This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft File: o4SlYxesgXmFG1cPDjp6oEToCKY.mft (raw, json) Hash identifier: cLclOZ1M7w94BVE2QhPBOA1jnuc2t3nHKgTleGdm6QQ= Subject key identifier: 7C:9D:4D:30:5D:D7:A4:72:60:E2:D3:83:EE:8F:A6:8E:C2:B1:87:CC Authority key identifier: A3:84:A5:63:17:AC:81:79:85:1B:57:0F:0E:3A:7A:A0:44:E8:08:A6 Certificate issuer: /CN=a384a56317ac8179851b570f0e3a7aa044e808a6 Certificate serial: 019C427CFF5001CC12393FF0908AAA8751C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft Manifest number: 0631 Signing time: Mon 09 Feb 2026 13:00:13 +0000 Manifest this update: Mon 09 Feb 2026 13:00:13 +0000 Manifest next update: Tue 10 Feb 2026 13:00:13 +0000 Files and hashes: 1: o4SlYxesgXmFG1cPDjp6oEToCKY.crl (hash: oWIflveXI4ggvhSsUdMBlblzdF+88jKcSGs6PsAp3qM=) 2: sucnq0ecm8m_nWAQ-4GJKwNEi2U.roa (hash: fAx7NlwCpyfEvSm9rr9kk8PoUxL5xfjmL9DDVwXszMw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.crl rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7c:ff:50:01:cc:12:39:3f:f0:90:8a:aa:87:51:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a384a56317ac8179851b570f0e3a7aa044e808a6 Validity Not Before: Feb 9 13:00:13 2026 GMT Not After : Feb 10 13:00:13 2026 GMT Subject: CN=7c9d4d305dd7a47260e2d383ee8fa68ec2b187cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:43:ac:23:14:51:13:7e:62:06:3c:5b:c3:fa: 27:dc:48:9f:e5:a0:60:2e:fe:a7:ce:1c:e2:db:33: ba:a3:90:29:ff:d3:07:ab:e2:06:93:f6:dc:9d:4a: a1:f9:08:3d:fd:08:6a:f5:01:22:5a:02:60:3d:1a: 9d:3c:26:09:c5:7c:0c:fd:73:fa:28:64:8e:c7:a5: df:b0:00:6c:97:01:59:36:8f:35:34:a1:08:2c:88: 70:c4:67:90:da:10:c6:01:98:84:8b:76:72:e6:3c: 2a:83:b1:d1:ee:50:05:54:a0:ca:dd:4b:fc:c2:be: 9e:17:7d:79:f4:fc:47:fe:a9:87:da:26:34:0a:12: c8:b9:28:3b:50:35:34:d1:04:b6:b1:7b:0d:bf:8b: 7c:92:05:91:f8:fa:95:ae:c3:7a:15:0b:23:08:f1: b4:d7:22:84:80:ed:6f:c8:91:8e:b5:6c:55:75:eb: c0:cf:9e:1e:ca:cf:bf:67:b5:f1:0b:10:c4:68:d0: fb:ef:e6:a3:0b:d5:3e:37:9f:db:00:3c:e0:a3:8f: 59:db:2f:ce:92:32:0c:83:10:61:fd:36:65:97:ee: 64:02:1e:19:0d:31:0a:6b:c6:4c:ad:88:c3:b2:a6: 61:bf:21:26:81:04:47:57:10:d1:b1:9b:39:af:1d: ec:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:9D:4D:30:5D:D7:A4:72:60:E2:D3:83:EE:8F:A6:8E:C2:B1:87:CC X509v3 Authority Key Identifier: keyid:A3:84:A5:63:17:AC:81:79:85:1B:57:0F:0E:3A:7A:A0:44:E8:08:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:3f:95:5b:9e:0c:6f:38:f7:6f:7b:6c:18:9f:fb:74:c6:12: db:29:3a:25:e6:4d:7a:6e:2f:a3:a4:b4:65:35:fd:0b:b7:bf: e9:a9:ab:c2:bc:20:c1:79:21:cd:bb:7e:7b:c6:b5:27:c1:18: 96:46:47:3c:6b:ab:ec:36:01:6a:6a:98:dd:87:82:e9:bc:4a: 75:ce:b6:c6:43:81:37:04:c0:36:4a:1b:45:4d:81:54:d6:d4: 2c:dc:30:b8:7c:19:0b:91:58:b1:fc:f9:ed:55:8e:08:1f:a7: f6:b8:fe:2f:f2:03:3b:85:b0:da:aa:23:39:fa:7f:6e:bd:e5: ab:de:5d:78:9a:eb:02:83:7c:9b:fb:5c:65:6d:ee:07:57:f2: 76:28:da:88:f9:2a:33:ff:4c:b4:bb:9d:1d:dd:ae:13:2d:7f: 74:2c:33:3c:9e:96:8e:2a:b9:60:3e:c2:dc:af:16:a9:9f:a1: 76:bc:78:e7:ca:04:fe:3b:ea:c9:26:83:ab:27:58:b6:fc:6b: b7:8b:8c:20:fb:8b:d8:e8:58:1c:cf:ab:85:b1:e0:5d:5e:b2: 0f:a8:4f:84:77:67:8c:e2:c9:9e:b4:bd:15:47:fa:33:0e:91: ec:e2:7d:31:30:ae:d3:ba:85:61:8e:1a:d8:39:42:0d:1c:08: 79:ac:27:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfP9QAcwSOT/wkIqqh1HCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzODRhNTYzMTdhYzgxNzk4NTFiNTcwZjBlM2E3YWEwNDRl ODA4YTYwHhcNMjYwMjA5MTMwMDEzWhcNMjYwMjEwMTMwMDEzWjAzMTEwLwYDVQQD Eyg3YzlkNGQzMDVkZDdhNDcyNjBlMmQzODNlZThmYTY4ZWMyYjE4N2NjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnkOsIxRRE35iBjxbw/on3Eif5aBg Lv6nzhzi2zO6o5Ap/9MHq+IGk/bcnUqh+Qg9/Qhq9QEiWgJgPRqdPCYJxXwM/XP6 KGSOx6XfsABslwFZNo81NKEILIhwxGeQ2hDGAZiEi3Zy5jwqg7HR7lAFVKDK3Uv8 wr6eF3159PxH/qmH2iY0ChLIuSg7UDU00QS2sXsNv4t8kgWR+PqVrsN6FQsjCPG0 1yKEgO1vyJGOtWxVdevAz54eys+/Z7XxCxDEaND77+ajC9U+N5/bADzgo49Z2y/O kjIMgxBh/TZll+5kAh4ZDTEKa8ZMrYjDsqZhvyEmgQRHVxDRsZs5rx3scwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHydTTBd16RyYOLTg+6Ppo7CsYfMMB8GA1UdIwQY MBaAFKOEpWMXrIF5hRtXDw46eqBE6AimMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzRTbFl4ZXNnWG1GRzFjUERqcDZvRVRvQ0tZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9jMmZiZTEtZGQ5ZC00MjA0LTkwNjYt ZTIyNWEyNDkzNzhlLzEvbzRTbFl4ZXNnWG1GRzFjUERqcDZvRVRvQ0tZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9jMmZiZTEtZGQ5ZC00MjA0LTkwNjYtZTIyNWEyNDkzNzhl LzEvbzRTbFl4ZXNnWG1GRzFjUERqcDZvRVRvQ0tZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALz+VW54M bzj3b3tsGJ/7dMYS2yk6JeZNem4vo6S0ZTX9C7e/6amrwrwgwXkhzbt+e8a1J8EY lkZHPGur7DYBamqY3YeC6bxKdc62xkOBNwTANkobRU2BVNbULNwwuHwZC5FYsfz5 7VWOCB+n9rj+L/IDO4Ww2qojOfp/br3lq95deJrrAoN8m/tcZW3uB1fydijaiPkq M/9MtLudHd2uEy1/dCwzPJ6Wjiq5YD7C3K8WqZ+hdrx458oE/jvqySaDqydYtvxr t4uMIPuL2OhYHM+rhbHgXV6yD6hPhHdnjOLJnrS9FUf6Mw6R7OJ9MTCu07qFYY4a 2DlCDRwIeawnLQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:52:53 2026 by rpki-client