This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft File: oheIwIqkN9EWXOy9aP2xlaFd-gg.mft (raw, json) Hash identifier: /FtBAQY/TVI0jT1vQO1bHH+fAmO9xZA5HeBh1ttrsQ4= Subject key identifier: AF:3D:36:E3:C2:60:55:E4:37:FA:34:59:03:F3:5B:7F:54:7D:78:7B Authority key identifier: A2:17:88:C0:8A:A4:37:D1:16:5C:EC:BD:68:FD:B1:95:A1:5D:FA:08 Certificate issuer: /CN=a21788c08aa437d1165cecbd68fdb195a15dfa08 Certificate serial: 019C40FD606253FBB2AE75FAD57EDFA9CAC0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 06:01:12 +0000 Manifest this update: Mon 09 Feb 2026 06:01:12 +0000 Manifest next update: Tue 10 Feb 2026 06:01:12 +0000 Files and hashes: 1: MuBqNt1syXndOYY-i5CsiyzlTpI.roa (hash: ePoNVRZGhSsK8En0WwtEIpiiLLOOy80WDIwT7dGHkIU=) 2: oheIwIqkN9EWXOy9aP2xlaFd-gg.crl (hash: PkSrJh5rjEbixHlV8mNJEGx8VwPCebEPGZ4mPjs7NXE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fd:60:62:53:fb:b2:ae:75:fa:d5:7e:df:a9:ca:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a21788c08aa437d1165cecbd68fdb195a15dfa08 Validity Not Before: Feb 9 06:01:12 2026 GMT Not After : Feb 10 06:01:12 2026 GMT Subject: CN=af3d36e3c26055e437fa345903f35b7f547d787b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:27:e0:9e:83:ad:f5:a2:32:d9:dc:de:80:98: 61:74:f8:e8:61:6e:ad:8d:89:42:a5:71:67:36:0b: 91:d7:6c:60:88:0a:44:c2:ec:69:e5:e5:93:81:22: ad:34:08:ec:0b:25:84:90:a7:c7:34:b3:04:62:2d: e1:df:0e:1e:3f:ed:58:5b:e9:b0:75:44:54:25:09: fa:e0:d0:1f:c9:ae:e0:07:6d:47:7d:5a:d9:58:4a: 40:f6:b6:66:20:60:70:43:7b:81:c3:78:ef:0e:a6: 98:53:b4:e5:a7:3d:38:dc:62:0b:29:a1:36:1c:c0: 3c:d6:ee:d3:d4:4f:c6:58:6b:70:3a:23:77:52:cd: 5a:f5:fd:14:d0:f7:ff:3d:8b:8a:78:3c:36:20:f7: f5:88:cd:9e:63:1e:f0:f3:c2:d7:43:54:46:f4:4c: 2c:a3:9f:fa:d6:33:55:fe:06:85:d9:3f:94:2c:e7: a8:cf:42:61:54:09:69:da:13:12:d4:a9:dd:46:6a: 33:e5:26:3c:14:a4:fc:3a:af:fb:c7:c0:84:54:3d: 1d:d8:05:86:fb:30:49:b3:e3:31:c2:20:be:a8:71: 6e:7f:e7:96:ee:a9:e0:99:b9:b0:d6:49:62:62:29: c9:c0:47:f0:7f:3b:d1:1e:a6:5b:65:12:ba:e8:e8: 6e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:3D:36:E3:C2:60:55:E4:37:FA:34:59:03:F3:5B:7F:54:7D:78:7B X509v3 Authority Key Identifier: keyid:A2:17:88:C0:8A:A4:37:D1:16:5C:EC:BD:68:FD:B1:95:A1:5D:FA:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:0b:9a:e3:57:02:57:da:60:7f:39:08:fe:17:4b:b2:dd:f3: e3:02:ac:44:88:2c:e1:ed:39:3e:4d:ff:41:25:89:2e:33:5b: 33:21:dd:2f:49:7a:d5:a6:99:06:75:44:11:c5:c0:64:7c:0a: c5:6f:89:5f:b3:f1:d5:09:7c:1d:58:97:7a:98:39:0c:6a:8d: 7f:2f:75:dc:26:27:75:1b:6a:cc:fa:39:de:d8:1a:e1:69:d2: 2c:9e:04:2c:5f:35:dd:ac:95:f5:40:80:20:2c:ab:b4:73:aa: e9:78:2b:15:9b:7f:78:cf:78:7b:cf:f3:5c:14:2d:48:b0:78: 7d:7b:ff:71:2c:9b:b6:a2:95:53:87:a7:b6:d1:67:c1:7f:31: fd:52:fe:f0:25:57:72:82:24:68:08:d7:0e:95:69:6f:18:3f: 7a:92:62:27:f1:6b:5c:03:b0:77:b2:58:f2:b3:3e:7a:92:24: f8:32:c5:c5:11:cc:90:95:e5:4b:44:6d:19:13:a3:63:6b:99: ff:3b:51:fd:1c:f1:2b:f7:0b:d9:78:f1:dc:71:2e:99:e0:9c: b9:38:b0:50:d8:b0:5b:cc:6b:64:8e:db:22:f3:04:64:9c:c4: d8:f9:81:37:47:02:16:c3:d1:cd:de:db:47:56:07:67:cb:50: f9:15:01:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/WBiU/uyrnX61X7fqcrAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyMTc4OGMwOGFhNDM3ZDExNjVjZWNiZDY4ZmRiMTk1YTE1 ZGZhMDgwHhcNMjYwMjA5MDYwMTEyWhcNMjYwMjEwMDYwMTEyWjAzMTEwLwYDVQQD EyhhZjNkMzZlM2MyNjA1NWU0MzdmYTM0NTkwM2YzNWI3ZjU0N2Q3ODdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnyfgnoOt9aIy2dzegJhhdPjoYW6t jYlCpXFnNguR12xgiApEwuxp5eWTgSKtNAjsCyWEkKfHNLMEYi3h3w4eP+1YW+mw dURUJQn64NAfya7gB21HfVrZWEpA9rZmIGBwQ3uBw3jvDqaYU7Tlpz043GILKaE2 HMA81u7T1E/GWGtwOiN3Us1a9f0U0Pf/PYuKeDw2IPf1iM2eYx7w88LXQ1RG9Ews o5/61jNV/gaF2T+ULOeoz0JhVAlp2hMS1KndRmoz5SY8FKT8Oq/7x8CEVD0d2AWG +zBJs+MxwiC+qHFuf+eW7qngmbmw1kliYinJwEfwfzvRHqZbZRK66Ohu/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK89NuPCYFXkN/o0WQPzW39UfXh7MB8GA1UdIwQY MBaAFKIXiMCKpDfRFlzsvWj9sZWhXfoIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2hlSXdJcWtOOUVXWE95OWFQMnhsYUZkLWdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC83YTBjN2MtZjJjYS00YWE5LTg3YzUt NzdmNGZkNTM0MjVlLzEvb2hlSXdJcWtOOUVXWE95OWFQMnhsYUZkLWdnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC83YTBjN2MtZjJjYS00YWE5LTg3YzUtNzdmNGZkNTM0MjVl LzEvb2hlSXdJcWtOOUVXWE95OWFQMnhsYUZkLWdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIgua41cC V9pgfzkI/hdLst3z4wKsRIgs4e05Pk3/QSWJLjNbMyHdL0l61aaZBnVEEcXAZHwK xW+JX7Px1Ql8HViXepg5DGqNfy913CYndRtqzPo53tga4WnSLJ4ELF813ayV9UCA ICyrtHOq6XgrFZt/eM94e8/zXBQtSLB4fXv/cSybtqKVU4enttFnwX8x/VL+8CVX coIkaAjXDpVpbxg/epJiJ/FrXAOwd7JY8rM+epIk+DLFxRHMkJXlS0RtGROjY2uZ /ztR/RzxK/cL2Xjx3HEumeCcuTiwUNiwW8xrZI7bIvMEZJzE2PmBN0cCFsPRzd7b R1YHZ8tQ+RUBkw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:33 2026 by rpki-client