This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft File: _OTzlnKb9HjmNlSYIfb2lw2JP1I.mft (raw, json) Hash identifier: YjyHFf7ELnwfNtd9jF8lzepfUP3PJPUmm0zU0DLVH2g= Subject key identifier: 98:88:DE:6D:67:DA:F7:6D:15:A4:DF:01:4D:FC:27:85:C8:98:C9:36 Authority key identifier: FC:E4:F3:96:72:9B:F4:78:E6:36:54:98:21:F6:F6:97:0D:89:3F:52 Certificate issuer: /CN=fce4f396729bf478e636549821f6f6970d893f52 Certificate serial: 019C42B464C0614BB6DD8BF39216BC279C3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 14:00:44 +0000 Manifest this update: Mon 09 Feb 2026 14:00:44 +0000 Manifest next update: Tue 10 Feb 2026 14:00:44 +0000 Files and hashes: 1: C9Ra18IQZMYPkfBHca82xhr0cTA.roa (hash: SV7yW/23Qp7R5wgSCdgQtEDtBATncL3nb2e5yjh6BqQ=) 2: _OTzlnKb9HjmNlSYIfb2lw2JP1I.crl (hash: SBdinuM5liytCN8OTqyibcs+Sx/CNVYkBdnzvOWYEDI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.crl rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:64:c0:61:4b:b6:dd:8b:f3:92:16:bc:27:9c:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fce4f396729bf478e636549821f6f6970d893f52 Validity Not Before: Feb 9 14:00:44 2026 GMT Not After : Feb 10 14:00:44 2026 GMT Subject: CN=9888de6d67daf76d15a4df014dfc2785c898c936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2f:bf:fd:55:d8:8a:69:ba:0c:63:7a:d6:6a: f6:52:ff:81:94:75:0a:74:57:46:70:96:ec:65:c7: fb:36:44:97:7f:19:83:60:d3:d3:f4:cf:95:fc:fe: fb:8f:93:dd:92:4a:b6:83:67:95:24:7e:91:58:c2: be:ff:a2:df:9a:1e:c9:18:90:19:ee:82:ac:1b:fe: 63:4b:50:44:97:7c:a3:1b:ca:2f:43:10:5e:7c:04: de:54:45:71:6d:e7:e9:70:68:47:2e:6e:da:b0:79: eb:c7:f7:cb:62:d3:d7:4f:6a:b9:d6:4f:3a:15:a5: 08:52:28:7f:32:24:2e:6a:d2:40:b3:91:69:0c:93: d0:9f:24:bc:66:b6:01:52:63:46:55:4d:7e:cc:6c: 54:40:35:18:60:6f:6f:72:c0:db:42:ff:c6:94:5d: 91:8f:f2:1e:96:fc:bb:29:d3:df:60:c0:ed:76:ed: 5f:9c:e9:d6:e2:cd:3d:d6:d3:bd:bf:a5:f6:ad:b1: e1:3c:f8:14:03:88:ca:4a:c1:5f:0e:8e:0d:df:96: 3f:f9:25:37:d5:bb:af:26:80:e3:ba:67:2f:0f:a4: 04:3f:90:98:2e:38:7b:f0:a9:f5:4d:d3:97:7a:82: 5b:f8:4a:67:bd:6d:2f:e6:5a:db:f9:43:f7:7d:39: 52:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:88:DE:6D:67:DA:F7:6D:15:A4:DF:01:4D:FC:27:85:C8:98:C9:36 X509v3 Authority Key Identifier: keyid:FC:E4:F3:96:72:9B:F4:78:E6:36:54:98:21:F6:F6:97:0D:89:3F:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:32:81:e2:3e:d1:3b:86:29:53:64:60:9f:ec:38:58:6c:c9: a9:92:82:12:6a:78:02:85:36:d2:d7:a8:14:c3:40:37:43:ea: bd:75:97:37:9f:0e:c6:f2:7a:94:06:08:bc:83:5c:6e:13:78: 9e:2a:ef:2c:03:32:4c:3a:2c:39:a1:64:3f:cb:99:28:25:a4: f6:da:74:07:bb:44:07:cc:a2:50:68:10:0c:83:d2:ab:04:a5: 07:f8:e9:ce:0e:ef:ae:57:48:36:b2:6c:14:e2:3e:94:8b:eb: 46:43:46:fd:97:dc:47:d8:47:b6:bd:60:a5:07:a2:37:8c:00: 7d:7b:1e:43:0d:cc:bd:f2:75:59:cd:82:da:72:45:96:3e:04: 40:fb:54:e4:90:5e:4c:da:94:41:a0:8b:18:0a:a4:03:1c:1d: 32:f8:65:77:45:4f:78:cc:f0:05:13:7f:25:18:65:4e:fa:30: 31:b6:1d:59:87:40:1d:25:53:26:8d:cf:db:d0:b1:e7:4f:76: 34:13:5d:6d:7e:ee:cf:c1:c8:42:9b:53:70:a4:84:bc:72:be: 33:32:99:00:4f:ae:30:76:13:da:13:b8:ae:27:b4:01:25:c7: ce:6a:fb:e0:a1:09:97:6e:6f:5f:65:b2:a9:a2:b6:8e:a3:01: 22:03:b9:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtGTAYUu23Yvzkha8J5w6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjZTRmMzk2NzI5YmY0NzhlNjM2NTQ5ODIxZjZmNjk3MGQ4 OTNmNTIwHhcNMjYwMjA5MTQwMDQ0WhcNMjYwMjEwMTQwMDQ0WjAzMTEwLwYDVQQD Eyg5ODg4ZGU2ZDY3ZGFmNzZkMTVhNGRmMDE0ZGZjMjc4NWM4OThjOTM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvC+//VXYimm6DGN61mr2Uv+BlHUK dFdGcJbsZcf7NkSXfxmDYNPT9M+V/P77j5Pdkkq2g2eVJH6RWMK+/6Lfmh7JGJAZ 7oKsG/5jS1BEl3yjG8ovQxBefATeVEVxbefpcGhHLm7asHnrx/fLYtPXT2q51k86 FaUIUih/MiQuatJAs5FpDJPQnyS8ZrYBUmNGVU1+zGxUQDUYYG9vcsDbQv/GlF2R j/Ielvy7KdPfYMDtdu1fnOnW4s091tO9v6X2rbHhPPgUA4jKSsFfDo4N35Y/+SU3 1buvJoDjumcvD6QEP5CYLjh78Kn1TdOXeoJb+EpnvW0v5lrb+UP3fTlSswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJiI3m1n2vdtFaTfAU38J4XImMk2MB8GA1UdIwQY MBaAFPzk85Zym/R45jZUmCH29pcNiT9SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX09UemxuS2I5SGptTmxTWUlmYjJsdzJKUDFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8zNjI3NWUtNjc1OS00ZDUyLWIyZDEt OGM3MGRlOWU5YjlkLzEvX09UemxuS2I5SGptTmxTWUlmYjJsdzJKUDFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My8zNjI3NWUtNjc1OS00ZDUyLWIyZDEtOGM3MGRlOWU5Yjlk LzEvX09UemxuS2I5SGptTmxTWUlmYjJsdzJKUDFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhjKB4j7R O4YpU2Rgn+w4WGzJqZKCEmp4AoU20teoFMNAN0PqvXWXN58OxvJ6lAYIvINcbhN4 nirvLAMyTDosOaFkP8uZKCWk9tp0B7tEB8yiUGgQDIPSqwSlB/jpzg7vrldINrJs FOI+lIvrRkNG/ZfcR9hHtr1gpQeiN4wAfXseQw3MvfJ1Wc2C2nJFlj4EQPtU5JBe TNqUQaCLGAqkAxwdMvhld0VPeMzwBRN/JRhlTvowMbYdWYdAHSVTJo3P29Cx5092 NBNdbX7uz8HIQptTcKSEvHK+MzKZAE+uMHYT2hO4rie0ASXHzmr74KEJl25vX2Wy qaK2jqMBIgO5Lg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:21 2026 by rpki-client