This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft File: oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft (raw, json) Hash identifier: M+fVkKSLvovDZF9KYDlncoQ7Zp9wqcPtp2N4tEcWrGs= Subject key identifier: D3:95:2C:C9:C3:23:99:83:34:9F:47:9B:BC:BD:A5:E7:BC:05:8E:50 Authority key identifier: A2:23:D1:53:44:C0:2A:55:1E:63:F8:31:C6:04:F8:0D:BE:C4:BA:10 Certificate issuer: /CN=a223d15344c02a551e63f831c604f80dbec4ba10 Certificate serial: 019C4322466B57545FEF892124CD60CE20E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiPRU0TAKlUeY_gxxgT4Db7EuhA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft Manifest number: 0C65 Signing time: Mon 09 Feb 2026 16:00:45 +0000 Manifest this update: Mon 09 Feb 2026 16:00:45 +0000 Manifest next update: Tue 10 Feb 2026 16:00:45 +0000 Files and hashes: 1: oiPRU0TAKlUeY_gxxgT4Db7EuhA.crl (hash: zYECwuQTkGj5/UnvKPhPr9ORS7anupTOK2VvYOT+MyQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft rsync://rpki.ripe.net/repository/DEFAULT/oiPRU0TAKlUeY_gxxgT4Db7EuhA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:46:6b:57:54:5f:ef:89:21:24:cd:60:ce:20:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a223d15344c02a551e63f831c604f80dbec4ba10 Validity Not Before: Feb 9 16:00:45 2026 GMT Not After : Feb 10 16:00:45 2026 GMT Subject: CN=d3952cc9c3239983349f479bbcbda5e7bc058e50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8f:72:08:19:06:8b:2b:db:0c:4d:03:16:b3: 86:d7:aa:71:19:d4:19:07:0e:2c:b4:31:96:d7:8d: 18:e7:c7:a9:a3:f9:8e:2b:55:41:cb:d2:c3:08:fe: 7e:cb:0e:47:a1:e2:79:2c:02:7d:71:fb:8a:fa:b9: 12:d7:31:b8:13:d2:53:0a:53:93:8d:d1:e8:76:33: 28:43:cd:24:ba:ef:9f:cc:ab:0f:b4:b5:05:3c:d2: b2:f1:a9:6d:c7:31:be:cf:87:8e:de:a8:8a:05:f6: 00:99:7f:ae:40:29:8a:c3:59:83:70:d8:d5:6f:66: 62:bb:3c:33:ea:e3:2c:97:dd:ca:ef:67:96:73:b7: 91:7d:c9:ce:cb:f0:f2:5b:32:88:64:7a:23:02:c2: e1:d7:72:a8:48:36:dd:1d:5d:d4:ab:c9:d4:42:e3: 00:9d:5b:9a:0c:f6:3e:16:7f:8a:ac:30:ea:f2:6a: ad:c4:76:29:83:04:06:a3:31:f0:26:ae:54:ad:d4: 5e:8e:f3:e6:68:58:98:d7:1e:b6:3b:cc:1a:6a:8e: 99:78:2c:7b:76:b7:ab:67:cc:58:86:ae:7b:94:26: 76:12:15:c1:5a:39:f8:7b:98:53:93:64:71:6b:31: e3:94:6f:d2:b1:19:6b:d8:d7:a1:6b:d8:e6:f4:c5: 4b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:95:2C:C9:C3:23:99:83:34:9F:47:9B:BC:BD:A5:E7:BC:05:8E:50 X509v3 Authority Key Identifier: keyid:A2:23:D1:53:44:C0:2A:55:1E:63:F8:31:C6:04:F8:0D:BE:C4:BA:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiPRU0TAKlUeY_gxxgT4Db7EuhA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:e4:56:5d:23:00:f4:6c:ab:30:2c:f4:09:c6:9b:c3:17:a5: 18:95:23:07:81:af:c5:78:4e:e8:ed:91:c8:bd:49:51:c0:6f: 00:fb:7c:3b:25:e4:f9:7a:60:4a:b4:b2:bc:54:54:88:fa:e2: e6:e5:3d:a9:c1:de:74:21:f4:62:c5:a3:d1:f5:bd:75:76:a8: fe:d9:ac:32:43:89:27:61:78:62:93:0c:c8:ce:55:e4:d5:3a: 40:3e:e0:36:8f:41:e7:17:67:6f:10:30:58:0b:7b:6a:a7:ad: 0a:ba:fc:12:c4:52:d1:5b:25:cb:c9:98:75:38:36:29:53:9b: e2:59:aa:14:92:6e:34:59:49:74:69:f0:e3:10:0e:99:9a:7b: 41:36:62:ed:05:39:2f:63:f9:3d:f3:62:c7:ef:db:8a:9d:6e: 44:97:ae:79:ee:c2:fd:82:d9:d0:71:4e:fc:39:21:fc:1f:d1: 0f:03:dd:a4:d8:be:8c:c3:38:db:ca:f6:79:28:4e:e0:a6:97: 94:85:59:a9:f3:15:f2:41:87:28:3e:98:63:1d:2b:03:72:e0: e8:b6:8f:f2:4f:ed:62:16:d0:63:d5:13:93:2a:69:6c:ed:67: 9a:c8:75:e1:33:99:ac:ff:1f:ee:d0:dd:86:48:1c:3d:0a:5f: 0d:0b:ec:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIkZrV1Rf74khJM1gziDoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyMjNkMTUzNDRjMDJhNTUxZTYzZjgzMWM2MDRmODBkYmVj NGJhMTAwHhcNMjYwMjA5MTYwMDQ1WhcNMjYwMjEwMTYwMDQ1WjAzMTEwLwYDVQQD EyhkMzk1MmNjOWMzMjM5OTgzMzQ5ZjQ3OWJiY2JkYTVlN2JjMDU4ZTUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAro9yCBkGiyvbDE0DFrOG16pxGdQZ Bw4stDGW140Y58epo/mOK1VBy9LDCP5+yw5HoeJ5LAJ9cfuK+rkS1zG4E9JTClOT jdHodjMoQ80kuu+fzKsPtLUFPNKy8altxzG+z4eO3qiKBfYAmX+uQCmKw1mDcNjV b2Ziuzwz6uMsl93K72eWc7eRfcnOy/DyWzKIZHojAsLh13KoSDbdHV3Uq8nUQuMA nVuaDPY+Fn+KrDDq8mqtxHYpgwQGozHwJq5UrdRejvPmaFiY1x62O8waao6ZeCx7 drerZ8xYhq57lCZ2EhXBWjn4e5hTk2RxazHjlG/SsRlr2Neha9jm9MVLAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNOVLMnDI5mDNJ9Hm7y9pee8BY5QMB8GA1UdIwQY MBaAFKIj0VNEwCpVHmP4McYE+A2+xLoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2lQUlUwVEFLbFVlWV9neHhnVDREYjdFdWhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84YzJmYWUtYmQ0OS00YmY3LWJhYTct ODA5YTJkN2ZmMzQ4LzEvb2lQUlUwVEFLbFVlWV9neHhnVDREYjdFdWhBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy84YzJmYWUtYmQ0OS00YmY3LWJhYTctODA5YTJkN2ZmMzQ4 LzEvb2lQUlUwVEFLbFVlWV9neHhnVDREYjdFdWhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApORWXSMA 9GyrMCz0CcabwxelGJUjB4GvxXhO6O2RyL1JUcBvAPt8OyXk+XpgSrSyvFRUiPri 5uU9qcHedCH0YsWj0fW9dXao/tmsMkOJJ2F4YpMMyM5V5NU6QD7gNo9B5xdnbxAw WAt7aqetCrr8EsRS0Vsly8mYdTg2KVOb4lmqFJJuNFlJdGnw4xAOmZp7QTZi7QU5 L2P5PfNix+/bip1uRJeuee7C/YLZ0HFO/Dkh/B/RDwPdpNi+jMM428r2eShO4KaX lIVZqfMV8kGHKD6YYx0rA3Lg6LaP8k/tYhbQY9UTkyppbO1nmsh14TOZrP8f7tDd hkgcPQpfDQvs9Q== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:52 2026 by rpki-client