This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/2fb352-ef94-42de-89ac-d9af710ba1de/1/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.mft File: Ou8xs2gmh5x-vBEsYpQaHNOiuzM.mft (raw, json) Hash identifier: fqxQmN7lPs9GkB+YqoFhCBWrU0fhv+Uol/Wk3r6SfiU= Subject key identifier: 84:F9:84:85:AD:4B:EC:68:F3:A6:85:AD:78:98:0D:C3:B0:E2:6C:81 Authority key identifier: 3A:EF:31:B3:68:26:87:9C:7E:BC:11:2C:62:94:1A:1C:D3:A2:BB:33 Certificate issuer: /CN=3aef31b36826879c7ebc112c62941a1cd3a2bb33 Certificate serial: 019C413437708C5D365FA8C3EEB8C89B32FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/2fb352-ef94-42de-89ac-d9af710ba1de/1/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.mft Manifest number: 0C1B Signing time: Mon 09 Feb 2026 07:01:06 +0000 Manifest this update: Mon 09 Feb 2026 07:01:06 +0000 Manifest next update: Tue 10 Feb 2026 07:01:06 +0000 Files and hashes: 1: Ou8xs2gmh5x-vBEsYpQaHNOiuzM.crl (hash: JpquNrDuaHmeXIW2OHs5o69cvHNYVzUP31Maapwm+BQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/2fb352-ef94-42de-89ac-d9af710ba1de/1/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/2fb352-ef94-42de-89ac-d9af710ba1de/1/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.mft rsync://rpki.ripe.net/repository/DEFAULT/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:37:70:8c:5d:36:5f:a8:c3:ee:b8:c8:9b:32:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3aef31b36826879c7ebc112c62941a1cd3a2bb33 Validity Not Before: Feb 9 07:01:06 2026 GMT Not After : Feb 10 07:01:06 2026 GMT Subject: CN=84f98485ad4bec68f3a685ad78980dc3b0e26c81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:67:59:6f:80:14:e2:27:33:14:38:49:c1:09: dd:35:04:17:f7:a3:61:08:71:d1:3c:14:a3:a7:c8: f2:83:dd:23:67:14:a8:b3:c4:54:49:8f:d4:1f:d9: 7f:e4:64:d2:17:95:41:04:55:a0:98:76:ad:34:6a: f6:e8:a1:1c:17:f0:0a:41:e7:77:83:4f:56:d3:72: 3d:c6:be:12:0b:99:29:9e:08:6b:74:e3:db:f2:ce: aa:9d:69:6c:f3:57:85:62:a5:be:cb:b7:d4:7e:74: 02:e0:d3:3f:e5:a7:83:33:3f:17:93:d8:d9:9a:53: e3:db:d4:c4:7c:e4:a6:c8:9e:30:b0:85:ae:b6:cf: 9c:be:22:3b:60:fc:62:cb:93:93:1c:27:cb:27:16: b9:bc:b0:10:17:85:66:2b:37:72:40:f9:59:cf:c5: 6e:cc:58:9d:e6:0e:81:4c:83:a0:6e:d8:27:e1:3c: ed:44:c9:64:62:df:fb:a6:bc:87:10:5e:e7:86:4d: 2f:68:ae:e8:3e:b2:a8:0e:34:21:0b:61:54:ac:ce: 28:2b:91:d5:d1:7b:4b:53:04:82:60:fd:4c:02:71: 94:ad:99:fe:5d:c3:19:46:0e:d2:a0:50:1c:72:73: 59:92:89:fd:78:04:78:58:7a:d6:b4:dd:3c:5e:bb: f9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F9:84:85:AD:4B:EC:68:F3:A6:85:AD:78:98:0D:C3:B0:E2:6C:81 X509v3 Authority Key Identifier: keyid:3A:EF:31:B3:68:26:87:9C:7E:BC:11:2C:62:94:1A:1C:D3:A2:BB:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/2fb352-ef94-42de-89ac-d9af710ba1de/1/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/2fb352-ef94-42de-89ac-d9af710ba1de/1/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:0c:e1:f3:97:af:6e:c6:05:b7:47:e6:83:a7:b5:0b:ed:fa: cd:56:ae:4d:11:a6:dc:d9:a9:76:71:fb:a7:a7:26:77:fb:ec: 86:7a:a1:bb:f3:74:10:7b:74:30:d1:61:83:ca:c4:18:6e:05: 3c:65:f9:db:0b:2f:ea:75:fc:61:1f:08:2d:3e:16:ad:94:20: 93:b0:0a:b6:c7:71:1a:89:af:38:60:8e:c3:4b:c1:c6:1b:02: 66:d8:fd:3c:ca:cd:48:7d:b9:c1:20:9e:b8:d8:dc:c5:df:3c: ab:ff:f9:82:03:ea:09:cf:7c:74:09:bc:3f:8c:e1:6a:43:98: b5:75:0a:22:ed:c0:17:72:09:55:92:b5:25:60:ba:6d:5e:06: d3:9c:09:f9:b6:a3:15:b3:a1:f3:14:ce:03:f8:cb:df:59:83: c9:c0:4c:f0:e1:8b:fa:b4:24:30:5e:46:71:c7:e8:4e:a3:3e: 9f:f4:a7:5c:84:4c:65:ec:bd:a7:3d:60:9b:c7:4e:7f:08:c7: b7:f1:f2:2f:df:4a:e3:dc:18:f2:cd:4c:2e:31:f1:30:af:ad: 83:f7:f8:ab:00:17:4a:fb:be:3d:1c:a2:c8:83:fa:89:34:ef: bb:83:e2:6e:bc:00:36:ea:ab:26:ec:24:71:1c:53:e5:e3:b2: 8d:a9:1e:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNDdwjF02X6jD7rjImzL6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZWYzMWIzNjgyNjg3OWM3ZWJjMTEyYzYyOTQxYTFjZDNh MmJiMzMwHhcNMjYwMjA5MDcwMTA2WhcNMjYwMjEwMDcwMTA2WjAzMTEwLwYDVQQD Eyg4NGY5ODQ4NWFkNGJlYzY4ZjNhNjg1YWQ3ODk4MGRjM2IwZTI2YzgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnWdZb4AU4iczFDhJwQndNQQX96Nh CHHRPBSjp8jyg90jZxSos8RUSY/UH9l/5GTSF5VBBFWgmHatNGr26KEcF/AKQed3 g09W03I9xr4SC5kpnghrdOPb8s6qnWls81eFYqW+y7fUfnQC4NM/5aeDMz8Xk9jZ mlPj29TEfOSmyJ4wsIWuts+cviI7YPxiy5OTHCfLJxa5vLAQF4VmKzdyQPlZz8Vu zFid5g6BTIOgbtgn4TztRMlkYt/7pryHEF7nhk0vaK7oPrKoDjQhC2FUrM4oK5HV 0XtLUwSCYP1MAnGUrZn+XcMZRg7SoFAccnNZkon9eAR4WHrWtN08Xrv5FwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIT5hIWtS+xo86aFrXiYDcOw4myBMB8GA1UdIwQY MBaAFDrvMbNoJoecfrwRLGKUGhzTorszMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3U4eHMyZ21oNXgtdkJFc1lwUWFITk9pdXpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8yZmIzNTItZWY5NC00MmRlLTg5YWMt ZDlhZjcxMGJhMWRlLzEvT3U4eHMyZ21oNXgtdkJFc1lwUWFITk9pdXpNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi8yZmIzNTItZWY5NC00MmRlLTg5YWMtZDlhZjcxMGJhMWRl LzEvT3U4eHMyZ21oNXgtdkJFc1lwUWFITk9pdXpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKgzh85ev bsYFt0fmg6e1C+36zVauTRGm3NmpdnH7p6cmd/vshnqhu/N0EHt0MNFhg8rEGG4F PGX52wsv6nX8YR8ILT4WrZQgk7AKtsdxGomvOGCOw0vBxhsCZtj9PMrNSH25wSCe uNjcxd88q//5ggPqCc98dAm8P4zhakOYtXUKIu3AF3IJVZK1JWC6bV4G05wJ+baj FbOh8xTOA/jL31mDycBM8OGL+rQkMF5GccfoTqM+n/SnXIRMZey9pz1gm8dOfwjH t/HyL99K49wY8s1MLjHxMK+tg/f4qwAXSvu+PRyiyIP6iTTvu4PibrwANuqrJuwk cRxT5eOyjakedw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:56 2026 by rpki-client