This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft File: 1OKJaJepchZ45oRpOZOlqISQM2Q.mft (raw, json) Hash identifier: M4owMruJSAhwsD5BWxRYJrxg/xs0B2qL20qr3rKMsWk= Subject key identifier: D3:9B:1E:A6:F0:10:83:80:54:06:44:7D:75:ED:A6:65:E8:8A:C9:03 Authority key identifier: D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64 Certificate issuer: /CN=d4e2896897a9721678e684693993a5a884903364 Certificate serial: 019C4322817A099B60A47FB06E0863890839 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 16:01:00 +0000 Manifest this update: Mon 09 Feb 2026 16:01:00 +0000 Manifest next update: Tue 10 Feb 2026 16:01:00 +0000 Files and hashes: 1: 1OKJaJepchZ45oRpOZOlqISQM2Q.crl (hash: Xz7eBjzvwYPEKLfTW12Mr1PA+dWw3Lq3K2Q3SnQWwDE=) 2: BQzh2z0KThYiq9nldvTFN7xr1hY.roa (hash: kQeadxjS7hkE7Ea7E7epq7OwwMLIVC/GLGRRKCK52Bc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:81:7a:09:9b:60:a4:7f:b0:6e:08:63:89:08:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d4e2896897a9721678e684693993a5a884903364 Validity Not Before: Feb 9 16:01:00 2026 GMT Not After : Feb 10 16:01:00 2026 GMT Subject: CN=d39b1ea6f01083805406447d75eda665e88ac903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ab:81:ad:f5:d1:91:75:81:c9:e6:09:3c:81: 9e:c8:4c:af:04:ce:32:cc:de:11:55:9c:af:69:20: 86:b2:ee:55:86:bb:bd:0a:d3:e8:48:5a:89:40:75: 18:f8:c0:21:c7:60:e7:68:22:82:8e:42:c3:8b:4f: bc:1e:a4:a2:81:f0:bb:60:69:da:6a:b9:0f:fc:8d: b3:98:fb:85:8a:86:35:64:7a:85:08:19:47:83:c2: 50:94:b2:b4:d2:e6:26:d0:83:80:ec:8a:cf:27:83: 6a:c5:48:63:c3:9a:69:63:03:b7:69:c9:3d:ca:b1: b3:f7:98:40:40:3f:92:ed:c1:98:8f:60:8a:01:85: 3a:9f:64:c8:50:b9:57:2c:49:4b:03:57:93:b3:1f: 4f:60:a6:a0:db:b3:eb:c2:af:21:a7:d0:89:2b:ab: 36:07:1f:f7:91:ce:90:67:0a:a3:18:c5:ca:c9:b8: b3:f3:95:63:95:03:39:47:24:50:02:e1:a9:80:d0: 50:a7:1f:b3:dc:04:4b:7e:41:c0:7f:f7:29:c0:01: 23:ba:45:1c:1c:57:34:cd:a1:f5:de:a1:f5:0e:9e: 79:5b:69:2d:de:62:3e:43:71:21:47:13:71:c1:14: 1c:01:96:f9:2c:8d:09:09:f0:fa:51:78:42:6a:a2: de:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:9B:1E:A6:F0:10:83:80:54:06:44:7D:75:ED:A6:65:E8:8A:C9:03 X509v3 Authority Key Identifier: keyid:D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:f7:9d:84:06:40:00:a9:8d:e0:83:bf:77:5f:a8:98:a6:7b: f6:a9:75:e6:f2:8a:38:95:2e:a2:44:71:1d:c4:38:ac:cd:02: ee:60:8e:b0:d6:21:8b:25:e9:09:80:0c:5b:1e:c7:f4:35:e5: d2:6b:a5:15:6a:b0:c5:02:52:6b:3f:ce:94:fd:a5:ff:ae:5f: 06:ea:92:0e:47:26:d2:33:fc:aa:e2:70:dd:07:3c:dd:99:ed: d7:03:bf:11:1c:84:5f:b8:89:48:46:3d:6f:da:9c:20:3c:2d: ea:5b:f6:89:15:d7:9a:93:8d:08:0f:1b:10:27:15:c8:bc:6a: 16:0c:da:4d:af:f9:a6:91:88:4d:1b:d2:87:99:b4:ce:ec:70: b1:92:bb:41:7a:97:51:2c:30:0d:98:7e:7d:46:27:cb:bc:0b: 7e:3d:5a:0d:c5:48:a6:16:04:bd:b0:6d:fd:f3:16:3c:f3:17: 79:6a:3a:66:10:01:b1:a8:5c:35:02:3a:4d:f5:cc:4c:a0:0a: c4:39:8c:21:d6:3b:ab:bd:ee:bb:03:65:58:8b:36:b5:24:df: da:64:a7:56:ab:2b:98:31:b3:e7:1e:d2:67:1c:0d:de:0e:87: 48:95:97:ca:fd:ec:78:d0:3a:e9:b1:f3:f0:78:f9:df:f3:1a: 3b:0a:fc:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIoF6CZtgpH+wbghjiQg5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0ZTI4OTY4OTdhOTcyMTY3OGU2ODQ2OTM5OTNhNWE4ODQ5 MDMzNjQwHhcNMjYwMjA5MTYwMTAwWhcNMjYwMjEwMTYwMTAwWjAzMTEwLwYDVQQD EyhkMzliMWVhNmYwMTA4MzgwNTQwNjQ0N2Q3NWVkYTY2NWU4OGFjOTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA06uBrfXRkXWByeYJPIGeyEyvBM4y zN4RVZyvaSCGsu5Vhru9CtPoSFqJQHUY+MAhx2DnaCKCjkLDi0+8HqSigfC7YGna arkP/I2zmPuFioY1ZHqFCBlHg8JQlLK00uYm0IOA7IrPJ4NqxUhjw5ppYwO3ack9 yrGz95hAQD+S7cGYj2CKAYU6n2TIULlXLElLA1eTsx9PYKag27Prwq8hp9CJK6s2 Bx/3kc6QZwqjGMXKybiz85VjlQM5RyRQAuGpgNBQpx+z3ARLfkHAf/cpwAEjukUc HFc0zaH13qH1Dp55W2kt3mI+Q3EhRxNxwRQcAZb5LI0JCfD6UXhCaqLeAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNObHqbwEIOAVAZEfXXtpmXoiskDMB8GA1UdIwQY MBaAFNTiiWiXqXIWeOaEaTmTpaiEkDNkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9lMjgxMDMtYTBmYi00MjI3LWJjYjEt ZTQ5N2Q0MGY0ZTJhLzEvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9lMjgxMDMtYTBmYi00MjI3LWJjYjEtZTQ5N2Q0MGY0ZTJh LzEvMU9LSmFKZXBjaFo0NW9ScE9aT2xxSVNRTTJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh/edhAZA AKmN4IO/d1+omKZ79ql15vKKOJUuokRxHcQ4rM0C7mCOsNYhiyXpCYAMWx7H9DXl 0mulFWqwxQJSaz/OlP2l/65fBuqSDkcm0jP8quJw3Qc83Znt1wO/ERyEX7iJSEY9 b9qcIDwt6lv2iRXXmpONCA8bECcVyLxqFgzaTa/5ppGITRvSh5m0zuxwsZK7QXqX USwwDZh+fUYny7wLfj1aDcVIphYEvbBt/fMWPPMXeWo6ZhABsahcNQI6TfXMTKAK xDmMIdY7q73uuwNlWIs2tSTf2mSnVqsrmDGz5x7SZxwN3g6HSJWXyv3seNA66bHz 8Hj53/MaOwr8NQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:11 2026 by rpki-client