This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft File: oHEAJhaNhq-46ZnPsqjonFct0vk.mft (raw, json) Hash identifier: 6Iv46HEfLqXiCJxuZlIm8y/FnrFFVXhW+eIj0nT2KRw= Subject key identifier: 2A:6D:5F:9A:DD:C5:7C:72:0A:E7:10:60:1A:02:54:77:FA:DA:51:C2 Authority key identifier: A0:71:00:26:16:8D:86:AF:B8:E9:99:CF:B2:A8:E8:9C:57:2D:D2:F9 Certificate issuer: /CN=a0710026168d86afb8e999cfb2a8e89c572dd2f9 Certificate serial: 019C41A20F5C986FA60ECA081B1F088F6E9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft Manifest number: 155A Signing time: Mon 09 Feb 2026 09:01:05 +0000 Manifest this update: Mon 09 Feb 2026 09:01:05 +0000 Manifest next update: Tue 10 Feb 2026 09:01:05 +0000 Files and hashes: 1: oHEAJhaNhq-46ZnPsqjonFct0vk.crl (hash: Y45YAnLMboWL1+OzqJUZt8gEflNOLpzHb9ZeR4Y+miA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:0f:5c:98:6f:a6:0e:ca:08:1b:1f:08:8f:6e:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0710026168d86afb8e999cfb2a8e89c572dd2f9 Validity Not Before: Feb 9 09:01:05 2026 GMT Not After : Feb 10 09:01:05 2026 GMT Subject: CN=2a6d5f9addc57c720ae710601a025477fada51c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:18:43:0b:4a:27:2e:64:78:2a:a1:07:5b:3a: 6b:f7:38:6f:6f:6c:a6:56:bb:01:7b:3d:f0:55:fb: 30:90:58:d4:15:f8:58:5b:9b:bd:b7:40:b1:12:86: 96:00:3d:0c:16:24:4b:21:85:b4:1e:62:37:d7:b8: 6b:d8:0c:16:2b:ed:56:fc:92:96:87:c5:fb:c0:5c: ea:d1:de:be:19:76:11:d9:ef:cc:6a:45:67:f9:02: 57:31:5d:84:75:e1:0e:90:25:b0:f7:95:57:a4:64: f8:96:2a:22:0e:3a:94:49:b9:ee:ec:5b:f8:c6:a3: 63:e9:7c:9d:7a:4f:4c:ed:e8:ad:b9:8d:2a:20:dc: cd:c8:5f:9d:34:b1:cc:63:82:e2:1a:d7:a3:7d:31: 69:ff:41:5e:2f:1e:57:26:9b:bd:cb:28:d4:86:89: 26:0c:a7:2c:e4:6a:fa:7e:54:e8:eb:63:79:d3:eb: 3d:a8:82:07:3b:c4:ab:db:fa:82:01:97:5a:b3:a6: ac:49:f2:6f:55:c1:bb:c8:ec:19:a7:c5:90:5f:5d: 38:20:a7:0e:e0:34:26:98:06:4b:90:cf:41:12:a1: 1c:f0:f4:6d:9f:ff:8e:0f:d2:36:f6:e2:ed:a1:f0: 29:c8:4f:c7:1d:69:a2:71:6c:65:14:5d:9e:10:8e: eb:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:6D:5F:9A:DD:C5:7C:72:0A:E7:10:60:1A:02:54:77:FA:DA:51:C2 X509v3 Authority Key Identifier: keyid:A0:71:00:26:16:8D:86:AF:B8:E9:99:CF:B2:A8:E8:9C:57:2D:D2:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:fc:02:b5:e5:36:ff:e3:dc:55:15:02:49:08:d7:54:ac:21: a3:5b:bf:a4:9a:9e:93:1d:17:1b:7a:8c:b5:0a:ad:c2:c1:a1: 42:83:9e:7f:81:9a:11:d3:8c:f9:f6:4a:33:36:61:52:72:0f: b1:63:ba:59:34:f5:2b:e9:d6:38:8b:92:9a:68:49:07:85:ac: 4a:b0:a3:70:36:d5:d0:91:e0:9f:cc:9a:9f:c9:65:10:37:d4: 79:d6:ac:21:9d:fe:49:fd:6c:fd:a2:3c:41:a6:ba:67:22:53: 17:80:5e:c9:43:b0:c3:17:f4:de:aa:b5:a8:c1:47:59:e5:7e: 56:05:ca:13:07:78:95:cd:e2:5a:44:bc:76:e8:eb:32:12:92: 54:1c:48:b5:43:2b:d3:44:d6:b0:66:ac:a4:c2:ce:1e:8d:c1: 1b:48:36:e6:15:e3:8b:43:c8:64:6b:82:0e:cd:13:44:97:b8: 83:1f:50:a5:ae:04:0c:43:e8:0f:5b:06:c3:4a:08:6e:45:c5: 81:c1:c0:55:25:ce:5d:23:fe:63:1c:9d:ff:fc:b8:e8:9f:e8: 35:21:79:5b:ac:c2:fb:11:bc:0b:27:cf:98:f6:d1:e7:e8:b1: ea:18:7c:03:ce:cd:60:40:ec:2b:3a:ee:db:2a:3e:52:28:21: ae:42:64:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBog9cmG+mDsoIGx8Ij26eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwNzEwMDI2MTY4ZDg2YWZiOGU5OTljZmIyYThlODljNTcy ZGQyZjkwHhcNMjYwMjA5MDkwMTA1WhcNMjYwMjEwMDkwMTA1WjAzMTEwLwYDVQQD EygyYTZkNWY5YWRkYzU3YzcyMGFlNzEwNjAxYTAyNTQ3N2ZhZGE1MWMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2BhDC0onLmR4KqEHWzpr9zhvb2ym VrsBez3wVfswkFjUFfhYW5u9t0CxEoaWAD0MFiRLIYW0HmI317hr2AwWK+1W/JKW h8X7wFzq0d6+GXYR2e/MakVn+QJXMV2EdeEOkCWw95VXpGT4lioiDjqUSbnu7Fv4 xqNj6Xydek9M7eituY0qINzNyF+dNLHMY4LiGtejfTFp/0FeLx5XJpu9yyjUhokm DKcs5Gr6flTo62N50+s9qIIHO8Sr2/qCAZdas6asSfJvVcG7yOwZp8WQX104IKcO 4DQmmAZLkM9BEqEc8PRtn/+OD9I29uLtofApyE/HHWmicWxlFF2eEI7rJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCptX5rdxXxyCucQYBoCVHf62lHCMB8GA1UdIwQY MBaAFKBxACYWjYavuOmZz7Ko6JxXLdL5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0hFQUpoYU5ocS00NlpuUHNxam9uRmN0MHZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi81NzcyMTItMDhiMC00M2VkLTg5YzYt YTlhNmJmNjVlNjNhLzEvb0hFQUpoYU5ocS00NlpuUHNxam9uRmN0MHZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi81NzcyMTItMDhiMC00M2VkLTg5YzYtYTlhNmJmNjVlNjNh LzEvb0hFQUpoYU5ocS00NlpuUHNxam9uRmN0MHZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJfwCteU2 /+PcVRUCSQjXVKwho1u/pJqekx0XG3qMtQqtwsGhQoOef4GaEdOM+fZKMzZhUnIP sWO6WTT1K+nWOIuSmmhJB4WsSrCjcDbV0JHgn8yan8llEDfUedasIZ3+Sf1s/aI8 Qaa6ZyJTF4BeyUOwwxf03qq1qMFHWeV+VgXKEwd4lc3iWkS8dujrMhKSVBxItUMr 00TWsGaspMLOHo3BG0g25hXji0PIZGuCDs0TRJe4gx9Qpa4EDEPoD1sGw0oIbkXF gcHAVSXOXSP+Yxyd//y46J/oNSF5W6zC+xG8CyfPmPbR5+ix6hh8A87NYEDsKzru 2yo+UighrkJkfA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:02 2026 by rpki-client