This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft File: O33D0CKCjk9bNr3vehiwuwz7rgk.mft (raw, json) Hash identifier: BNXPYPJGFYBc6J31JDk3AaTygIg31wb/xUT3I2mArBI= Subject key identifier: 3A:53:66:E5:D4:6A:B4:E2:86:16:09:87:2D:1F:11:5E:28:17:0F:BD Authority key identifier: 3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09 Certificate issuer: /CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09 Certificate serial: 019C41D837E53592683C399A1F279159A004 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft Manifest number: 1024 Signing time: Mon 09 Feb 2026 10:00:14 +0000 Manifest this update: Mon 09 Feb 2026 10:00:14 +0000 Manifest next update: Tue 10 Feb 2026 10:00:14 +0000 Files and hashes: 1: CJjsxGugLLvFbEHWxKghiGCE6lc.roa (hash: cOhc+r4MNkPP5359GE1QtRWPIxNlJ+rMixUIriIgwqM=) 2: O33D0CKCjk9bNr3vehiwuwz7rgk.crl (hash: tRFOgjo/g2+Y/lEr8C/dtydl8ij6DQQaQP0ml4/P1FY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:37:e5:35:92:68:3c:39:9a:1f:27:91:59:a0:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09 Validity Not Before: Feb 9 10:00:14 2026 GMT Not After : Feb 10 10:00:14 2026 GMT Subject: CN=3a5366e5d46ab4e2861609872d1f115e28170fbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b2:11:83:f1:f0:04:fd:83:eb:88:6a:bd:58: 10:61:0b:09:93:f5:bd:a3:a1:4a:51:cd:19:ac:31: d6:5b:31:c9:3f:bf:aa:2f:a9:bb:4e:ab:7b:6e:ac: 17:98:40:d4:ff:a8:06:07:62:7e:5d:6d:0b:67:61: 33:4b:5a:77:96:1b:5c:5e:80:99:b1:37:bf:e6:55: 18:82:62:a0:55:a9:90:42:59:61:72:7b:e7:7e:15: 1c:1c:18:8c:bd:32:56:f4:bd:54:d9:04:06:73:31: fe:5b:34:50:ba:1a:74:a4:6c:87:86:17:d7:96:24: f3:fd:40:24:3e:2d:8b:67:32:9e:60:b7:d0:bb:4f: ff:1e:ec:ad:31:a6:4b:86:ce:97:3e:cb:21:3e:ce: af:c7:9f:d3:ea:e2:97:55:d8:58:0e:ea:33:71:8d: f4:9f:19:a6:8d:4f:5e:f8:7b:45:69:70:94:31:2e: 74:54:8b:bb:19:72:4c:13:20:b5:e6:e7:3f:06:f7: 2d:8d:c5:01:54:6f:da:d4:99:77:60:67:8a:d2:e4: b2:0b:92:a0:13:cc:ff:9a:d1:1a:ce:d1:02:3e:af: 94:13:ad:9f:fa:b7:ce:8d:81:f6:bd:e4:9a:58:87: 02:fd:6a:74:fb:05:36:0f:d8:1c:fe:64:1f:bb:9e: d9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:53:66:E5:D4:6A:B4:E2:86:16:09:87:2D:1F:11:5E:28:17:0F:BD X509v3 Authority Key Identifier: keyid:3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:0b:bd:39:c0:ce:33:cc:a7:1e:d9:26:f6:0d:f0:fa:9e:e9: 90:06:b5:1f:2d:13:18:3c:a7:15:94:1f:0e:d6:dd:fd:3e:e0: 6f:9c:6f:6f:0d:25:cc:cd:bf:0f:f0:cd:d3:39:b2:fe:1a:48: 0a:4d:24:45:ce:42:6e:e0:2a:3e:b1:7f:3e:22:ba:d6:1e:c3: 1e:44:c0:28:77:e9:92:cf:ec:eb:30:35:50:27:3b:f8:ac:72: 80:c6:5f:95:6e:50:53:80:6a:1e:56:de:c6:37:0f:f2:b4:33: 64:99:e9:69:dd:2e:7f:3e:df:e9:26:e3:ba:c1:60:86:ad:24: 2d:ca:d3:5d:bb:78:04:ac:83:df:fb:b7:7d:b6:47:16:44:4e: 6f:b6:b8:00:28:31:c6:85:65:c8:09:3b:03:3f:c6:0b:60:d1: f0:c9:6b:ff:bc:5f:64:d5:d2:d7:7c:01:8e:27:3d:7c:5f:00: 97:da:c9:e6:d3:20:eb:88:77:7d:76:2b:10:61:75:df:49:31: e6:ef:c4:dc:15:58:ae:8b:64:f8:f3:af:fa:75:5f:14:71:33: 22:bb:2e:1a:74:08:ab:42:ba:6d:38:c9:fe:dc:70:eb:7d:96: fb:d7:e6:49:48:0d:af:ad:d0:04:13:61:cf:6b:97:1c:eb:db: 4a:5a:be:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2DflNZJoPDmaHyeRWaAEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiN2RjM2QwMjI4MjhlNGY1YjM2YmRlZjdhMThiMGJiMGNm YmFlMDkwHhcNMjYwMjA5MTAwMDE0WhcNMjYwMjEwMTAwMDE0WjAzMTEwLwYDVQQD EygzYTUzNjZlNWQ0NmFiNGUyODYxNjA5ODcyZDFmMTE1ZTI4MTcwZmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbIRg/HwBP2D64hqvVgQYQsJk/W9 o6FKUc0ZrDHWWzHJP7+qL6m7Tqt7bqwXmEDU/6gGB2J+XW0LZ2EzS1p3lhtcXoCZ sTe/5lUYgmKgVamQQllhcnvnfhUcHBiMvTJW9L1U2QQGczH+WzRQuhp0pGyHhhfX liTz/UAkPi2LZzKeYLfQu0//HuytMaZLhs6XPsshPs6vx5/T6uKXVdhYDuozcY30 nxmmjU9e+HtFaXCUMS50VIu7GXJMEyC15uc/BvctjcUBVG/a1Jl3YGeK0uSyC5Kg E8z/mtEaztECPq+UE62f+rfOjYH2veSaWIcC/Wp0+wU2D9gc/mQfu57Z5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDpTZuXUarTihhYJhy0fEV4oFw+9MB8GA1UdIwQY MBaAFDt9w9Aigo5PWza973oYsLsM+64JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzMzRDBDS0NqazliTnIzdmVoaXd1d3o3cmdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC80ZWYwMmMtOGY4ZC00NmUzLThkMGIt NzE5NDhlM2M5YWQ0LzEvTzMzRDBDS0NqazliTnIzdmVoaXd1d3o3cmdrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC80ZWYwMmMtOGY4ZC00NmUzLThkMGItNzE5NDhlM2M5YWQ0 LzEvTzMzRDBDS0NqazliTnIzdmVoaXd1d3o3cmdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASwu9OcDO M8ynHtkm9g3w+p7pkAa1Hy0TGDynFZQfDtbd/T7gb5xvbw0lzM2/D/DN0zmy/hpI Ck0kRc5CbuAqPrF/PiK61h7DHkTAKHfpks/s6zA1UCc7+KxygMZflW5QU4BqHlbe xjcP8rQzZJnpad0ufz7f6SbjusFghq0kLcrTXbt4BKyD3/u3fbZHFkROb7a4ACgx xoVlyAk7Az/GC2DR8Mlr/7xfZNXS13wBjic9fF8Al9rJ5tMg64h3fXYrEGF130kx 5u/E3BVYrotk+POv+nVfFHEzIrsuGnQIq0K6bTjJ/txw632W+9fmSUgNr63QBBNh z2uXHOvbSlq+EA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:09 2026 by rpki-client