This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft File: OXbmqwhMnu7ehuKva95yFSdLlac.mft (raw, json) Hash identifier: f8kXTBy55fiq6CB77x51UFCH4LGxma3XVDTjw7Qpg9Q= Subject key identifier: AF:F8:CC:28:7B:75:7A:B8:94:90:3C:D6:02:94:BA:12:F5:84:39:BD Authority key identifier: 39:76:E6:AB:08:4C:9E:EE:DE:86:E2:AF:6B:DE:72:15:27:4B:95:A7 Certificate issuer: /CN=3976e6ab084c9eeede86e2af6bde7215274b95a7 Certificate serial: 019C41A186E7762AF91792529185973B2A9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXbmqwhMnu7ehuKva95yFSdLlac.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 09:00:30 +0000 Manifest this update: Mon 09 Feb 2026 09:00:30 +0000 Manifest next update: Tue 10 Feb 2026 09:00:30 +0000 Files and hashes: 1: 5W8H3hdhAkKM671WDMnpy7cCJuY.roa (hash: NKgi04O8geWs7LDTxcDB8TiJxs4zQ7+9gL3r7rWfDxU=) 2: OXbmqwhMnu7ehuKva95yFSdLlac.crl (hash: NZanoKRaxXoh+YgLm5woGZx4482Ioi52lbtlhjKSJPs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft rsync://rpki.ripe.net/repository/DEFAULT/OXbmqwhMnu7ehuKva95yFSdLlac.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:86:e7:76:2a:f9:17:92:52:91:85:97:3b:2a:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3976e6ab084c9eeede86e2af6bde7215274b95a7 Validity Not Before: Feb 9 09:00:30 2026 GMT Not After : Feb 10 09:00:30 2026 GMT Subject: CN=aff8cc287b757ab894903cd60294ba12f58439bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f6:09:1a:00:4b:0b:c4:6b:ca:03:70:83:f0: 5c:5a:7f:98:5b:91:8d:92:60:a5:34:d6:65:8b:b0: c5:49:4c:fd:65:39:c1:53:ee:54:1b:06:ce:47:5a: 89:be:d1:9c:3b:7a:18:5e:f5:ef:a7:b1:64:79:53: 91:d5:8b:1a:62:74:3d:75:5b:66:d3:3d:15:fa:49: 28:c9:6a:c9:f8:59:77:cd:1b:90:64:f2:d8:a8:f0: 15:85:63:82:72:b8:3d:91:b5:75:5c:c1:96:fa:c0: b8:bb:7f:da:72:de:22:1a:f3:06:4f:07:c5:ac:8f: 1b:b3:e6:09:03:ab:0c:11:22:4f:3d:31:4c:fe:b7: 77:b8:71:c3:eb:e0:10:a2:be:6c:06:c1:67:05:45: 25:52:cb:f3:f2:1f:23:46:d0:5d:a2:4c:a8:a4:67: d2:1a:4c:91:6c:e2:c9:a7:7c:be:36:21:4b:98:52: 41:2a:7d:76:04:69:56:dc:87:57:a9:33:1b:5c:b7: f3:07:44:99:93:91:0c:cf:ba:c6:b6:84:13:70:26: d8:37:ea:01:ba:fc:04:7c:11:7e:65:48:03:53:87: 4a:88:e7:7d:76:c0:a2:57:98:68:c0:9e:9a:6a:78: 19:f1:05:b0:86:03:55:47:70:f0:17:22:3c:c0:2b: f4:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F8:CC:28:7B:75:7A:B8:94:90:3C:D6:02:94:BA:12:F5:84:39:BD X509v3 Authority Key Identifier: keyid:39:76:E6:AB:08:4C:9E:EE:DE:86:E2:AF:6B:DE:72:15:27:4B:95:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXbmqwhMnu7ehuKva95yFSdLlac.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:d6:9d:2a:98:48:46:5e:5f:61:57:fb:1e:48:0b:7c:b9:6b: c3:38:29:2e:19:a5:5e:bf:df:69:b4:9e:1e:7b:83:6f:17:c1: 28:aa:03:b3:a2:de:4c:b8:d2:4d:71:51:32:06:8b:99:35:e9: dd:ed:ac:25:1e:4e:d9:28:87:a2:87:6c:db:cf:43:d3:bc:0d: e4:c0:fa:b1:7a:d3:10:d4:71:e7:f9:4c:93:8f:a1:7c:e2:a9: 3b:a5:fc:ca:77:36:ea:f2:cf:d0:fe:d0:52:2e:59:04:ad:d0: 00:10:81:56:78:26:03:47:f0:23:5d:ea:61:57:2a:8d:95:71: 6d:5d:39:fe:fe:7f:5f:f4:b9:76:69:21:bb:de:1c:19:97:e2: 75:95:43:fb:d7:19:93:9a:ae:14:d6:90:60:e8:a7:36:05:a1: 29:ed:60:48:80:34:12:b2:e4:ec:bb:a7:82:21:41:c9:b7:f1: 7f:96:93:c3:da:77:c0:7e:40:53:bc:4a:df:c1:f0:20:ac:5f: ab:20:91:29:e8:60:ca:1a:c8:9a:8e:79:ab:09:f3:07:87:80: e2:cf:1c:e7:60:c7:b6:3a:98:a2:42:41:35:a6:82:9d:e9:06: 2b:38:90:d0:c8:a5:66:73:7e:41:43:8c:5c:1e:89:0d:34:fb: fe:56:41:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoYbndir5F5JSkYWXOyqeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5NzZlNmFiMDg0YzllZWVkZTg2ZTJhZjZiZGU3MjE1Mjc0 Yjk1YTcwHhcNMjYwMjA5MDkwMDMwWhcNMjYwMjEwMDkwMDMwWjAzMTEwLwYDVQQD EyhhZmY4Y2MyODdiNzU3YWI4OTQ5MDNjZDYwMjk0YmExMmY1ODQzOWJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1PYJGgBLC8RrygNwg/BcWn+YW5GN kmClNNZli7DFSUz9ZTnBU+5UGwbOR1qJvtGcO3oYXvXvp7FkeVOR1YsaYnQ9dVtm 0z0V+kkoyWrJ+Fl3zRuQZPLYqPAVhWOCcrg9kbV1XMGW+sC4u3/act4iGvMGTwfF rI8bs+YJA6sMESJPPTFM/rd3uHHD6+AQor5sBsFnBUUlUsvz8h8jRtBdokyopGfS GkyRbOLJp3y+NiFLmFJBKn12BGlW3IdXqTMbXLfzB0SZk5EMz7rGtoQTcCbYN+oB uvwEfBF+ZUgDU4dKiOd9dsCiV5howJ6aangZ8QWwhgNVR3DwFyI8wCv0hwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK/4zCh7dXq4lJA81gKUuhL1hDm9MB8GA1UdIwQY MBaAFDl25qsITJ7u3obir2vechUnS5WnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1hibXF3aE1udTdlaHVLdmE5NXlGU2RMbGFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC83MDI5Y2MtZDMzMS00NjA2LTg4OWMt ZDY2Njc0Y2ZhNDI0LzEvT1hibXF3aE1udTdlaHVLdmE5NXlGU2RMbGFjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC83MDI5Y2MtZDMzMS00NjA2LTg4OWMtZDY2Njc0Y2ZhNDI0 LzEvT1hibXF3aE1udTdlaHVLdmE5NXlGU2RMbGFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANNadKphI Rl5fYVf7HkgLfLlrwzgpLhmlXr/fabSeHnuDbxfBKKoDs6LeTLjSTXFRMgaLmTXp 3e2sJR5O2SiHoods289D07wN5MD6sXrTENRx5/lMk4+hfOKpO6X8ync26vLP0P7Q Ui5ZBK3QABCBVngmA0fwI13qYVcqjZVxbV05/v5/X/S5dmkhu94cGZfidZVD+9cZ k5quFNaQYOinNgWhKe1gSIA0ErLk7LungiFBybfxf5aTw9p3wH5AU7xK38HwIKxf qyCRKehgyhrImo55qwnzB4eA4s8c52DHtjqYokJBNaaCnekGKziQ0MilZnN+QUOM XB6JDTT7/lZBSA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:41 2026 by rpki-client