This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft File: oUIVlcmI-yZTZeucofo_F_xXB28.mft (raw, json) Hash identifier: 5IFdu+JjDarKHsfx7p0m9+iollaaPpi8deLU8atqb3c= Subject key identifier: 76:20:40:04:55:79:D9:05:62:CA:60:3C:5C:6F:83:C5:41:7C:54:5E Authority key identifier: A1:42:15:95:C9:88:FB:26:53:65:EB:9C:A1:FA:3F:17:FC:57:07:6F Certificate issuer: /CN=a1421595c988fb265365eb9ca1fa3f17fc57076f Certificate serial: 019C420F5E90D1ADBB45E7EF29568A702B14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUIVlcmI-yZTZeucofo_F_xXB28.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 11:00:29 +0000 Manifest this update: Mon 09 Feb 2026 11:00:29 +0000 Manifest next update: Tue 10 Feb 2026 11:00:29 +0000 Files and hashes: 1: oUIVlcmI-yZTZeucofo_F_xXB28.crl (hash: LLf61vX8cvf01yb8FUcdIVvlaAGAnL+lrTac/a41FSY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft rsync://rpki.ripe.net/repository/DEFAULT/oUIVlcmI-yZTZeucofo_F_xXB28.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:5e:90:d1:ad:bb:45:e7:ef:29:56:8a:70:2b:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1421595c988fb265365eb9ca1fa3f17fc57076f Validity Not Before: Feb 9 11:00:29 2026 GMT Not After : Feb 10 11:00:29 2026 GMT Subject: CN=762040045579d90562ca603c5c6f83c5417c545e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2a:a3:41:ed:64:23:20:08:14:b8:2d:84:60: e5:3c:41:50:e3:eb:74:67:9b:7e:88:f4:00:2c:70: 60:65:9b:e2:c8:78:7d:f4:f1:d7:99:1d:e9:1c:7b: e4:e8:19:d9:13:4b:22:30:6a:88:b6:7b:5d:2f:f4: c7:01:fb:c5:8c:3e:d7:71:2e:72:2b:f0:76:64:a5: c0:2b:ca:ef:0e:69:fa:63:cd:3b:16:9d:19:77:55: bb:44:b1:91:f3:74:48:cb:27:21:f8:5d:60:70:41: 82:b0:9b:f7:0f:2e:99:d3:be:10:82:73:82:ac:f5: 95:7f:49:9e:5d:5d:df:08:15:78:c4:48:c3:46:7c: ce:08:68:de:ee:bf:33:bf:05:44:4e:71:63:3a:fc: d2:1c:96:04:48:7c:dc:c4:87:e8:bc:83:35:cd:2f: 9b:02:e7:92:0a:d2:f6:4a:4b:1c:6a:20:ca:e5:85: 7f:0e:e1:a1:45:e2:79:29:96:d6:4d:42:5b:69:d5: b3:72:a1:92:ba:82:49:e9:88:e4:87:1c:8e:80:08: 92:6b:b3:63:47:37:23:20:be:28:ef:f7:51:f7:80: 29:bc:dc:16:64:02:67:f0:da:c5:f4:c6:ff:a0:ca: f8:1e:59:a8:54:ca:45:95:54:50:bd:7e:4e:f4:30: d3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:20:40:04:55:79:D9:05:62:CA:60:3C:5C:6F:83:C5:41:7C:54:5E X509v3 Authority Key Identifier: keyid:A1:42:15:95:C9:88:FB:26:53:65:EB:9C:A1:FA:3F:17:FC:57:07:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUIVlcmI-yZTZeucofo_F_xXB28.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:c3:1b:3a:57:e6:31:4d:3b:42:29:f5:4c:7c:a5:dc:1d:29: 2e:20:3b:3b:68:54:35:22:03:25:f3:e1:0a:b8:b3:c6:61:77: e8:ca:a0:5a:41:b4:8e:3f:19:26:01:7b:26:5d:50:e1:d2:66: aa:93:95:c5:05:dc:3f:87:70:19:8a:d0:d6:4d:29:96:35:42: 06:20:7d:39:42:6d:77:08:17:0d:70:74:89:b7:c0:46:ba:dd: b5:ab:8f:41:3c:10:26:05:0f:30:4c:cf:28:db:c0:1c:bb:6f: 26:1f:27:b0:ea:34:ab:7a:76:55:37:b8:15:52:75:79:fd:d8: 13:95:59:fe:11:22:fd:b8:8f:3f:62:c9:15:8a:44:68:9a:ff: 5d:bd:24:62:19:3a:57:51:6c:24:5e:0a:61:00:a1:11:e8:75: e6:e4:d6:70:19:a8:88:d8:d1:5a:7f:06:03:5e:a2:27:ce:ee: 91:55:f4:1e:64:7c:9f:76:37:f6:d3:8a:d5:46:4c:45:66:69: 16:f8:4e:99:b6:4b:36:30:7f:c5:5f:78:09:1e:af:cf:d7:00: e8:cb:73:d6:aa:9d:a9:55:bd:3b:52:bd:ef:7f:e7:47:3a:dd: 9f:f0:4e:5a:89:85:78:40:db:b2:2b:db:87:b1:a9:3f:3e:8c: 0d:94:a8:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD16Q0a27RefvKVaKcCsUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExNDIxNTk1Yzk4OGZiMjY1MzY1ZWI5Y2ExZmEzZjE3ZmM1 NzA3NmYwHhcNMjYwMjA5MTEwMDI5WhcNMjYwMjEwMTEwMDI5WjAzMTEwLwYDVQQD Eyg3NjIwNDAwNDU1NzlkOTA1NjJjYTYwM2M1YzZmODNjNTQxN2M1NDVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0yqjQe1kIyAIFLgthGDlPEFQ4+t0 Z5t+iPQALHBgZZviyHh99PHXmR3pHHvk6BnZE0siMGqItntdL/THAfvFjD7XcS5y K/B2ZKXAK8rvDmn6Y807Fp0Zd1W7RLGR83RIyych+F1gcEGCsJv3Dy6Z074QgnOC rPWVf0meXV3fCBV4xEjDRnzOCGje7r8zvwVETnFjOvzSHJYESHzcxIfovIM1zS+b AueSCtL2SkscaiDK5YV/DuGhReJ5KZbWTUJbadWzcqGSuoJJ6YjkhxyOgAiSa7Nj RzcjIL4o7/dR94ApvNwWZAJn8NrF9Mb/oMr4HlmoVMpFlVRQvX5O9DDTuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHYgQARVedkFYspgPFxvg8VBfFReMB8GA1UdIwQY MBaAFKFCFZXJiPsmU2XrnKH6Pxf8VwdvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1VJVmxjbUkteVpUWmV1Y29mb19GX3hYQjI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9kNjI1YzUtNzkwYy00YjUxLTllZjEt YmFlZjRlYmY2OGRhLzEvb1VJVmxjbUkteVpUWmV1Y29mb19GX3hYQjI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi9kNjI1YzUtNzkwYy00YjUxLTllZjEtYmFlZjRlYmY2OGRh LzEvb1VJVmxjbUkteVpUWmV1Y29mb19GX3hYQjI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD8MbOlfm MU07Qin1THyl3B0pLiA7O2hUNSIDJfPhCrizxmF36MqgWkG0jj8ZJgF7Jl1Q4dJm qpOVxQXcP4dwGYrQ1k0pljVCBiB9OUJtdwgXDXB0ibfARrrdtauPQTwQJgUPMEzP KNvAHLtvJh8nsOo0q3p2VTe4FVJ1ef3YE5VZ/hEi/biPP2LJFYpEaJr/Xb0kYhk6 V1FsJF4KYQChEeh15uTWcBmoiNjRWn8GA16iJ87ukVX0HmR8n3Y39tOK1UZMRWZp FvhOmbZLNjB/xV94CR6vz9cA6Mtz1qqdqVW9O1K973/nRzrdn/BOWomFeEDbsivb h7GpPz6MDZSogQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:37 2026 by rpki-client