This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft File: oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft (raw, json) Hash identifier: MwMsX9QJvU7EIM1Pofzijm0/febnms/2mPvWa8ey2ws= Subject key identifier: 54:C2:9B:39:12:40:7B:2F:77:7A:06:B5:2A:7F:07:2B:81:78:DC:37 Authority key identifier: A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77 Certificate issuer: /CN=a220dda64843a4ee364b089356ca87995830fd77 Certificate serial: 019C42EB54A8452835A59F05A4F0AEF120C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft Manifest number: 0F37 Signing time: Mon 09 Feb 2026 15:00:44 +0000 Manifest this update: Mon 09 Feb 2026 15:00:44 +0000 Manifest next update: Tue 10 Feb 2026 15:00:44 +0000 Files and hashes: 1: J576zMYsvhdS1kduYOyMDY6tWBo.roa (hash: HQssjrgmFTJtkMHgZxRNGivJgKKVgxjUhkrUCmJCcew=) 2: oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl (hash: G8ZTYvIkr2HbJS4q02XiRUVzaXLYfymXPTBjzavVTZo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:54:a8:45:28:35:a5:9f:05:a4:f0:ae:f1:20:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a220dda64843a4ee364b089356ca87995830fd77 Validity Not Before: Feb 9 15:00:44 2026 GMT Not After : Feb 10 15:00:44 2026 GMT Subject: CN=54c29b3912407b2f777a06b52a7f072b8178dc37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fc:fd:2e:26:98:46:7c:9b:ed:dc:47:d2:c2: 54:5e:f7:fc:97:8c:44:9c:a0:35:84:d6:34:47:f4: 10:00:24:84:34:67:a8:ed:7a:a0:19:78:1f:9c:73: a3:2d:7d:c3:fa:86:6e:7f:e0:af:80:8c:4b:f4:73: 88:62:b3:a8:66:82:48:65:79:c9:99:59:d5:8c:28: 95:55:06:5e:3e:a3:75:35:90:7c:99:6a:ee:3e:03: 99:2c:c0:15:d2:b6:6e:43:ba:58:b9:0a:9f:52:b2: b1:09:54:2a:c9:b2:c7:c9:91:7d:39:cd:18:64:df: 6c:39:9e:c9:3a:8f:bb:7b:38:68:85:69:59:85:43: 57:23:63:c5:1c:f6:01:74:93:32:8a:88:51:72:1d: c4:98:a9:68:31:cc:88:8d:43:b2:f8:b7:b6:0e:de: 83:9e:85:a9:08:cd:55:4d:b3:68:77:19:a7:d0:e1: 16:3b:71:e9:c0:01:45:4a:2e:5b:f8:8a:49:10:bd: 0c:2d:a0:b5:5a:43:d4:72:70:2d:e9:3b:42:b3:ca: 69:ea:ab:98:54:da:ec:24:49:68:08:4c:ae:93:b2: d8:74:c4:7e:50:24:1b:01:71:25:ac:1b:28:15:81: b0:d6:04:af:51:98:cc:63:38:0a:0f:4c:d5:89:31: 69:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C2:9B:39:12:40:7B:2F:77:7A:06:B5:2A:7F:07:2B:81:78:DC:37 X509v3 Authority Key Identifier: keyid:A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:93:7c:4f:92:e7:cb:62:e5:26:fd:dc:8c:f5:8a:4d:df:30: 15:64:45:34:7f:89:09:50:8f:9d:ec:bc:f5:ab:5a:03:8e:67: 65:55:a1:0f:df:a6:17:3a:ab:fd:50:23:85:a8:fb:36:79:a4: 5c:ac:5b:a1:6f:0d:f3:f0:ea:67:c0:c9:8b:79:d8:d9:89:34: 76:7a:a6:24:b2:b0:95:f2:8f:04:b6:59:7a:43:77:7b:ae:77: 93:a1:60:20:58:e2:4b:65:6c:2e:7a:08:e7:29:61:97:bd:df: de:e1:1f:84:38:03:d2:e1:99:32:a8:91:44:dc:f9:58:b9:b9: a9:75:99:f0:b9:4c:9e:91:58:c5:29:6c:c3:61:66:c9:ea:14: 30:36:96:2f:ee:c2:7c:7a:42:8a:be:dc:68:1b:72:0e:21:f6: b3:2e:4f:99:61:09:ec:63:fd:c0:22:56:77:35:3a:27:96:84: ba:ec:0b:f6:99:0a:61:36:43:19:44:78:9e:14:5c:d8:20:4e: 88:55:2b:bb:db:30:6b:87:76:b9:16:a1:41:c3:39:1a:78:a8: d7:60:f9:b6:c5:38:d1:11:98:54:ac:17:d9:d9:0b:70:02:2a: 4b:02:7c:49:76:5f:d9:c0:a5:8c:19:05:19:3b:67:6b:9e:50: 73:ed:14:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC61SoRSg1pZ8FpPCu8SDDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyMjBkZGE2NDg0M2E0ZWUzNjRiMDg5MzU2Y2E4Nzk5NTgz MGZkNzcwHhcNMjYwMjA5MTUwMDQ0WhcNMjYwMjEwMTUwMDQ0WjAzMTEwLwYDVQQD Eyg1NGMyOWIzOTEyNDA3YjJmNzc3YTA2YjUyYTdmMDcyYjgxNzhkYzM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqfz9LiaYRnyb7dxH0sJUXvf8l4xE nKA1hNY0R/QQACSENGeo7XqgGXgfnHOjLX3D+oZuf+CvgIxL9HOIYrOoZoJIZXnJ mVnVjCiVVQZePqN1NZB8mWruPgOZLMAV0rZuQ7pYuQqfUrKxCVQqybLHyZF9Oc0Y ZN9sOZ7JOo+7ezhohWlZhUNXI2PFHPYBdJMyiohRch3EmKloMcyIjUOy+Le2Dt6D noWpCM1VTbNodxmn0OEWO3HpwAFFSi5b+IpJEL0MLaC1WkPUcnAt6TtCs8pp6quY VNrsJEloCEyuk7LYdMR+UCQbAXElrBsoFYGw1gSvUZjMYzgKD0zViTFpBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFTCmzkSQHsvd3oGtSp/ByuBeNw3MB8GA1UdIwQY MBaAFKIg3aZIQ6TuNksIk1bKh5lYMP13MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2lEZHBraERwTzQyU3dpVFZzcUhtVmd3X1hjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9mZmE2ZDQtNTA4OS00NWE3LWEzOGYt ZjVmODE0NTY1MWQzLzEvb2lEZHBraERwTzQyU3dpVFZzcUhtVmd3X1hjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9mZmE2ZDQtNTA4OS00NWE3LWEzOGYtZjVmODE0NTY1MWQz LzEvb2lEZHBraERwTzQyU3dpVFZzcUhtVmd3X1hjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARpN8T5Ln y2LlJv3cjPWKTd8wFWRFNH+JCVCPney89ataA45nZVWhD9+mFzqr/VAjhaj7Nnmk XKxboW8N8/DqZ8DJi3nY2Yk0dnqmJLKwlfKPBLZZekN3e653k6FgIFjiS2VsLnoI 5ylhl73f3uEfhDgD0uGZMqiRRNz5WLm5qXWZ8LlMnpFYxSlsw2FmyeoUMDaWL+7C fHpCir7caBtyDiH2sy5PmWEJ7GP9wCJWdzU6J5aEuuwL9pkKYTZDGUR4nhRc2CBO iFUru9swa4d2uRahQcM5Gnio12D5tsU40RGYVKwX2dkLcAIqSwJ8SXZf2cCljBkF GTtna55Qc+0UNg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:00:58 2026 by rpki-client