This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json) Hash identifier: hrDiBqu1FhaPfl08NxMLkweFvfTo6NwQIkxX3IrWWno= Subject key identifier: B4:E4:09:CB:00:59:00:C2:DE:35:05:6E:9F:81:76:53:4E:CC:A4:A1 Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91 Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91 Certificate serial: 019C42B4043CEDD998346E4B20A10533500B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft Manifest number: 0326 Signing time: Mon 09 Feb 2026 14:00:19 +0000 Manifest this update: Mon 09 Feb 2026 14:00:19 +0000 Manifest next update: Tue 10 Feb 2026 14:00:19 +0000 Files and hashes: 1: 9TrF8CvIENAUqcixyxTQa2bps6c.roa (hash: 45f33UvxirhWF+GLCEMK1OB/89v95KaqtgcQX1BWw+8=) 2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: b58xS8IMq8a3AfX4syTu+hp/V5NeI2GXr69spEL3scc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:04:3c:ed:d9:98:34:6e:4b:20:a1:05:33:50:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91 Validity Not Before: Feb 9 14:00:19 2026 GMT Not After : Feb 10 14:00:19 2026 GMT Subject: CN=b4e409cb005900c2de35056e9f8176534ecca4a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:5e:4e:02:69:63:07:fd:f7:28:d7:75:e8:e7: 6c:51:e1:3f:74:88:ca:d0:20:ce:4c:54:03:9b:b3: 91:bf:d9:8b:0c:1b:63:b8:c0:9a:1b:0d:4b:66:59: 1b:b1:aa:11:5a:77:8f:6c:08:29:cc:ca:e3:20:b6: 4a:14:41:fe:04:cb:e1:56:4b:58:e7:3a:00:0d:3a: ef:e1:9a:34:e7:b2:c2:81:ca:05:06:d6:65:9f:c8: ff:f2:66:62:57:55:61:8f:f3:e4:5c:1b:0f:c9:b5: 5c:8f:38:a8:8f:48:a0:84:b1:a2:e5:a5:22:bd:2e: f5:6c:93:0f:73:5a:79:ff:b8:44:10:29:93:17:84: 2a:42:89:8e:34:d3:3c:58:9a:a4:82:be:7f:53:bb: 15:ca:2d:cb:d9:f1:da:9a:ce:ba:d6:f9:37:21:62: a3:b3:15:43:6f:0c:2c:da:79:e5:d6:81:86:b5:e9: 21:56:15:f1:3e:ce:01:dd:c7:6e:9a:90:69:47:87: 48:ce:dc:45:39:41:74:8f:92:1a:6d:11:fd:eb:62: af:49:03:97:28:3a:be:b0:a9:72:cb:ab:86:dd:c6: 0f:05:0a:a1:b4:83:40:17:e0:54:e5:7c:63:40:24: 44:bb:be:2a:fd:4c:7c:b8:01:4e:f8:8d:78:c2:98: 9a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:E4:09:CB:00:59:00:C2:DE:35:05:6E:9F:81:76:53:4E:CC:A4:A1 X509v3 Authority Key Identifier: keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:19:65:cf:31:bd:ae:b9:07:da:43:22:43:c2:3d:2b:6c:6b: 2a:c5:57:a8:f7:f0:4a:b9:96:4d:fb:34:f0:49:06:ea:85:6e: e5:78:9a:d6:07:ab:3c:39:b1:02:25:5b:a6:da:14:14:cc:59: 05:6c:76:cd:ed:65:ee:1e:e9:3b:9f:24:9e:e7:dc:71:0c:03: 0c:33:01:7a:6c:ec:ab:1a:ef:b4:c8:34:ac:9c:b7:9e:ac:92: 9c:7e:9c:e9:bd:dd:89:51:1d:d0:66:4e:e6:d0:38:69:a8:b3: 69:a1:e5:c1:f6:2f:a6:93:1b:95:fe:08:cc:a8:7d:9f:21:66: c6:06:a9:12:08:35:c9:71:17:1e:24:6f:96:63:1c:ed:af:e8: ff:bf:2f:f6:e0:5a:de:67:f0:2e:09:59:08:3e:42:e9:25:01: 3a:24:b0:5d:5b:10:50:e6:5a:be:96:aa:fa:ba:a4:ce:a7:df: 20:a6:b8:02:d8:d3:c6:91:61:70:40:66:a1:db:16:a5:d9:61: dd:b7:30:1c:7d:0e:b4:b5:d6:c0:d7:72:b8:37:58:0d:9f:ca: e2:42:7a:67:f6:98:04:51:18:b7:26:b4:97:65:2a:50:8d:d8: bc:39:3b:42:a5:c6:c3:b4:ab:4a:de:57:81:0d:00:89:92:41: 4b:a0:2b:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtAQ87dmYNG5LIKEFM1ALMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxZGY4ZTAwMzdmMWFlODJmN2JlMjIzNWFlNjEyYzQwMTBm NmZlOTEwHhcNMjYwMjA5MTQwMDE5WhcNMjYwMjEwMTQwMDE5WjAzMTEwLwYDVQQD EyhiNGU0MDljYjAwNTkwMGMyZGUzNTA1NmU5ZjgxNzY1MzRlY2NhNGExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4V5OAmljB/33KNd16OdsUeE/dIjK 0CDOTFQDm7ORv9mLDBtjuMCaGw1LZlkbsaoRWnePbAgpzMrjILZKFEH+BMvhVktY 5zoADTrv4Zo057LCgcoFBtZln8j/8mZiV1Vhj/PkXBsPybVcjzioj0ighLGi5aUi vS71bJMPc1p5/7hEECmTF4QqQomONNM8WJqkgr5/U7sVyi3L2fHams661vk3IWKj sxVDbwws2nnl1oGGtekhVhXxPs4B3cdumpBpR4dIztxFOUF0j5IabRH962KvSQOX KDq+sKlyy6uG3cYPBQqhtINAF+BU5XxjQCREu74q/Ux8uAFO+I14wpiaYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLTkCcsAWQDC3jUFbp+BdlNOzKShMB8GA1UdIwQY MBaAFLHfjgA38a6C974iNa5hLEAQ9v6RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2QtT0FEZnhyb0wzdmlJMXJtRXNRQkQyX3BFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My82YjRhMTgtMDdiYy00MzUzLWI3ZWEt MTljYTUwY2YzNGFiLzEvc2QtT0FEZnhyb0wzdmlJMXJtRXNRQkQyX3BFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My82YjRhMTgtMDdiYy00MzUzLWI3ZWEtMTljYTUwY2YzNGFi LzEvc2QtT0FEZnhyb0wzdmlJMXJtRXNRQkQyX3BFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtRllzzG9 rrkH2kMiQ8I9K2xrKsVXqPfwSrmWTfs08EkG6oVu5Xia1gerPDmxAiVbptoUFMxZ BWx2ze1l7h7pO58knufccQwDDDMBemzsqxrvtMg0rJy3nqySnH6c6b3diVEd0GZO 5tA4aaizaaHlwfYvppMblf4IzKh9nyFmxgapEgg1yXEXHiRvlmMc7a/o/78v9uBa 3mfwLglZCD5C6SUBOiSwXVsQUOZavpaq+rqkzqffIKa4AtjTxpFhcEBmodsWpdlh 3bcwHH0OtLXWwNdyuDdYDZ/K4kJ6Z/aYBFEYtya0l2UqUI3YvDk7QqXGw7SrSt5X gQ0AiZJBS6ArPw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:07 2026 by rpki-client