This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft File: oQIHcvYouPtR80dRNrd_60smmL4.mft (raw, json) Hash identifier: WzHdu91c1XuKOpv8iEUPLv5pkt1OV2k2DeU6r1eNJXg= Subject key identifier: A6:B6:8F:FA:53:79:8A:1C:7B:D2:05:F6:C0:A7:3C:37:C3:5A:6D:D2 Authority key identifier: A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE Certificate issuer: /CN=a1020772f628b8fb51f3475136b77feb4b2698be Certificate serial: 019C427CFEAE3EF8472567FC25788B1837CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft Manifest number: 1458 Signing time: Mon 09 Feb 2026 13:00:13 +0000 Manifest this update: Mon 09 Feb 2026 13:00:13 +0000 Manifest next update: Tue 10 Feb 2026 13:00:13 +0000 Files and hashes: 1: n38Xqr0qqFJ7oGfHYhb-VaYtVsU.roa (hash: +D4AMbYExvYotaGN2taivxR0S26uQ3AxgVQRHrzxbnw=) 2: oQIHcvYouPtR80dRNrd_60smmL4.crl (hash: Tz3ty6iBHiW3HB1xmxqVPSSkv+CBUhIRNmQyAB+e1WU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7c:fe:ae:3e:f8:47:25:67:fc:25:78:8b:18:37:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1020772f628b8fb51f3475136b77feb4b2698be Validity Not Before: Feb 9 13:00:13 2026 GMT Not After : Feb 10 13:00:13 2026 GMT Subject: CN=a6b68ffa53798a1c7bd205f6c0a73c37c35a6dd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:41:7c:07:3f:d8:ca:58:03:df:21:11:e8:66: 1a:ea:79:21:f9:7f:b5:75:5a:c3:4d:f1:a5:10:77: 40:97:2a:5d:87:d5:9b:4b:2c:96:de:bd:9a:6b:07: 83:5e:45:eb:50:78:91:90:b0:4b:c6:72:1c:6f:14: 58:40:d5:c0:cb:d0:a1:06:30:3f:0e:ae:38:13:21: 0f:64:b6:73:10:63:9c:8a:5f:c8:a6:da:dd:31:b8: 84:04:be:42:fc:de:e3:86:0c:8a:b1:eb:54:14:de: 47:54:ea:9d:92:bb:02:4f:1d:b2:ee:eb:45:46:dc: c3:9c:ca:35:13:12:af:84:fe:78:01:f6:b5:77:d1: 70:5e:56:cb:af:34:0a:94:57:fb:2c:7d:eb:c3:78: 39:56:cc:3d:8e:c1:5c:d4:2c:02:93:52:18:ff:e5: 62:e5:d8:09:f1:dd:a1:16:14:d1:7a:87:4e:5d:06: 42:da:1b:41:e7:9c:82:3f:77:80:dd:b1:5f:9a:82: e2:a4:82:f0:db:2e:35:ae:38:f2:3c:f3:10:54:d0: da:e6:69:2d:26:d0:cd:dc:a2:53:3a:9d:b7:6c:e7: 05:4d:fe:cc:2f:2e:ff:4b:27:7b:df:84:3c:84:4f: 7c:3d:fe:67:e7:68:a1:b6:ca:f4:f9:23:5c:8e:c3: 52:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B6:8F:FA:53:79:8A:1C:7B:D2:05:F6:C0:A7:3C:37:C3:5A:6D:D2 X509v3 Authority Key Identifier: keyid:A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:98:6a:94:57:14:ab:a7:5e:c2:c5:f2:73:52:5b:6b:66:44: ca:3b:11:f5:c2:ca:11:31:26:5b:cd:8a:47:9d:9b:17:65:4d: 50:7f:90:b5:b7:38:b5:2c:dd:9b:18:fc:91:96:21:9f:fa:38: 7c:0e:fe:76:3d:93:a4:d3:b4:42:0c:5b:04:c8:21:7d:d1:e9: 9e:6e:14:3d:29:88:d1:46:aa:0a:2c:2e:83:c9:84:43:1c:43: 73:65:a5:e3:97:6a:a7:19:bc:fa:5d:21:b2:c3:d5:72:e9:d3: 29:cb:53:40:13:f4:86:d4:a7:78:26:38:fb:b0:5b:e6:e5:d7: 78:a9:87:3e:8b:23:1d:97:52:53:0e:0f:e4:c6:4f:3c:30:e6: b7:d9:20:7d:73:0b:98:0b:96:2e:83:f3:5d:63:ad:d5:e3:83: 69:22:70:44:c6:0b:f2:7d:ea:5c:72:ee:c3:21:8a:b3:9b:2a: 6c:73:aa:fb:65:93:3a:f8:7a:5a:b6:1e:0e:7d:23:e0:c1:6d: cb:55:c5:c3:15:17:8e:f2:ae:f2:ac:45:74:27:e9:c6:96:83: bb:ef:3d:ac:11:f3:fe:15:25:82:db:d5:89:11:76:b3:6d:ea: 3b:4e:da:da:c0:36:cc:3c:27:14:63:35:b9:1a:3e:6a:70:47: 7d:46:d3:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfP6uPvhHJWf8JXiLGDfMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMDIwNzcyZjYyOGI4ZmI1MWYzNDc1MTM2Yjc3ZmViNGIy Njk4YmUwHhcNMjYwMjA5MTMwMDEzWhcNMjYwMjEwMTMwMDEzWjAzMTEwLwYDVQQD EyhhNmI2OGZmYTUzNzk4YTFjN2JkMjA1ZjZjMGE3M2MzN2MzNWE2ZGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7kF8Bz/YylgD3yER6GYa6nkh+X+1 dVrDTfGlEHdAlypdh9WbSyyW3r2aaweDXkXrUHiRkLBLxnIcbxRYQNXAy9ChBjA/ Dq44EyEPZLZzEGOcil/IptrdMbiEBL5C/N7jhgyKsetUFN5HVOqdkrsCTx2y7utF RtzDnMo1ExKvhP54Afa1d9FwXlbLrzQKlFf7LH3rw3g5Vsw9jsFc1CwCk1IY/+Vi 5dgJ8d2hFhTReodOXQZC2htB55yCP3eA3bFfmoLipILw2y41rjjyPPMQVNDa5mkt JtDN3KJTOp23bOcFTf7MLy7/Syd734Q8hE98Pf5n52ihtsr0+SNcjsNS0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKa2j/pTeYoce9IF9sCnPDfDWm3SMB8GA1UdIwQY MBaAFKECB3L2KLj7UfNHUTa3f+tLJpi+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1FJSGN2WW91UHRSODBkUk5yZF82MHNtbUw0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS81NTA0MzEtNjE3NC00N2QyLThiYWIt NTFhZjgyOTY1ZTMzLzEvb1FJSGN2WW91UHRSODBkUk5yZF82MHNtbUw0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS81NTA0MzEtNjE3NC00N2QyLThiYWItNTFhZjgyOTY1ZTMz LzEvb1FJSGN2WW91UHRSODBkUk5yZF82MHNtbUw0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcJhqlFcU q6dewsXyc1Jba2ZEyjsR9cLKETEmW82KR52bF2VNUH+Qtbc4tSzdmxj8kZYhn/o4 fA7+dj2TpNO0QgxbBMghfdHpnm4UPSmI0UaqCiwug8mEQxxDc2Wl45dqpxm8+l0h ssPVcunTKctTQBP0htSneCY4+7Bb5uXXeKmHPosjHZdSUw4P5MZPPDDmt9kgfXML mAuWLoPzXWOt1eODaSJwRMYL8n3qXHLuwyGKs5sqbHOq+2WTOvh6WrYeDn0j4MFt y1XFwxUXjvKu8qxFdCfpxpaDu+89rBHz/hUlgtvViRF2s23qO07a2sA2zDwnFGM1 uRo+anBHfUbT6g== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:30 2026 by rpki-client