This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft File: 2OnkD_n7tigNo26XLyDTElAMGFw.mft (raw, json) Hash identifier: 5YGJA9jQH0rec1zB1sxrlMBcpMUYDeGCKAM1qlHrLLs= Subject key identifier: 93:6F:CC:7B:FB:05:DF:85:67:89:03:16:B2:A6:6D:31:3E:E3:0E:2E Authority key identifier: D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C Certificate issuer: /CN=d8e9e40ff9fbb6280da36e972f20d312500c185c Certificate serial: 019C427D0E031E1DA1E94D9756D8C512A48E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft Manifest number: 14F8 Signing time: Mon 09 Feb 2026 13:00:17 +0000 Manifest this update: Mon 09 Feb 2026 13:00:17 +0000 Manifest next update: Tue 10 Feb 2026 13:00:17 +0000 Files and hashes: 1: 2OnkD_n7tigNo26XLyDTElAMGFw.crl (hash: ek6TC/XEZSNAiZvdLGVcsz/CMOaG2NjgpeAVoxTmAfw=) 2: jZ_PcWcN6a-O2Z-3tx9t6lTT23M.roa (hash: EYrD0BtGRs4bNIFPrVTFK250phWOgkEv3oi3twZMLNA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:0e:03:1e:1d:a1:e9:4d:97:56:d8:c5:12:a4:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8e9e40ff9fbb6280da36e972f20d312500c185c Validity Not Before: Feb 9 13:00:17 2026 GMT Not After : Feb 10 13:00:17 2026 GMT Subject: CN=936fcc7bfb05df8567890316b2a66d313ee30e2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:8e:5d:cb:9e:cd:3c:f3:cd:8a:56:cd:c1:33: d5:c7:82:1e:91:24:46:02:69:5c:30:bd:cf:90:4e: 01:a7:ab:f4:29:cd:6f:29:75:f7:cf:6f:97:87:ec: ca:62:af:7d:bd:fc:53:58:6d:46:78:60:43:11:6c: 0c:de:b8:f0:47:db:91:6c:a9:60:28:90:2e:d7:ec: ec:f7:fa:40:42:db:93:02:70:4e:26:d5:58:46:a5: 43:c6:1f:e8:15:b5:21:ba:87:21:83:9b:0f:b0:2b: da:e0:bc:fe:fe:4a:61:1d:17:b1:08:a4:cf:ca:3c: 1b:fd:b6:17:9e:9e:5f:59:bd:17:da:9b:74:c7:40: 9d:62:cc:71:01:eb:36:c0:86:f0:db:cb:27:ad:6c: 94:da:66:b0:5c:70:22:11:29:39:4e:d8:d8:26:09: 14:de:91:c2:1e:1a:a4:ae:4d:f4:5f:79:15:4d:c5: 85:af:3c:67:10:f6:fd:12:5d:b9:d4:35:1d:d4:7d: 9e:f4:45:f7:1d:8b:d0:66:92:aa:14:9e:96:d8:74: cd:40:2c:e2:1a:1a:fb:42:ae:2d:8b:36:c3:78:4f: 20:6c:3a:79:7e:57:ef:4b:3c:15:6a:73:93:5e:ad: e2:01:8d:c2:f3:44:eb:78:a4:54:ff:ab:0e:77:8b: b5:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:6F:CC:7B:FB:05:DF:85:67:89:03:16:B2:A6:6D:31:3E:E3:0E:2E X509v3 Authority Key Identifier: keyid:D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:f8:45:14:b1:c1:4c:0c:e7:cf:7e:68:65:a3:bb:c3:8b:78: 0b:91:b9:e2:49:f0:ee:4a:32:80:a4:78:62:4c:5a:55:9f:eb: ef:c0:4e:ff:52:62:22:ce:93:c7:0d:d3:f4:f1:34:8b:13:21: 2f:5e:a1:65:f4:34:f6:6d:49:5b:de:b6:09:f0:72:f1:64:9c: bf:89:a1:48:81:8a:ba:49:9f:f8:c4:4d:94:26:76:5b:5a:14: 51:1a:e5:66:99:8f:59:88:b7:5c:ba:48:65:91:87:7a:ce:6e: 4f:83:bc:2a:c4:56:c6:35:67:49:65:52:d4:a6:a2:f7:bc:6c: 60:7b:ca:51:f8:45:e8:86:70:23:2f:55:a7:44:58:ae:a3:a5: bb:d2:ed:b1:07:02:bd:f0:04:d6:0f:b8:04:bd:45:95:6f:56: c7:35:89:95:45:bc:1a:7f:eb:69:0f:1e:e6:b8:95:8b:fb:e1: 6c:b1:8d:cf:d1:ed:98:4f:3a:c5:87:c9:a3:ac:d6:95:c4:a6: d5:67:6c:c5:4e:95:73:27:e7:30:c9:9b:79:1f:df:f1:32:a2: 10:be:2f:89:2b:61:d6:4f:a5:f3:9e:51:e9:a9:0a:c6:0e:71: 73:69:30:95:90:8a:f1:ec:2d:a5:84:ff:6c:14:ab:ce:d1:74: d3:87:0a:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfQ4DHh2h6U2XVtjFEqSOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ZTllNDBmZjlmYmI2MjgwZGEzNmU5NzJmMjBkMzEyNTAw YzE4NWMwHhcNMjYwMjA5MTMwMDE3WhcNMjYwMjEwMTMwMDE3WjAzMTEwLwYDVQQD Eyg5MzZmY2M3YmZiMDVkZjg1Njc4OTAzMTZiMmE2NmQzMTNlZTMwZTJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm45dy57NPPPNilbNwTPVx4IekSRG AmlcML3PkE4Bp6v0Kc1vKXX3z2+Xh+zKYq99vfxTWG1GeGBDEWwM3rjwR9uRbKlg KJAu1+zs9/pAQtuTAnBOJtVYRqVDxh/oFbUhuochg5sPsCva4Lz+/kphHRexCKTP yjwb/bYXnp5fWb0X2pt0x0CdYsxxAes2wIbw28snrWyU2mawXHAiESk5TtjYJgkU 3pHCHhqkrk30X3kVTcWFrzxnEPb9El251DUd1H2e9EX3HYvQZpKqFJ6W2HTNQCzi Ghr7Qq4tizbDeE8gbDp5flfvSzwVanOTXq3iAY3C80TreKRU/6sOd4u1rQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJNvzHv7Bd+FZ4kDFrKmbTE+4w4uMB8GA1UdIwQY MBaAFNjp5A/5+7YoDaNuly8g0xJQDBhcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMk9ua0Rfbjd0aWdObzI2WEx5RFRFbEFNR0Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS84NzM4YjktMmQwYS00ZWY2LWFmYWQt MWFlNTA2ZWExNzYwLzEvMk9ua0Rfbjd0aWdObzI2WEx5RFRFbEFNR0Z3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS84NzM4YjktMmQwYS00ZWY2LWFmYWQtMWFlNTA2ZWExNzYw LzEvMk9ua0Rfbjd0aWdObzI2WEx5RFRFbEFNR0Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcfhFFLHB TAznz35oZaO7w4t4C5G54knw7koygKR4YkxaVZ/r78BO/1JiIs6Txw3T9PE0ixMh L16hZfQ09m1JW962CfBy8WScv4mhSIGKukmf+MRNlCZ2W1oUURrlZpmPWYi3XLpI ZZGHes5uT4O8KsRWxjVnSWVS1Kai97xsYHvKUfhF6IZwIy9Vp0RYrqOlu9LtsQcC vfAE1g+4BL1FlW9WxzWJlUW8Gn/raQ8e5riVi/vhbLGNz9HtmE86xYfJo6zWlcSm 1WdsxU6VcyfnMMmbeR/f8TKiEL4viSth1k+l855R6akKxg5xc2kwlZCK8ewtpYT/ bBSrztF004cK2g== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:15 2026 by rpki-client