This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft File: OTioGkQSd0HZSaNVpH88tZk4mng.mft (raw, json) Hash identifier: VzU71tOZkGfXPZjfWSQemdbS1jJRjMeGt0mDQLQhkoY= Subject key identifier: F6:2A:6F:3E:8D:8F:8A:A0:7C:55:4A:02:EE:C7:DB:00:71:16:EB:10 Authority key identifier: 39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78 Certificate issuer: /CN=3938a81a44127741d949a355a47f3cb599389a78 Certificate serial: 019C41A20CF8BE3DD9A92C69AC0872F3F298 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft Manifest number: 1263 Signing time: Mon 09 Feb 2026 09:01:05 +0000 Manifest this update: Mon 09 Feb 2026 09:01:05 +0000 Manifest next update: Tue 10 Feb 2026 09:01:05 +0000 Files and hashes: 1: 0U-cjSx-vbFV-NT594PYA8nArLg.roa (hash: HUb+G3KOFlBU9/9PngolZEI4Hx103lYxj0RKTkVEA0w=) 2: OTioGkQSd0HZSaNVpH88tZk4mng.crl (hash: WnHxO/poIuXlKg7O0AyaUmFBxW2uO1ny1MgUQ1u/1QU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:0c:f8:be:3d:d9:a9:2c:69:ac:08:72:f3:f2:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3938a81a44127741d949a355a47f3cb599389a78 Validity Not Before: Feb 9 09:01:05 2026 GMT Not After : Feb 10 09:01:05 2026 GMT Subject: CN=f62a6f3e8d8f8aa07c554a02eec7db007116eb10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e7:99:fb:c4:61:96:59:13:f5:a4:0e:87:86: 6e:f1:6c:bb:85:79:36:b0:24:d3:1c:82:7b:57:af: 6a:af:60:e4:9b:7b:b3:8f:fd:03:ec:78:18:27:6d: ae:cf:41:45:93:65:05:2c:b4:66:be:cc:dd:4c:4f: 58:ae:9f:32:e7:68:44:7d:28:28:f9:bd:c8:09:bd: 08:2b:d5:0c:80:63:33:cf:ca:f3:b4:4d:fc:b3:6d: fc:e6:de:70:9c:ac:98:66:82:eb:e1:3d:47:42:0a: d7:2d:1c:a7:43:40:3b:4b:74:4d:ee:71:8f:95:af: 92:5c:01:5f:a3:9b:3e:e4:d6:1c:aa:4b:8e:19:f4: 6b:c9:0c:21:ed:01:c5:85:ad:fb:47:d0:13:61:fd: d0:9a:e4:c4:4e:74:4f:7b:7c:03:01:39:4d:b3:de: 0a:07:1a:3b:ff:75:e1:43:55:55:bb:56:4c:a7:e3: 86:db:4a:41:73:9d:a3:00:57:24:9f:09:6c:b0:71: fb:8b:73:ca:81:53:93:64:23:af:c1:20:cc:44:13: 93:da:68:08:94:2f:1f:9c:35:69:0f:42:16:f2:9d: b3:ae:f1:00:d8:79:5f:a6:6f:41:71:a6:5a:68:83: 82:9e:04:3d:3d:9a:4d:21:e8:bb:d8:0a:93:ac:29: 40:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:2A:6F:3E:8D:8F:8A:A0:7C:55:4A:02:EE:C7:DB:00:71:16:EB:10 X509v3 Authority Key Identifier: keyid:39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:d3:b8:d4:6b:e7:44:a5:16:9e:e9:e5:2d:11:66:85:72:ee: f3:3d:de:2b:2e:d8:46:8b:fb:f6:ce:1b:00:0a:5a:6f:db:4d: de:4e:0e:97:51:3b:f1:58:90:d1:59:af:42:ba:41:09:ba:2d: 0c:5c:ae:01:2f:78:1a:89:5f:c4:83:13:d0:af:db:6c:ac:31: 88:ba:b6:77:9e:74:a3:79:75:9f:0a:12:54:55:c4:c7:65:65: fe:a4:bc:90:f1:bc:39:38:ce:a9:7d:a8:5b:cf:4a:00:dc:77: 22:a5:44:c0:66:a6:41:c8:94:dc:ae:a6:d0:c6:75:c9:43:da: 9f:08:0e:60:16:39:e8:57:83:8e:f2:17:ac:26:d1:ec:e3:f4: 18:a0:b1:f5:62:81:c7:21:d3:78:28:5a:f7:f5:d0:68:30:1c: aa:7e:e4:d2:54:a5:49:09:94:92:0a:94:bf:41:31:7d:03:89: d5:ad:3b:3c:83:2a:0c:8d:d2:8e:03:58:49:fd:36:12:a1:47: e2:7d:11:9e:05:0d:22:bd:fd:ce:78:93:96:72:37:dc:54:13: e6:45:41:de:2d:af:06:ab:e1:76:a4:14:c6:7a:61:52:a8:99: 91:c8:c0:c1:63:a0:e7:17:1b:3f:a2:8b:74:70:f8:14:ef:0f: 74:4e:d6:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBogz4vj3ZqSxprAhy8/KYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5MzhhODFhNDQxMjc3NDFkOTQ5YTM1NWE0N2YzY2I1OTkz ODlhNzgwHhcNMjYwMjA5MDkwMTA1WhcNMjYwMjEwMDkwMTA1WjAzMTEwLwYDVQQD EyhmNjJhNmYzZThkOGY4YWEwN2M1NTRhMDJlZWM3ZGIwMDcxMTZlYjEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAweeZ+8RhllkT9aQOh4Zu8Wy7hXk2 sCTTHIJ7V69qr2Dkm3uzj/0D7HgYJ22uz0FFk2UFLLRmvszdTE9Yrp8y52hEfSgo +b3ICb0IK9UMgGMzz8rztE38s2385t5wnKyYZoLr4T1HQgrXLRynQ0A7S3RN7nGP la+SXAFfo5s+5NYcqkuOGfRryQwh7QHFha37R9ATYf3QmuTETnRPe3wDATlNs94K Bxo7/3XhQ1VVu1ZMp+OG20pBc52jAFcknwlssHH7i3PKgVOTZCOvwSDMRBOT2mgI lC8fnDVpD0IW8p2zrvEA2Hlfpm9BcaZaaIOCngQ9PZpNIei72AqTrClA3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPYqbz6Nj4qgfFVKAu7H2wBxFusQMB8GA1UdIwQY MBaAFDk4qBpEEndB2UmjVaR/PLWZOJp4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1Rpb0drUVNkMEhaU2FOVnBIODh0Wms0bW5nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wMmNhYjUtNTliNC00ZDkwLWE1ZGIt ZmQyMTRjYWNmYjYyLzEvT1Rpb0drUVNkMEhaU2FOVnBIODh0Wms0bW5nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8wMmNhYjUtNTliNC00ZDkwLWE1ZGItZmQyMTRjYWNmYjYy LzEvT1Rpb0drUVNkMEhaU2FOVnBIODh0Wms0bW5nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkNO41Gvn RKUWnunlLRFmhXLu8z3eKy7YRov79s4bAApab9tN3k4Ol1E78ViQ0VmvQrpBCbot DFyuAS94GolfxIMT0K/bbKwxiLq2d550o3l1nwoSVFXEx2Vl/qS8kPG8OTjOqX2o W89KANx3IqVEwGamQciU3K6m0MZ1yUPanwgOYBY56FeDjvIXrCbR7OP0GKCx9WKB xyHTeCha9/XQaDAcqn7k0lSlSQmUkgqUv0ExfQOJ1a07PIMqDI3SjgNYSf02EqFH 4n0RngUNIr39zniTlnI33FQT5kVB3i2vBqvhdqQUxnphUqiZkcjAwWOg5xcbP6KL dHD4FO8PdE7Wug== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:06 2026 by rpki-client