This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft File: 1OKXHl2BaclArwINsCe-2tiZFZA.mft (raw, json) Hash identifier: SW6KpMv6NhWwyGL/7y7YIVuQswwfyirCqR7iAOUenHk= Subject key identifier: 4F:F1:C3:FA:02:17:1C:B0:64:65:A1:51:54:94:F5:1D:2F:78:E8:DE Authority key identifier: D4:E2:97:1E:5D:81:69:C9:40:AF:02:0D:B0:27:BE:DA:D8:99:15:90 Certificate issuer: /CN=d4e2971e5d8169c940af020db027bedad8991590 Certificate serial: 019C42B412AA46DCF3059B96310A9BA4ADD3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft Manifest number: 1814 Signing time: Mon 09 Feb 2026 14:00:23 +0000 Manifest this update: Mon 09 Feb 2026 14:00:23 +0000 Manifest next update: Tue 10 Feb 2026 14:00:23 +0000 Files and hashes: 1: 1OKXHl2BaclArwINsCe-2tiZFZA.crl (hash: rKqPpkaTBtWb9AjIZ4fq9ctbsIuSVcy6wMsHUpvWaZ8=) 2: DeOjOOwis1AR2KZCrmSrlAIMW_U.roa (hash: YRk1DmfcABvQ8nayCmElnZfNEWkWQiqPKIgK2NRobvo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:12:aa:46:dc:f3:05:9b:96:31:0a:9b:a4:ad:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d4e2971e5d8169c940af020db027bedad8991590 Validity Not Before: Feb 9 14:00:23 2026 GMT Not After : Feb 10 14:00:23 2026 GMT Subject: CN=4ff1c3fa02171cb06465a1515494f51d2f78e8de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:26:ac:59:c8:18:7c:2d:c9:6c:34:2a:34:5f: a1:16:a1:e5:68:73:6e:94:50:fc:56:08:7d:a3:d4: b9:39:a7:b8:23:d6:93:38:f8:ed:21:0b:95:95:72: 84:35:e4:fb:29:07:03:b3:0f:23:23:75:db:bd:19: d8:a1:33:6b:d2:58:82:9a:a6:c7:36:10:19:9a:11: e5:98:07:82:d3:97:36:14:9c:ce:f8:4c:d2:79:a8: 02:f8:15:de:fe:3b:6a:09:8f:59:f3:b4:72:f7:c7: 08:b9:06:9e:1b:42:09:e2:9a:fc:96:13:75:13:47: a6:05:28:de:49:65:b1:e4:d5:da:fd:47:a9:bb:dc: e9:db:04:c7:4e:5f:cd:2a:ac:75:ba:e9:0a:25:b5: 8c:89:fc:43:90:73:72:77:ba:fc:7d:c5:67:0d:c9: a2:6b:da:7e:9d:92:1d:a4:ec:c9:f8:ad:cb:e6:84: a5:93:87:bd:fe:90:12:dd:22:d6:0c:7c:d6:2e:9c: 7c:cb:e6:bc:51:f7:60:4c:f9:3a:3d:26:0b:60:ca: 17:c0:97:64:f1:9d:06:e7:27:e7:04:bc:56:ce:00: 0d:7e:5a:34:93:40:cd:f7:4e:9d:8b:33:39:4d:2e: 00:61:a9:d1:07:bd:c2:50:7e:f3:4b:f7:a2:69:d4: d2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:F1:C3:FA:02:17:1C:B0:64:65:A1:51:54:94:F5:1D:2F:78:E8:DE X509v3 Authority Key Identifier: keyid:D4:E2:97:1E:5D:81:69:C9:40:AF:02:0D:B0:27:BE:DA:D8:99:15:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKXHl2BaclArwINsCe-2tiZFZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/478aea-6b94-49a3-aa7f-189490d60ea6/1/1OKXHl2BaclArwINsCe-2tiZFZA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:b7:9f:09:ff:cb:25:39:a4:7b:f5:a5:7c:2b:98:de:6f:dd: 17:4a:ca:dc:6e:6c:d2:62:5a:65:9b:56:5e:32:29:6c:a3:52: a3:fa:d4:f9:e6:96:7d:13:1e:bf:e4:22:ef:6e:82:42:3a:e2: ff:ae:c0:94:89:04:72:56:b4:8c:d7:c1:99:85:16:ef:5d:13: 3c:20:d2:c0:68:a7:f2:b6:a0:26:17:62:0c:b0:a2:cd:50:46: 08:89:f5:80:bc:b0:01:4d:9a:de:c8:dd:60:11:e3:88:72:d3: b4:4f:f8:86:a4:ee:24:7a:47:ed:86:11:f7:ac:81:05:f0:de: 53:07:fa:b6:1f:1b:eb:bd:3e:e3:b4:0d:19:a6:23:af:5b:60: ea:9e:f3:0f:8a:d2:d2:3b:56:e2:76:bc:a0:16:ee:f7:3d:ae: 96:03:c2:bb:3f:ab:a9:a3:94:1a:27:37:06:66:6c:d9:29:28: c5:b6:05:60:72:a3:9d:da:54:ce:fb:4e:b2:74:93:ff:97:b2: a1:ab:93:38:a2:05:85:4a:0e:da:c1:f9:6e:8f:e4:61:96:dc: a7:f3:f6:de:07:6b:10:1d:02:19:ca:94:c2:dc:4d:dd:1b:20: 92:b4:84:6a:f9:87:07:3f:70:f1:14:53:c3:fb:c9:4c:80:16: 7f:27:44:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtBKqRtzzBZuWMQqbpK3TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0ZTI5NzFlNWQ4MTY5Yzk0MGFmMDIwZGIwMjdiZWRhZDg5 OTE1OTAwHhcNMjYwMjA5MTQwMDIzWhcNMjYwMjEwMTQwMDIzWjAzMTEwLwYDVQQD Eyg0ZmYxYzNmYTAyMTcxY2IwNjQ2NWExNTE1NDk0ZjUxZDJmNzhlOGRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjiasWcgYfC3JbDQqNF+hFqHlaHNu lFD8Vgh9o9S5Oae4I9aTOPjtIQuVlXKENeT7KQcDsw8jI3XbvRnYoTNr0liCmqbH NhAZmhHlmAeC05c2FJzO+EzSeagC+BXe/jtqCY9Z87Ry98cIuQaeG0IJ4pr8lhN1 E0emBSjeSWWx5NXa/Uepu9zp2wTHTl/NKqx1uukKJbWMifxDkHNyd7r8fcVnDcmi a9p+nZIdpOzJ+K3L5oSlk4e9/pAS3SLWDHzWLpx8y+a8UfdgTPk6PSYLYMoXwJdk 8Z0G5yfnBLxWzgANflo0k0DN906dizM5TS4AYanRB73CUH7zS/eiadTSXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE/xw/oCFxywZGWhUVSU9R0veOjeMB8GA1UdIwQY MBaAFNTilx5dgWnJQK8CDbAnvtrYmRWQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMU9LWEhsMkJhY2xBcndJTnNDZS0ydGlaRlpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80NzhhZWEtNmI5NC00OWEzLWFhN2Yt MTg5NDkwZDYwZWE2LzEvMU9LWEhsMkJhY2xBcndJTnNDZS0ydGlaRlpBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC80NzhhZWEtNmI5NC00OWEzLWFhN2YtMTg5NDkwZDYwZWE2 LzEvMU9LWEhsMkJhY2xBcndJTnNDZS0ydGlaRlpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHbefCf/L JTmke/WlfCuY3m/dF0rK3G5s0mJaZZtWXjIpbKNSo/rU+eaWfRMev+Qi726CQjri /67AlIkEcla0jNfBmYUW710TPCDSwGin8ragJhdiDLCizVBGCIn1gLywAU2a3sjd YBHjiHLTtE/4hqTuJHpH7YYR96yBBfDeUwf6th8b670+47QNGaYjr1tg6p7zD4rS 0jtW4na8oBbu9z2ulgPCuz+rqaOUGic3BmZs2SkoxbYFYHKjndpUzvtOsnST/5ey oauTOKIFhUoO2sH5bo/kYZbcp/P23gdrEB0CGcqUwtxN3RsgkrSEavmHBz9w8RRT w/vJTIAWfydE9w== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:36 2026 by rpki-client