This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/23bd5e-f7e4-4d9d-b573-507563885403/1/oewv8gIW07xkdbhQpGXjYvTs7s0.mft File: oewv8gIW07xkdbhQpGXjYvTs7s0.mft (raw, json) Hash identifier: vaDuH/0FmAkZwPemJ5UoCKWHaK8z0Vr2cL5cMl/kwUo= Subject key identifier: BF:E2:FA:7E:FE:38:A0:AD:39:0A:39:69:48:45:68:35:BB:71:C9:F3 Authority key identifier: A1:EC:2F:F2:02:16:D3:BC:64:75:B8:50:A4:65:E3:62:F4:EC:EE:CD Certificate issuer: /CN=a1ec2ff20216d3bc6475b850a465e362f4eceecd Certificate serial: 019C42102F95DF940E27CA3EECAB27904A40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oewv8gIW07xkdbhQpGXjYvTs7s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/23bd5e-f7e4-4d9d-b573-507563885403/1/oewv8gIW07xkdbhQpGXjYvTs7s0.mft Manifest number: 0491 Signing time: Mon 09 Feb 2026 11:01:22 +0000 Manifest this update: Mon 09 Feb 2026 11:01:22 +0000 Manifest next update: Tue 10 Feb 2026 11:01:22 +0000 Files and hashes: 1: oewv8gIW07xkdbhQpGXjYvTs7s0.crl (hash: pVWFHsoxc4WY4FcPDIOJqTk6JAHRZIEiE1uz9gGLYYk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/23bd5e-f7e4-4d9d-b573-507563885403/1/oewv8gIW07xkdbhQpGXjYvTs7s0.crl rsync://rpki.ripe.net/repository/DEFAULT/52/23bd5e-f7e4-4d9d-b573-507563885403/1/oewv8gIW07xkdbhQpGXjYvTs7s0.mft rsync://rpki.ripe.net/repository/DEFAULT/oewv8gIW07xkdbhQpGXjYvTs7s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:2f:95:df:94:0e:27:ca:3e:ec:ab:27:90:4a:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1ec2ff20216d3bc6475b850a465e362f4eceecd Validity Not Before: Feb 9 11:01:22 2026 GMT Not After : Feb 10 11:01:22 2026 GMT Subject: CN=bfe2fa7efe38a0ad390a396948456835bb71c9f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0d:f2:d2:0c:8a:06:63:1e:9e:bf:17:5b:92: 7e:7a:58:c6:15:7a:08:76:7b:fc:3f:8a:ae:91:bf: d2:e3:26:8b:0f:71:d6:c5:fc:a7:35:d5:4a:34:53: 7e:03:e7:ed:30:4e:70:55:e4:56:03:ec:c4:68:24: fc:96:4b:c0:94:b0:84:4b:4f:68:ab:bb:8c:5a:58: 8a:7a:e4:42:f6:77:2b:e2:7e:94:8b:5e:d9:be:25: 37:b9:52:64:f5:3f:3e:e3:55:0d:f3:f8:3d:b1:20: 57:a4:2c:44:89:e2:bb:12:8e:e3:67:6e:81:4d:69: cf:23:c1:93:67:b3:19:46:d7:5c:8d:97:67:e5:59: 49:bf:c0:9f:09:1f:e6:92:b0:03:c5:93:9d:04:32: c4:5b:53:a6:e4:ae:eb:83:15:17:b8:01:cc:be:6d: fd:4a:b4:c0:1f:73:4e:a8:90:c2:ab:73:04:bf:3e: 71:16:30:92:d4:99:23:34:21:e4:9a:9d:86:ed:2a: 5d:d0:62:30:d7:bf:5a:2a:a0:39:8b:38:1a:a0:f5: f4:85:67:a4:fa:15:b5:d5:55:a5:fa:92:71:7c:92: 57:2b:fe:1a:92:41:32:9d:ee:42:ef:5e:e3:b9:c1: 9c:41:d2:8f:56:b5:77:48:db:8b:cc:e7:ce:a8:ea: 1f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:E2:FA:7E:FE:38:A0:AD:39:0A:39:69:48:45:68:35:BB:71:C9:F3 X509v3 Authority Key Identifier: keyid:A1:EC:2F:F2:02:16:D3:BC:64:75:B8:50:A4:65:E3:62:F4:EC:EE:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oewv8gIW07xkdbhQpGXjYvTs7s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/23bd5e-f7e4-4d9d-b573-507563885403/1/oewv8gIW07xkdbhQpGXjYvTs7s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/23bd5e-f7e4-4d9d-b573-507563885403/1/oewv8gIW07xkdbhQpGXjYvTs7s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:f3:81:73:76:5d:b7:34:75:07:74:b6:57:01:81:d4:ed:76: 96:6a:76:04:83:5a:06:f3:7b:a6:48:f3:92:4a:44:42:2c:35: 6c:95:c1:0f:a3:2d:c9:9b:9e:b8:e1:bc:38:dd:d9:01:c5:a3: 63:54:7b:d4:93:5d:8e:a5:fc:4e:de:ea:38:b5:21:ba:71:cd: 20:ad:69:a3:7b:79:a2:d9:26:a1:9b:cb:c2:c2:ae:1d:0f:13: bb:64:27:ec:e2:e0:ba:8a:64:56:20:0a:99:6b:00:49:b7:4d: 5d:99:b3:4f:de:2a:cb:12:6f:22:6b:e3:90:3a:c7:d4:2d:ed: 12:53:a4:ed:ca:44:71:6c:c8:47:ed:23:08:f8:ff:4a:2f:42: 7e:25:b9:2c:61:cc:14:60:cc:90:1b:7a:f8:fb:b1:f6:c9:0f: 00:08:f2:b3:79:44:a8:5a:7e:bb:8b:89:1b:03:7f:ac:05:fa: bb:5c:42:23:dc:f0:ea:27:04:46:d8:62:4c:da:1f:9c:a2:b0: f7:5e:21:a3:87:23:01:c1:a2:3e:ea:17:b2:8d:f4:bc:40:04: 56:e4:71:3e:62:7b:ef:23:7b:57:a9:d3:64:25:aa:46:63:32: 32:df:05:d6:f6:b0:35:02:d0:33:d6:b4:57:54:43:65:c8:dd: 8a:75:17:91 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEC+V35QOJ8o+7KsnkEpAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExZWMyZmYyMDIxNmQzYmM2NDc1Yjg1MGE0NjVlMzYyZjRl Y2VlY2QwHhcNMjYwMjA5MTEwMTIyWhcNMjYwMjEwMTEwMTIyWjAzMTEwLwYDVQQD EyhiZmUyZmE3ZWZlMzhhMGFkMzkwYTM5Njk0ODQ1NjgzNWJiNzFjOWYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3w3y0gyKBmMenr8XW5J+eljGFXoI dnv8P4qukb/S4yaLD3HWxfynNdVKNFN+A+ftME5wVeRWA+zEaCT8lkvAlLCES09o q7uMWliKeuRC9ncr4n6Ui17ZviU3uVJk9T8+41UN8/g9sSBXpCxEieK7Eo7jZ26B TWnPI8GTZ7MZRtdcjZdn5VlJv8CfCR/mkrADxZOdBDLEW1Om5K7rgxUXuAHMvm39 SrTAH3NOqJDCq3MEvz5xFjCS1JkjNCHkmp2G7Spd0GIw179aKqA5izgaoPX0hWek +hW11VWl+pJxfJJXK/4akkEyne5C717jucGcQdKPVrV3SNuLzOfOqOoffwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL/i+n7+OKCtOQo5aUhFaDW7ccnzMB8GA1UdIwQY MBaAFKHsL/ICFtO8ZHW4UKRl42L07O7NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2V3djhnSVcwN3hrZGJoUXBHWGpZdlRzN3MwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8yM2JkNWUtZjdlNC00ZDlkLWI1NzMt NTA3NTYzODg1NDAzLzEvb2V3djhnSVcwN3hrZGJoUXBHWGpZdlRzN3MwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi8yM2JkNWUtZjdlNC00ZDlkLWI1NzMtNTA3NTYzODg1NDAz LzEvb2V3djhnSVcwN3hrZGJoUXBHWGpZdlRzN3MwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj/OBc3Zd tzR1B3S2VwGB1O12lmp2BINaBvN7pkjzkkpEQiw1bJXBD6MtyZueuOG8ON3ZAcWj Y1R71JNdjqX8Tt7qOLUhunHNIK1po3t5otkmoZvLwsKuHQ8Tu2Qn7OLguopkViAK mWsASbdNXZmzT94qyxJvImvjkDrH1C3tElOk7cpEcWzIR+0jCPj/Si9CfiW5LGHM FGDMkBt6+Pux9skPAAjys3lEqFp+u4uJGwN/rAX6u1xCI9zw6icERthiTNofnKKw 914ho4cjAcGiPuoXso30vEAEVuRxPmJ77yN7V6nTZCWqRmMyMt8F1vawNQLQM9a0 V1RDZcjdinUXkQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:57:13 2026 by rpki-client