This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft File: otP5vJZWutwm594auw-nLD1yjdg.mft (raw, json) Hash identifier: ceoIwWCIVimE1gvkoBNkdx6LgvEi0JTfGwabs0Qb/hc= Subject key identifier: 66:6B:95:5B:E4:E4:E2:47:18:AF:B5:77:86:AA:36:B4:45:15:FC:02 Authority key identifier: A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8 Certificate issuer: /CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8 Certificate serial: 019C438FF4D39D117CAC81B8021691D2640D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft Manifest number: 0476 Signing time: Mon 09 Feb 2026 18:00:33 +0000 Manifest this update: Mon 09 Feb 2026 18:00:33 +0000 Manifest next update: Tue 10 Feb 2026 18:00:33 +0000 Files and hashes: 1: otP5vJZWutwm594auw-nLD1yjdg.crl (hash: 6N23+4XE1VIJXB+bVuwzEXh1ny5YvJcbcifvh9Foqkg=) 2: wq9tYLfVQC77CHQnEGOwVihriSc.roa (hash: tQsNymN61pdlaZw2p685YQ4hLAz1lZz1V7NLew6Ch8g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:f4:d3:9d:11:7c:ac:81:b8:02:16:91:d2:64:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8 Validity Not Before: Feb 9 18:00:33 2026 GMT Not After : Feb 10 18:00:33 2026 GMT Subject: CN=666b955be4e4e24718afb57786aa36b44515fc02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:78:2a:8b:bb:d4:e1:87:47:6b:c0:36:35:3a: ba:7f:00:52:18:3a:00:a3:d1:07:62:c6:13:83:ec: 6a:3f:3e:5c:e6:97:de:20:36:2a:3c:6b:24:36:8d: b4:77:fd:89:0b:11:21:17:af:13:35:b3:70:2a:50: 9e:98:95:1a:11:5d:a8:4b:04:f7:5d:ac:48:22:46: 8e:01:55:b2:81:ce:24:78:0f:5b:46:8c:fe:ae:4d: 0f:e4:cc:9a:d2:6c:57:0f:39:85:c3:bb:da:1b:38: 4c:90:a3:65:24:84:88:32:9c:9d:e8:fd:ee:51:0c: 35:8c:88:66:81:96:95:4b:e1:19:da:32:45:00:ed: d6:89:e1:0e:9e:eb:35:00:72:0b:c2:5a:01:74:e8: 4f:c5:1d:8b:dc:67:e9:63:be:4d:6b:8c:46:8f:41: 04:33:72:2c:f2:c6:2b:39:34:ec:04:66:b2:f4:af: 70:a5:e8:8f:5c:1a:89:0e:60:0f:e8:49:60:c9:74: 02:b1:ed:c9:a4:ae:0b:b8:7f:46:0e:3d:4a:01:e1: 23:36:3e:5b:f6:55:49:33:f5:90:ab:8d:98:d0:d3: 5f:ac:ed:25:ef:04:93:31:f0:46:e8:72:e2:37:50: ab:33:63:1a:41:6d:02:c1:2a:98:3f:5d:25:ad:bf: 31:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:6B:95:5B:E4:E4:E2:47:18:AF:B5:77:86:AA:36:B4:45:15:FC:02 X509v3 Authority Key Identifier: keyid:A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:8d:aa:89:01:b9:d1:ca:f6:65:01:4f:a5:8e:19:0f:f3:54: 15:8e:a9:63:e2:32:bb:6f:f6:14:48:1a:1f:aa:4d:f4:b8:ab: 8d:eb:9d:0d:71:e5:c8:75:60:f9:11:2b:e0:7a:6f:b3:22:4f: a6:4e:1e:8e:54:c1:42:5a:72:20:91:4c:44:13:d0:54:f7:03: 4f:96:3b:57:b8:b4:34:5c:53:d8:b3:e7:50:e8:f7:65:8d:a0: 60:b1:9f:ba:23:5e:77:7d:3e:9c:29:b3:44:b4:4d:3b:73:b0: b4:d5:66:f8:63:b8:db:d8:2c:dd:05:bf:c6:a5:4e:95:14:0e: 75:45:f1:81:5f:4a:dd:1b:60:ca:dc:41:d5:6c:b4:d8:41:9e: d2:d1:dd:3b:f0:0e:a8:a9:fb:79:4d:38:6e:fa:47:f1:f7:f9: 6f:39:17:8c:81:b6:c3:f3:f7:2a:ac:cb:6d:c0:a3:22:60:ae: 42:9b:40:8e:86:f3:34:f1:55:95:1d:9e:bc:31:a1:48:ab:dc: 6a:cd:ba:5d:56:19:3a:01:d7:44:77:3f:92:45:cd:f4:ef:f6: 58:ea:d8:56:76:f7:25:7b:6c:44:c6:4c:a6:e4:54:45:8a:2c: 3e:76:18:48:5a:26:fc:b9:78:49:04:3f:60:ad:9b:33:6f:bf: 26:30:c6:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj/TTnRF8rIG4AhaR0mQNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyZDNmOWJjOTY1NmJhZGMyNmU3ZGUxYWJiMGZhNzJjM2Q3 MjhkZDgwHhcNMjYwMjA5MTgwMDMzWhcNMjYwMjEwMTgwMDMzWjAzMTEwLwYDVQQD Eyg2NjZiOTU1YmU0ZTRlMjQ3MThhZmI1Nzc4NmFhMzZiNDQ1MTVmYzAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyHgqi7vU4YdHa8A2NTq6fwBSGDoA o9EHYsYTg+xqPz5c5pfeIDYqPGskNo20d/2JCxEhF68TNbNwKlCemJUaEV2oSwT3 XaxIIkaOAVWygc4keA9bRoz+rk0P5Mya0mxXDzmFw7vaGzhMkKNlJISIMpyd6P3u UQw1jIhmgZaVS+EZ2jJFAO3WieEOnus1AHILwloBdOhPxR2L3GfpY75Na4xGj0EE M3Is8sYrOTTsBGay9K9wpeiPXBqJDmAP6ElgyXQCse3JpK4LuH9GDj1KAeEjNj5b 9lVJM/WQq42Y0NNfrO0l7wSTMfBG6HLiN1CrM2MaQW0CwSqYP10lrb8xFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGZrlVvk5OJHGK+1d4aqNrRFFfwCMB8GA1UdIwQY MBaAFKLT+byWVrrcJufeGrsPpyw9co3YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3RQNXZKWld1dHdtNTk0YXV3LW5MRDF5amRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi82OGZkMGYtMmI4Ny00NzA0LWEzMmYt ZDcxMWU4NGMyOWExLzEvb3RQNXZKWld1dHdtNTk0YXV3LW5MRDF5amRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi82OGZkMGYtMmI4Ny00NzA0LWEzMmYtZDcxMWU4NGMyOWEx LzEvb3RQNXZKWld1dHdtNTk0YXV3LW5MRDF5amRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAao2qiQG5 0cr2ZQFPpY4ZD/NUFY6pY+Iyu2/2FEgaH6pN9LirjeudDXHlyHVg+REr4HpvsyJP pk4ejlTBQlpyIJFMRBPQVPcDT5Y7V7i0NFxT2LPnUOj3ZY2gYLGfuiNed30+nCmz RLRNO3OwtNVm+GO429gs3QW/xqVOlRQOdUXxgV9K3RtgytxB1Wy02EGe0tHdO/AO qKn7eU04bvpH8ff5bzkXjIG2w/P3KqzLbcCjImCuQptAjobzNPFVlR2evDGhSKvc as26XVYZOgHXRHc/kkXN9O/2WOrYVnb3JXtsRMZMpuRURYosPnYYSFom/Ll4SQQ/ YK2bM2+/JjDGPg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:46 2026 by rpki-client