This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft File: O_zNSgBCLIZfUJO4W7howrswxGk.mft (raw, json) Hash identifier: 5dDhd5rWp4ttCAeib9dl1WcigyGuR7a5WzWaF/2cd9Y= Subject key identifier: 06:4F:BF:DB:ED:AB:1B:85:33:7F:8D:17:C5:59:36:08:5C:C7:A5:45 Authority key identifier: 3B:FC:CD:4A:00:42:2C:86:5F:50:93:B8:5B:B8:68:C2:BB:30:C4:69 Certificate issuer: /CN=3bfccd4a00422c865f5093b85bb868c2bb30c469 Certificate serial: 019C4390A3186FF356F9D9A1B8E9E6E4B0EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft Manifest number: 1814 Signing time: Mon 09 Feb 2026 18:01:18 +0000 Manifest this update: Mon 09 Feb 2026 18:01:18 +0000 Manifest next update: Tue 10 Feb 2026 18:01:18 +0000 Files and hashes: 1: LC2WPuI9QLIZ8RbSjNvSRTUaDs4.asa (hash: TvS/cC1UWjyeu6FeGmxZxswAr/BZFOyjaWFqao1VhuI=) 2: O_zNSgBCLIZfUJO4W7howrswxGk.crl (hash: uTlN6kIAe7BGR6fc5rAAo70EzcI+R/rag1y8ArwOIVg=) 3: _In4h_FwuHoLeAhLdOO_0gDal3g.roa (hash: 5CWj3iN4WCDtTiUEN45Kg99lLjsQ7Kch3A5A4xC3N5U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.crl rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:a3:18:6f:f3:56:f9:d9:a1:b8:e9:e6:e4:b0:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3bfccd4a00422c865f5093b85bb868c2bb30c469 Validity Not Before: Feb 9 18:01:18 2026 GMT Not After : Feb 10 18:01:18 2026 GMT Subject: CN=064fbfdbedab1b85337f8d17c55936085cc7a545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d3:53:7f:ae:bd:ed:2b:e3:0f:76:af:0b:bf: 75:0e:af:71:51:bc:31:a2:a7:30:d8:1d:c7:33:d1: 94:36:c2:8f:45:d6:84:2f:2d:fb:5d:be:56:3e:d5: d1:f4:86:05:dd:57:5d:7c:64:56:b6:ef:e6:cf:c7: 52:18:84:c7:bf:a9:35:90:2d:78:ce:78:dc:73:e5: ce:76:30:e3:28:a3:3d:88:55:5d:78:10:63:b6:31: 80:90:2f:5b:bf:ec:93:f6:74:d2:89:f3:ce:f3:9a: c7:17:d7:65:73:1f:31:b0:95:c3:07:b5:20:23:a4: 94:c8:76:f2:90:b6:0f:d3:2b:b3:66:5c:1c:10:fa: 7f:51:86:01:79:2d:1b:f1:a8:22:58:a5:99:f9:1e: 7b:bd:ca:09:1d:64:1e:fd:30:21:e9:28:8c:24:07: c9:38:8b:90:5a:eb:03:a5:65:77:ae:16:52:26:c6: 19:b6:71:f6:bf:98:97:40:1d:07:95:c8:79:86:db: c4:c8:b3:41:a8:c0:97:41:40:2c:2c:18:ad:1d:71: ce:5c:8f:4a:73:fb:8a:c0:f7:61:47:cc:e4:20:56: 7a:d3:40:a3:64:92:80:aa:a6:0b:e3:03:47:cd:64: aa:da:6c:74:ba:b7:d7:71:6f:85:bb:d8:05:c4:fd: a5:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:4F:BF:DB:ED:AB:1B:85:33:7F:8D:17:C5:59:36:08:5C:C7:A5:45 X509v3 Authority Key Identifier: keyid:3B:FC:CD:4A:00:42:2C:86:5F:50:93:B8:5B:B8:68:C2:BB:30:C4:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:bf:1e:d1:44:6f:b4:eb:90:92:6b:3f:73:46:c0:64:a4:28: c5:93:14:8d:60:31:38:b1:31:e2:8f:26:33:9b:b6:3e:e3:51: b0:63:7b:65:52:1d:53:2b:f3:f8:b9:ee:97:9e:9b:55:b7:71: ad:67:8c:35:ce:93:76:9c:ac:90:66:ee:27:04:2e:fd:23:f3: a7:8d:c7:ae:38:00:b4:5b:e0:20:2b:bb:5c:4a:0c:ac:e6:18: 22:0c:95:d8:5c:7e:5e:86:07:36:a2:da:98:75:1c:85:ba:90: e4:98:18:b8:e5:b8:87:91:c2:3e:70:63:47:fb:8b:1d:b7:91: e8:ce:c2:b6:bb:25:22:2e:a4:6b:08:be:a8:32:6b:7a:f0:79: a5:12:01:e6:d9:37:3e:bd:11:ea:b7:4d:91:27:51:00:bd:c6: 4e:c5:42:cb:af:93:ea:8f:ad:d0:1c:7b:49:b8:2c:36:cd:73: 57:69:05:b9:68:8e:4e:11:c5:fd:ed:65:25:13:ce:9f:ad:c0: 85:9c:9a:31:a8:1e:3c:f1:0f:46:1c:49:ed:cb:2e:b5:f7:1d: 05:a0:71:33:cf:06:b9:24:c1:fc:40:0e:db:1e:08:b1:73:86: 0d:48:86:94:8a:e7:99:da:9d:19:b0:8a:5e:46:b1:ea:c1:e5: 8f:38:49:97 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkKMYb/NW+dmhuOnm5LDrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiZmNjZDRhMDA0MjJjODY1ZjUwOTNiODViYjg2OGMyYmIz MGM0NjkwHhcNMjYwMjA5MTgwMTE4WhcNMjYwMjEwMTgwMTE4WjAzMTEwLwYDVQQD EygwNjRmYmZkYmVkYWIxYjg1MzM3ZjhkMTdjNTU5MzYwODVjYzdhNTQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdNTf6697SvjD3avC791Dq9xUbwx oqcw2B3HM9GUNsKPRdaELy37Xb5WPtXR9IYF3VddfGRWtu/mz8dSGITHv6k1kC14 znjcc+XOdjDjKKM9iFVdeBBjtjGAkC9bv+yT9nTSifPO85rHF9dlcx8xsJXDB7Ug I6SUyHbykLYP0yuzZlwcEPp/UYYBeS0b8agiWKWZ+R57vcoJHWQe/TAh6SiMJAfJ OIuQWusDpWV3rhZSJsYZtnH2v5iXQB0Hlch5htvEyLNBqMCXQUAsLBitHXHOXI9K c/uKwPdhR8zkIFZ600CjZJKAqqYL4wNHzWSq2mx0urfXcW+Fu9gFxP2lNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAZPv9vtqxuFM3+NF8VZNghcx6VFMB8GA1UdIwQY MBaAFDv8zUoAQiyGX1CTuFu4aMK7MMRpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT196TlNnQkNMSVpmVUpPNFc3aG93cnN3eEdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9iYTcwZjItYjdhYy00MzQ2LTlkMDgt NjNhZTBiZmMxNjlmLzEvT196TlNnQkNMSVpmVUpPNFc3aG93cnN3eEdrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC9iYTcwZjItYjdhYy00MzQ2LTlkMDgtNjNhZTBiZmMxNjlm LzEvT196TlNnQkNMSVpmVUpPNFc3aG93cnN3eEdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO78e0URv tOuQkms/c0bAZKQoxZMUjWAxOLEx4o8mM5u2PuNRsGN7ZVIdUyvz+Lnul56bVbdx rWeMNc6TdpyskGbuJwQu/SPzp43HrjgAtFvgICu7XEoMrOYYIgyV2Fx+XoYHNqLa mHUchbqQ5JgYuOW4h5HCPnBjR/uLHbeR6M7CtrslIi6kawi+qDJrevB5pRIB5tk3 Pr0R6rdNkSdRAL3GTsVCy6+T6o+t0Bx7SbgsNs1zV2kFuWiOThHF/e1lJRPOn63A hZyaMagePPEPRhxJ7csutfcdBaBxM88GuSTB/EAO2x4IsXOGDUiGlIrnmdqdGbCK Xkax6sHljzhJlw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:09 2026 by rpki-client