This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft File: ogqr6NvAhXg0PCW4xomHpevAOMk.mft (raw, json) Hash identifier: mrcYhE83Ov4gVcIO1eWCHH+/+5YAcydK8ygycZ8eHnU= Subject key identifier: 43:86:2B:0B:12:AF:7F:5E:8D:1F:2A:58:E1:F1:37:AC:CB:38:7F:B0 Authority key identifier: A2:0A:AB:E8:DB:C0:85:78:34:3C:25:B8:C6:89:87:A5:EB:C0:38:C9 Certificate issuer: /CN=a20aabe8dbc08578343c25b8c68987a5ebc038c9 Certificate serial: 019C43C73B428BBBAEE78842BA947EC98B93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogqr6NvAhXg0PCW4xomHpevAOMk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft Manifest number: 0260 Signing time: Mon 09 Feb 2026 19:00:56 +0000 Manifest this update: Mon 09 Feb 2026 19:00:56 +0000 Manifest next update: Tue 10 Feb 2026 19:00:56 +0000 Files and hashes: 1: ogqr6NvAhXg0PCW4xomHpevAOMk.crl (hash: ZT6QlH/wa4pGSqgFM3UrECskgRH+jMXtNimRDrOYTPA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.crl rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft rsync://rpki.ripe.net/repository/DEFAULT/ogqr6NvAhXg0PCW4xomHpevAOMk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:3b:42:8b:bb:ae:e7:88:42:ba:94:7e:c9:8b:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a20aabe8dbc08578343c25b8c68987a5ebc038c9 Validity Not Before: Feb 9 19:00:56 2026 GMT Not After : Feb 10 19:00:56 2026 GMT Subject: CN=43862b0b12af7f5e8d1f2a58e1f137accb387fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cf:0f:16:5e:2b:c8:30:05:2b:73:ef:de:35: 5a:20:62:db:d5:91:e0:0f:9c:2e:60:61:07:0a:80: 83:74:5c:5e:31:63:45:93:7a:22:f6:62:64:46:c5: a8:56:e8:45:28:50:a5:76:65:32:32:ce:6e:3c:39: d8:48:a7:67:0f:f3:6f:2c:34:f2:ff:b0:b3:f3:b4: 8b:b3:17:a4:96:c2:69:c7:91:d4:6f:af:eb:e9:21: 46:80:41:af:92:dd:4d:62:ee:57:1e:e9:6a:12:d2: ee:8c:0b:17:59:a4:5c:b9:ee:1a:1e:38:dd:88:17: fa:b2:af:aa:e9:e2:a8:d7:74:a1:b7:e0:ee:98:21: dd:bc:78:e8:ae:6d:51:f3:fe:20:80:13:5e:5f:43: 4a:92:00:a3:cf:0b:f8:35:73:4c:dd:bf:93:2f:36: b3:30:d9:4d:b7:93:a8:4b:81:11:30:ad:7a:ff:86: a8:16:ed:58:d3:e7:c8:61:b6:34:d7:93:55:1a:45: 30:37:77:82:e9:12:d4:87:d9:1e:23:48:fc:b6:57: 2f:dc:36:89:f6:ac:89:f2:43:27:9b:d1:f6:bf:99: 52:36:d3:57:00:01:e6:92:bd:45:90:e3:25:49:f6: 76:57:83:ab:63:88:e4:2d:18:8d:6c:40:09:57:fc: c2:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:86:2B:0B:12:AF:7F:5E:8D:1F:2A:58:E1:F1:37:AC:CB:38:7F:B0 X509v3 Authority Key Identifier: keyid:A2:0A:AB:E8:DB:C0:85:78:34:3C:25:B8:C6:89:87:A5:EB:C0:38:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogqr6NvAhXg0PCW4xomHpevAOMk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:67:10:d6:80:49:55:8b:76:40:70:5e:bb:b3:29:bf:4c:7e: 76:aa:51:20:bf:aa:23:57:e5:cd:97:e3:84:f3:ba:46:3e:cf: d2:26:19:82:77:6e:ad:ea:a8:df:1f:bb:32:a2:44:5a:c8:f0: 38:d3:e1:ff:45:1d:f9:c7:bf:31:5d:4c:ae:cb:01:07:60:a6: dd:ab:15:c5:73:3f:9d:0a:79:98:05:c6:96:29:b0:db:35:21: a8:71:7f:6e:80:3c:37:85:67:b3:30:c8:06:c0:e2:58:4e:af: 57:10:19:84:82:45:aa:d6:1f:1c:d4:4a:c9:24:6b:04:d0:83: 67:f4:13:f7:f2:79:a6:47:47:a9:fb:1c:ac:ef:b8:d4:40:60: 8a:c5:c6:95:2e:29:a5:41:90:cc:48:ed:77:cd:e3:d7:19:2d: 4c:af:51:a1:d9:77:15:1e:f9:3a:ce:06:4d:43:d1:11:12:b2: 34:76:fd:28:b3:9a:65:ee:f3:e5:84:c5:0a:45:5a:b7:94:f1: 79:13:5d:bd:56:32:89:5e:65:12:f5:6f:6e:e5:11:e9:6a:09: f7:a0:a0:4f:bc:27:03:10:fd:f5:2f:67:44:a7:c3:32:25:57: a3:ee:18:ff:a0:d6:26:56:97:a2:b2:ed:59:c6:9d:f5:63:42: 11:0d:bd:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxztCi7uu54hCupR+yYuTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyMGFhYmU4ZGJjMDg1NzgzNDNjMjViOGM2ODk4N2E1ZWJj MDM4YzkwHhcNMjYwMjA5MTkwMDU2WhcNMjYwMjEwMTkwMDU2WjAzMTEwLwYDVQQD Eyg0Mzg2MmIwYjEyYWY3ZjVlOGQxZjJhNThlMWYxMzdhY2NiMzg3ZmIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzc8PFl4ryDAFK3Pv3jVaIGLb1ZHg D5wuYGEHCoCDdFxeMWNFk3oi9mJkRsWoVuhFKFCldmUyMs5uPDnYSKdnD/NvLDTy /7Cz87SLsxeklsJpx5HUb6/r6SFGgEGvkt1NYu5XHulqEtLujAsXWaRcue4aHjjd iBf6sq+q6eKo13Sht+DumCHdvHjorm1R8/4ggBNeX0NKkgCjzwv4NXNM3b+TLzaz MNlNt5OoS4ERMK16/4aoFu1Y0+fIYbY015NVGkUwN3eC6RLUh9keI0j8tlcv3DaJ 9qyJ8kMnm9H2v5lSNtNXAAHmkr1FkOMlSfZ2V4OrY4jkLRiNbEAJV/zCZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEOGKwsSr39ejR8qWOHxN6zLOH+wMB8GA1UdIwQY MBaAFKIKq+jbwIV4NDwluMaJh6XrwDjJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2dxcjZOdkFoWGcwUENXNHhvbUhwZXZBT01rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC84N2NkMzMtZDYyMy00ZjExLWFjMjYt NzFkNjQ5YzNmZDM1LzEvb2dxcjZOdkFoWGcwUENXNHhvbUhwZXZBT01rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC84N2NkMzMtZDYyMy00ZjExLWFjMjYtNzFkNjQ5YzNmZDM1 LzEvb2dxcjZOdkFoWGcwUENXNHhvbUhwZXZBT01rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYmcQ1oBJ VYt2QHBeu7Mpv0x+dqpRIL+qI1flzZfjhPO6Rj7P0iYZgndureqo3x+7MqJEWsjw ONPh/0Ud+ce/MV1MrssBB2Cm3asVxXM/nQp5mAXGlimw2zUhqHF/boA8N4VnszDI BsDiWE6vVxAZhIJFqtYfHNRKySRrBNCDZ/QT9/J5pkdHqfscrO+41EBgisXGlS4p pUGQzEjtd83j1xktTK9Rodl3FR75Os4GTUPRERKyNHb9KLOaZe7z5YTFCkVat5Tx eRNdvVYyiV5lEvVvbuUR6WoJ96CgT7wnAxD99S9nRKfDMiVXo+4Y/6DWJlaXorLt Wcad9WNCEQ29mw== -----END CERTIFICATE-----Generated at Tue Feb 10 00:17:20 2026 by rpki-client