This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft File: o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft (raw, json) Hash identifier: Ts8mhzJJ/WqGpG4pzRRLisspg163JPEXIHBP+hmlKQA= Subject key identifier: 2D:96:A5:3E:CB:8C:77:9D:AB:9A:83:33:C9:08:83:F5:65:52:A5:10 Authority key identifier: A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93 Certificate issuer: /CN=a3d3907f811cb83f16b816785e380bc24c8ac193 Certificate serial: 019C41D8916620AFA80DE00631CF4227CD1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft Manifest number: 151D Signing time: Mon 09 Feb 2026 10:00:37 +0000 Manifest this update: Mon 09 Feb 2026 10:00:37 +0000 Manifest next update: Tue 10 Feb 2026 10:00:37 +0000 Files and hashes: 1: Ne74LLa0nfzZuK4THnD6BGKIM7Q.roa (hash: jISOsp+VyfAbEpR6bMtcVFG4B/gUZHPkFBIPoaBcPQs=) 2: o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl (hash: BIsb1KBT3phAB+ppu347hy5vLd7JCJZM+82tit//i5Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:91:66:20:af:a8:0d:e0:06:31:cf:42:27:cd:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3d3907f811cb83f16b816785e380bc24c8ac193 Validity Not Before: Feb 9 10:00:37 2026 GMT Not After : Feb 10 10:00:37 2026 GMT Subject: CN=2d96a53ecb8c779dab9a8333c90883f56552a510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:73:6e:a6:de:7a:db:9e:a3:df:d1:e5:75:ca: ff:01:3c:4f:c6:65:1e:5e:2e:bf:ac:57:c7:bc:0d: 1f:d2:08:a0:13:a1:83:6c:3e:dc:0c:3c:a6:ad:9f: 14:9d:a1:c2:bb:9f:75:b1:be:95:25:14:68:77:8e: 0b:97:be:f3:2a:4d:35:e5:da:f1:28:79:29:df:2e: 65:28:26:56:01:29:25:d5:53:ba:29:c5:27:08:e7: 3d:a4:6d:e1:6c:ff:34:88:cb:90:c8:5d:98:db:ad: c6:ba:22:3b:f9:cf:2b:88:5c:4e:2a:38:dc:56:ef: 0d:cf:67:fb:58:40:75:36:20:93:ba:bc:27:29:ef: 2d:e9:11:53:58:96:f5:82:e9:04:5a:f1:ce:bb:3e: c7:9d:c6:4f:91:7d:24:1f:a1:3a:01:c4:cd:67:2c: 01:8d:68:9e:99:ad:ac:bb:3d:a9:9d:d5:25:1d:e5: 7a:ab:27:39:9d:be:01:19:40:fe:e1:30:cf:d1:62: 16:5d:35:2d:d7:b8:ef:9d:9b:50:5f:60:c0:1e:13: 49:c4:ec:53:b1:bd:43:d9:78:a9:1a:41:d8:43:5b: d7:a2:2a:9c:e4:f1:31:1a:79:fb:2c:ca:c9:25:04: 59:e2:ff:5f:fc:2e:4c:4a:2c:96:c9:e7:b0:9a:77: 99:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:96:A5:3E:CB:8C:77:9D:AB:9A:83:33:C9:08:83:F5:65:52:A5:10 X509v3 Authority Key Identifier: keyid:A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:d8:08:8c:35:44:62:91:8d:7b:90:72:c8:a2:60:1f:5f:33: a1:64:4f:8f:76:8b:1f:65:63:cf:e8:3c:c1:89:8f:5f:1c:1c: f2:de:86:9f:33:92:85:89:81:02:f7:60:46:31:03:3a:2e:97: 08:23:2e:c7:b2:f0:60:f7:42:31:f0:87:05:a5:f8:a5:63:8c: c2:5a:fa:17:33:45:a1:87:89:79:35:3e:1e:34:23:7d:db:e7: 4a:eb:8c:aa:c0:ec:74:df:a6:36:ba:c1:f4:18:c7:ac:7d:f0: b6:d6:e1:07:e6:c1:3c:9b:76:b1:95:c4:b6:3b:62:99:82:37: aa:dc:a9:b2:74:a6:e5:13:92:2c:9f:b6:b1:01:11:5f:51:8d: ef:a7:38:3c:1d:4e:9f:e8:a7:c8:69:56:36:e6:80:5e:f6:c0: 39:9e:3d:30:17:25:dd:3f:b4:0d:a5:02:f7:52:76:92:6a:0e: cd:7b:bd:6f:af:98:d1:64:a0:ce:57:9d:14:08:12:dd:ad:6a: 86:62:b9:08:ea:73:bd:41:5a:ff:be:06:d0:ca:9b:04:cd:c4: 3d:eb:16:2c:2c:6d:6f:57:51:b5:15:54:a6:69:f2:31:0d:f8: 29:99:ab:79:67:bd:fd:b8:76:a3:97:d4:bd:f0:96:0b:aa:5e: 26:e4:7a:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2JFmIK+oDeAGMc9CJ80aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzZDM5MDdmODExY2I4M2YxNmI4MTY3ODVlMzgwYmMyNGM4 YWMxOTMwHhcNMjYwMjA5MTAwMDM3WhcNMjYwMjEwMTAwMDM3WjAzMTEwLwYDVQQD EygyZDk2YTUzZWNiOGM3NzlkYWI5YTgzMzNjOTA4ODNmNTY1NTJhNTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3Nupt56256j39Hldcr/ATxPxmUe Xi6/rFfHvA0f0gigE6GDbD7cDDymrZ8UnaHCu591sb6VJRRod44Ll77zKk015drx KHkp3y5lKCZWASkl1VO6KcUnCOc9pG3hbP80iMuQyF2Y263GuiI7+c8riFxOKjjc Vu8Nz2f7WEB1NiCTurwnKe8t6RFTWJb1gukEWvHOuz7HncZPkX0kH6E6AcTNZywB jWiema2suz2pndUlHeV6qyc5nb4BGUD+4TDP0WIWXTUt17jvnZtQX2DAHhNJxOxT sb1D2XipGkHYQ1vXoiqc5PExGnn7LMrJJQRZ4v9f/C5MSiyWyeewmneZBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC2WpT7LjHedq5qDM8kIg/VlUqUQMB8GA1UdIwQY MBaAFKPTkH+BHLg/FrgWeF44C8JMisGTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzlPUWY0RWN1RDhXdUJaNFhqZ0x3a3lLd1pNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS80M2ViMDUtYWZmZS00Mjc0LTkxM2It MzMyMDI3MWZiM2FjLzEvbzlPUWY0RWN1RDhXdUJaNFhqZ0x3a3lLd1pNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS80M2ViMDUtYWZmZS00Mjc0LTkxM2ItMzMyMDI3MWZiM2Fj LzEvbzlPUWY0RWN1RDhXdUJaNFhqZ0x3a3lLd1pNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjtgIjDVE YpGNe5ByyKJgH18zoWRPj3aLH2Vjz+g8wYmPXxwc8t6GnzOShYmBAvdgRjEDOi6X CCMux7LwYPdCMfCHBaX4pWOMwlr6FzNFoYeJeTU+HjQjfdvnSuuMqsDsdN+mNrrB 9BjHrH3wttbhB+bBPJt2sZXEtjtimYI3qtypsnSm5ROSLJ+2sQERX1GN76c4PB1O n+inyGlWNuaAXvbAOZ49MBcl3T+0DaUC91J2kmoOzXu9b6+Y0WSgzledFAgS3a1q hmK5COpzvUFa/74G0MqbBM3EPesWLCxtb1dRtRVUpmnyMQ34KZmreWe9/bh2o5fU vfCWC6peJuR6Iw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:07:14 2026 by rpki-client