This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft File: oNki4v4kvSzaeToqrcEzYlAM2bE.mft (raw, json) Hash identifier: HVTAY78JBCyxlVMMDYrglAEi7yvVvxKrZMOaz6tgRYQ= Subject key identifier: C7:DC:B0:AA:1F:C2:56:E8:88:35:72:9C:47:63:F5:41:48:5D:EC:C3 Authority key identifier: A0:D9:22:E2:FE:24:BD:2C:DA:79:3A:2A:AD:C1:33:62:50:0C:D9:B1 Certificate issuer: /CN=a0d922e2fe24bd2cda793a2aadc13362500cd9b1 Certificate serial: 019C4390A8A9F13981DCA5A03D513281818A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft Manifest number: 0E13 Signing time: Mon 09 Feb 2026 18:01:19 +0000 Manifest this update: Mon 09 Feb 2026 18:01:19 +0000 Manifest next update: Tue 10 Feb 2026 18:01:19 +0000 Files and hashes: 1: oNki4v4kvSzaeToqrcEzYlAM2bE.crl (hash: vbfDAJIh+A/5mahFPcPZy3yLWZMOTj0WmnAlAnqQYnU=) 2: zSlKzVB4Na3PSrvxBdB_0eJnzzM.roa (hash: cuiATN6CsW6UrYic6PJvMAevjZeViQMrG4aNtH1vYrg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:a8:a9:f1:39:81:dc:a5:a0:3d:51:32:81:81:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0d922e2fe24bd2cda793a2aadc13362500cd9b1 Validity Not Before: Feb 9 18:01:19 2026 GMT Not After : Feb 10 18:01:19 2026 GMT Subject: CN=c7dcb0aa1fc256e88835729c4763f541485decc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:28:d3:6e:9b:e8:ba:ca:77:3f:34:0c:f2:0b: ab:24:2f:dc:f1:5b:f9:7d:ec:bb:46:f8:b8:07:2f: e2:fb:ed:0c:4a:0a:27:a6:f9:d8:77:30:9e:69:35: 5c:b8:62:c6:82:19:c2:9d:ab:45:3a:3c:6b:61:d2: 6a:83:97:42:22:db:f1:1b:f7:ba:13:fa:9b:e3:19: ab:5a:63:3b:20:df:05:89:70:26:c1:19:48:5e:6d: f0:a5:3c:56:2d:21:80:60:98:8c:22:1b:b0:6e:d7: 4c:de:73:29:69:37:19:85:f1:95:da:65:66:e4:65: 30:21:1f:64:53:2a:ab:13:93:a9:c1:32:5a:e1:97: d4:31:a8:3b:c1:f8:1e:c8:33:0d:41:b6:c8:ce:1b: 0f:b0:cd:0b:c7:ef:73:79:6c:8e:23:23:e4:c3:62: 06:95:6c:ca:e0:c1:20:fc:00:d3:38:0d:4e:3b:9e: 15:20:76:6b:ae:80:23:0c:cd:10:37:04:9c:d9:86: 58:55:08:98:a8:0c:0a:61:bc:b2:83:c2:71:61:af: 65:0e:8f:3e:4d:46:55:a0:2b:e8:6d:3f:27:db:28: b6:01:35:b3:36:73:71:63:d1:79:4c:12:fb:7b:3e: 26:0b:d9:93:1f:92:0f:de:e8:01:f6:ce:ea:db:a6: fd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:DC:B0:AA:1F:C2:56:E8:88:35:72:9C:47:63:F5:41:48:5D:EC:C3 X509v3 Authority Key Identifier: keyid:A0:D9:22:E2:FE:24:BD:2C:DA:79:3A:2A:AD:C1:33:62:50:0C:D9:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:56:49:44:b6:b1:cd:99:3b:1e:8a:2b:ba:c1:73:c4:4e:ac: 87:af:ee:d5:3a:cd:93:80:44:20:93:de:58:e1:69:31:57:1a: d5:34:77:91:e0:7a:c0:7a:a3:2e:5c:6d:bd:8c:ce:3a:26:0b: 3c:38:5a:59:32:e5:c9:f2:db:c2:5e:6b:af:02:70:2a:01:65: 06:b5:e7:22:56:a9:f0:30:90:75:ac:f6:b8:09:df:42:f8:ce: dd:dc:26:1c:e4:5d:53:b5:f6:ad:a8:b0:79:86:89:d5:25:b4: b1:ec:58:1a:ae:98:ae:f9:c2:41:df:62:07:64:6a:a4:d7:5a: f9:60:e2:cd:14:a7:84:06:63:0d:97:7f:60:bb:1c:78:b6:e4: e8:60:b2:82:96:4a:cc:a5:86:97:8d:43:13:f5:c3:23:1e:93: 1a:a2:19:ac:98:76:a7:7e:b4:20:ad:c3:4c:3d:b3:4d:61:e7: 1f:e7:e6:2f:4f:e2:fa:f3:97:ce:cc:bc:2c:11:1b:6f:3f:d3: c3:a6:44:b4:6f:9d:a8:00:db:4f:32:23:75:83:f2:b4:9e:51: a0:b2:38:32:6b:7f:d7:c1:f4:50:71:48:06:50:3d:86:d6:2d: 28:f9:e6:be:69:38:fe:cd:4a:d5:05:a3:7f:4e:5a:14:d1:ee: bb:fb:4d:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkKip8TmB3KWgPVEygYGKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwZDkyMmUyZmUyNGJkMmNkYTc5M2EyYWFkYzEzMzYyNTAw Y2Q5YjEwHhcNMjYwMjA5MTgwMTE5WhcNMjYwMjEwMTgwMTE5WjAzMTEwLwYDVQQD EyhjN2RjYjBhYTFmYzI1NmU4ODgzNTcyOWM0NzYzZjU0MTQ4NWRlY2MzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCjTbpvousp3PzQM8gurJC/c8Vv5 fey7Rvi4By/i++0MSgonpvnYdzCeaTVcuGLGghnCnatFOjxrYdJqg5dCItvxG/e6 E/qb4xmrWmM7IN8FiXAmwRlIXm3wpTxWLSGAYJiMIhuwbtdM3nMpaTcZhfGV2mVm 5GUwIR9kUyqrE5OpwTJa4ZfUMag7wfgeyDMNQbbIzhsPsM0Lx+9zeWyOIyPkw2IG lWzK4MEg/ADTOA1OO54VIHZrroAjDM0QNwSc2YZYVQiYqAwKYbyyg8JxYa9lDo8+ TUZVoCvobT8n2yi2ATWzNnNxY9F5TBL7ez4mC9mTH5IP3ugB9s7q26b9iQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMfcsKofwlboiDVynEdj9UFIXezDMB8GA1UdIwQY MBaAFKDZIuL+JL0s2nk6Kq3BM2JQDNmxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb05raTR2NGt2U3phZVRvcXJjRXpZbEFNMmJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9kNGZjNGMtNDgxNS00ZTU2LWJmNzMt NGE2YWNlMjZiOTcyLzEvb05raTR2NGt2U3phZVRvcXJjRXpZbEFNMmJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi9kNGZjNGMtNDgxNS00ZTU2LWJmNzMtNGE2YWNlMjZiOTcy LzEvb05raTR2NGt2U3phZVRvcXJjRXpZbEFNMmJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUlZJRLax zZk7HoorusFzxE6sh6/u1TrNk4BEIJPeWOFpMVca1TR3keB6wHqjLlxtvYzOOiYL PDhaWTLlyfLbwl5rrwJwKgFlBrXnIlap8DCQdaz2uAnfQvjO3dwmHORdU7X2raiw eYaJ1SW0sexYGq6YrvnCQd9iB2RqpNda+WDizRSnhAZjDZd/YLsceLbk6GCygpZK zKWGl41DE/XDIx6TGqIZrJh2p360IK3DTD2zTWHnH+fmL0/i+vOXzsy8LBEbbz/T w6ZEtG+dqADbTzIjdYPytJ5RoLI4Mmt/18H0UHFIBlA9htYtKPnmvmk4/s1K1QWj f05aFNHuu/tNvw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:47:00 2026 by rpki-client