This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft File: OQJ3OPl4_tokqdh7DLi7mqevVA0.mft (raw, json) Hash identifier: 14pH26FiUSC+R3JfaqFcGs0dNtDLIR1hXENIAbI4gWE= Subject key identifier: EE:17:28:E1:1D:A7:C1:0D:73:C7:5E:71:26:14:3C:28:11:ED:AB:FB Authority key identifier: 39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D Certificate issuer: /CN=39027738f978feda24a9d87b0cb8bb9aa7af540d Certificate serial: 019C420FFB4B7C33A1C76B0974C4D9BC2E0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft Manifest number: 181A Signing time: Mon 09 Feb 2026 11:01:09 +0000 Manifest this update: Mon 09 Feb 2026 11:01:09 +0000 Manifest next update: Tue 10 Feb 2026 11:01:09 +0000 Files and hashes: 1: OQJ3OPl4_tokqdh7DLi7mqevVA0.crl (hash: jmyylWIdz7GTytXhWMV8FZLevTIASUJTSNy3VN3TehY=) 2: jr5zaX72B88EPr7fF-QkGP5Dx98.roa (hash: oiKQk5Ow8W6lhAid4jGIfOCDhwPg0xWcUUAnbvjLz5k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:fb:4b:7c:33:a1:c7:6b:09:74:c4:d9:bc:2e:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39027738f978feda24a9d87b0cb8bb9aa7af540d Validity Not Before: Feb 9 11:01:09 2026 GMT Not After : Feb 10 11:01:09 2026 GMT Subject: CN=ee1728e11da7c10d73c75e7126143c2811edabfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:37:95:b5:2b:88:e3:06:35:36:ca:0f:a4:28: 8b:72:1f:d3:77:c3:0f:94:27:a4:ea:45:8c:a2:6d: 99:fb:b1:80:63:6d:ee:e1:d0:47:ba:a8:1d:08:db: d9:5c:8e:4c:e0:df:75:00:3b:e3:92:eb:1c:65:64: 41:90:3f:ed:d0:a3:fd:c7:f0:4a:97:43:ef:21:34: 3a:03:bb:39:29:47:68:b1:0f:70:34:73:ea:fe:4c: 1a:cc:b9:d5:d0:3d:ba:34:19:db:25:68:3e:53:2b: 9d:78:65:3c:f9:c0:a4:f2:bc:7d:da:c7:6a:b7:87: 98:15:71:1c:b9:db:d4:ec:93:39:49:e2:54:b3:5b: e6:5a:c8:04:ed:38:8e:e1:61:69:6c:9f:a8:96:db: a3:ba:d2:28:52:55:c4:33:e2:cd:16:5a:d3:3f:22: b2:bd:ab:92:eb:3c:a7:b1:95:4d:6b:be:35:e4:3f: 01:fb:83:88:9d:6b:f3:4b:e1:c1:8f:d1:a2:5e:08: 43:f5:78:00:e0:bc:99:cb:8d:fc:b0:41:18:65:ae: ea:ab:19:4d:be:98:5c:3a:c1:b5:3a:bb:25:25:46: de:19:e7:11:fd:43:6d:70:1c:b7:8a:5d:21:fc:5e: f5:2b:29:0c:c3:65:b9:1c:d7:ff:50:9d:4c:12:f5: a0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:17:28:E1:1D:A7:C1:0D:73:C7:5E:71:26:14:3C:28:11:ED:AB:FB X509v3 Authority Key Identifier: keyid:39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:b5:4e:c9:84:6a:4f:d6:cf:f0:38:9f:ab:f2:09:ac:b3:e9: de:e5:0d:5e:26:47:d8:81:c7:69:54:7e:ad:22:81:dc:a6:9d: 2d:a9:71:0d:69:07:e4:56:6b:1d:62:04:e8:ed:00:a5:92:ca: 3c:b0:a3:2b:62:63:cb:f1:81:8b:fb:88:44:5c:8c:3d:ca:64: d4:ad:63:25:ae:cc:a3:cd:fa:17:d8:8e:6d:22:5b:2e:ab:4d: ed:63:20:6a:b8:29:29:d3:25:34:3e:46:ac:95:1d:f2:4d:05: 35:60:96:28:69:b3:1e:94:49:09:8e:70:67:7f:88:74:f2:dd: 55:df:03:cc:fe:96:c2:39:99:0b:bf:5a:1e:af:2c:2c:33:4d: 68:05:bd:e2:62:d7:2d:54:7d:41:77:fb:50:55:ff:95:25:b6: 7c:00:df:64:ba:6e:49:aa:ba:9e:56:54:94:68:33:90:72:12: 92:db:d4:59:01:bd:cd:9b:39:ee:e4:72:c9:63:bd:29:5c:d3: f9:9d:5c:b3:83:84:17:ed:9a:59:18:d8:69:7b:b0:7f:6f:3c: 6b:5c:75:a0:fb:db:2b:fd:08:a9:3a:eb:16:17:6d:2f:6f:00: 90:b7:a4:50:94:74:e6:b9:a0:d2:e4:80:47:3a:c3:38:06:b7: d0:b7:e3:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD/tLfDOhx2sJdMTZvC4MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5MDI3NzM4Zjk3OGZlZGEyNGE5ZDg3YjBjYjhiYjlhYTdh ZjU0MGQwHhcNMjYwMjA5MTEwMTA5WhcNMjYwMjEwMTEwMTA5WjAzMTEwLwYDVQQD EyhlZTE3MjhlMTFkYTdjMTBkNzNjNzVlNzEyNjE0M2MyODExZWRhYmZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTeVtSuI4wY1NsoPpCiLch/Td8MP lCek6kWMom2Z+7GAY23u4dBHuqgdCNvZXI5M4N91ADvjkuscZWRBkD/t0KP9x/BK l0PvITQ6A7s5KUdosQ9wNHPq/kwazLnV0D26NBnbJWg+UyudeGU8+cCk8rx92sdq t4eYFXEcudvU7JM5SeJUs1vmWsgE7TiO4WFpbJ+oltujutIoUlXEM+LNFlrTPyKy vauS6zynsZVNa7415D8B+4OInWvzS+HBj9GiXghD9XgA4LyZy438sEEYZa7qqxlN vphcOsG1OrslJUbeGecR/UNtcBy3il0h/F71KykMw2W5HNf/UJ1MEvWgZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO4XKOEdp8ENc8decSYUPCgR7av7MB8GA1UdIwQY MBaAFDkCdzj5eP7aJKnYewy4u5qnr1QNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1FKM09QbDRfdG9rcWRoN0RMaTdtcWV2VkEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iOTExN2MtNTFjNS00YWY4LWJiZWYt ZjVkOGFiN2MxNWYwLzEvT1FKM09QbDRfdG9rcWRoN0RMaTdtcWV2VkEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9iOTExN2MtNTFjNS00YWY4LWJiZWYtZjVkOGFiN2MxNWYw LzEvT1FKM09QbDRfdG9rcWRoN0RMaTdtcWV2VkEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABbVOyYRq T9bP8Difq/IJrLPp3uUNXiZH2IHHaVR+rSKB3KadLalxDWkH5FZrHWIE6O0ApZLK PLCjK2Jjy/GBi/uIRFyMPcpk1K1jJa7Mo836F9iObSJbLqtN7WMgargpKdMlND5G rJUd8k0FNWCWKGmzHpRJCY5wZ3+IdPLdVd8DzP6WwjmZC79aHq8sLDNNaAW94mLX LVR9QXf7UFX/lSW2fADfZLpuSaq6nlZUlGgzkHISktvUWQG9zZs57uRyyWO9KVzT +Z1cs4OEF+2aWRjYaXuwf288a1x1oPvbK/0IqTrrFhdtL28AkLekUJR05rmg0uSA RzrDOAa30Lfjpg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:28 2026 by rpki-client