This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft File: M-okCE9ribBlVZkQ4DEetRS-uxE.mft (raw, json) Hash identifier: dVUDBGflfMNFgkhk2RM2dXUi09APr2kEeSDpXNfhhMk= Subject key identifier: 7C:D3:91:C6:9D:DC:67:F2:8C:79:41:8D:F4:37:27:16:D6:A5:AF:CE Authority key identifier: 33:EA:24:08:4F:6B:89:B0:65:55:99:10:E0:31:1E:B5:14:BE:BB:11 Certificate issuer: /CN=33ea24084f6b89b065559910e0311eb514bebb11 Certificate serial: 019C416A6A693396E06D4386628468694762 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M-okCE9ribBlVZkQ4DEetRS-uxE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft Manifest number: 0B47 Signing time: Mon 09 Feb 2026 08:00:18 +0000 Manifest this update: Mon 09 Feb 2026 08:00:18 +0000 Manifest next update: Tue 10 Feb 2026 08:00:18 +0000 Files and hashes: 1: Gt-80zXqf_s_u6U1np0ZyLE5Z40.roa (hash: xo9qKHdsqyfJiaN4I/AOjnmYmRnO4exFxr4FsuIGykQ=) 2: M-okCE9ribBlVZkQ4DEetRS-uxE.crl (hash: vZujnbHaCHK75z2anls14NyUzjm67hC5ZFa1YrQkyPI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.crl rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft rsync://rpki.ripe.net/repository/DEFAULT/M-okCE9ribBlVZkQ4DEetRS-uxE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 08:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:6a:6a:69:33:96:e0:6d:43:86:62:84:68:69:47:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33ea24084f6b89b065559910e0311eb514bebb11 Validity Not Before: Feb 9 08:00:18 2026 GMT Not After : Feb 10 08:00:18 2026 GMT Subject: CN=7cd391c69ddc67f28c79418df4372716d6a5afce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:74:c7:fd:d6:58:d8:5e:95:f6:c5:c2:4a:8e: f8:20:e3:c5:00:79:1e:ea:a9:2b:f4:22:74:ef:cd: 5a:d8:f7:6d:3b:6f:87:5f:8c:ad:8e:ff:76:b5:7c: 1e:ed:64:0c:ba:6e:18:8b:3f:18:68:cf:7a:04:e0: 8d:16:ce:b4:b7:78:1f:f9:1f:66:9b:8a:2c:49:36: 88:2e:f5:51:25:7b:20:68:70:85:fd:83:fd:f9:67: 24:e6:3e:1a:5c:a4:4b:8b:fb:4f:28:10:3f:0d:16: e0:e8:73:0f:72:93:07:2f:62:6e:df:02:30:8b:37: b3:16:57:f7:e1:a3:8a:1a:9a:34:94:9b:f2:a3:9f: f3:ab:c3:e3:37:9a:3a:df:4d:67:e5:b5:5f:33:21: dc:52:90:40:35:ed:90:7b:c1:ac:d6:5e:12:d4:e9: 0d:d3:4b:a3:d7:60:6c:d7:f7:52:f0:af:2e:09:13: 6b:96:92:0e:2d:9d:d3:0b:0b:a3:6a:51:b2:02:af: 7f:fe:e2:a5:5d:f8:97:91:c8:a1:fc:4a:7a:db:c6: b2:ab:c3:ce:55:78:da:09:27:50:a9:5d:1d:56:1a: c4:fd:a8:db:80:46:c5:b7:61:e2:74:8a:3d:52:6e: 6a:1d:40:db:fe:b6:45:a9:f8:0a:fb:63:74:f8:67: 50:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D3:91:C6:9D:DC:67:F2:8C:79:41:8D:F4:37:27:16:D6:A5:AF:CE X509v3 Authority Key Identifier: keyid:33:EA:24:08:4F:6B:89:B0:65:55:99:10:E0:31:1E:B5:14:BE:BB:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M-okCE9ribBlVZkQ4DEetRS-uxE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:40:be:89:86:dd:12:57:40:ae:fc:a6:a7:bc:d3:71:27:5f: 18:f6:46:7e:0a:6b:a5:75:19:3a:bc:f8:f6:2c:ff:ff:37:cf: aa:42:9d:8f:12:67:ca:02:86:0c:5c:80:34:1e:f8:80:db:2d: 5f:fa:25:65:af:9a:44:b6:10:4d:a5:08:04:9d:07:81:b5:34: 1b:d7:22:ef:b8:49:17:59:4e:88:7e:f2:91:28:a5:f6:f7:84: 53:c5:91:c0:4b:48:86:6e:ab:e9:a3:b8:a6:75:ce:85:2f:2f: 98:bf:cf:55:12:12:48:9f:6f:1b:b1:34:d5:5d:78:2f:bd:71: c3:5e:96:ce:87:b4:18:a2:c5:f7:e7:a7:75:3c:d7:27:9f:2b: 79:a7:64:18:e1:83:ab:76:1e:86:b8:71:d5:8a:c1:53:fb:f9: f7:81:c9:70:c0:db:30:58:6f:a1:92:75:6e:3e:dc:3e:31:1a: db:ff:f8:aa:c5:ef:ca:11:78:64:4f:86:7e:1d:4c:62:1b:e9: cc:b5:c3:62:7d:45:61:10:78:b9:e6:11:ca:bb:59:31:c5:3d: bf:6c:37:32:84:cf:8e:dc:bd:bb:eb:9f:3f:f8:b6:95:d3:b0: c8:d9:e7:f8:85:af:7e:97:87:12:ad:c4:ca:44:da:b8:d6:6e: 37:f4:db:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBamppM5bgbUOGYoRoaUdiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzZWEyNDA4NGY2Yjg5YjA2NTU1OTkxMGUwMzExZWI1MTRi ZWJiMTEwHhcNMjYwMjA5MDgwMDE4WhcNMjYwMjEwMDgwMDE4WjAzMTEwLwYDVQQD Eyg3Y2QzOTFjNjlkZGM2N2YyOGM3OTQxOGRmNDM3MjcxNmQ2YTVhZmNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5HTH/dZY2F6V9sXCSo74IOPFAHke 6qkr9CJ0781a2PdtO2+HX4ytjv92tXwe7WQMum4Yiz8YaM96BOCNFs60t3gf+R9m m4osSTaILvVRJXsgaHCF/YP9+Wck5j4aXKRLi/tPKBA/DRbg6HMPcpMHL2Ju3wIw izezFlf34aOKGpo0lJvyo5/zq8PjN5o6301n5bVfMyHcUpBANe2Qe8Gs1l4S1OkN 00uj12Bs1/dS8K8uCRNrlpIOLZ3TCwujalGyAq9//uKlXfiXkcih/Ep628ayq8PO VXjaCSdQqV0dVhrE/ajbgEbFt2HidIo9Um5qHUDb/rZFqfgK+2N0+GdQywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHzTkcad3GfyjHlBjfQ3JxbWpa/OMB8GA1UdIwQY MBaAFDPqJAhPa4mwZVWZEOAxHrUUvrsRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTS1va0NFOXJpYkJsVlprUTRERWV0UlMtdXhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mZTNmZWYtZTE3Ni00NTFhLTk1ZDUt OTA1MTk2ZWJhMGJlLzEvTS1va0NFOXJpYkJsVlprUTRERWV0UlMtdXhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9mZTNmZWYtZTE3Ni00NTFhLTk1ZDUtOTA1MTk2ZWJhMGJl LzEvTS1va0NFOXJpYkJsVlprUTRERWV0UlMtdXhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANkC+iYbd EldArvymp7zTcSdfGPZGfgprpXUZOrz49iz//zfPqkKdjxJnygKGDFyANB74gNst X/olZa+aRLYQTaUIBJ0HgbU0G9ci77hJF1lOiH7ykSil9veEU8WRwEtIhm6r6aO4 pnXOhS8vmL/PVRISSJ9vG7E01V14L71xw16Wzoe0GKLF9+endTzXJ58readkGOGD q3Yehrhx1YrBU/v594HJcMDbMFhvoZJ1bj7cPjEa2//4qsXvyhF4ZE+Gfh1MYhvp zLXDYn1FYRB4ueYRyrtZMcU9v2w3MoTPjty9u+ufP/i2ldOwyNnn+IWvfpeHEq3E ykTauNZuN/TbWQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:26 2026 by rpki-client