This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft File: _o6FIymApj8NTfWwSRY-P9AvVLM.mft (raw, json) Hash identifier: DSbNP3Fo39lRbzWY7rXT1kDZ4LgQ0zbm57S413MPNEU= Subject key identifier: 89:C3:07:A9:2D:DF:AB:C7:A8:67:EF:D2:FC:F9:47:A5:69:A4:C8:21 Authority key identifier: FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3 Certificate issuer: /CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3 Certificate serial: 019C43FD890E3613C63B5A354CA251909475 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft Manifest number: 0C89 Signing time: Mon 09 Feb 2026 20:00:15 +0000 Manifest this update: Mon 09 Feb 2026 20:00:15 +0000 Manifest next update: Tue 10 Feb 2026 20:00:15 +0000 Files and hashes: 1: _o6FIymApj8NTfWwSRY-P9AvVLM.crl (hash: RorLlb4SPbZYJPqFyrSzxR9DHEZEC/VnOiTss1i2j+c=) 2: i8r_KcfZKeFV_hgBzyCFH1FvU2Q.roa (hash: q7K3PKVBwmAslABYzD36Nuj0tVHPXSk4xv3r0eaKenA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:89:0e:36:13:c6:3b:5a:35:4c:a2:51:90:94:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3 Validity Not Before: Feb 9 20:00:15 2026 GMT Not After : Feb 10 20:00:15 2026 GMT Subject: CN=89c307a92ddfabc7a867efd2fcf947a569a4c821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d9:2b:fe:c8:5b:ea:25:21:78:0e:80:cb:d1: 05:cc:7a:f9:c5:cb:9c:52:1b:81:78:e1:69:c5:8a: bc:68:68:11:2e:e8:d5:a8:e0:3e:51:db:39:4a:8c: 40:ef:c4:a4:98:e8:3b:0b:86:4e:01:93:ee:70:7c: f6:81:b3:8d:be:b6:9e:51:11:69:31:a3:6f:ee:29: 03:46:d2:7c:ac:4b:67:b3:83:49:4e:25:40:2c:89: 03:13:a0:98:1f:68:8e:0e:cb:a8:c6:05:69:e7:d1: d2:2f:47:4d:c3:83:ed:ea:09:85:c0:3c:4b:36:5c: 95:68:bf:74:53:b9:39:b1:d8:15:07:99:57:ba:07: f1:84:1d:d5:1c:fd:3c:59:c1:c3:5c:5c:7b:34:34: 2c:8f:5f:72:19:6c:c3:86:d5:a7:92:52:d7:ea:f3: d4:a4:12:c1:90:e6:b5:7e:4f:c3:23:a1:40:7f:8c: 2d:08:73:ec:97:90:ef:6a:56:3b:2a:e7:1e:62:1c: 74:89:60:35:23:a6:42:16:e3:d6:9d:70:28:fe:0f: 4a:b7:dd:63:8f:c2:b6:ba:2e:3f:ff:1a:66:12:8c: fd:bd:ad:2e:65:3c:00:77:8f:7b:92:48:45:83:59: db:f7:c1:dd:8e:31:1d:99:4b:41:59:6a:3b:39:ea: a3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C3:07:A9:2D:DF:AB:C7:A8:67:EF:D2:FC:F9:47:A5:69:A4:C8:21 X509v3 Authority Key Identifier: keyid:FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:ca:1f:8e:14:67:11:c5:f0:2b:8a:90:80:3d:43:b5:92:c8: 5c:99:fb:2a:f9:94:0f:08:bc:e6:52:8c:7b:2b:82:ef:38:72: 2b:4c:ad:a7:f6:74:c6:41:d6:0e:aa:8a:bf:c7:d6:2a:ca:e5: 99:f2:61:a8:b2:1c:fc:1d:0d:0c:6d:9e:80:cf:72:d1:ac:1c: 03:b0:29:c4:73:e0:ac:eb:11:02:d2:e6:c9:8b:fd:b0:4b:a5: f8:d8:33:64:85:cd:fd:42:15:e9:d9:4e:ec:37:42:6e:70:6d: 0c:96:36:18:fe:5a:cd:ca:21:a1:e0:5c:9a:40:a5:26:fc:e2: ae:4e:d4:c9:a4:36:80:96:66:ba:bd:98:fd:0f:b4:38:68:98: c7:8b:c6:07:6a:b5:e5:58:8a:46:be:a3:e1:f4:8d:2c:ab:20: 63:1e:12:df:15:9d:65:96:a4:f9:3c:b6:72:58:43:77:00:4f: 78:2e:4d:a4:67:92:37:cc:ac:a3:de:7d:45:fe:79:d6:ad:a9: 24:14:1b:94:23:83:01:b7:06:ac:3f:99:d7:9a:df:d0:df:59: 7b:1b:a7:6c:95:2f:92:ee:80:37:bd:cb:98:57:1c:c4:39:a5: 38:f4:22:bc:24:84:87:f7:68:a3:39:a1:07:d5:6a:53:2e:77: 7a:b9:a5:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/YkONhPGO1o1TKJRkJR1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlOGU4NTIzMjk4MGE2M2YwZDRkZjViMDQ5MTYzZTNmZDAy ZjU0YjMwHhcNMjYwMjA5MjAwMDE1WhcNMjYwMjEwMjAwMDE1WjAzMTEwLwYDVQQD Eyg4OWMzMDdhOTJkZGZhYmM3YTg2N2VmZDJmY2Y5NDdhNTY5YTRjODIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAptkr/shb6iUheA6Ay9EFzHr5xcuc UhuBeOFpxYq8aGgRLujVqOA+Uds5SoxA78SkmOg7C4ZOAZPucHz2gbONvraeURFp MaNv7ikDRtJ8rEtns4NJTiVALIkDE6CYH2iODsuoxgVp59HSL0dNw4Pt6gmFwDxL NlyVaL90U7k5sdgVB5lXugfxhB3VHP08WcHDXFx7NDQsj19yGWzDhtWnklLX6vPU pBLBkOa1fk/DI6FAf4wtCHPsl5DvalY7KuceYhx0iWA1I6ZCFuPWnXAo/g9Kt91j j8K2ui4//xpmEoz9va0uZTwAd497kkhFg1nb98HdjjEdmUtBWWo7OeqjQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFInDB6kt36vHqGfv0vz5R6VppMghMB8GA1UdIwQY MBaAFP6OhSMpgKY/DU31sEkWPj/QL1SzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX282Rkl5bUFwajhOVGZXd1NSWS1QOUF2VkxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9kMzZiOGItODY1Ni00ODViLTkzYjIt Mzg5MmFjYTI3N2IwLzEvX282Rkl5bUFwajhOVGZXd1NSWS1QOUF2VkxNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9kMzZiOGItODY1Ni00ODViLTkzYjItMzg5MmFjYTI3N2Iw LzEvX282Rkl5bUFwajhOVGZXd1NSWS1QOUF2VkxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAicofjhRn EcXwK4qQgD1DtZLIXJn7KvmUDwi85lKMeyuC7zhyK0ytp/Z0xkHWDqqKv8fWKsrl mfJhqLIc/B0NDG2egM9y0awcA7ApxHPgrOsRAtLmyYv9sEul+NgzZIXN/UIV6dlO 7DdCbnBtDJY2GP5azcohoeBcmkClJvzirk7UyaQ2gJZmur2Y/Q+0OGiYx4vGB2q1 5ViKRr6j4fSNLKsgYx4S3xWdZZak+Ty2clhDdwBPeC5NpGeSN8yso959Rf551q2p JBQblCODAbcGrD+Z15rf0N9ZexunbJUvku6AN73LmFccxDmlOPQivCSEh/doozmh B9VqUy53ermlzg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:39:22 2026 by rpki-client