This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.mft File: roOCT9wp6-SsKGygGETfhtTXXsA.mft (raw, json) Hash identifier: TyNhSJjySLatzuJwtNLnTnwDj4Wikd8zCjj6D9FvIW0= Subject key identifier: B3:6F:B3:30:2E:F6:79:48:92:32:39:65:42:84:75:8E:8E:50:F6:E6 Authority key identifier: AE:83:82:4F:DC:29:EB:E4:AC:28:6C:A0:18:44:DF:86:D4:D7:5E:C0 Certificate issuer: /CN=ae83824fdc29ebe4ac286ca01844df86d4d75ec0 Certificate serial: 019C438FC2579ACA55593A528C4046FDA5EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/roOCT9wp6-SsKGygGETfhtTXXsA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.mft Manifest number: 0436 Signing time: Mon 09 Feb 2026 18:00:20 +0000 Manifest this update: Mon 09 Feb 2026 18:00:20 +0000 Manifest next update: Tue 10 Feb 2026 18:00:20 +0000 Files and hashes: 1: 5LuAukBT-PYtoVc1x_YPxle1wsc.roa (hash: h17Dfweg2VbRUUt3KQP8Gh9v6kUcdiw65gP5QtU0txQ=) 2: roOCT9wp6-SsKGygGETfhtTXXsA.crl (hash: wIXq8sD8WQ0aFqOBk9zPt0dz26DgUo3ELqWQC0spirU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.crl rsync://rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.mft rsync://rpki.ripe.net/repository/DEFAULT/roOCT9wp6-SsKGygGETfhtTXXsA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:c2:57:9a:ca:55:59:3a:52:8c:40:46:fd:a5:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae83824fdc29ebe4ac286ca01844df86d4d75ec0 Validity Not Before: Feb 9 18:00:20 2026 GMT Not After : Feb 10 18:00:20 2026 GMT Subject: CN=b36fb3302ef67948923239654284758e8e50f6e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:bc:0e:29:26:f0:92:7f:af:cc:d5:4e:8b:2b: 7e:7a:0a:96:4d:3c:e5:3c:84:4e:f5:85:6f:cb:ab: ae:10:38:3f:3f:a3:aa:67:3d:5b:44:b8:8b:62:39: 36:8b:bd:45:b9:6b:b6:6e:42:22:03:5a:25:23:0b: 65:e0:86:70:20:df:20:88:ed:6b:a6:2a:72:e1:78: 08:d5:b3:8a:d9:e8:9c:d4:fb:5e:2c:8e:a7:a3:9b: 29:4f:c7:f4:03:25:08:56:a4:b9:ae:72:ab:76:05: f9:b5:8d:76:27:be:1e:71:2f:6a:08:15:26:0b:aa: 18:3b:3a:b8:27:a4:12:42:25:91:0c:26:36:dd:8b: 88:80:9b:ff:ff:25:b8:23:cb:b8:51:46:33:19:92: 0e:ac:5a:a5:f2:b9:32:74:47:ec:0a:ed:a7:5e:ff: 28:e9:10:66:e9:f5:7f:3b:47:61:b3:24:4a:70:ff: bc:48:ce:bb:55:31:de:e2:b5:27:27:0c:5b:07:94: 52:3d:0b:9c:6b:7a:cb:21:63:3b:80:f2:56:3e:a0: 59:41:1b:90:de:0d:39:c4:15:71:c4:b6:7f:61:50: 1d:e3:d5:9e:96:ca:d7:59:a1:fe:a5:ec:99:28:c9: d0:d9:11:c5:77:ca:46:b4:92:c3:f4:f4:51:5a:f6: 50:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:6F:B3:30:2E:F6:79:48:92:32:39:65:42:84:75:8E:8E:50:F6:E6 X509v3 Authority Key Identifier: keyid:AE:83:82:4F:DC:29:EB:E4:AC:28:6C:A0:18:44:DF:86:D4:D7:5E:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/roOCT9wp6-SsKGygGETfhtTXXsA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:95:3d:a2:b1:e4:01:4e:52:2f:ff:f5:0b:1d:37:a6:6b:7a: 09:53:eb:d6:6e:d8:ab:ab:de:f5:9d:ee:da:a3:57:69:81:20: e3:fa:90:41:45:e7:ae:24:2b:35:68:bf:22:22:7f:f5:76:c3: ab:c8:29:69:bf:f9:43:a1:57:45:c2:4c:89:56:bf:5d:1d:00: 7f:e4:55:71:da:81:70:f6:36:5f:4e:76:78:19:a1:f2:fe:d3: d5:c3:95:05:e6:2d:93:1d:f2:80:85:9f:53:07:53:92:fb:9a: 36:52:67:dd:3f:13:24:2f:f1:01:9f:e1:8b:51:72:b1:56:4e: 7e:eb:1c:f3:34:ef:35:7b:54:1a:66:75:2b:af:ad:7f:e0:68: 88:6e:80:f0:9a:44:e5:44:ed:ea:72:7f:8d:92:2c:a8:12:fe: 25:d3:7e:08:7c:62:a4:1a:59:c3:00:49:88:c9:fc:05:47:1a: c6:1b:df:a3:a7:3f:b3:53:94:c7:84:b8:6a:32:14:e3:85:cf: 4f:cf:7c:04:14:67:54:7b:88:ea:a6:22:da:84:e0:9a:94:7b: 03:b1:27:ed:2e:b3:02:ce:aa:ef:2f:b3:a2:31:33:4a:83:f5: 08:bb:34:2e:f8:bb:90:a9:28:85:13:f2:f2:0e:5e:58:d4:20: 21:bf:25:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj8JXmspVWTpSjEBG/aXvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlODM4MjRmZGMyOWViZTRhYzI4NmNhMDE4NDRkZjg2ZDRk NzVlYzAwHhcNMjYwMjA5MTgwMDIwWhcNMjYwMjEwMTgwMDIwWjAzMTEwLwYDVQQD EyhiMzZmYjMzMDJlZjY3OTQ4OTIzMjM5NjU0Mjg0NzU4ZThlNTBmNmU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7LwOKSbwkn+vzNVOiyt+egqWTTzl PIRO9YVvy6uuEDg/P6OqZz1bRLiLYjk2i71FuWu2bkIiA1olIwtl4IZwIN8giO1r pipy4XgI1bOK2eic1PteLI6no5spT8f0AyUIVqS5rnKrdgX5tY12J74ecS9qCBUm C6oYOzq4J6QSQiWRDCY23YuIgJv//yW4I8u4UUYzGZIOrFql8rkydEfsCu2nXv8o 6RBm6fV/O0dhsyRKcP+8SM67VTHe4rUnJwxbB5RSPQuca3rLIWM7gPJWPqBZQRuQ 3g05xBVxxLZ/YVAd49WelsrXWaH+peyZKMnQ2RHFd8pGtJLD9PRRWvZQuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLNvszAu9nlIkjI5ZUKEdY6OUPbmMB8GA1UdIwQY MBaAFK6Dgk/cKevkrChsoBhE34bU117AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm9PQ1Q5d3A2LVNzS0d5Z0dFVGZodFRYWHNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC83MTc0ZWUtMzA3Ni00OTZjLWIyNTkt OTcwMDU0NmI1NzExLzEvcm9PQ1Q5d3A2LVNzS0d5Z0dFVGZodFRYWHNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC83MTc0ZWUtMzA3Ni00OTZjLWIyNTktOTcwMDU0NmI1NzEx LzEvcm9PQ1Q5d3A2LVNzS0d5Z0dFVGZodFRYWHNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF5U9orHk AU5SL//1Cx03pmt6CVPr1m7Yq6ve9Z3u2qNXaYEg4/qQQUXnriQrNWi/IiJ/9XbD q8gpab/5Q6FXRcJMiVa/XR0Af+RVcdqBcPY2X052eBmh8v7T1cOVBeYtkx3ygIWf UwdTkvuaNlJn3T8TJC/xAZ/hi1FysVZOfusc8zTvNXtUGmZ1K6+tf+BoiG6A8JpE 5UTt6nJ/jZIsqBL+JdN+CHxipBpZwwBJiMn8BUcaxhvfo6c/s1OUx4S4ajIU44XP T898BBRnVHuI6qYi2oTgmpR7A7En7S6zAs6q7y+zojEzSoP1CLs0Lvi7kKkohRPy 8g5eWNQgIb8lSQ== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:58 2026 by rpki-client