This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft File: OXqyKGxnhx2rRXpygyl_yMaIpK8.mft (raw, json) Hash identifier: bQFd/TwvyPbW3YRHB7DD9TgB90dfKHWbvyEATaXRZDk= Subject key identifier: EA:C0:1B:3E:82:CD:C7:C3:C5:F3:B5:9C:F7:67:ED:42:CC:9A:AD:F8 Authority key identifier: 39:7A:B2:28:6C:67:87:1D:AB:45:7A:72:83:29:7F:C8:C6:88:A4:AF Certificate issuer: /CN=397ab2286c67871dab457a7283297fc8c688a4af Certificate serial: 019C41D8B4636A08CCD0E98B483CC9571F89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 10:00:46 +0000 Manifest this update: Mon 09 Feb 2026 10:00:46 +0000 Manifest next update: Tue 10 Feb 2026 10:00:46 +0000 Files and hashes: 1: OXqyKGxnhx2rRXpygyl_yMaIpK8.crl (hash: axYHc7UpvgJW7d7Ltbis4PX+7VxZjZLtfiSWDOevhbM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.crl rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:b4:63:6a:08:cc:d0:e9:8b:48:3c:c9:57:1f:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=397ab2286c67871dab457a7283297fc8c688a4af Validity Not Before: Feb 9 10:00:46 2026 GMT Not After : Feb 10 10:00:46 2026 GMT Subject: CN=eac01b3e82cdc7c3c5f3b59cf767ed42cc9aadf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:0d:b9:d8:bc:87:29:30:9a:0f:fb:b7:df:1f: bb:5b:2f:b3:26:18:5c:d5:18:6f:4e:f8:e8:b3:f3: 4e:f1:2a:ba:17:bf:de:47:10:51:dc:60:92:df:44: 2b:f3:5a:b7:62:62:b8:98:2e:74:5f:8b:3e:7b:a1: 26:d2:6e:e4:50:a9:21:3c:13:a1:15:c0:58:d3:b0: 5d:8b:7f:bb:d3:d7:4f:60:b3:7a:44:b2:50:d8:12: 3c:48:63:df:e0:4d:29:65:30:05:7d:49:31:cf:86: 85:35:c2:5b:ed:74:ae:5a:56:c9:14:5d:23:3a:b2: 64:83:1e:ca:37:fc:c7:10:95:ab:d2:b0:1d:15:cf: 30:32:9e:df:80:fe:2e:ac:c3:e3:53:b1:60:a8:4e: e5:1d:5b:7e:35:67:bc:01:f5:a3:81:64:6a:9d:dc: f7:3a:7b:9e:40:2e:8b:6b:eb:88:8b:6e:21:00:03: e3:d3:9b:93:52:4f:36:11:0b:37:b3:5a:5e:4b:cd: f4:35:0e:26:a2:5e:5b:a9:70:11:90:49:22:03:8a: a1:0b:65:3f:73:ad:3f:6a:f7:5d:c6:aa:20:42:94: 01:5b:94:45:f3:9d:0e:93:43:a1:50:34:87:d4:ea: ea:6e:69:46:c3:00:d7:d1:28:a2:b8:99:fb:76:c3: a4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C0:1B:3E:82:CD:C7:C3:C5:F3:B5:9C:F7:67:ED:42:CC:9A:AD:F8 X509v3 Authority Key Identifier: keyid:39:7A:B2:28:6C:67:87:1D:AB:45:7A:72:83:29:7F:C8:C6:88:A4:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b7:b5:f1:74:35:aa:85:22:42:bd:f6:28:b4:7f:f9:eb:0a:83: a8:aa:df:b8:15:78:9e:f0:77:40:c8:ff:b1:e3:2d:1f:ff:ce: cb:b5:92:5e:35:80:4b:3c:4a:d4:b5:00:59:13:97:0e:64:1e: 9a:da:cc:21:2d:eb:9d:9a:11:68:36:9f:c1:86:0a:60:76:5a: 4d:5a:71:7a:00:c4:4f:b5:4d:a3:26:a0:c5:4d:73:67:2c:ae: 7f:7f:84:35:a4:1e:62:dc:34:00:ec:23:6e:da:ee:69:f5:e8: 6c:64:19:51:bd:1e:e9:7d:01:97:19:dd:92:0c:08:01:15:fe: a7:34:57:5d:f3:e1:c6:28:9b:80:3c:4a:3b:c2:43:1c:ef:d2: f2:3c:39:ad:0c:25:ce:e3:74:a4:b3:b4:df:00:75:83:c3:25: ad:db:bd:17:98:10:07:51:ed:24:4e:01:bc:b2:2d:85:a8:2d: 38:48:77:70:f5:00:9c:68:48:76:2a:13:69:30:ae:b3:08:a7: b7:0a:08:bb:d6:c4:dd:f3:a1:53:df:48:a0:3f:5c:1e:c4:8e: 17:96:36:6f:98:63:cc:59:a4:85:ed:dd:e6:b7:db:04:4a:ee: 29:b5:8c:20:62:7a:3f:ff:d1:e0:78:d1:40:32:89:16:db:6b: 06:a3:f0:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2LRjagjM0OmLSDzJVx+JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5N2FiMjI4NmM2Nzg3MWRhYjQ1N2E3MjgzMjk3ZmM4YzY4 OGE0YWYwHhcNMjYwMjA5MTAwMDQ2WhcNMjYwMjEwMTAwMDQ2WjAzMTEwLwYDVQQD EyhlYWMwMWIzZTgyY2RjN2MzYzVmM2I1OWNmNzY3ZWQ0MmNjOWFhZGY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjA252LyHKTCaD/u33x+7Wy+zJhhc 1RhvTvjos/NO8Sq6F7/eRxBR3GCS30Qr81q3YmK4mC50X4s+e6Em0m7kUKkhPBOh FcBY07Bdi3+709dPYLN6RLJQ2BI8SGPf4E0pZTAFfUkxz4aFNcJb7XSuWlbJFF0j OrJkgx7KN/zHEJWr0rAdFc8wMp7fgP4urMPjU7FgqE7lHVt+NWe8AfWjgWRqndz3 OnueQC6La+uIi24hAAPj05uTUk82EQs3s1peS830NQ4mol5bqXARkEkiA4qhC2U/ c60/avddxqogQpQBW5RF850Ok0OhUDSH1OrqbmlGwwDX0SiiuJn7dsOkvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOrAGz6CzcfDxfO1nPdn7ULMmq34MB8GA1UdIwQY MBaAFDl6sihsZ4cdq0V6coMpf8jGiKSvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1hxeUtHeG5oeDJyUlhweWd5bF95TWFJcEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8yYjIxMjQtODc5NC00YThiLTk5MzAt MzMyM2ZkMDYwYjliLzEvT1hxeUtHeG5oeDJyUlhweWd5bF95TWFJcEs4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni8yYjIxMjQtODc5NC00YThiLTk5MzAtMzMyM2ZkMDYwYjli LzEvT1hxeUtHeG5oeDJyUlhweWd5bF95TWFJcEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt7XxdDWq hSJCvfYotH/56wqDqKrfuBV4nvB3QMj/seMtH//Oy7WSXjWASzxK1LUAWROXDmQe mtrMIS3rnZoRaDafwYYKYHZaTVpxegDET7VNoyagxU1zZyyuf3+ENaQeYtw0AOwj btruafXobGQZUb0e6X0BlxndkgwIARX+pzRXXfPhxiibgDxKO8JDHO/S8jw5rQwl zuN0pLO03wB1g8Mlrdu9F5gQB1HtJE4BvLIthagtOEh3cPUAnGhIdioTaTCuswin twoIu9bE3fOhU99IoD9cHsSOF5Y2b5hjzFmkhe3d5rfbBEruKbWMIGJ6P//R4HjR QDKJFttrBqPw8Q== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:53 2026 by rpki-client