This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft File: 6OcnETayGhWK70CdMOLGAB1bDak.mft (raw, json) Hash identifier: /7CnwggUH9FKuqqarE/+u2boPwmkS7XOvpaOBPvgPWs= Subject key identifier: 81:C2:83:E2:D6:34:98:7E:7A:0A:68:A4:A8:92:91:81:EE:89:8A:17 Authority key identifier: E8:E7:27:11:36:B2:1A:15:8A:EF:40:9D:30:E2:C6:00:1D:5B:0D:A9 Certificate issuer: /CN=e8e7271136b21a158aef409d30e2c6001d5b0da9 Certificate serial: 019C41D8FCDA308C77451415A858E9E2C3AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6OcnETayGhWK70CdMOLGAB1bDak.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft Manifest number: 1166 Signing time: Mon 09 Feb 2026 10:01:05 +0000 Manifest this update: Mon 09 Feb 2026 10:01:05 +0000 Manifest next update: Tue 10 Feb 2026 10:01:05 +0000 Files and hashes: 1: 6OcnETayGhWK70CdMOLGAB1bDak.crl (hash: hAodtf59ihmSfNZacI223QQOvaUrsaNqyhfkJTBJvxg=) 2: BgOBkzwZiai7TWETAvn_IWE9YOQ.roa (hash: eYdWajw2NgiVsKV9NY6WqUM6UWy1PFC1+5llbrmRKeE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft rsync://rpki.ripe.net/repository/DEFAULT/6OcnETayGhWK70CdMOLGAB1bDak.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:fc:da:30:8c:77:45:14:15:a8:58:e9:e2:c3:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8e7271136b21a158aef409d30e2c6001d5b0da9 Validity Not Before: Feb 9 10:01:05 2026 GMT Not After : Feb 10 10:01:05 2026 GMT Subject: CN=81c283e2d634987e7a0a68a4a8929181ee898a17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a6:34:14:bc:7f:00:39:c8:f5:8b:bd:4d:d4: e3:33:ff:3f:54:5a:00:97:81:32:83:bf:76:53:d3: 73:1d:69:0d:e1:4a:92:00:c4:b7:6d:7a:fe:16:0f: 30:0a:6a:6a:d4:e3:ae:6c:0e:49:3f:eb:1a:d3:03: 93:dd:2c:48:80:2a:72:88:05:de:7f:03:55:8a:78: dd:9d:a4:c1:72:d1:d3:2f:13:2f:83:4c:66:00:1c: 0d:c3:a1:a9:ae:ed:d1:b8:d3:18:68:b1:d1:3b:b7: 88:cb:5c:ba:78:86:64:c2:03:29:15:05:e1:bf:bc: 73:3f:56:ce:98:a3:75:c6:88:dc:8b:ab:ac:96:a7: 40:dc:1b:95:24:ea:42:37:ef:e4:35:2d:a9:75:89: e9:e5:ba:81:84:01:b2:3f:66:00:1a:30:99:3c:0a: 01:d5:f6:c1:67:1b:97:52:ff:d9:d9:40:27:6c:56: 8d:7f:bb:0d:cb:60:85:b3:8c:85:35:94:aa:ee:5d: 09:c2:1a:7e:c7:7d:ef:0f:96:67:cb:50:f4:70:64: 09:7c:5b:8f:48:6f:ad:8f:95:ef:51:da:b5:d1:75: 94:4b:43:30:96:3a:b3:25:51:c8:cb:74:9b:24:31: 7a:06:ef:a7:1e:b1:33:af:ba:86:58:1e:69:a4:6e: a9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:C2:83:E2:D6:34:98:7E:7A:0A:68:A4:A8:92:91:81:EE:89:8A:17 X509v3 Authority Key Identifier: keyid:E8:E7:27:11:36:B2:1A:15:8A:EF:40:9D:30:E2:C6:00:1D:5B:0D:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6OcnETayGhWK70CdMOLGAB1bDak.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:eb:f1:89:a2:2e:60:b3:6a:21:73:f6:4f:26:b0:a9:d1:ea: 47:7c:17:4a:fd:46:ab:e0:3c:6c:d8:45:af:47:5f:9e:35:b3: 70:27:86:c4:bd:b5:e9:a3:5c:89:23:cf:c7:3a:95:16:fc:a9: 4e:b4:aa:db:97:84:2b:a0:d9:6d:05:bd:9c:6a:df:ba:0c:99: d1:c4:95:69:7b:ef:c8:8b:14:d6:26:a4:d5:2d:e1:f1:fa:15: fa:25:df:d1:9f:57:4a:3e:ea:58:44:72:df:77:19:66:63:c4: b7:71:55:b8:08:c2:3c:54:a6:25:8f:63:5a:61:bb:d4:31:1b: 0d:c6:67:25:7e:18:6f:ae:9a:b1:ee:99:60:65:d5:f9:32:d8: 38:05:f9:b8:46:2a:0b:44:ab:c6:d6:8f:5b:bc:f8:07:dd:49: e5:de:6c:bd:b4:e6:e0:ec:f4:13:e4:e2:bf:16:09:cb:c2:c2: 2b:17:ef:76:62:80:95:24:9b:8a:2c:02:d4:6e:dd:1e:e8:4b: 37:56:df:94:ef:f4:db:1f:7e:ae:ae:ab:c2:61:c8:bb:82:19: b9:59:69:a4:6c:17:f7:dc:66:2f:c2:81:8b:96:0c:36:f7:e8: 7c:d3:d2:73:54:ad:7a:0d:eb:8d:9a:da:e5:08:29:80:f1:4b: 79:ee:cc:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2PzaMIx3RRQVqFjp4sOuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU4ZTcyNzExMzZiMjFhMTU4YWVmNDA5ZDMwZTJjNjAwMWQ1 YjBkYTkwHhcNMjYwMjA5MTAwMTA1WhcNMjYwMjEwMTAwMTA1WjAzMTEwLwYDVQQD Eyg4MWMyODNlMmQ2MzQ5ODdlN2EwYTY4YTRhODkyOTE4MWVlODk4YTE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx6Y0FLx/ADnI9Yu9TdTjM/8/VFoA l4Eyg792U9NzHWkN4UqSAMS3bXr+Fg8wCmpq1OOubA5JP+sa0wOT3SxIgCpyiAXe fwNVinjdnaTBctHTLxMvg0xmABwNw6Gpru3RuNMYaLHRO7eIy1y6eIZkwgMpFQXh v7xzP1bOmKN1xojci6uslqdA3BuVJOpCN+/kNS2pdYnp5bqBhAGyP2YAGjCZPAoB 1fbBZxuXUv/Z2UAnbFaNf7sNy2CFs4yFNZSq7l0Jwhp+x33vD5Zny1D0cGQJfFuP SG+tj5XvUdq10XWUS0MwljqzJVHIy3SbJDF6Bu+nHrEzr7qGWB5ppG6pWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIHCg+LWNJh+egpopKiSkYHuiYoXMB8GA1UdIwQY MBaAFOjnJxE2shoViu9AnTDixgAdWw2pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNk9jbkVUYXlHaFdLNzBDZE1PTEdBQjFiRGFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9jYmY0MjUtYjk1OC00ZTQ5LTljOTYt ODM1NmQyZDQyNzcxLzEvNk9jbkVUYXlHaFdLNzBDZE1PTEdBQjFiRGFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9jYmY0MjUtYjk1OC00ZTQ5LTljOTYtODM1NmQyZDQyNzcx LzEvNk9jbkVUYXlHaFdLNzBDZE1PTEdBQjFiRGFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj+vxiaIu YLNqIXP2TyawqdHqR3wXSv1Gq+A8bNhFr0dfnjWzcCeGxL216aNciSPPxzqVFvyp TrSq25eEK6DZbQW9nGrfugyZ0cSVaXvvyIsU1iak1S3h8foV+iXf0Z9XSj7qWERy 33cZZmPEt3FVuAjCPFSmJY9jWmG71DEbDcZnJX4Yb66ase6ZYGXV+TLYOAX5uEYq C0SrxtaPW7z4B91J5d5svbTm4Oz0E+TivxYJy8LCKxfvdmKAlSSbiiwC1G7dHuhL N1bflO/02x9+rq6rwmHIu4IZuVlppGwX99xmL8KBi5YMNvfofNPSc1Steg3rjZra 5QgpgPFLee7MTA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:59 2026 by rpki-client