This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/bccaea-68ce-4224-97a5-2b3b4c780419/1/OkGxVaq20SKf00jqoD0PeQPxJno.mft File: OkGxVaq20SKf00jqoD0PeQPxJno.mft (raw, json) Hash identifier: tfS3JJ/9dJHjdwZp/z8R/b4oxHjqGwZJxD/OfQta7NM= Subject key identifier: 6F:37:45:BA:49:81:39:11:A1:58:2A:52:1A:03:B6:70:DE:5C:C0:78 Authority key identifier: 3A:41:B1:55:AA:B6:D1:22:9F:D3:48:EA:A0:3D:0F:79:03:F1:26:7A Certificate issuer: /CN=3a41b155aab6d1229fd348eaa03d0f7903f1267a Certificate serial: 019C4358C6D7C0503B5917D39B605166D715 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkGxVaq20SKf00jqoD0PeQPxJno.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/bccaea-68ce-4224-97a5-2b3b4c780419/1/OkGxVaq20SKf00jqoD0PeQPxJno.mft Manifest number: 1318 Signing time: Mon 09 Feb 2026 17:00:17 +0000 Manifest this update: Mon 09 Feb 2026 17:00:17 +0000 Manifest next update: Tue 10 Feb 2026 17:00:17 +0000 Files and hashes: 1: MQkaYy80rlcF2zpg2yFpUgSAhhE.roa (hash: S21YGrGdqaF7674FFZMPM/sVGaBX3VNwBzrWaUE2Lqg=) 2: OkGxVaq20SKf00jqoD0PeQPxJno.crl (hash: bx2AsjkczzKnjTmFG84w0m5GExd47mcQpRSdOTnJIzI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/bccaea-68ce-4224-97a5-2b3b4c780419/1/OkGxVaq20SKf00jqoD0PeQPxJno.crl rsync://rpki.ripe.net/repository/DEFAULT/67/bccaea-68ce-4224-97a5-2b3b4c780419/1/OkGxVaq20SKf00jqoD0PeQPxJno.mft rsync://rpki.ripe.net/repository/DEFAULT/OkGxVaq20SKf00jqoD0PeQPxJno.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:c6:d7:c0:50:3b:59:17:d3:9b:60:51:66:d7:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a41b155aab6d1229fd348eaa03d0f7903f1267a Validity Not Before: Feb 9 17:00:17 2026 GMT Not After : Feb 10 17:00:17 2026 GMT Subject: CN=6f3745ba49813911a1582a521a03b670de5cc078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e8:b6:e2:ac:a7:9a:65:39:3d:7b:24:2b:1f: c5:f9:80:9f:94:26:24:e4:8b:56:41:52:a2:a4:09: 35:9b:d5:20:55:e1:30:e6:0d:92:ab:31:8e:b5:92: 6a:bd:ee:8d:b1:fc:3b:e7:70:80:f3:04:cf:b0:fe: 64:aa:4d:3e:43:5a:ee:45:72:2f:d4:c9:83:5d:43: 16:e4:e5:a2:09:55:04:9f:15:61:1f:6b:ee:d1:56: 48:b1:55:a1:70:03:47:3f:8a:09:21:07:7c:31:85: 21:56:3d:09:7a:8a:21:48:ad:7e:a6:7b:4f:6a:6d: 3f:95:6f:b0:9b:24:2a:4c:be:00:5d:56:72:63:2b: e1:b5:59:e9:72:f9:10:c5:f6:24:52:b9:f3:61:95: a7:a4:e4:b6:ee:20:69:78:3a:f2:8e:33:23:73:8a: dd:37:e7:9d:11:8c:14:5c:98:f2:f8:4f:e1:1d:ce: 7d:7a:64:cb:03:a8:de:6d:c8:bf:81:72:04:4b:b9: 2c:91:e4:58:0e:3b:6e:54:e8:4c:39:95:12:4e:a4: 62:d4:5b:2e:51:95:6f:b4:33:ac:a5:7c:3a:e9:44: 5e:d8:06:25:26:0d:98:23:83:38:23:8b:c2:c9:4c: bd:3e:bf:ee:4e:7a:83:8e:47:29:0c:16:d3:a1:5d: 03:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:37:45:BA:49:81:39:11:A1:58:2A:52:1A:03:B6:70:DE:5C:C0:78 X509v3 Authority Key Identifier: keyid:3A:41:B1:55:AA:B6:D1:22:9F:D3:48:EA:A0:3D:0F:79:03:F1:26:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkGxVaq20SKf00jqoD0PeQPxJno.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bccaea-68ce-4224-97a5-2b3b4c780419/1/OkGxVaq20SKf00jqoD0PeQPxJno.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bccaea-68ce-4224-97a5-2b3b4c780419/1/OkGxVaq20SKf00jqoD0PeQPxJno.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:57:9c:8f:65:e7:17:8b:b6:91:02:11:b4:0b:5e:51:d7:0c: 95:7d:0c:7e:26:23:15:2f:c9:40:75:6c:b3:9a:3e:bb:a2:2c: 4a:47:28:88:cc:2a:9b:f7:01:13:ea:fd:a9:f1:bd:fb:cb:70: e4:db:be:f5:34:5c:94:47:c5:f0:68:a8:88:89:f0:06:45:af: ce:cc:ac:f1:b3:91:3e:df:f3:7c:ac:00:3e:f3:4b:e3:d9:f9: 18:0c:d7:fc:73:fe:72:79:c4:fa:e7:7c:93:c7:79:ff:f9:0d: 90:fe:4c:91:6e:fd:1f:0e:78:40:b4:78:cc:e4:04:5b:eb:05: 04:29:f2:9a:6f:66:b8:8a:70:37:05:29:50:df:33:55:99:3f: d6:d6:77:e1:b0:ae:f9:0a:25:a6:14:a5:1c:96:bf:5d:04:d3: d7:78:7e:54:a5:14:26:55:f9:19:4f:58:f6:fd:55:b7:f8:c7: 1d:70:27:86:fc:d8:f2:a5:90:54:15:0a:56:08:e0:dd:ce:9f: 36:d2:b2:7a:aa:8c:eb:bf:4a:46:77:df:6d:3e:d1:0c:a7:72: 2c:76:ee:17:d3:84:66:4c:26:a7:66:55:a2:f2:07:22:f2:2a: e8:91:1b:3d:f3:2f:4c:aa:7d:e5:71:0e:c6:71:d2:00:28:da: 74:37:39:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWMbXwFA7WRfTm2BRZtcVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNDFiMTU1YWFiNmQxMjI5ZmQzNDhlYWEwM2QwZjc5MDNm MTI2N2EwHhcNMjYwMjA5MTcwMDE3WhcNMjYwMjEwMTcwMDE3WjAzMTEwLwYDVQQD Eyg2ZjM3NDViYTQ5ODEzOTExYTE1ODJhNTIxYTAzYjY3MGRlNWNjMDc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+i24qynmmU5PXskKx/F+YCflCYk 5ItWQVKipAk1m9UgVeEw5g2SqzGOtZJqve6Nsfw753CA8wTPsP5kqk0+Q1ruRXIv 1MmDXUMW5OWiCVUEnxVhH2vu0VZIsVWhcANHP4oJIQd8MYUhVj0JeoohSK1+pntP am0/lW+wmyQqTL4AXVZyYyvhtVnpcvkQxfYkUrnzYZWnpOS27iBpeDryjjMjc4rd N+edEYwUXJjy+E/hHc59emTLA6jebci/gXIES7kskeRYDjtuVOhMOZUSTqRi1Fsu UZVvtDOspXw66URe2AYlJg2YI4M4I4vCyUy9Pr/uTnqDjkcpDBbToV0DjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG83RbpJgTkRoVgqUhoDtnDeXMB4MB8GA1UdIwQY MBaAFDpBsVWqttEin9NI6qA9D3kD8SZ6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2tHeFZhcTIwU0tmMDBqcW9EMFBlUVB4Sm5vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9iY2NhZWEtNjhjZS00MjI0LTk3YTUt MmIzYjRjNzgwNDE5LzEvT2tHeFZhcTIwU0tmMDBqcW9EMFBlUVB4Sm5vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9iY2NhZWEtNjhjZS00MjI0LTk3YTUtMmIzYjRjNzgwNDE5 LzEvT2tHeFZhcTIwU0tmMDBqcW9EMFBlUVB4Sm5vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAalecj2Xn F4u2kQIRtAteUdcMlX0MfiYjFS/JQHVss5o+u6IsSkcoiMwqm/cBE+r9qfG9+8tw 5Nu+9TRclEfF8GioiInwBkWvzsys8bORPt/zfKwAPvNL49n5GAzX/HP+cnnE+ud8 k8d5//kNkP5MkW79Hw54QLR4zOQEW+sFBCnymm9muIpwNwUpUN8zVZk/1tZ34bCu +QolphSlHJa/XQTT13h+VKUUJlX5GU9Y9v1Vt/jHHXAnhvzY8qWQVBUKVgjg3c6f NtKyeqqM679KRnffbT7RDKdyLHbuF9OEZkwmp2ZVovIHIvIq6JEbPfMvTKp95XEO xnHSACjadDc5jQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:50 2026 by rpki-client