This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft File: O9_XYE36DriuIOkPzxMDk7ioVko.mft (raw, json) Hash identifier: F479pGKmNn0Y5LYV3e1VPcCBcVhrBXBBw54iPFdW/mQ= Subject key identifier: 32:1A:3A:33:93:1A:52:D0:7E:F2:0B:57:5D:0D:B7:72:6F:FF:21:E4 Authority key identifier: 3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A Certificate issuer: /CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a Certificate serial: 019C43C714F0BB9ED7D00A5C7BD861D4FE96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 19:00:46 +0000 Manifest this update: Mon 09 Feb 2026 19:00:46 +0000 Manifest next update: Tue 10 Feb 2026 19:00:46 +0000 Files and hashes: 1: O9_XYE36DriuIOkPzxMDk7ioVko.crl (hash: DDJkoO3jHY/QeR4NejaCUWrI5V+9BIMVLii3R4ahzGs=) 2: eDEH9r-GFBtMBjke1VQXvLsrWKE.roa (hash: xMVUiZA7B/Awy4elxHeVBURXwGMWCha5Jw3Ih7vZadE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:14:f0:bb:9e:d7:d0:0a:5c:7b:d8:61:d4:fe:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a Validity Not Before: Feb 9 19:00:46 2026 GMT Not After : Feb 10 19:00:46 2026 GMT Subject: CN=321a3a33931a52d07ef20b575d0db7726fff21e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:1c:26:56:3d:45:76:7c:53:3b:cb:72:92:0d: d1:7b:3b:2d:c4:df:5c:22:54:7e:30:ee:18:0f:72: dc:27:4c:9e:6a:17:5e:08:77:f3:06:5e:68:67:61: 69:34:d0:70:64:96:82:8e:ec:43:7b:ab:8c:35:38: 9f:9f:ab:49:92:35:35:26:22:fd:aa:18:73:2a:e8: a8:3f:3e:11:66:e0:6f:67:d6:e8:87:5c:6e:59:8a: c4:03:b2:61:cc:18:b6:2c:4b:57:b3:6a:6c:bc:c0: 69:bc:80:34:33:75:6a:a5:97:b2:92:ff:a3:28:7d: 8d:6d:35:21:b9:8d:8d:de:66:ba:44:d7:27:cc:2f: 51:a1:fb:47:cd:66:4a:98:1d:47:65:ee:f1:4a:da: 64:ac:13:13:bb:68:09:d2:13:6e:3f:46:4e:9f:73: 4e:b7:cf:83:f0:52:eb:cd:81:99:06:06:91:25:1d: 6a:06:e3:d0:37:d5:09:13:2d:60:61:40:de:12:6d: 2c:35:22:20:48:ce:f3:20:87:68:52:34:3d:6b:fc: f0:1c:81:8f:f7:1c:88:95:63:85:31:0f:f1:78:84: ce:eb:45:da:69:47:d3:56:11:73:2b:50:3d:fe:49: 54:ce:df:f9:5d:79:bd:fe:94:5a:fe:58:9d:43:a1: 93:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1A:3A:33:93:1A:52:D0:7E:F2:0B:57:5D:0D:B7:72:6F:FF:21:E4 X509v3 Authority Key Identifier: keyid:3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:20:4c:e4:9b:db:33:8a:3a:f7:6e:19:05:89:4f:51:e5:7f: d0:ec:f5:35:db:bb:b2:72:be:61:6a:82:9b:97:6d:62:90:b8: 0e:24:a9:5d:f6:e8:1b:60:b9:4b:62:a1:0e:98:4a:9c:5f:1c: 7b:29:be:a8:8d:6e:e6:b6:39:e4:4c:ea:50:ba:7a:be:21:7c: 32:bd:f5:c8:54:88:90:85:cb:3b:e7:a8:09:0b:ea:9d:a1:1a: c8:bd:c3:28:3f:77:5b:f8:18:4c:dc:ef:cb:33:ce:6e:ac:b1: b3:7f:39:0f:81:a5:fa:e7:7a:7b:f3:63:b0:5d:66:41:5f:ac: 20:93:27:10:b1:75:e8:d8:57:28:13:26:85:ea:4f:b9:55:a0: b4:28:c7:b3:e7:84:f2:6f:12:ae:b1:f8:a0:c7:86:68:0e:2c: 8f:4f:86:f7:bb:71:6b:a2:3d:e6:0b:1c:ac:9f:98:fe:40:a1: 67:a4:d8:76:a2:18:59:0f:62:4c:8b:50:ab:60:e6:25:fb:36: 63:e1:4f:d8:33:88:61:79:ea:99:99:bc:19:68:31:a7:0f:da: 43:7b:33:55:51:2f:64:5a:2e:20:c0:c7:a0:e0:a4:bc:3e:76: 3e:c1:68:e3:da:9d:59:90:98:64:fa:9e:7c:3a:0e:68:cd:77: a1:55:58:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxxTwu57X0Apce9hh1P6WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiZGZkNzYwNGRmYTBlYjhhZTIwZTkwZmNmMTMwMzkzYjhh ODU2NGEwHhcNMjYwMjA5MTkwMDQ2WhcNMjYwMjEwMTkwMDQ2WjAzMTEwLwYDVQQD EygzMjFhM2EzMzkzMWE1MmQwN2VmMjBiNTc1ZDBkYjc3MjZmZmYyMWU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoRwmVj1FdnxTO8tykg3RezstxN9c IlR+MO4YD3LcJ0yeahdeCHfzBl5oZ2FpNNBwZJaCjuxDe6uMNTifn6tJkjU1JiL9 qhhzKuioPz4RZuBvZ9boh1xuWYrEA7JhzBi2LEtXs2psvMBpvIA0M3VqpZeykv+j KH2NbTUhuY2N3ma6RNcnzC9RoftHzWZKmB1HZe7xStpkrBMTu2gJ0hNuP0ZOn3NO t8+D8FLrzYGZBgaRJR1qBuPQN9UJEy1gYUDeEm0sNSIgSM7zIIdoUjQ9a/zwHIGP 9xyIlWOFMQ/xeITO60XaaUfTVhFzK1A9/klUzt/5XXm9/pRa/lidQ6GTyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDIaOjOTGlLQfvILV10Nt3Jv/yHkMB8GA1UdIwQY MBaAFDvf12BN+g64riDpD88TA5O4qFZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzlfWFlFMzZEcml1SU9rUHp4TURrN2lvVmtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS84ZGMyYzctM2ZjMC00NDZkLTgwN2Mt ZWY2YzllYWQ2MTFjLzEvTzlfWFlFMzZEcml1SU9rUHp4TURrN2lvVmtvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS84ZGMyYzctM2ZjMC00NDZkLTgwN2MtZWY2YzllYWQ2MTFj LzEvTzlfWFlFMzZEcml1SU9rUHp4TURrN2lvVmtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtSBM5Jvb M4o6924ZBYlPUeV/0Oz1Ndu7snK+YWqCm5dtYpC4DiSpXfboG2C5S2KhDphKnF8c eym+qI1u5rY55EzqULp6viF8Mr31yFSIkIXLO+eoCQvqnaEayL3DKD93W/gYTNzv yzPObqyxs385D4Gl+ud6e/NjsF1mQV+sIJMnELF16NhXKBMmhepPuVWgtCjHs+eE 8m8SrrH4oMeGaA4sj0+G97txa6I95gscrJ+Y/kChZ6TYdqIYWQ9iTItQq2DmJfs2 Y+FP2DOIYXnqmZm8GWgxpw/aQ3szVVEvZFouIMDHoOCkvD52PsFo49qdWZCYZPqe fDoOaM13oVVYhw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:44 2026 by rpki-client