This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft File: o3F-pUuVlC-tgalD7bHBD535Svs.mft (raw, json) Hash identifier: mgwQ5wAyfvE1n6t9zFTjAf7TPQot86kjFFbk2uB5C00= Subject key identifier: F0:97:B5:D6:54:E7:FE:9F:1A:21:51:27:B4:61:75:26:B8:41:35:00 Authority key identifier: A3:71:7E:A5:4B:95:94:2F:AD:81:A9:43:ED:B1:C1:0F:9D:F9:4A:FB Certificate issuer: /CN=a3717ea54b95942fad81a943edb1c10f9df94afb Certificate serial: 019C420FB43AF3959056011EBF2A366F1C8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft Manifest number: 1797 Signing time: Mon 09 Feb 2026 11:00:51 +0000 Manifest this update: Mon 09 Feb 2026 11:00:51 +0000 Manifest next update: Tue 10 Feb 2026 11:00:51 +0000 Files and hashes: 1: QR6JCvg_yJC5a7s73DyQnmCM4I0.roa (hash: s2aQJ0ionOhGA/bORwEZg/xbj2CgaA7Pt0VzSP4Fylw=) 2: o3F-pUuVlC-tgalD7bHBD535Svs.crl (hash: 48Yqn44Jk5NRP+LUi9f2fmoLocDyki75ongFBDhPuC0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.crl rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:b4:3a:f3:95:90:56:01:1e:bf:2a:36:6f:1c:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3717ea54b95942fad81a943edb1c10f9df94afb Validity Not Before: Feb 9 11:00:51 2026 GMT Not After : Feb 10 11:00:51 2026 GMT Subject: CN=f097b5d654e7fe9f1a215127b4617526b8413500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d5:60:e3:7f:00:8d:93:00:7d:89:d1:cf:2b: 2b:b0:bc:a8:e5:78:a0:d3:4b:95:ed:27:35:28:63: 8a:12:2d:65:66:d5:46:e9:e1:50:19:3c:5f:be:fd: d3:64:1e:ae:ea:68:7c:8f:f6:d2:8c:83:a6:02:29: 15:5b:89:95:e2:49:4f:da:d0:4d:8d:8a:e1:04:22: 2a:8d:22:d6:89:8b:55:20:36:66:d2:61:cc:e7:1b: 00:c3:21:47:98:a9:21:96:d9:3d:7c:bf:a0:db:5d: d8:81:80:9d:54:9c:c9:88:6f:08:02:c4:6d:fc:32: a9:6c:27:ca:71:c9:d1:20:1d:ca:f2:dd:0e:fb:2c: 62:47:9a:8e:29:7c:8b:6a:49:42:12:d0:e1:84:d4: 8a:2a:8c:81:d4:a9:51:25:be:9d:36:56:c5:5a:f6: a4:f4:d0:36:bb:21:bd:f0:35:1f:2d:a6:6f:48:d0: 96:d1:15:92:cb:60:c1:49:18:2f:9b:a0:22:51:c6: 28:6a:63:5f:27:2b:7c:83:89:69:e5:92:4b:38:b7: a7:f1:a7:d6:15:09:2e:c3:b4:78:30:3c:27:1c:c6: d2:eb:d2:39:55:e9:9d:7e:6b:35:dc:eb:fa:ba:6d: b6:f1:76:32:a1:67:44:cb:df:79:b2:c5:b8:3d:e1: 5a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:97:B5:D6:54:E7:FE:9F:1A:21:51:27:B4:61:75:26:B8:41:35:00 X509v3 Authority Key Identifier: keyid:A3:71:7E:A5:4B:95:94:2F:AD:81:A9:43:ED:B1:C1:0F:9D:F9:4A:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:c5:b5:f4:89:68:28:8d:05:60:d8:7c:2b:08:97:23:09:54: 74:c0:33:3d:d6:a5:7e:6d:7b:df:0c:b3:56:8e:b8:02:24:a8: 7a:ad:49:4b:37:e6:3b:94:d2:01:99:04:f7:23:46:c6:48:86: 7f:7b:28:66:73:6a:f7:3e:14:ff:26:29:21:e4:21:ea:28:99: c0:b9:4f:a5:9e:98:45:b0:be:af:54:78:1f:d0:db:11:82:c3: b6:fc:e7:37:51:7b:ad:ea:89:4e:0d:2a:2f:73:57:c5:48:72: 9b:eb:73:3d:95:78:dd:4e:51:d1:c4:23:37:f0:13:21:56:dd: 32:fe:23:27:e2:d8:88:c4:ef:ba:ad:f8:a3:c0:f6:bf:d9:09: b7:4d:7b:37:70:25:5c:34:0f:df:27:c2:1d:7d:6b:a2:6c:e3: 30:b3:23:7f:29:ba:b7:5a:52:86:ce:3e:b6:1e:f2:f6:91:bf: 0c:71:5c:b0:37:b5:fa:7e:01:a5:ba:bc:14:b1:4d:4e:5e:14: 06:b8:ce:0e:b0:b6:03:83:83:89:09:6f:85:d6:e5:7d:d6:74: 02:02:14:3a:4d:04:a4:14:e4:66:20:83:71:99:36:6d:de:11: d0:25:30:05:09:c9:79:7d:89:5b:60:8d:6f:4b:cb:60:59:8f: 68:c2:73:f6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD7Q685WQVgEevyo2bxyOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzNzE3ZWE1NGI5NTk0MmZhZDgxYTk0M2VkYjFjMTBmOWRm OTRhZmIwHhcNMjYwMjA5MTEwMDUxWhcNMjYwMjEwMTEwMDUxWjAzMTEwLwYDVQQD EyhmMDk3YjVkNjU0ZTdmZTlmMWEyMTUxMjdiNDYxNzUyNmI4NDEzNTAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtVg438AjZMAfYnRzysrsLyo5Xig 00uV7Sc1KGOKEi1lZtVG6eFQGTxfvv3TZB6u6mh8j/bSjIOmAikVW4mV4klP2tBN jYrhBCIqjSLWiYtVIDZm0mHM5xsAwyFHmKkhltk9fL+g213YgYCdVJzJiG8IAsRt /DKpbCfKccnRIB3K8t0O+yxiR5qOKXyLaklCEtDhhNSKKoyB1KlRJb6dNlbFWvak 9NA2uyG98DUfLaZvSNCW0RWSy2DBSRgvm6AiUcYoamNfJyt8g4lp5ZJLOLen8afW FQkuw7R4MDwnHMbS69I5Vemdfms13Ov6um228XYyoWdEy995ssW4PeFaWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPCXtdZU5/6fGiFRJ7RhdSa4QTUAMB8GA1UdIwQY MBaAFKNxfqVLlZQvrYGpQ+2xwQ+d+Ur7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzNGLXBVdVZsQy10Z2FsRDdiSEJENTM1U3ZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9iNTQ4ZDUtODJmZS00NmMyLWI5OTct MTU3YWQwYWM1MjBhLzEvbzNGLXBVdVZsQy10Z2FsRDdiSEJENTM1U3ZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS9iNTQ4ZDUtODJmZS00NmMyLWI5OTctMTU3YWQwYWM1MjBh LzEvbzNGLXBVdVZsQy10Z2FsRDdiSEJENTM1U3ZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaMW19Ilo KI0FYNh8KwiXIwlUdMAzPdalfm173wyzVo64AiSoeq1JSzfmO5TSAZkE9yNGxkiG f3soZnNq9z4U/yYpIeQh6iiZwLlPpZ6YRbC+r1R4H9DbEYLDtvznN1F7reqJTg0q L3NXxUhym+tzPZV43U5R0cQjN/ATIVbdMv4jJ+LYiMTvuq34o8D2v9kJt017N3Al XDQP3yfCHX1romzjMLMjfym6t1pShs4+th7y9pG/DHFcsDe1+n4Bpbq8FLFNTl4U BrjODrC2A4ODiQlvhdblfdZ0AgIUOk0EpBTkZiCDcZk2bd4R0CUwBQnJeX2JW2CN b0vLYFmPaMJz9g== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:38 2026 by rpki-client