This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/ba0b0e-7cea-4b9a-9b6d-0c0292167f95/1/Ou5vE-TaDy5DIqGnWqfn189xekI.mft File: Ou5vE-TaDy5DIqGnWqfn189xekI.mft (raw, json) Hash identifier: eo/WVMmge2g3YaY5kKrMcS7G00Yu32dXmDyveS9rFh4= Subject key identifier: 7E:C8:17:1B:A4:0B:73:CD:FD:92:10:05:45:AF:E5:C9:33:B0:9E:54 Authority key identifier: 3A:EE:6F:13:E4:DA:0F:2E:43:22:A1:A7:5A:A7:E7:D7:CF:71:7A:42 Certificate issuer: /CN=3aee6f13e4da0f2e4322a1a75aa7e7d7cf717a42 Certificate serial: 019C43220054D7639D5143A543F984F64311 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ou5vE-TaDy5DIqGnWqfn189xekI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/ba0b0e-7cea-4b9a-9b6d-0c0292167f95/1/Ou5vE-TaDy5DIqGnWqfn189xekI.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 16:00:27 +0000 Manifest this update: Mon 09 Feb 2026 16:00:27 +0000 Manifest next update: Tue 10 Feb 2026 16:00:27 +0000 Files and hashes: 1: Ou5vE-TaDy5DIqGnWqfn189xekI.crl (hash: 0vAkLKU2VRBMjTSbCaM3h3sWNpYcPgdyUpRmg0DesxE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/ba0b0e-7cea-4b9a-9b6d-0c0292167f95/1/Ou5vE-TaDy5DIqGnWqfn189xekI.crl rsync://rpki.ripe.net/repository/DEFAULT/49/ba0b0e-7cea-4b9a-9b6d-0c0292167f95/1/Ou5vE-TaDy5DIqGnWqfn189xekI.mft rsync://rpki.ripe.net/repository/DEFAULT/Ou5vE-TaDy5DIqGnWqfn189xekI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:00:54:d7:63:9d:51:43:a5:43:f9:84:f6:43:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3aee6f13e4da0f2e4322a1a75aa7e7d7cf717a42 Validity Not Before: Feb 9 16:00:27 2026 GMT Not After : Feb 10 16:00:27 2026 GMT Subject: CN=7ec8171ba40b73cdfd92100545afe5c933b09e54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3f:58:a5:f8:8f:ba:d7:0f:68:9a:1f:2d:9b: 1a:20:5f:ec:ed:e1:e9:84:78:ae:d5:cb:67:90:9a: 4f:f7:f6:91:cb:25:67:8c:c6:86:62:5c:5f:2a:9c: 6c:a5:cf:92:a1:e4:b0:db:c8:08:04:7a:92:9a:bb: 6e:6e:b1:85:8d:8d:96:4b:16:c1:8d:89:fa:c7:6c: 9c:55:bb:90:a2:73:d9:a2:fc:fd:56:9e:f3:6d:62: 1b:49:4f:31:65:fb:09:3e:de:95:db:bb:34:aa:e0: 99:7b:4d:1d:3e:31:3e:2d:d6:95:af:2d:94:ff:4f: 2f:0c:9e:fd:ec:93:c4:95:e9:3b:2d:86:2f:38:9f: 05:8a:fb:44:6d:b5:af:3f:d7:a6:64:dc:6e:a8:52: f9:de:fa:d9:2b:59:b7:81:ed:61:43:33:33:1d:fb: d8:f3:24:9c:03:b9:b5:cb:fa:90:b6:90:ca:7a:a8: 12:1a:0d:de:0b:6e:2d:73:bd:59:e9:3e:0c:8e:3a: 0c:02:06:6e:f4:58:e8:03:39:3f:43:6f:2a:a1:b2: 9d:1d:7b:64:77:17:39:dd:cb:ee:db:36:26:19:31: 9b:c4:cb:10:2f:84:3c:d6:b2:2e:72:3e:e9:a9:3b: d4:bb:f0:ea:f9:ab:9e:c6:da:54:6d:49:4c:50:29: 76:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:C8:17:1B:A4:0B:73:CD:FD:92:10:05:45:AF:E5:C9:33:B0:9E:54 X509v3 Authority Key Identifier: keyid:3A:EE:6F:13:E4:DA:0F:2E:43:22:A1:A7:5A:A7:E7:D7:CF:71:7A:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ou5vE-TaDy5DIqGnWqfn189xekI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/ba0b0e-7cea-4b9a-9b6d-0c0292167f95/1/Ou5vE-TaDy5DIqGnWqfn189xekI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/ba0b0e-7cea-4b9a-9b6d-0c0292167f95/1/Ou5vE-TaDy5DIqGnWqfn189xekI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:70:26:a6:f9:fc:ca:d6:5e:82:2f:0c:5b:99:ee:e8:f6:a7: f1:68:b1:51:92:79:e5:45:67:fb:5d:73:cf:ab:bf:be:28:54: 3e:00:8a:8f:cc:53:05:6b:92:b5:cb:cc:e4:56:8b:ae:ce:54: 43:0e:96:74:04:07:4a:78:02:f8:b2:c7:8e:52:f5:c3:f3:cf: 58:8b:fe:72:4d:70:0d:78:f8:88:be:a4:83:4f:81:e9:74:5c: 81:32:58:9f:fd:b3:77:b6:5f:ec:69:1d:9d:fa:a9:1e:5d:b4: 05:0c:83:6c:35:41:32:d3:16:dd:08:37:f3:21:e9:4e:35:3f: 56:9d:81:28:78:2d:3c:45:71:4a:ad:49:e0:23:e1:91:bd:0b: 79:7b:80:ca:e8:aa:86:58:12:39:45:aa:34:84:28:d2:3c:2c: 74:87:7e:85:2c:16:0b:eb:48:5e:7d:f1:c9:24:4d:1c:8a:5f: d4:c8:dc:87:11:ca:23:67:01:09:3e:76:21:f7:11:bd:70:7c: 5e:88:f2:a1:89:93:ff:f0:9a:6c:f6:9f:42:d1:6a:de:d7:7a: 1a:bc:6a:21:ba:c4:f5:af:9e:eb:2c:ec:4c:e4:6d:98:cf:5b: 33:d9:c4:ed:a3:7e:5f:e5:14:3e:03:6d:40:42:42:29:46:af: 50:32:1c:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIgBU12OdUUOlQ/mE9kMRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZWU2ZjEzZTRkYTBmMmU0MzIyYTFhNzVhYTdlN2Q3Y2Y3 MTdhNDIwHhcNMjYwMjA5MTYwMDI3WhcNMjYwMjEwMTYwMDI3WjAzMTEwLwYDVQQD Eyg3ZWM4MTcxYmE0MGI3M2NkZmQ5MjEwMDU0NWFmZTVjOTMzYjA5ZTU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArD9YpfiPutcPaJofLZsaIF/s7eHp hHiu1ctnkJpP9/aRyyVnjMaGYlxfKpxspc+SoeSw28gIBHqSmrtubrGFjY2WSxbB jYn6x2ycVbuQonPZovz9Vp7zbWIbSU8xZfsJPt6V27s0quCZe00dPjE+LdaVry2U /08vDJ797JPElek7LYYvOJ8FivtEbbWvP9emZNxuqFL53vrZK1m3ge1hQzMzHfvY 8yScA7m1y/qQtpDKeqgSGg3eC24tc71Z6T4MjjoMAgZu9FjoAzk/Q28qobKdHXtk dxc53cvu2zYmGTGbxMsQL4Q81rIucj7pqTvUu/Dq+auextpUbUlMUCl2gQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH7IFxukC3PN/ZIQBUWv5ckzsJ5UMB8GA1UdIwQY MBaAFDrubxPk2g8uQyKhp1qn59fPcXpCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3U1dkUtVGFEeTVESXFHbldxZm4xODl4ZWtJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9iYTBiMGUtN2NlYS00YjlhLTliNmQt MGMwMjkyMTY3Zjk1LzEvT3U1dkUtVGFEeTVESXFHbldxZm4xODl4ZWtJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS9iYTBiMGUtN2NlYS00YjlhLTliNmQtMGMwMjkyMTY3Zjk1 LzEvT3U1dkUtVGFEeTVESXFHbldxZm4xODl4ZWtJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAnAmpvn8 ytZegi8MW5nu6Pan8WixUZJ55UVn+11zz6u/vihUPgCKj8xTBWuStcvM5FaLrs5U Qw6WdAQHSngC+LLHjlL1w/PPWIv+ck1wDXj4iL6kg0+B6XRcgTJYn/2zd7Zf7Gkd nfqpHl20BQyDbDVBMtMW3Qg38yHpTjU/Vp2BKHgtPEVxSq1J4CPhkb0LeXuAyuiq hlgSOUWqNIQo0jwsdId+hSwWC+tIXn3xySRNHIpf1MjchxHKI2cBCT52IfcRvXB8 XojyoYmT//CabPafQtFq3td6GrxqIbrE9a+e6yzsTORtmM9bM9nE7aN+X+UUPgNt QEJCKUavUDIcYw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:48:02 2026 by rpki-client