This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft File: o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft (raw, json) Hash identifier: pOF314WNXUxTQFe9nnYfPOHJz/HB1OzAhlzRCvZfp5M= Subject key identifier: D9:2B:01:92:48:77:68:D1:0C:A8:40:BB:1C:26:AE:20:10:37:ED:C5 Authority key identifier: A3:A8:CA:F6:21:7C:EB:10:DD:8C:14:6F:96:B9:D7:73:ED:D8:88:64 Certificate issuer: /CN=a3a8caf6217ceb10dd8c146f96b9d773edd88864 Certificate serial: 019C43226BEFE4E8D089070366D1D466368F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:00:55 +0000 Manifest this update: Mon 09 Feb 2026 16:00:55 +0000 Manifest next update: Tue 10 Feb 2026 16:00:55 +0000 Files and hashes: 1: o6jK9iF86xDdjBRvlrnXc-3YiGQ.crl (hash: etX6JdgaxJfX5zo1I1g374mYM1+Gn8ND9jeDyHPoe/M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft rsync://rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:6b:ef:e4:e8:d0:89:07:03:66:d1:d4:66:36:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3a8caf6217ceb10dd8c146f96b9d773edd88864 Validity Not Before: Feb 9 16:00:55 2026 GMT Not After : Feb 10 16:00:55 2026 GMT Subject: CN=d92b0192487768d10ca840bb1c26ae201037edc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:43:55:36:aa:2e:77:3e:8f:b5:e2:4f:ce:0d: 71:df:88:79:05:6f:43:ee:69:96:55:fb:58:69:85: 5b:6e:51:f8:61:54:43:53:d3:07:1d:b6:54:b1:7c: f4:43:77:93:ad:0a:3a:03:56:ef:89:0a:cc:41:03: 9f:86:30:7a:b5:63:3e:ce:cc:05:e0:6b:ea:6a:b3: f2:29:bc:76:77:91:ab:6f:f7:63:2b:c9:11:69:0a: e7:72:57:3a:15:1a:bf:88:9e:73:10:04:db:dc:a3: 1c:8c:a1:68:99:69:4c:31:e9:76:77:bb:bf:05:75: d5:f6:fb:23:30:92:41:fc:a3:77:76:3b:eb:b9:95: a5:f9:6e:33:8f:bd:ce:90:34:ab:c9:8c:83:c2:04: 4e:dc:c4:63:83:8f:f3:69:0d:11:42:f2:cb:40:be: 18:71:a8:51:07:f4:26:1d:db:e5:f7:cb:d8:43:73: 6a:7d:c8:27:4f:16:89:03:c0:49:f4:6e:72:e0:dd: c7:c9:cd:5a:54:d8:6b:0a:72:29:f6:a3:c3:e1:32: cb:21:f0:dc:36:35:e3:7e:04:0e:f3:17:1d:84:48: 33:a9:9f:4e:a4:31:0e:c6:dd:95:c0:08:b3:2e:05: 61:07:d1:4e:2d:59:ee:a5:70:f5:05:32:a9:c2:06: a1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:2B:01:92:48:77:68:D1:0C:A8:40:BB:1C:26:AE:20:10:37:ED:C5 X509v3 Authority Key Identifier: keyid:A3:A8:CA:F6:21:7C:EB:10:DD:8C:14:6F:96:B9:D7:73:ED:D8:88:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:8d:93:36:0d:e4:7b:81:4b:a3:7c:48:63:79:74:90:27:6a: a0:2f:4f:7b:36:08:ed:64:7e:04:2d:59:37:01:cb:d3:00:8b: d9:08:09:2c:df:9e:51:9e:a6:6b:51:af:e9:ec:54:8e:ed:08: fe:f6:c5:6f:47:a2:67:6d:04:09:9c:12:0f:aa:c6:00:8c:4f: 4a:a4:c2:6b:1f:7c:66:a1:70:15:0e:dc:d1:ed:91:e8:ed:e9: a8:b2:99:33:cf:d3:18:52:56:1a:64:83:3e:3d:83:08:8e:27: ea:c2:f7:f6:9e:ba:c2:17:a0:e0:3e:98:8e:03:9d:28:43:df: af:aa:5c:a1:6b:1b:9a:29:06:4b:d9:4b:e8:13:68:bb:48:0c: eb:38:7f:57:4b:fe:c9:31:4b:67:b9:9d:ac:65:48:3e:0c:15: 4f:1f:af:00:44:3a:39:c7:36:ff:e2:b0:2c:64:3d:e2:75:c9: ea:76:7b:7e:fb:8c:86:84:6f:8f:2b:82:81:06:8a:0e:91:03: 10:8d:47:89:26:9e:52:ed:14:69:62:93:95:2c:b6:a2:8b:eb: fe:f2:36:de:e1:b2:2c:01:4f:46:14:e4:89:53:3f:2c:cb:d9: 7b:6b:b3:2f:a6:fe:93:23:41:6c:a4:e4:fa:44:c4:c1:de:76: b6:37:fe:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDImvv5OjQiQcDZtHUZjaPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzYThjYWY2MjE3Y2ViMTBkZDhjMTQ2Zjk2YjlkNzczZWRk ODg4NjQwHhcNMjYwMjA5MTYwMDU1WhcNMjYwMjEwMTYwMDU1WjAzMTEwLwYDVQQD EyhkOTJiMDE5MjQ4Nzc2OGQxMGNhODQwYmIxYzI2YWUyMDEwMzdlZGM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0NVNqoudz6PteJPzg1x34h5BW9D 7mmWVftYaYVbblH4YVRDU9MHHbZUsXz0Q3eTrQo6A1bviQrMQQOfhjB6tWM+zswF 4GvqarPyKbx2d5Grb/djK8kRaQrnclc6FRq/iJ5zEATb3KMcjKFomWlMMel2d7u/ BXXV9vsjMJJB/KN3djvruZWl+W4zj73OkDSryYyDwgRO3MRjg4/zaQ0RQvLLQL4Y cahRB/QmHdvl98vYQ3NqfcgnTxaJA8BJ9G5y4N3Hyc1aVNhrCnIp9qPD4TLLIfDc NjXjfgQO8xcdhEgzqZ9OpDEOxt2VwAizLgVhB9FOLVnupXD1BTKpwgaheQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNkrAZJId2jRDKhAuxwmriAQN+3FMB8GA1UdIwQY MBaAFKOoyvYhfOsQ3YwUb5a513Pt2IhkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzZqSzlpRjg2eERkakJSdmxyblhjLTNZaUdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi81ZmQwMjMtOTJlYS00YTYzLWI3ZDAt ZTVjYmEyMTM3MzA4LzEvbzZqSzlpRjg2eERkakJSdmxyblhjLTNZaUdRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi81ZmQwMjMtOTJlYS00YTYzLWI3ZDAtZTVjYmEyMTM3MzA4 LzEvbzZqSzlpRjg2eERkakJSdmxyblhjLTNZaUdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD42TNg3k e4FLo3xIY3l0kCdqoC9PezYI7WR+BC1ZNwHL0wCL2QgJLN+eUZ6ma1Gv6exUju0I /vbFb0eiZ20ECZwSD6rGAIxPSqTCax98ZqFwFQ7c0e2R6O3pqLKZM8/TGFJWGmSD Pj2DCI4n6sL39p66wheg4D6YjgOdKEPfr6pcoWsbmikGS9lL6BNou0gM6zh/V0v+ yTFLZ7mdrGVIPgwVTx+vAEQ6Occ2/+KwLGQ94nXJ6nZ7fvuMhoRvjyuCgQaKDpED EI1HiSaeUu0UaWKTlSy2oovr/vI23uGyLAFPRhTkiVM/LMvZe2uzL6b+kyNBbKTk +kTEwd52tjf+IA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:23 2026 by rpki-client