This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft File: oKrlhQo22yiCKmwa_F_6z_AH7vI.mft (raw, json) Hash identifier: 6rCxO9qp/rTs/jLJPKbs2+R+PN7YmMduxIw/Cr8qqbw= Subject key identifier: DF:62:DC:2E:0D:5D:EA:08:D4:8A:05:68:17:43:D6:5E:38:36:70:49 Authority key identifier: A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2 Certificate issuer: /CN=a0aae5850a36db28822a6c1afc5ffacff007eef2 Certificate serial: 019C41D8551C19493738034C75FB325CA69F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft Manifest number: 0B06 Signing time: Mon 09 Feb 2026 10:00:22 +0000 Manifest this update: Mon 09 Feb 2026 10:00:22 +0000 Manifest next update: Tue 10 Feb 2026 10:00:22 +0000 Files and hashes: 1: A2RZ0gbyKC5gzoQeKin0HSE-ZqQ.roa (hash: GGeYGfyoQGlOlTO2uMYQdKl/MdtFY8veEw/Zc71doVs=) 2: oKrlhQo22yiCKmwa_F_6z_AH7vI.crl (hash: R8FEy5R7z7sdjVCpwLTdNzXVtnwH5PEdeiJS2w5Dmhs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:55:1c:19:49:37:38:03:4c:75:fb:32:5c:a6:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0aae5850a36db28822a6c1afc5ffacff007eef2 Validity Not Before: Feb 9 10:00:22 2026 GMT Not After : Feb 10 10:00:22 2026 GMT Subject: CN=df62dc2e0d5dea08d48a05681743d65e38367049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:67:11:5e:14:69:f3:c2:6d:f7:1a:ef:c9:47: d4:02:c3:0a:15:db:d5:69:44:7a:fa:24:74:4d:e5: 06:ff:14:e8:b9:21:3c:e0:a3:94:ee:e1:ec:8c:bb: d6:74:10:2f:e0:1c:1d:39:5a:0b:d3:ba:83:13:04: 81:db:bf:b1:e4:50:80:99:ca:4e:48:5c:d6:95:87: fb:e9:f1:ae:a3:45:0b:ac:bf:0a:0e:8a:17:fc:97: a6:08:a9:b7:13:ef:d6:49:79:99:cb:5d:a0:41:a1: f9:bc:07:99:c8:0a:b6:b2:b2:1a:aa:2a:eb:e5:7c: 64:6d:14:6c:76:32:dc:95:8e:6a:74:44:28:a3:fc: e7:5b:1b:2d:71:f9:8a:f5:7c:bb:d8:52:45:27:29: 36:b5:30:41:e2:84:84:a8:f0:43:4f:5c:2f:c6:66: 84:11:2b:0b:58:b6:03:81:50:a9:14:8e:cb:db:8b: 0b:81:ae:8f:fe:3d:a7:54:b2:76:92:76:8a:3f:16: cc:85:bb:64:61:34:b9:09:5d:60:ce:77:2c:06:2e: d3:04:01:b2:d4:aa:78:8d:85:2e:a0:2e:14:8b:ea: c1:e2:96:d8:42:cd:38:e9:7e:5f:13:6a:f9:c0:3f: ec:10:bd:b6:4b:c2:ed:85:79:dd:54:5d:13:8a:46: 28:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:62:DC:2E:0D:5D:EA:08:D4:8A:05:68:17:43:D6:5E:38:36:70:49 X509v3 Authority Key Identifier: keyid:A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:6b:c5:7b:34:bb:86:88:54:e8:0a:59:83:76:0a:1b:e5:0a: d7:b4:aa:b3:ad:2d:eb:d8:44:e1:cc:4b:5d:74:09:aa:a7:06: 66:45:1a:0a:75:c3:70:46:12:9c:b2:c4:f6:6d:4a:b3:0f:b9: 04:2b:1b:f0:4b:2d:b0:13:df:13:fe:17:2f:1f:79:29:9d:92: 5a:2e:73:d9:af:14:e9:3a:e6:01:66:98:29:b1:aa:99:6c:4e: f5:14:00:22:83:54:82:bd:a2:cb:29:e7:21:9c:91:aa:e3:77: fb:53:a7:0f:bb:26:0c:7f:f6:f6:65:8c:2e:3a:bc:3e:d6:bc: 70:58:2b:ec:0d:b5:35:af:66:87:73:06:7c:de:2e:23:ac:27: c9:d5:49:a2:30:ef:fc:78:b6:bd:f5:ca:4f:06:37:ad:af:fa: 57:27:78:e5:44:13:f8:85:ba:90:58:6f:59:b0:72:c3:57:ec: 15:92:4f:48:96:f4:29:66:91:bf:2c:37:80:89:02:74:23:cf: 28:fa:c3:22:e2:6f:a8:97:6b:b3:73:0f:02:de:29:a4:ba:fd: 53:16:11:60:d9:ef:1e:9d:d5:b6:81:ce:f4:71:83:da:d0:99: d0:c9:96:30:00:8b:85:4f:97:1d:e1:c9:5e:d7:98:15:0d:19: 9d:a7:27:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2FUcGUk3OANMdfsyXKafMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYWFlNTg1MGEzNmRiMjg4MjJhNmMxYWZjNWZmYWNmZjAw N2VlZjIwHhcNMjYwMjA5MTAwMDIyWhcNMjYwMjEwMTAwMDIyWjAzMTEwLwYDVQQD EyhkZjYyZGMyZTBkNWRlYTA4ZDQ4YTA1NjgxNzQzZDY1ZTM4MzY3MDQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg2cRXhRp88Jt9xrvyUfUAsMKFdvV aUR6+iR0TeUG/xTouSE84KOU7uHsjLvWdBAv4BwdOVoL07qDEwSB27+x5FCAmcpO SFzWlYf76fGuo0ULrL8KDooX/JemCKm3E+/WSXmZy12gQaH5vAeZyAq2srIaqirr 5XxkbRRsdjLclY5qdEQoo/znWxstcfmK9Xy72FJFJyk2tTBB4oSEqPBDT1wvxmaE ESsLWLYDgVCpFI7L24sLga6P/j2nVLJ2knaKPxbMhbtkYTS5CV1gzncsBi7TBAGy 1Kp4jYUuoC4Ui+rB4pbYQs046X5fE2r5wD/sEL22S8LthXndVF0TikYovQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN9i3C4NXeoI1IoFaBdD1l44NnBJMB8GA1UdIwQY MBaAFKCq5YUKNtsogipsGvxf+s/wB+7yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0tybGhRbzIyeWlDS213YV9GXzZ6X0FIN3ZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS83MjBlNjctZDk0Yy00ZmY5LWJhODIt MjgxOWU0YzVmMTIzLzEvb0tybGhRbzIyeWlDS213YV9GXzZ6X0FIN3ZJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS83MjBlNjctZDk0Yy00ZmY5LWJhODItMjgxOWU0YzVmMTIz LzEvb0tybGhRbzIyeWlDS213YV9GXzZ6X0FIN3ZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs2vFezS7 hohU6ApZg3YKG+UK17Sqs60t69hE4cxLXXQJqqcGZkUaCnXDcEYSnLLE9m1Ksw+5 BCsb8EstsBPfE/4XLx95KZ2SWi5z2a8U6TrmAWaYKbGqmWxO9RQAIoNUgr2iyynn IZyRquN3+1OnD7smDH/29mWMLjq8Pta8cFgr7A21Na9mh3MGfN4uI6wnydVJojDv /Hi2vfXKTwY3ra/6Vyd45UQT+IW6kFhvWbByw1fsFZJPSJb0KWaRvyw3gIkCdCPP KPrDIuJvqJdrs3MPAt4ppLr9UxYRYNnvHp3VtoHO9HGD2tCZ0MmWMACLhU+XHeHJ XteYFQ0ZnacnCw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:07 2026 by rpki-client