This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft File: oJRwOdnwgKQn91JcXQZvbPYhNPM.mft (raw, json) Hash identifier: +wbKfgV6/wR7BHYU1sgzqsnp10uj11fdeYEVa4n5Njs= Subject key identifier: 8C:DF:A4:33:C1:E4:AB:12:03:69:04:EB:ED:39:02:10:EA:D9:C2:C8 Authority key identifier: A0:94:70:39:D9:F0:80:A4:27:F7:52:5C:5D:06:6F:6C:F6:21:34:F3 Certificate issuer: /CN=a0947039d9f080a427f7525c5d066f6cf62134f3 Certificate serial: 019C427D3D99DA8BF5FF1137CD66E5E14C42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft Manifest number: 098A Signing time: Mon 09 Feb 2026 13:00:29 +0000 Manifest this update: Mon 09 Feb 2026 13:00:29 +0000 Manifest next update: Tue 10 Feb 2026 13:00:29 +0000 Files and hashes: 1: YQbAqJ7asgFGYO3z_k0v9YgK57g.roa (hash: RmvGtF2+R8JrPIka6fJbEr327La/wJJ+N/n7t1M8mPI=) 2: oJRwOdnwgKQn91JcXQZvbPYhNPM.crl (hash: kHPdzT2zrYuRm8kU2Cm+Jgim85X5B0bWDWhZ7Sa87RU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.crl rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:3d:99:da:8b:f5:ff:11:37:cd:66:e5:e1:4c:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0947039d9f080a427f7525c5d066f6cf62134f3 Validity Not Before: Feb 9 13:00:29 2026 GMT Not After : Feb 10 13:00:29 2026 GMT Subject: CN=8cdfa433c1e4ab12036904ebed390210ead9c2c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c1:7a:e0:21:81:4b:9b:d4:22:f5:ce:d8:c1: cb:12:f9:81:26:4f:df:fa:4d:60:9d:76:f6:3b:80: 47:34:d7:48:6e:a5:0d:88:14:51:c9:4a:bb:5d:fd: 75:d8:7a:9a:a8:93:55:6a:5c:f2:1e:3b:ae:aa:dc: 7d:d0:24:bb:e6:2e:7c:e5:dc:2b:2f:e1:a8:29:5d: d2:80:b6:91:d3:f8:a2:35:16:c0:e2:17:4e:c5:ab: c1:2b:e9:7b:f3:04:66:a0:9d:f1:28:02:52:af:e8: eb:07:68:2a:cf:ee:78:5b:9e:43:72:f5:54:72:15: 08:15:ad:3f:5c:56:fa:05:c8:b7:86:c0:f7:50:a3: 57:8e:ea:f4:fc:49:bb:3b:f3:8d:df:f2:d4:ab:b4: ea:09:d3:97:2b:7d:67:24:d9:5b:15:79:99:ea:88: 64:e2:56:be:3c:53:18:d6:4b:f7:c7:cc:29:c7:19: 6c:10:45:e9:07:6b:c6:ff:aa:a4:25:4d:e4:98:8f: 98:6e:69:13:07:44:52:d4:23:35:55:68:27:d1:d2: 24:53:72:49:4e:80:ac:55:fd:02:3f:38:83:41:4b: 5e:86:4f:7d:0d:1d:73:30:81:66:bd:27:16:9b:e2: ca:92:5f:fd:78:bd:e4:17:4e:cd:52:e5:91:65:ba: 3f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:DF:A4:33:C1:E4:AB:12:03:69:04:EB:ED:39:02:10:EA:D9:C2:C8 X509v3 Authority Key Identifier: keyid:A0:94:70:39:D9:F0:80:A4:27:F7:52:5C:5D:06:6F:6C:F6:21:34:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJRwOdnwgKQn91JcXQZvbPYhNPM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e3b921-a76b-41f0-b244-c8b3ac0befcb/1/oJRwOdnwgKQn91JcXQZvbPYhNPM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:ed:d8:14:a8:06:95:9e:36:ec:83:f2:8b:fb:98:ba:d9:bd: 3f:bb:ab:dd:b9:b5:6a:dc:e8:97:8c:cf:1e:5d:4e:19:47:bc: c3:3c:5b:cf:c7:03:32:96:bf:d1:12:08:cd:76:ec:4a:9f:16: 92:e9:9c:f4:7b:ac:0f:6f:3c:ba:b0:d1:68:70:87:02:32:d1: 3e:aa:59:14:95:dd:08:63:c9:7a:4f:3d:fe:dd:f9:c5:2a:f3: 93:d3:e3:42:5d:6d:a2:5b:1c:67:5a:9a:d2:ee:cf:74:2d:f9: 00:1c:67:95:af:84:06:11:43:48:95:14:68:5b:50:19:4b:d4: 19:7b:4c:81:30:14:cf:03:af:53:40:55:e3:b7:b6:95:d4:6b: e8:de:0b:70:7b:7f:a4:ea:95:29:b9:c6:df:e6:ff:e6:4b:25: 71:43:40:b4:1a:4c:79:f1:2d:8c:b8:7b:c2:d3:85:50:37:10: a5:79:f1:76:b8:82:dc:bc:e9:a9:64:96:69:ed:3e:0a:18:9c: fa:cf:48:e9:04:6f:a0:40:a6:34:3d:53:50:12:60:e4:67:8b: 02:53:01:a8:ef:2f:5e:d8:a5:74:5e:28:72:56:86:69:40:d8: 3b:dc:ce:84:8d:22:b9:b8:82:12:7d:5d:f8:44:4e:88:98:31: c1:9b:7d:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfT2Z2ov1/xE3zWbl4UxCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwOTQ3MDM5ZDlmMDgwYTQyN2Y3NTI1YzVkMDY2ZjZjZjYy MTM0ZjMwHhcNMjYwMjA5MTMwMDI5WhcNMjYwMjEwMTMwMDI5WjAzMTEwLwYDVQQD Eyg4Y2RmYTQzM2MxZTRhYjEyMDM2OTA0ZWJlZDM5MDIxMGVhZDljMmM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA38F64CGBS5vUIvXO2MHLEvmBJk/f +k1gnXb2O4BHNNdIbqUNiBRRyUq7Xf112HqaqJNValzyHjuuqtx90CS75i585dwr L+GoKV3SgLaR0/iiNRbA4hdOxavBK+l78wRmoJ3xKAJSr+jrB2gqz+54W55DcvVU chUIFa0/XFb6Bci3hsD3UKNXjur0/Em7O/ON3/LUq7TqCdOXK31nJNlbFXmZ6ohk 4la+PFMY1kv3x8wpxxlsEEXpB2vG/6qkJU3kmI+YbmkTB0RS1CM1VWgn0dIkU3JJ ToCsVf0CPziDQUtehk99DR1zMIFmvScWm+LKkl/9eL3kF07NUuWRZbo/pQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIzfpDPB5KsSA2kE6+05AhDq2cLIMB8GA1UdIwQY MBaAFKCUcDnZ8ICkJ/dSXF0Gb2z2ITTzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0pSd09kbndnS1FuOTFKY1hRWnZiUFloTlBNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9lM2I5MjEtYTc2Yi00MWYwLWIyNDQt YzhiM2FjMGJlZmNiLzEvb0pSd09kbndnS1FuOTFKY1hRWnZiUFloTlBNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS9lM2I5MjEtYTc2Yi00MWYwLWIyNDQtYzhiM2FjMGJlZmNi LzEvb0pSd09kbndnS1FuOTFKY1hRWnZiUFloTlBNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX+3YFKgG lZ427IPyi/uYutm9P7ur3bm1atzol4zPHl1OGUe8wzxbz8cDMpa/0RIIzXbsSp8W kumc9HusD288urDRaHCHAjLRPqpZFJXdCGPJek89/t35xSrzk9PjQl1tolscZ1qa 0u7PdC35ABxnla+EBhFDSJUUaFtQGUvUGXtMgTAUzwOvU0BV47e2ldRr6N4LcHt/ pOqVKbnG3+b/5kslcUNAtBpMefEtjLh7wtOFUDcQpXnxdriC3LzpqWSWae0+Chic +s9I6QRvoECmND1TUBJg5GeLAlMBqO8vXtildF4oclaGaUDYO9zOhI0iubiCEn1d +EROiJgxwZt9bg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:39 2026 by rpki-client