This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft File: oUx52o8IwpnEYya3m55CTkmmh1s.mft (raw, json) Hash identifier: jftDRQp1jfxJCDsMiBbG2U0LG82yE7HEwxo7fQkclao= Subject key identifier: D6:BD:D0:85:CD:BB:08:B4:87:24:F4:48:10:47:8D:D1:27:DC:A4:F8 Authority key identifier: A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B Certificate issuer: /CN=a14c79da8f08c299c46326b79b9e424e49a6875b Certificate serial: 019C4321DFEC7A32C784942F1A15EC4738A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft Manifest number: 17A0 Signing time: Mon 09 Feb 2026 16:00:19 +0000 Manifest this update: Mon 09 Feb 2026 16:00:19 +0000 Manifest next update: Tue 10 Feb 2026 16:00:19 +0000 Files and hashes: 1: oUx52o8IwpnEYya3m55CTkmmh1s.crl (hash: U01LeYm7ZVEyJiHAcqDFQtul7vFIzKZ6tAsPz9HhOeM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:df:ec:7a:32:c7:84:94:2f:1a:15:ec:47:38:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a14c79da8f08c299c46326b79b9e424e49a6875b Validity Not Before: Feb 9 16:00:19 2026 GMT Not After : Feb 10 16:00:19 2026 GMT Subject: CN=d6bdd085cdbb08b48724f44810478dd127dca4f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d1:7d:a2:1e:b6:63:27:7e:d3:fc:5c:02:8c: d3:48:da:72:41:1d:2f:24:b5:1c:a6:d3:fc:75:c8: 3d:68:df:94:fa:ee:b1:b0:39:e6:4c:72:54:c3:5d: 7b:dd:ee:a1:7b:65:1f:b4:21:1c:a8:42:96:3b:b6: 79:95:6a:5f:75:6d:0e:2b:2a:83:24:21:67:dc:31: 3b:49:1b:85:cd:7e:28:a6:52:47:93:12:89:44:fb: 23:73:3a:6a:3f:27:dc:05:76:d8:0c:2c:c3:66:05: 28:81:c0:9c:92:1d:0a:25:65:db:dd:54:07:23:99: f3:27:3b:53:b3:19:47:59:f9:ac:16:b0:89:21:3d: e7:d7:83:74:b0:e5:b2:61:ba:0c:12:ab:46:db:30: 77:af:d1:ab:34:09:a2:5c:82:7e:87:ef:75:3c:cb: 35:a4:8e:cf:a0:09:7d:ca:33:3e:67:c8:21:ed:6c: ef:16:3b:db:9c:96:57:ea:77:61:31:8d:d6:af:f6: 43:9e:1d:f2:b0:36:97:0b:57:dc:92:ec:e6:ba:ce: 64:63:e6:87:43:9b:2d:b9:63:76:e6:37:b5:d5:f4: 8c:92:91:2f:49:63:fa:72:a8:5c:81:96:c2:6a:f1: 8e:a2:79:06:d3:74:f1:71:45:50:0f:64:fc:30:ee: 36:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:BD:D0:85:CD:BB:08:B4:87:24:F4:48:10:47:8D:D1:27:DC:A4:F8 X509v3 Authority Key Identifier: keyid:A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:df:f4:42:50:d6:42:04:a6:fe:c0:ce:44:70:30:61:02:ad: ec:06:be:f1:ab:7b:22:ba:33:7d:c6:3d:82:c5:ac:b7:eb:f2: 5a:70:ff:80:93:09:fd:de:5a:3b:62:2d:f9:8a:d0:15:4d:9c: 09:a1:38:ae:fe:1b:60:62:0a:23:91:34:06:13:19:ab:9b:f7: de:69:c3:23:d6:a3:13:9b:cf:a3:be:1a:cc:a2:96:3c:de:fa: 3b:e1:22:bd:99:d6:28:22:c3:70:18:81:2a:22:b7:0f:85:76: 4b:ff:c7:5c:d8:bf:c8:93:d7:bb:b6:18:82:ef:b2:2a:30:a3: 23:d0:75:a0:be:2e:2f:94:90:12:91:fe:86:e1:f0:66:17:e5: 6f:fa:5a:ed:78:e3:5d:10:c3:46:05:41:ec:bc:78:2c:5b:49: a6:0e:d1:ed:08:e9:0c:0f:4a:a3:9d:51:0a:9c:87:72:13:a1: 51:2c:0a:2e:27:59:0b:81:16:6f:c0:9c:4a:ee:bc:fe:1b:70: 8b:2f:1e:a5:8d:f9:19:af:a4:ee:34:4f:58:d6:4e:f4:f0:05: 9b:0d:3d:94:f4:84:a8:2c:40:6c:2e:18:96:d0:dc:3b:69:cc: aa:4e:a3:cb:80:55:78:ed:58:4a:de:ea:9e:19:bb:57:aa:7c: 1f:fa:c6:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDId/sejLHhJQvGhXsRzimMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExNGM3OWRhOGYwOGMyOTljNDYzMjZiNzliOWU0MjRlNDlh Njg3NWIwHhcNMjYwMjA5MTYwMDE5WhcNMjYwMjEwMTYwMDE5WjAzMTEwLwYDVQQD EyhkNmJkZDA4NWNkYmIwOGI0ODcyNGY0NDgxMDQ3OGRkMTI3ZGNhNGY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtF9oh62Yyd+0/xcAozTSNpyQR0v JLUcptP8dcg9aN+U+u6xsDnmTHJUw1173e6he2UftCEcqEKWO7Z5lWpfdW0OKyqD JCFn3DE7SRuFzX4oplJHkxKJRPsjczpqPyfcBXbYDCzDZgUogcCckh0KJWXb3VQH I5nzJztTsxlHWfmsFrCJIT3n14N0sOWyYboMEqtG2zB3r9GrNAmiXIJ+h+91PMs1 pI7PoAl9yjM+Z8gh7WzvFjvbnJZX6ndhMY3Wr/ZDnh3ysDaXC1fckuzmus5kY+aH Q5stuWN25je11fSMkpEvSWP6cqhcgZbCavGOonkG03TxcUVQD2T8MO423wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNa90IXNuwi0hyT0SBBHjdEn3KT4MB8GA1UdIwQY MBaAFKFMedqPCMKZxGMmt5ueQk5JpodbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1V4NTJvOEl3cG5FWXlhM201NUNUa21taDFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8yMmViNTMtNGY2MC00MTFiLTg0MDkt ZDRjOTdmZjZlMTFlLzEvb1V4NTJvOEl3cG5FWXlhM201NUNUa21taDFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi8yMmViNTMtNGY2MC00MTFiLTg0MDktZDRjOTdmZjZlMTFl LzEvb1V4NTJvOEl3cG5FWXlhM201NUNUa21taDFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAet/0QlDW QgSm/sDORHAwYQKt7Aa+8at7IrozfcY9gsWst+vyWnD/gJMJ/d5aO2It+YrQFU2c CaE4rv4bYGIKI5E0BhMZq5v33mnDI9ajE5vPo74azKKWPN76O+EivZnWKCLDcBiB KiK3D4V2S//HXNi/yJPXu7YYgu+yKjCjI9B1oL4uL5SQEpH+huHwZhflb/pa7Xjj XRDDRgVB7Lx4LFtJpg7R7QjpDA9Ko51RCpyHchOhUSwKLidZC4EWb8CcSu68/htw iy8epY35Ga+k7jRPWNZO9PAFmw09lPSEqCxAbC4YltDcO2nMqk6jy4BVeO1YSt7q nhm7V6p8H/rGRQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:31:12 2026 by rpki-client