This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft File: 0gXOrys2rZ_lGQaehrlONtLsS94.mft (raw, json) Hash identifier: R7rU4jb6ZFTUAGTr+z7oMYwPReVgvxq1b3lDKmRQ8L4= Subject key identifier: 2D:BC:D0:3D:B9:36:4D:41:75:4A:AC:7C:A1:79:D6:07:F8:F9:EE:2D Authority key identifier: D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE Certificate issuer: /CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde Certificate serial: 019C439043649D3B23E735EBA582572DE180 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft Manifest number: 0B40 Signing time: Mon 09 Feb 2026 18:00:53 +0000 Manifest this update: Mon 09 Feb 2026 18:00:53 +0000 Manifest next update: Tue 10 Feb 2026 18:00:53 +0000 Files and hashes: 1: 0gXOrys2rZ_lGQaehrlONtLsS94.crl (hash: 2Q+Kkh1MgcDc6MX9SUElPwd15s6RGjTzg9uXG0p4U1w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:43:64:9d:3b:23:e7:35:eb:a5:82:57:2d:e1:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde Validity Not Before: Feb 9 18:00:53 2026 GMT Not After : Feb 10 18:00:53 2026 GMT Subject: CN=2dbcd03db9364d41754aac7ca179d607f8f9ee2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:66:d0:a5:89:a4:f6:7f:a2:2b:52:69:11:14: 38:a4:aa:3a:37:7b:47:c5:ec:16:f2:3d:f1:68:1f: 37:0b:86:77:f7:61:2f:af:32:58:92:da:2d:03:9b: 85:2b:b1:c7:c9:44:6d:e1:e4:a8:d2:8c:55:65:d3: 56:76:7a:e7:b9:14:c8:42:32:d4:3d:37:dd:71:5e: 2c:b2:02:70:50:6f:3f:7c:3d:d4:e1:27:44:82:61: ac:8a:8e:b5:94:48:f1:1b:6e:a9:1a:58:44:25:ee: b4:3f:52:4c:83:d6:4d:a2:09:32:2a:95:16:66:46: 1b:e5:b1:77:3b:7b:ae:bb:90:c9:40:dc:9b:d7:b2: 04:55:35:e6:0e:28:b8:c7:61:85:26:ab:2a:0a:72: 95:7a:6f:eb:e5:0c:3a:a0:72:c8:81:25:15:a6:8d: 44:01:e2:12:68:a4:3f:63:ce:f8:e5:55:0d:d1:25: ee:c9:fb:cf:d7:18:5c:4b:f8:34:9b:58:a9:69:80: 6d:71:62:e1:85:29:1e:e1:21:ad:f4:2a:71:3d:0f: 1a:cf:6a:4e:09:b4:26:b0:bf:54:f4:39:0e:ff:52: 91:83:e3:8d:4c:69:70:6a:ca:bb:15:a5:f2:c4:11: 1f:a6:f8:0a:14:e2:b8:7b:a3:97:94:28:44:a2:0d: cd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BC:D0:3D:B9:36:4D:41:75:4A:AC:7C:A1:79:D6:07:F8:F9:EE:2D X509v3 Authority Key Identifier: keyid:D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c1:7d:af:c8:71:c8:e2:bc:d3:41:61:41:4b:14:3d:ca:14:ce: 8c:68:c2:f4:72:c9:2e:22:07:4c:08:ea:7e:e0:16:85:a1:19: 78:7b:4c:d1:95:d1:18:dd:36:fd:8e:d5:2e:5c:73:e2:3d:12: fd:7e:d4:05:ee:89:af:68:cd:ae:aa:c7:f2:a7:7e:93:d5:95: 7a:2a:d7:65:f5:e6:b1:76:fb:9a:51:48:b4:b4:f7:58:6e:82: 53:50:f8:8e:a2:84:fc:13:64:4e:48:21:48:5a:ab:07:05:e9: 46:4c:95:e9:42:7c:2e:22:b0:01:13:4e:a2:03:3f:ac:7b:b7: fe:bc:72:07:59:39:46:0d:25:eb:ad:d6:57:d1:20:d6:67:84: f6:c7:b3:20:ad:ca:cc:f1:2e:c7:1d:32:32:86:66:9c:1a:a5: 0f:bc:72:4e:52:8a:d7:be:53:65:fc:4f:f1:2a:b4:92:84:d5: 48:db:dd:14:9b:a2:16:c6:92:31:f3:95:c5:fd:e9:ba:5b:2f: ab:a2:da:07:2d:f9:93:42:e8:9c:b3:dd:1b:c7:e4:7f:98:e1: 8e:6c:b4:0b:00:0e:2f:b1:70:95:ff:c6:01:0b:cc:e6:3d:9f: 72:9f:5a:3d:98:82:60:66:7c:7d:b4:d2:07:83:eb:8c:c9:c1: a5:50:67:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkENknTsj5zXrpYJXLeGAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyMDVjZWFmMmIzNmFkOWZlNTE5MDY5ZTg2Yjk0ZTM2ZDJl YzRiZGUwHhcNMjYwMjA5MTgwMDUzWhcNMjYwMjEwMTgwMDUzWjAzMTEwLwYDVQQD EygyZGJjZDAzZGI5MzY0ZDQxNzU0YWFjN2NhMTc5ZDYwN2Y4ZjllZTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj2bQpYmk9n+iK1JpERQ4pKo6N3tH xewW8j3xaB83C4Z392EvrzJYktotA5uFK7HHyURt4eSo0oxVZdNWdnrnuRTIQjLU PTfdcV4ssgJwUG8/fD3U4SdEgmGsio61lEjxG26pGlhEJe60P1JMg9ZNogkyKpUW ZkYb5bF3O3uuu5DJQNyb17IEVTXmDii4x2GFJqsqCnKVem/r5Qw6oHLIgSUVpo1E AeISaKQ/Y8745VUN0SXuyfvP1xhcS/g0m1ipaYBtcWLhhSke4SGt9CpxPQ8az2pO CbQmsL9U9DkO/1KRg+ONTGlwasq7FaXyxBEfpvgKFOK4e6OXlChEog3N4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC280D25Nk1BdUqsfKF51gf4+e4tMB8GA1UdIwQY MBaAFNIFzq8rNq2f5RkGnoa5TjbS7EveMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGdYT3J5czJyWl9sR1FhZWhybE9OdExzUzk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ZmExNzItOGU1NS00NzExLThjNzUt MThmODkyNWM2NjY1LzEvMGdYT3J5czJyWl9sR1FhZWhybE9OdExzUzk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny83ZmExNzItOGU1NS00NzExLThjNzUtMThmODkyNWM2NjY1 LzEvMGdYT3J5czJyWl9sR1FhZWhybE9OdExzUzk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwX2vyHHI 4rzTQWFBSxQ9yhTOjGjC9HLJLiIHTAjqfuAWhaEZeHtM0ZXRGN02/Y7VLlxz4j0S /X7UBe6Jr2jNrqrH8qd+k9WVeirXZfXmsXb7mlFItLT3WG6CU1D4jqKE/BNkTkgh SFqrBwXpRkyV6UJ8LiKwARNOogM/rHu3/rxyB1k5Rg0l663WV9Eg1meE9sezIK3K zPEuxx0yMoZmnBqlD7xyTlKK175TZfxP8Sq0koTVSNvdFJuiFsaSMfOVxf3pulsv q6LaBy35k0LonLPdG8fkf5jhjmy0CwAOL7Fwlf/GAQvM5j2fcp9aPZiCYGZ8fbTS B4PrjMnBpVBnUQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:00:29 2026 by rpki-client