This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft File: O8RoMnEppQF7l23I7aydG56aFMw.mft (raw, json) Hash identifier: eoMoMesQRsNJ3MnUwXe6nJJOXeWXH2pbDpfStAMAgNA= Subject key identifier: 84:F7:3A:05:98:51:9F:36:7E:87:E3:D1:6A:CC:D0:89:47:F4:6F:A2 Authority key identifier: 3B:C4:68:32:71:29:A5:01:7B:97:6D:C8:ED:AC:9D:1B:9E:9A:14:CC Certificate issuer: /CN=3bc468327129a5017b976dc8edac9d1b9e9a14cc Certificate serial: 019C427D959F7DC474973D5D122781D8B319 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft Manifest number: 179B Signing time: Mon 09 Feb 2026 13:00:52 +0000 Manifest this update: Mon 09 Feb 2026 13:00:52 +0000 Manifest next update: Tue 10 Feb 2026 13:00:52 +0000 Files and hashes: 1: O8RoMnEppQF7l23I7aydG56aFMw.crl (hash: xwZ1VPb/Ptcx1iMUR8GWBtI+sg42yUtE0zaRRq4cTMI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.crl rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:95:9f:7d:c4:74:97:3d:5d:12:27:81:d8:b3:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3bc468327129a5017b976dc8edac9d1b9e9a14cc Validity Not Before: Feb 9 13:00:52 2026 GMT Not After : Feb 10 13:00:52 2026 GMT Subject: CN=84f73a0598519f367e87e3d16accd08947f46fa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b1:ab:f0:5e:cc:4f:15:27:94:62:d5:6a:9f: ee:5e:38:e9:bb:a8:d5:80:e9:0d:e4:8b:42:f2:b9: 04:79:dd:30:b4:4a:67:07:14:4e:62:71:00:3b:16: 17:c0:5b:66:8c:78:c2:f7:fa:0d:a7:cb:56:68:b4: 5d:22:4b:62:81:f9:f4:e4:08:e2:d2:d6:c9:60:2a: 09:b4:78:e1:d1:f8:c0:c5:29:dc:12:75:fe:b7:af: cb:16:dc:38:82:d3:91:3c:4b:28:db:c3:b2:47:ec: 43:9b:7c:2a:1d:49:26:06:4a:87:0d:8f:1e:55:71: 5a:62:d2:0e:67:d5:5c:22:4d:b3:2a:14:f1:c0:63: fd:94:2a:36:ba:11:1c:28:ff:cf:22:4d:52:7f:ff: e1:ed:39:02:5a:6a:cc:42:0b:23:e2:7e:ec:fb:db: 57:80:2e:0d:ff:8e:df:b1:8d:4a:59:e8:5e:c7:10: 82:ff:c9:fa:68:8a:e5:75:d8:94:6b:5f:f1:78:00: 3a:dd:0d:eb:1d:e6:e0:bb:5a:8f:c0:f9:28:bc:fd: f7:a9:0a:30:46:49:9b:28:f9:62:70:59:8c:d9:99: b3:60:f5:ef:f5:da:17:f7:be:b3:c9:9f:e0:1c:02: 7a:69:41:62:15:5f:9c:00:a9:d7:76:f8:b6:36:7f: 6e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F7:3A:05:98:51:9F:36:7E:87:E3:D1:6A:CC:D0:89:47:F4:6F:A2 X509v3 Authority Key Identifier: keyid:3B:C4:68:32:71:29:A5:01:7B:97:6D:C8:ED:AC:9D:1B:9E:9A:14:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:dd:77:74:e9:c6:74:1f:77:b4:12:ab:f6:7a:2f:a0:60:27: a7:76:43:21:20:0b:33:bc:4c:5a:21:2f:1b:bc:3a:54:4f:12: d8:20:94:18:7b:1f:66:7c:b6:d7:60:cb:94:0a:5b:9a:0e:4b: 1d:ad:34:ab:d0:b7:62:db:08:ed:ad:0a:43:49:6a:bc:97:5a: 0f:cb:9a:b3:b5:2e:59:dd:5c:11:12:75:ce:90:a9:cb:f5:4b: 49:49:6e:ed:95:0e:43:5a:16:4e:37:5f:9e:75:d8:f6:de:7b: 26:a5:60:d8:db:0b:5c:56:7f:ab:65:56:dc:48:47:56:3d:95: 76:fd:f8:cf:12:0f:1f:6a:f6:c5:68:14:71:fb:97:78:f9:d0: cd:0a:9e:18:b2:9a:89:4f:fa:ce:5b:b8:64:25:53:26:19:cb: c6:2a:4d:d3:8f:11:2d:d7:74:15:fc:ce:02:19:ac:02:b4:ef: b0:76:35:a4:ea:8b:de:75:a0:46:e6:e1:85:29:df:5d:a7:15: 08:f5:a9:16:86:b0:18:71:b3:19:83:1d:f3:c5:df:3d:65:84: da:6f:ab:f5:8c:1f:3a:20:ca:62:50:3b:92:54:31:d5:a2:fc: 36:fc:b2:f9:25:38:58:03:5f:5d:dd:fc:da:43:4f:b8:91:93: 17:cc:f4:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfZWffcR0lz1dEieB2LMZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiYzQ2ODMyNzEyOWE1MDE3Yjk3NmRjOGVkYWM5ZDFiOWU5 YTE0Y2MwHhcNMjYwMjA5MTMwMDUyWhcNMjYwMjEwMTMwMDUyWjAzMTEwLwYDVQQD Eyg4NGY3M2EwNTk4NTE5ZjM2N2U4N2UzZDE2YWNjZDA4OTQ3ZjQ2ZmEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7Gr8F7MTxUnlGLVap/uXjjpu6jV gOkN5ItC8rkEed0wtEpnBxROYnEAOxYXwFtmjHjC9/oNp8tWaLRdIktigfn05Aji 0tbJYCoJtHjh0fjAxSncEnX+t6/LFtw4gtORPEso28OyR+xDm3wqHUkmBkqHDY8e VXFaYtIOZ9VcIk2zKhTxwGP9lCo2uhEcKP/PIk1Sf//h7TkCWmrMQgsj4n7s+9tX gC4N/47fsY1KWehexxCC/8n6aIrlddiUa1/xeAA63Q3rHebgu1qPwPkovP33qQow RkmbKPlicFmM2ZmzYPXv9doX976zyZ/gHAJ6aUFiFV+cAKnXdvi2Nn9uSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIT3OgWYUZ82fofj0WrM0IlH9G+iMB8GA1UdIwQY MBaAFDvEaDJxKaUBe5dtyO2snRuemhTMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzhSb01uRXBwUUY3bDIzSTdheWRHNTZhRk13LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC84ZDRjMDMtNWZjNy00MWFjLTk0ZjYt MWYwMmM3ZTkyM2IzLzEvTzhSb01uRXBwUUY3bDIzSTdheWRHNTZhRk13Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC84ZDRjMDMtNWZjNy00MWFjLTk0ZjYtMWYwMmM3ZTkyM2Iz LzEvTzhSb01uRXBwUUY3bDIzSTdheWRHNTZhRk13LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi913dOnG dB93tBKr9novoGAnp3ZDISALM7xMWiEvG7w6VE8S2CCUGHsfZny212DLlApbmg5L Ha00q9C3YtsI7a0KQ0lqvJdaD8uas7UuWd1cERJ1zpCpy/VLSUlu7ZUOQ1oWTjdf nnXY9t57JqVg2NsLXFZ/q2VW3EhHVj2Vdv34zxIPH2r2xWgUcfuXePnQzQqeGLKa iU/6zlu4ZCVTJhnLxipN048RLdd0FfzOAhmsArTvsHY1pOqL3nWgRubhhSnfXacV CPWpFoawGHGzGYMd88XfPWWE2m+r9YwfOiDKYlA7klQx1aL8Nvyy+SU4WANfXd38 2kNPuJGTF8z0jg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:04 2026 by rpki-client