This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft File: ofM7gYxgo6zGnzmgsuDuqrttk-A.mft (raw, json) Hash identifier: Tz/csNqyNAc7SM0v3WpcgoXyXqjZytWXN9kKMlqbXkc= Subject key identifier: 98:68:A0:EA:7D:2D:66:DC:41:0A:90:79:94:75:FA:82:9A:F2:75:4C Authority key identifier: A1:F3:3B:81:8C:60:A3:AC:C6:9F:39:A0:B2:E0:EE:AA:BB:6D:93:E0 Certificate issuer: /CN=a1f33b818c60a3acc69f39a0b2e0eeaabb6d93e0 Certificate serial: 019C427CFC5FCE4659DC2566FF8612F1AD63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ofM7gYxgo6zGnzmgsuDuqrttk-A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft Manifest number: 1456 Signing time: Mon 09 Feb 2026 13:00:13 +0000 Manifest this update: Mon 09 Feb 2026 13:00:13 +0000 Manifest next update: Tue 10 Feb 2026 13:00:13 +0000 Files and hashes: 1: ofM7gYxgo6zGnzmgsuDuqrttk-A.crl (hash: VRx/X3fzHbFkpTPCIN8TLixvtM1nQSjYUA47s+5kc74=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft rsync://rpki.ripe.net/repository/DEFAULT/ofM7gYxgo6zGnzmgsuDuqrttk-A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7c:fc:5f:ce:46:59:dc:25:66:ff:86:12:f1:ad:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1f33b818c60a3acc69f39a0b2e0eeaabb6d93e0 Validity Not Before: Feb 9 13:00:13 2026 GMT Not After : Feb 10 13:00:13 2026 GMT Subject: CN=9868a0ea7d2d66dc410a90799475fa829af2754c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:15:46:6b:25:eb:df:b8:82:a0:72:3b:d2:57: db:8c:09:6c:b0:2c:e8:c4:5a:79:00:b6:96:2c:5a: e2:3d:60:9d:92:db:68:63:96:b1:da:07:7f:05:6c: b3:2e:3b:24:ea:55:63:91:c1:6e:66:fd:d9:04:96: 3a:9e:a8:ec:59:20:1f:85:dd:3d:8b:c3:ed:bf:32: cc:b3:e1:c2:07:7f:c4:de:ad:a4:73:24:68:57:3c: a5:5a:af:bb:9c:6c:c0:a4:b7:6e:8a:72:58:85:d7: eb:6d:e3:7f:b2:32:1c:5a:70:47:1a:fe:04:45:6f: 41:71:1e:f8:31:9f:e9:76:f2:18:88:41:f9:34:10: f3:3c:01:1e:4f:82:c4:ba:64:e8:44:93:e6:37:db: d5:9b:4d:41:79:c4:9c:d1:df:2e:56:0c:c8:e7:cd: 82:cd:ed:30:7f:6d:0e:d3:aa:6e:3a:3b:f5:51:a5: d3:47:87:ea:18:94:bb:9b:40:1d:6e:c9:13:22:56: eb:74:ba:77:09:0a:96:58:38:91:32:13:6a:7f:53: 85:9c:14:77:08:c6:7d:86:b3:5d:32:22:df:d8:b7: b9:83:01:4a:d3:60:c0:8a:99:01:65:5e:2d:0e:ba: eb:a6:4b:78:fa:02:08:fe:24:b7:43:00:9b:33:a7: bf:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:68:A0:EA:7D:2D:66:DC:41:0A:90:79:94:75:FA:82:9A:F2:75:4C X509v3 Authority Key Identifier: keyid:A1:F3:3B:81:8C:60:A3:AC:C6:9F:39:A0:B2:E0:EE:AA:BB:6D:93:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ofM7gYxgo6zGnzmgsuDuqrttk-A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:ac:03:f9:74:2a:e4:f3:c3:10:6a:8d:87:e9:84:1b:6a:75: 6b:d1:f9:3a:5e:55:f4:89:d2:39:4d:03:58:02:9d:ad:f2:00: 74:ac:15:40:98:57:cb:6b:53:b6:b9:bb:67:32:e1:a5:b5:d8: e4:73:eb:95:fd:c2:3d:e0:48:bb:50:92:c9:0f:af:b2:14:c6: 6c:57:c8:2f:00:9b:7a:ef:7e:29:6f:7a:a4:6e:e4:cc:4c:35: 53:7f:3c:47:86:53:5e:1b:34:df:93:c8:59:b1:cb:86:02:45: 31:d3:f1:20:7a:91:c9:01:35:fd:90:98:c0:33:35:5a:bc:36: ed:d2:71:d1:85:05:81:c4:8c:54:fa:2f:fe:e1:a1:69:12:65: ba:66:13:1d:47:34:03:9f:9e:62:4c:65:36:16:34:1a:e8:3e: d6:e9:62:59:c9:1d:57:7e:99:5b:8f:19:f2:94:c2:2e:03:ad: d1:f7:87:2e:42:cd:b4:87:71:01:5f:70:62:58:02:60:fc:85: 24:ea:53:0e:e3:3d:0e:49:f7:4e:c7:4f:c5:17:3d:fd:a7:64: 43:6f:99:b9:d8:fc:7e:83:4c:f1:cf:5a:ce:12:35:07:a8:25: 25:ab:f6:41:7e:95:8f:e4:e0:6d:20:32:1d:d1:9e:57:88:49: 19:0a:fe:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfPxfzkZZ3CVm/4YS8a1jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExZjMzYjgxOGM2MGEzYWNjNjlmMzlhMGIyZTBlZWFhYmI2 ZDkzZTAwHhcNMjYwMjA5MTMwMDEzWhcNMjYwMjEwMTMwMDEzWjAzMTEwLwYDVQQD Eyg5ODY4YTBlYTdkMmQ2NmRjNDEwYTkwNzk5NDc1ZmE4MjlhZjI3NTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtxVGayXr37iCoHI70lfbjAlssCzo xFp5ALaWLFriPWCdkttoY5ax2gd/BWyzLjsk6lVjkcFuZv3ZBJY6nqjsWSAfhd09 i8PtvzLMs+HCB3/E3q2kcyRoVzylWq+7nGzApLduinJYhdfrbeN/sjIcWnBHGv4E RW9BcR74MZ/pdvIYiEH5NBDzPAEeT4LEumToRJPmN9vVm01BecSc0d8uVgzI582C ze0wf20O06puOjv1UaXTR4fqGJS7m0AdbskTIlbrdLp3CQqWWDiRMhNqf1OFnBR3 CMZ9hrNdMiLf2Le5gwFK02DAipkBZV4tDrrrpkt4+gII/iS3QwCbM6e/AwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJhooOp9LWbcQQqQeZR1+oKa8nVMMB8GA1UdIwQY MBaAFKHzO4GMYKOsxp85oLLg7qq7bZPgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2ZNN2dZeGdvNnpHbnptZ3N1RHVxcnR0ay1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS83MjI1NWEtMTA5Zi00MzRhLWE3ZGQt ZTE1MmRkZjVhYjA2LzEvb2ZNN2dZeGdvNnpHbnptZ3N1RHVxcnR0ay1BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS83MjI1NWEtMTA5Zi00MzRhLWE3ZGQtZTE1MmRkZjVhYjA2 LzEvb2ZNN2dZeGdvNnpHbnptZ3N1RHVxcnR0ay1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABawD+XQq 5PPDEGqNh+mEG2p1a9H5Ol5V9InSOU0DWAKdrfIAdKwVQJhXy2tTtrm7ZzLhpbXY 5HPrlf3CPeBIu1CSyQ+vshTGbFfILwCbeu9+KW96pG7kzEw1U388R4ZTXhs035PI WbHLhgJFMdPxIHqRyQE1/ZCYwDM1Wrw27dJx0YUFgcSMVPov/uGhaRJlumYTHUc0 A5+eYkxlNhY0Gug+1uliWckdV36ZW48Z8pTCLgOt0feHLkLNtIdxAV9wYlgCYPyF JOpTDuM9Dkn3TsdPxRc9/adkQ2+Zudj8foNM8c9azhI1B6glJav2QX6Vj+TgbSAy HdGeV4hJGQr+rA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:30 2026 by rpki-client