYme1n/z3Y211teLo6gikW+ZgOgamdIm9ue/Q KG5bDH5oYIZO0A== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:50 2026 by rpki-client