This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft File: OIzM14vxZTPzMYVEPqgtza2SBBA.mft (raw, json) Hash identifier: JSTYovFaam5fd6GCZ1HfgttV9uVAjaToiIhe4mvHAek= Subject key identifier: 01:87:2A:C6:01:EB:1C:25:43:DD:7C:FD:95:88:44:C4:C8:F6:F1:E9 Authority key identifier: 38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10 Certificate issuer: /CN=388cccd78bf16533f33185443ea82dcdad920410 Certificate serial: 019C443520A9C1B3258752B532903DEB828F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft Manifest number: 0E4E Signing time: Mon 09 Feb 2026 21:00:58 +0000 Manifest this update: Mon 09 Feb 2026 21:00:58 +0000 Manifest next update: Tue 10 Feb 2026 21:00:58 +0000 Files and hashes: 1: OIzM14vxZTPzMYVEPqgtza2SBBA.crl (hash: 5PhEotXlH8SpY3E70yaquLQy2JsjuRg8hesRCL+DmMw=) 2: lzXkzHb5e6mg4oE0vsIegFdcHEs.roa (hash: AAwn2QJRCuwjLBg290zcDtj4v0hSm4DxXCwXXNuyeR0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:35:20:a9:c1:b3:25:87:52:b5:32:90:3d:eb:82:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=388cccd78bf16533f33185443ea82dcdad920410 Validity Not Before: Feb 9 21:00:58 2026 GMT Not After : Feb 10 21:00:58 2026 GMT Subject: CN=01872ac601eb1c2543dd7cfd958844c4c8f6f1e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:77:f9:02:7e:54:77:11:e8:fe:4a:a8:96:e9: d1:37:d4:33:10:17:79:17:37:39:11:43:73:41:07: 05:79:92:0f:dc:7c:5e:d0:b6:b7:ac:34:11:da:0e: 78:71:0c:c2:81:44:ff:c7:a1:fb:a4:0e:09:b3:77: f5:72:18:60:ef:1e:01:2c:07:ab:2c:90:d8:a7:df: a7:f0:bf:14:cd:e5:f9:dc:99:ea:57:ea:07:81:90: 34:8e:eb:c8:b3:a9:88:47:9b:6a:f2:78:13:82:d6: de:60:61:0d:f2:c7:e7:2f:ba:8d:09:e4:a2:b5:d0: 95:de:f7:6d:c1:5e:9e:d5:a5:b9:5e:e0:6d:75:c1: 27:90:a4:83:b6:c0:b7:5d:6b:15:d9:c7:4e:a2:00: 0d:a7:04:0b:42:ac:7d:49:4e:26:ad:60:35:cd:e8: c3:81:ca:ac:81:16:40:f9:4e:59:e6:16:70:47:83: c3:f2:5b:37:9c:5d:80:83:b3:8b:15:a9:a8:4f:bd: 3e:a5:6b:2a:1b:55:fb:23:44:ac:6a:b2:5d:01:0b: 85:fa:40:57:cd:38:36:21:83:a4:95:f8:c7:07:15: 09:d1:79:37:bf:f8:39:4e:5a:12:46:bc:94:50:78: 6a:9f:f0:4a:36:c9:71:a8:11:9f:32:1a:69:4a:b9: e2:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:87:2A:C6:01:EB:1C:25:43:DD:7C:FD:95:88:44:C4:C8:F6:F1:E9 X509v3 Authority Key Identifier: keyid:38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:bf:df:90:2c:c0:d6:dd:04:cb:25:ad:e5:c6:6c:0f:af:cc: 78:b7:77:22:5f:6a:b0:36:e3:3c:a5:46:6a:d0:7f:00:d5:32: 07:de:61:02:ea:83:6f:90:fa:ef:26:3f:d0:5d:89:fb:c6:06: 0d:45:9d:d3:d3:68:7e:9d:9b:91:72:36:b3:b0:ac:f5:45:60: 8e:34:33:52:44:fb:ec:be:9d:ee:3d:29:19:a8:b1:f5:ac:84: fd:1e:fa:3b:6a:b9:fc:8c:a4:de:d8:52:d4:bc:98:af:82:15: bf:b6:8d:a6:8c:52:70:ae:9f:14:a0:15:11:82:88:8f:09:50: a9:6c:dd:ba:67:6f:5e:6a:fb:8b:dc:db:bb:5b:6d:55:80:ce: e5:bf:07:eb:c4:bc:1f:2c:b0:d6:57:d3:90:75:ce:2b:a2:71: 5e:ba:89:b5:1d:49:c4:a9:ce:ce:dd:41:22:ad:2e:a0:b7:ad: 8a:a1:b7:7f:11:d1:85:9e:e7:dc:34:13:db:ca:ff:7f:91:b4: 2d:fa:46:ad:b9:d0:4d:f1:31:e4:fc:58:2c:9a:b0:e4:13:80: 7f:17:69:3c:7a:02:45:5e:9b:9e:fe:8b:66:0a:d7:cf:4d:54: 74:27:06:d1:12:61:e6:95:e0:43:0c:90:c2:d6:9f:32:9a:06: 8c:86:e4:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENSCpwbMlh1K1MpA964KPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4OGNjY2Q3OGJmMTY1MzNmMzMxODU0NDNlYTgyZGNkYWQ5 MjA0MTAwHhcNMjYwMjA5MjEwMDU4WhcNMjYwMjEwMjEwMDU4WjAzMTEwLwYDVQQD EygwMTg3MmFjNjAxZWIxYzI1NDNkZDdjZmQ5NTg4NDRjNGM4ZjZmMWU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApXf5An5UdxHo/kqolunRN9QzEBd5 Fzc5EUNzQQcFeZIP3Hxe0La3rDQR2g54cQzCgUT/x6H7pA4Js3f1chhg7x4BLAer LJDYp9+n8L8UzeX53JnqV+oHgZA0juvIs6mIR5tq8ngTgtbeYGEN8sfnL7qNCeSi tdCV3vdtwV6e1aW5XuBtdcEnkKSDtsC3XWsV2cdOogANpwQLQqx9SU4mrWA1zejD gcqsgRZA+U5Z5hZwR4PD8ls3nF2Ag7OLFamoT70+pWsqG1X7I0SsarJdAQuF+kBX zTg2IYOklfjHBxUJ0Xk3v/g5TloSRryUUHhqn/BKNslxqBGfMhppSrnivQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAGHKsYB6xwlQ918/ZWIRMTI9vHpMB8GA1UdIwQY MBaAFDiMzNeL8WUz8zGFRD6oLc2tkgQQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0l6TTE0dnhaVFB6TVlWRVBxZ3R6YTJTQkJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS82OGIxZDMtYzkzOC00MjNlLTkwZGQt MjEwOThhNjEzNTdlLzEvT0l6TTE0dnhaVFB6TVlWRVBxZ3R6YTJTQkJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NS82OGIxZDMtYzkzOC00MjNlLTkwZGQtMjEwOThhNjEzNTdl LzEvT0l6TTE0dnhaVFB6TVlWRVBxZ3R6YTJTQkJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASr/fkCzA 1t0EyyWt5cZsD6/MeLd3Il9qsDbjPKVGatB/ANUyB95hAuqDb5D67yY/0F2J+8YG DUWd09Nofp2bkXI2s7Cs9UVgjjQzUkT77L6d7j0pGaix9ayE/R76O2q5/Iyk3thS 1LyYr4IVv7aNpoxScK6fFKAVEYKIjwlQqWzdumdvXmr7i9zbu1ttVYDO5b8H68S8 Hyyw1lfTkHXOK6JxXrqJtR1JxKnOzt1BIq0uoLetiqG3fxHRhZ7n3DQT28r/f5G0 LfpGrbnQTfEx5PxYLJqw5BOAfxdpPHoCRV6bnv6LZgrXz01UdCcG0RJh5pXgQwyQ wtafMpoGjIbkHA== -----END CERTIFICATE-----Generated at Mon Feb 9 23:53:03 2026 by rpki-client