This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/a388b6-43c6-4458-abf5-d3332f9044ec/1/oy2niZiHqsRJlYu5DrU1lRqXOgA.mft File: oy2niZiHqsRJlYu5DrU1lRqXOgA.mft (raw, json) Hash identifier: fMzBsoa2SftLW8pi+WKz6uoo5FAPjQLR2K+kZi6/ETk= Subject key identifier: 4B:37:4B:87:BF:23:C6:DB:61:45:78:E0:09:B5:3C:A6:4F:86:2A:6B Authority key identifier: A3:2D:A7:89:98:87:AA:C4:49:95:8B:B9:0E:B5:35:95:1A:97:3A:00 Certificate issuer: /CN=a32da7899887aac449958bb90eb535951a973a00 Certificate serial: 019C413492CA1EA2D0DDD6DE75DF648026E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oy2niZiHqsRJlYu5DrU1lRqXOgA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/a388b6-43c6-4458-abf5-d3332f9044ec/1/oy2niZiHqsRJlYu5DrU1lRqXOgA.mft Manifest number: 110E Signing time: Mon 09 Feb 2026 07:01:30 +0000 Manifest this update: Mon 09 Feb 2026 07:01:30 +0000 Manifest next update: Tue 10 Feb 2026 07:01:30 +0000 Files and hashes: 1: oy2niZiHqsRJlYu5DrU1lRqXOgA.crl (hash: HxgAO9/hpcarGXqGVSk9tJek02OEdy99x9quhmi90u8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/a388b6-43c6-4458-abf5-d3332f9044ec/1/oy2niZiHqsRJlYu5DrU1lRqXOgA.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/a388b6-43c6-4458-abf5-d3332f9044ec/1/oy2niZiHqsRJlYu5DrU1lRqXOgA.mft rsync://rpki.ripe.net/repository/DEFAULT/oy2niZiHqsRJlYu5DrU1lRqXOgA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:92:ca:1e:a2:d0:dd:d6:de:75:df:64:80:26:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a32da7899887aac449958bb90eb535951a973a00 Validity Not Before: Feb 9 07:01:30 2026 GMT Not After : Feb 10 07:01:30 2026 GMT Subject: CN=4b374b87bf23c6db614578e009b53ca64f862a6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:22:8c:52:10:72:01:d0:25:17:95:40:1d:06: ad:51:cf:ec:e0:4d:49:e2:7b:a9:52:3f:d2:d5:18: 0e:81:47:8a:43:ab:32:ae:99:f1:3d:5c:39:f4:59: a8:d9:ec:ea:8c:26:bb:4e:78:2d:72:9a:90:9c:44: a5:0d:a2:5b:ce:70:6d:d8:18:14:07:1f:59:56:2d: 92:52:ed:9e:fc:42:73:6c:b3:ea:b0:16:7a:27:05: 72:77:cd:c1:3e:44:c3:68:d3:c8:90:c2:ad:be:a6: 6d:f4:2d:19:66:18:ae:c9:eb:3b:e5:62:67:90:5e: ca:0d:7d:72:b9:bc:af:70:48:c0:c1:54:09:c6:5e: af:9f:8a:23:4c:5e:f9:b9:3e:55:a5:4e:3c:d4:d6: be:33:cc:ab:7e:d7:09:9e:22:47:1a:a2:e1:0d:87: ea:65:45:69:cf:85:fa:cc:b8:ba:68:4f:42:38:f9: db:64:ea:72:31:ae:09:17:85:75:42:1d:0d:0a:e2: b5:2b:28:e4:f2:c3:f4:48:6e:b7:0f:0f:6b:87:37: c1:8b:7a:66:39:7a:d4:62:ec:83:84:8c:4f:9a:a1: d1:7a:2d:d3:07:e1:7c:56:f5:2e:5d:b5:a3:88:63: 26:e5:c7:cc:30:cf:bf:a3:92:e0:4a:90:58:4a:aa: ff:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:37:4B:87:BF:23:C6:DB:61:45:78:E0:09:B5:3C:A6:4F:86:2A:6B X509v3 Authority Key Identifier: keyid:A3:2D:A7:89:98:87:AA:C4:49:95:8B:B9:0E:B5:35:95:1A:97:3A:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oy2niZiHqsRJlYu5DrU1lRqXOgA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/a388b6-43c6-4458-abf5-d3332f9044ec/1/oy2niZiHqsRJlYu5DrU1lRqXOgA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/a388b6-43c6-4458-abf5-d3332f9044ec/1/oy2niZiHqsRJlYu5DrU1lRqXOgA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:2e:2e:ac:4e:f7:41:ef:9f:8c:48:65:26:7c:f4:29:7d:88: 70:de:cd:04:ac:56:6f:dd:a0:3d:19:63:49:94:04:bf:7a:8e: 85:87:cb:0b:51:b4:30:05:f8:7f:2e:8b:24:18:d3:f8:37:5a: 41:b0:e1:ac:8f:53:00:e1:0a:78:65:eb:a2:46:ec:69:6b:dd: 72:2d:67:b7:db:c2:31:e5:c6:d8:83:17:ac:db:4f:d6:d2:00: 6d:45:ff:ea:8d:a3:60:c5:58:93:43:3a:62:93:68:09:1b:4e: c5:97:e3:57:6a:2a:2f:7e:08:3d:c7:f2:5e:8c:d9:27:a4:c4: 33:ab:13:57:29:7d:0d:78:9f:6d:4c:6f:b0:fd:05:dc:e7:e0: d6:a4:0a:2e:a2:6a:c5:42:7d:73:38:29:6e:51:1b:89:cd:ac: da:2f:41:95:37:26:14:5c:56:0d:50:bf:30:3c:f1:01:7b:bd: e0:c3:bd:57:07:5d:c3:92:75:e9:5e:98:77:9b:db:12:05:25: 90:1e:30:97:80:b0:bb:f9:83:ed:02:c4:40:5e:ad:28:07:2b: ba:74:40:8f:86:a5:fb:04:66:2c:30:71:3c:eb:3b:5c:bd:77: c4:cc:1a:ef:55:e5:74:b8:0d:59:b2:90:c5:75:8c:92:88:32: 27:a3:aa:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNJLKHqLQ3dbedd9kgCbpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzMmRhNzg5OTg4N2FhYzQ0OTk1OGJiOTBlYjUzNTk1MWE5 NzNhMDAwHhcNMjYwMjA5MDcwMTMwWhcNMjYwMjEwMDcwMTMwWjAzMTEwLwYDVQQD Eyg0YjM3NGI4N2JmMjNjNmRiNjE0NTc4ZTAwOWI1M2NhNjRmODYyYTZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsyKMUhByAdAlF5VAHQatUc/s4E1J 4nupUj/S1RgOgUeKQ6syrpnxPVw59Fmo2ezqjCa7TngtcpqQnESlDaJbznBt2BgU Bx9ZVi2SUu2e/EJzbLPqsBZ6JwVyd83BPkTDaNPIkMKtvqZt9C0ZZhiuyes75WJn kF7KDX1yubyvcEjAwVQJxl6vn4ojTF75uT5VpU481Na+M8yrftcJniJHGqLhDYfq ZUVpz4X6zLi6aE9COPnbZOpyMa4JF4V1Qh0NCuK1Kyjk8sP0SG63Dw9rhzfBi3pm OXrUYuyDhIxPmqHRei3TB+F8VvUuXbWjiGMm5cfMMM+/o5LgSpBYSqr/CQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEs3S4e/I8bbYUV44Am1PKZPhiprMB8GA1UdIwQY MBaAFKMtp4mYh6rESZWLuQ61NZUalzoAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3kybmlaaUhxc1JKbFl1NURyVTFsUnFYT2dBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9hMzg4YjYtNDNjNi00NDU4LWFiZjUt ZDMzMzJmOTA0NGVjLzEvb3kybmlaaUhxc1JKbFl1NURyVTFsUnFYT2dBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi9hMzg4YjYtNDNjNi00NDU4LWFiZjUtZDMzMzJmOTA0NGVj LzEvb3kybmlaaUhxc1JKbFl1NURyVTFsUnFYT2dBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALC4urE73 Qe+fjEhlJnz0KX2IcN7NBKxWb92gPRljSZQEv3qOhYfLC1G0MAX4fy6LJBjT+Dda QbDhrI9TAOEKeGXrokbsaWvdci1nt9vCMeXG2IMXrNtP1tIAbUX/6o2jYMVYk0M6 YpNoCRtOxZfjV2oqL34IPcfyXozZJ6TEM6sTVyl9DXifbUxvsP0F3Ofg1qQKLqJq xUJ9czgpblEbic2s2i9BlTcmFFxWDVC/MDzxAXu94MO9Vwddw5J16V6Yd5vbEgUl kB4wl4Cwu/mD7QLEQF6tKAcrunRAj4al+wRmLDBxPOs7XL13xMwa71XldLgNWbKQ xXWMkogyJ6OqVw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:25 2026 by rpki-client