This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft File: dotOLq79y-wVupnop6IcieSyzL0.mft (raw, json) Hash identifier: /8KPtjFrNcOAwORGusEkgY74iXSQ8kkQ21y9zQfa4N8= Subject key identifier: CE:26:88:98:70:61:61:C2:E9:D1:56:20:8B:50:61:45:FC:E4:63:1A Authority key identifier: 76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD Certificate issuer: /CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd Certificate serial: 019C43909B16AB8D365DD04D0FE715811AF6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft Manifest number: 037C Signing time: Mon 09 Feb 2026 18:01:16 +0000 Manifest this update: Mon 09 Feb 2026 18:01:16 +0000 Manifest next update: Tue 10 Feb 2026 18:01:16 +0000 Files and hashes: 1: 74AVprCTNRDcbv0uDtC-tI0t1tw.roa (hash: up3d+8yhBxWTyanUrBMpmMMg9KISyz71I4oLqcbMOrY=) 2: dotOLq79y-wVupnop6IcieSyzL0.crl (hash: zWxPuCz9TCnSrT8iGYqMIAC0HZ8Sx00Xubwr2yIvN0E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:9b:16:ab:8d:36:5d:d0:4d:0f:e7:15:81:1a:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd Validity Not Before: Feb 9 18:01:16 2026 GMT Not After : Feb 10 18:01:16 2026 GMT Subject: CN=ce268898706161c2e9d156208b506145fce4631a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1e:de:02:78:2e:77:c2:6d:6c:a2:f4:dc:6f: 82:28:91:db:b2:de:1c:28:36:5e:5b:ac:2d:54:81: ee:12:3f:45:dd:7f:c0:82:69:f6:a4:54:91:10:60: 03:33:4c:ba:48:e9:44:d8:dc:c3:d9:bc:ab:7e:db: 99:eb:f2:e9:51:79:e3:06:16:f6:05:47:4f:ad:cf: 80:97:d5:7c:2e:0b:2b:ec:cd:42:5a:60:67:5a:2f: ee:48:3c:2b:ff:52:e8:9c:55:f5:15:8c:88:c5:fb: 19:59:65:21:cc:44:3d:46:b7:f2:9d:68:45:80:36: 17:aa:ce:7d:72:03:3c:5e:cc:5d:02:7f:50:fe:9b: f7:9f:44:d2:25:d2:ee:25:92:66:b4:17:9a:ae:48: 92:40:76:e4:c5:a0:42:ed:48:fc:b0:a7:e8:ee:e7: 4e:14:40:3d:d8:ef:5f:c4:d7:b9:0a:7d:cc:c4:92: 08:59:28:71:dd:66:69:07:f9:1e:dd:b5:d0:3d:b9: 80:05:7f:ee:46:de:2d:3a:64:8d:4c:2d:2a:77:10: 5e:79:27:9a:68:5f:f7:94:13:35:53:56:51:7f:c7: 47:92:7a:4d:8a:0a:28:cb:8e:f5:28:67:b2:f9:a4: dc:a2:c6:cd:fb:54:a3:d8:97:3b:d0:97:65:e1:8a: 36:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:26:88:98:70:61:61:C2:E9:D1:56:20:8B:50:61:45:FC:E4:63:1A X509v3 Authority Key Identifier: keyid:76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:d4:f6:b1:3a:bf:0d:df:3f:43:16:bc:be:3c:aa:a5:6d:66: 19:55:59:7c:b3:cb:0c:37:48:67:48:0b:cc:6a:08:d2:52:b5: f7:f1:d4:ec:cb:a7:5e:00:68:ac:85:bb:43:67:e7:37:b4:3d: 14:ad:78:f3:73:5e:5b:08:4c:26:3b:c2:91:77:50:a6:d7:c7: af:61:8d:b8:38:05:9f:25:4d:37:b9:31:c9:29:b6:e9:20:46: cc:67:ae:7b:46:d1:92:a6:15:c8:af:ec:d6:34:ae:6f:8f:95: fa:ed:60:37:f6:c1:b4:b2:13:22:a6:12:c8:eb:eb:db:7c:70: 5a:e0:a7:f7:cc:c5:cd:8b:d2:ab:21:56:9b:ee:62:59:21:82: ca:f1:2f:3b:77:ee:74:59:47:e2:7b:b2:cb:9e:da:39:42:99: e8:78:f9:1f:29:e3:a2:cc:55:30:fd:ae:b3:01:d2:8e:39:5f: d7:f7:e9:72:a8:e0:95:1b:7f:bd:83:12:42:17:9b:65:e0:ad: 25:eb:7a:be:c4:06:a3:d5:d8:47:3b:ae:a2:60:e4:27:22:40: 06:eb:97:00:8f:bc:c0:29:7b:7c:d9:42:be:c8:e7:e1:b1:d0: 65:a0:26:40:ea:78:23:83:db:e8:80:03:67:8f:7f:1a:08:ae: 8d:89:20:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkJsWq402XdBND+cVgRr2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2OGI0ZTJlYWVmZGNiZWMxNWJhOTllOGE3YTIxYzg5ZTRi MmNjYmQwHhcNMjYwMjA5MTgwMTE2WhcNMjYwMjEwMTgwMTE2WjAzMTEwLwYDVQQD EyhjZTI2ODg5ODcwNjE2MWMyZTlkMTU2MjA4YjUwNjE0NWZjZTQ2MzFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqB7eAngud8JtbKL03G+CKJHbst4c KDZeW6wtVIHuEj9F3X/Agmn2pFSREGADM0y6SOlE2NzD2byrftuZ6/LpUXnjBhb2 BUdPrc+Al9V8Lgsr7M1CWmBnWi/uSDwr/1LonFX1FYyIxfsZWWUhzEQ9RrfynWhF gDYXqs59cgM8XsxdAn9Q/pv3n0TSJdLuJZJmtBearkiSQHbkxaBC7Uj8sKfo7udO FEA92O9fxNe5Cn3MxJIIWShx3WZpB/ke3bXQPbmABX/uRt4tOmSNTC0qdxBeeSea aF/3lBM1U1ZRf8dHknpNigooy471KGey+aTcosbN+1Sj2Jc70Jdl4Yo2hQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM4miJhwYWHC6dFWIItQYUX85GMaMB8GA1UdIwQY MBaAFHaLTi6u/cvsFbqZ6KeiHInkssy9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZG90T0xxNzl5LXdWdXBub3A2SWNpZVN5ekwwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9iNTc4OTItY2QzZC00ZjA2LTkxZjct NTUzODdiZmI1ZTY2LzEvZG90T0xxNzl5LXdWdXBub3A2SWNpZVN5ekwwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC9iNTc4OTItY2QzZC00ZjA2LTkxZjctNTUzODdiZmI1ZTY2 LzEvZG90T0xxNzl5LXdWdXBub3A2SWNpZVN5ekwwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL9T2sTq/ Dd8/Qxa8vjyqpW1mGVVZfLPLDDdIZ0gLzGoI0lK19/HU7MunXgBorIW7Q2fnN7Q9 FK1483NeWwhMJjvCkXdQptfHr2GNuDgFnyVNN7kxySm26SBGzGeue0bRkqYVyK/s 1jSub4+V+u1gN/bBtLITIqYSyOvr23xwWuCn98zFzYvSqyFWm+5iWSGCyvEvO3fu dFlH4nuyy57aOUKZ6Hj5HynjosxVMP2uswHSjjlf1/fpcqjglRt/vYMSQhebZeCt Jet6vsQGo9XYRzuuomDkJyJABuuXAI+8wCl7fNlCvsjn4bHQZaAmQOp4I4Pb6IAD Z49/GgiujYkgMg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:09 2026 by rpki-client