This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.mft File: oWhu-kcXfglRrIjFZNj4hQvuxdA.mft (raw, json) Hash identifier: CBAYs7RVlg6tXHgz2zqM3WBSZAYx/M/Qs1qULcMLDaY= Subject key identifier: 94:82:F2:40:DA:48:C0:FA:C4:BA:20:92:55:86:C7:8C:D1:3F:C2:83 Authority key identifier: A1:68:6E:FA:47:17:7E:09:51:AC:88:C5:64:D8:F8:85:0B:EE:C5:D0 Certificate issuer: /CN=a1686efa47177e0951ac88c564d8f8850beec5d0 Certificate serial: 019C41D833EB40D0BAED3CEE13FBD2A58D82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWhu-kcXfglRrIjFZNj4hQvuxdA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.mft Manifest number: 0E9F Signing time: Mon 09 Feb 2026 10:00:13 +0000 Manifest this update: Mon 09 Feb 2026 10:00:13 +0000 Manifest next update: Tue 10 Feb 2026 10:00:13 +0000 Files and hashes: 1: oWhu-kcXfglRrIjFZNj4hQvuxdA.crl (hash: F1M4D0Aq4V1qSRiRWThVSLrbd9F/tuMDDCE3ggTuRX0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.crl rsync://rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.mft rsync://rpki.ripe.net/repository/DEFAULT/oWhu-kcXfglRrIjFZNj4hQvuxdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:33:eb:40:d0:ba:ed:3c:ee:13:fb:d2:a5:8d:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1686efa47177e0951ac88c564d8f8850beec5d0 Validity Not Before: Feb 9 10:00:13 2026 GMT Not After : Feb 10 10:00:13 2026 GMT Subject: CN=9482f240da48c0fac4ba20925586c78cd13fc283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d7:5e:83:b9:5c:ff:3b:5c:6d:cd:5d:d4:ae: f7:a3:be:a9:67:b0:d1:e4:58:bf:50:0b:4c:cc:25: 35:47:c7:45:ee:00:ef:69:c6:99:b3:30:b4:c2:de: 5c:44:6a:86:cc:f2:e4:b4:fc:16:0f:fc:61:fc:c1: 97:e3:9e:12:69:f1:92:99:82:31:ef:a1:ff:75:12: bf:ba:cf:00:44:1d:2e:be:3a:74:86:f2:08:8e:ea: 44:12:1a:86:19:72:4d:8f:64:c9:32:20:f8:b9:0a: 39:4a:d1:1b:0b:3c:77:a5:36:54:a0:62:0b:84:01: 3c:73:29:e5:d0:9e:8e:b4:78:eb:22:52:78:25:09: ed:17:1e:38:eb:b6:93:e0:37:9c:f9:8a:3a:db:90: be:59:41:4c:34:45:90:b3:f5:d4:f7:11:08:62:bf: 71:54:de:89:f8:8d:38:d6:8d:c1:0b:8e:64:f4:79: 86:b1:18:37:99:c4:ee:83:d0:e4:07:3a:6e:f7:dd: 39:9a:5b:c8:6a:e4:56:1f:dd:a5:f7:18:68:6c:75: 1d:6a:7d:cf:55:0e:75:96:73:ef:7f:c2:37:e9:8f: f3:99:83:6a:c9:df:53:8b:43:f8:79:9d:e5:1d:ab: e7:06:26:99:2f:16:e4:4e:a2:01:b7:b8:e5:2f:f1: d5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:82:F2:40:DA:48:C0:FA:C4:BA:20:92:55:86:C7:8C:D1:3F:C2:83 X509v3 Authority Key Identifier: keyid:A1:68:6E:FA:47:17:7E:09:51:AC:88:C5:64:D8:F8:85:0B:EE:C5:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWhu-kcXfglRrIjFZNj4hQvuxdA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:90:07:84:7f:48:a5:48:e9:01:6f:15:4f:2f:16:81:1c:58: 1d:7f:af:8c:91:10:94:9d:fa:02:7a:fb:5f:57:79:5f:37:61: 74:b3:ae:78:d0:49:a8:b9:77:0d:1f:ed:04:a8:52:68:d1:9a: a9:9f:24:a4:4c:d6:47:7c:c1:49:99:af:56:c3:5a:c4:b2:ba: 4c:2a:40:f3:b7:4f:9e:d3:99:ed:e3:98:90:9d:f4:c8:37:01: 20:c2:7e:ef:f9:10:ce:2e:79:dc:b3:99:65:f7:bc:fa:58:6d: ab:55:a5:86:1c:38:83:96:ed:21:3b:4e:87:90:73:f0:9f:7d: 05:d6:80:a1:d4:53:54:e5:65:3e:a4:f4:cb:c1:b4:67:88:0b: 31:3c:fe:e8:e9:5d:fb:26:a2:be:5a:2d:db:c2:e0:a7:db:ae: fc:9e:24:69:d3:6a:c9:70:c8:e5:30:bd:83:aa:74:6b:ac:c3: c1:6d:b7:d5:ad:0f:88:d5:40:71:31:bf:aa:ca:d7:29:89:95: 26:f2:a5:b4:ed:1b:37:31:9d:cd:31:9f:59:9a:2e:65:15:84: be:2f:7e:14:5c:cf:5b:82:3f:3e:e0:5b:ff:60:c6:e8:ec:10: 5a:0f:ed:44:dc:90:88:16:17:b4:8f:ef:9a:52:8b:5c:1c:1e: 4d:19:4e:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2DPrQNC67TzuE/vSpY2CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExNjg2ZWZhNDcxNzdlMDk1MWFjODhjNTY0ZDhmODg1MGJl ZWM1ZDAwHhcNMjYwMjA5MTAwMDEzWhcNMjYwMjEwMTAwMDEzWjAzMTEwLwYDVQQD Eyg5NDgyZjI0MGRhNDhjMGZhYzRiYTIwOTI1NTg2Yzc4Y2QxM2ZjMjgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo9deg7lc/ztcbc1d1K73o76pZ7DR 5Fi/UAtMzCU1R8dF7gDvacaZszC0wt5cRGqGzPLktPwWD/xh/MGX454SafGSmYIx 76H/dRK/us8ARB0uvjp0hvIIjupEEhqGGXJNj2TJMiD4uQo5StEbCzx3pTZUoGIL hAE8cynl0J6OtHjrIlJ4JQntFx4467aT4Dec+Yo625C+WUFMNEWQs/XU9xEIYr9x VN6J+I041o3BC45k9HmGsRg3mcTug9DkBzpu9905mlvIauRWH92l9xhobHUdan3P VQ51lnPvf8I36Y/zmYNqyd9Ti0P4eZ3lHavnBiaZLxbkTqIBt7jlL/HVQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJSC8kDaSMD6xLogklWGx4zRP8KDMB8GA1UdIwQY MBaAFKFobvpHF34JUayIxWTY+IUL7sXQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1dodS1rY1hmZ2xScklqRlpOajRoUXZ1eGRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8xMWQxOTgtODU0Zi00ODgzLWFiOTAt Y2E0MWIzM2I4ODNhLzEvb1dodS1rY1hmZ2xScklqRlpOajRoUXZ1eGRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS8xMWQxOTgtODU0Zi00ODgzLWFiOTAtY2E0MWIzM2I4ODNh LzEvb1dodS1rY1hmZ2xScklqRlpOajRoUXZ1eGRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATZAHhH9I pUjpAW8VTy8WgRxYHX+vjJEQlJ36Anr7X1d5XzdhdLOueNBJqLl3DR/tBKhSaNGa qZ8kpEzWR3zBSZmvVsNaxLK6TCpA87dPntOZ7eOYkJ30yDcBIMJ+7/kQzi553LOZ Zfe8+lhtq1Wlhhw4g5btITtOh5Bz8J99BdaAodRTVOVlPqT0y8G0Z4gLMTz+6Old +yaivlot28Lgp9uu/J4kadNqyXDI5TC9g6p0a6zDwW231a0PiNVAcTG/qsrXKYmV JvKltO0bNzGdzTGfWZouZRWEvi9+FFzPW4I/PuBb/2DG6OwQWg/tRNyQiBYXtI/v mlKLXBweTRlOEA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:29 2026 by rpki-client