This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft File: OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft (raw, json) Hash identifier: Ax5mYeGNFnXwRwRYwuxT5wvOxCjd/waphX+APS5mczs= Subject key identifier: BB:87:4E:D9:6B:2C:F5:BF:12:04:9D:9A:24:A2:E3:91:A6:BA:3B:5B Authority key identifier: 38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B Certificate issuer: /CN=38a8550659bb68e770d8b0126b7261fb87d8240b Certificate serial: 019C43FDBC1F418278D8AB3E679AF97909FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft Manifest number: 1815 Signing time: Mon 09 Feb 2026 20:00:27 +0000 Manifest this update: Mon 09 Feb 2026 20:00:27 +0000 Manifest next update: Tue 10 Feb 2026 20:00:27 +0000 Files and hashes: 1: GS12T19X33XYAhf098NVhyXx3j4.roa (hash: 2sPtA3M8U954wEjtNrs6ONRJ78QRH5zWAILMakv6ILg=) 2: OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl (hash: H7clqk6C10Z9dWTj/P/tkLVsycnfRZ2k+scvbKU6gZs=) 3: Ys4PogIAyq6Z-1e6V87HwtKW-Jw.roa (hash: 9OEorLPT8PEnhbBuzCTUI3Vb5lQD/nIA0b2dhSxkYk4=) 4: ckGyseiXClHPKvZc0nmqY19ttos.roa (hash: Yi/gbRZzD3hzlnLpg0sfEHwVq1nYLL7ZQtIyu02d0kc=) 5: flQssGcGnPHhqNGkKwTNsJejaeQ.roa (hash: 7MK/e6VIAjwZyf2enbWUdzme5SKLDGdFufR5UtJ+Iyo=) 6: tI1eWKq17tDG9hQWcAP-FozruWU.roa (hash: yszzGKzH2Y3utLHy31Xungt79IkdPWx2rbVckLVltxM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:bc:1f:41:82:78:d8:ab:3e:67:9a:f9:79:09:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38a8550659bb68e770d8b0126b7261fb87d8240b Validity Not Before: Feb 9 20:00:27 2026 GMT Not After : Feb 10 20:00:27 2026 GMT Subject: CN=bb874ed96b2cf5bf12049d9a24a2e391a6ba3b5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:4b:e6:df:38:45:b7:c7:72:45:66:ad:79:8b: df:69:ca:85:54:6c:39:35:f6:1f:27:bc:89:16:52: 56:86:88:07:ea:58:46:d3:89:59:d3:34:e6:c5:a6: a9:90:68:6e:ca:e3:37:a6:b1:59:fc:f1:c7:46:76: a6:e4:5b:45:64:41:f1:b3:78:49:a3:34:1f:d2:af: c2:dd:2c:ac:1a:c8:14:aa:24:b6:7c:3a:0a:2a:d3: db:f9:21:e2:1c:d1:09:e2:fb:77:9c:5c:33:02:3e: 8d:2a:05:ce:9e:46:fb:b5:79:17:65:06:87:bf:9a: 8c:85:1a:85:d1:20:9b:62:ea:7e:c5:35:3f:2a:d7: 3c:83:34:fd:b2:01:e8:3a:e1:68:03:5c:f9:6e:06: ea:73:bd:14:4c:e7:01:4e:4e:82:23:1f:c0:76:4b: 73:40:01:74:be:d6:cf:ef:0e:92:2f:92:c8:7e:36: 5e:a2:e7:26:b5:3a:19:bf:33:53:f0:86:cc:30:2c: 30:da:53:f8:a5:0c:3c:cb:ca:2a:79:f1:b6:8c:fe: 58:83:d4:ac:03:d0:56:14:b8:72:51:2c:c3:02:97: f4:18:8c:26:e1:d9:6a:d3:ea:3e:f1:d9:79:14:a3: c7:91:fb:19:4b:05:b1:4d:72:41:30:57:35:5a:c0: e4:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:87:4E:D9:6B:2C:F5:BF:12:04:9D:9A:24:A2:E3:91:A6:BA:3B:5B X509v3 Authority Key Identifier: keyid:38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:92:d9:91:1c:af:d0:cf:ab:64:bd:1a:92:ae:22:0c:42:17: 6c:c7:86:60:ca:b1:45:15:5b:55:d1:42:b0:96:d5:e1:f7:47: 28:1e:75:23:05:c2:ae:67:ce:4e:53:d1:a7:6d:97:85:c6:f2: dc:7d:44:33:f0:ca:57:a0:e5:16:59:48:63:a2:cb:4a:f1:25: d3:35:2d:ff:af:4b:ff:a2:1d:77:93:05:45:0e:f3:c9:17:d5: cd:02:6c:8d:38:0a:38:75:a4:0e:7b:91:18:39:0f:f2:86:a6: f9:8b:c6:7f:3d:33:fa:dd:9a:26:a6:c6:05:55:4e:71:9b:68: 99:33:c9:e4:19:85:a9:b8:89:0f:ce:1a:bd:c8:6c:0e:2e:46: 49:1b:cb:c2:1b:18:b7:ed:6d:78:c1:9a:bc:8d:fe:35:60:0b: 4f:f9:ce:98:b2:a6:ef:25:71:f0:b5:99:bc:39:b9:ba:90:91: b4:27:12:e3:0a:ec:ce:4a:20:79:e5:d6:5e:e1:53:f5:d7:26: b3:96:e3:42:6b:66:3a:18:68:a9:b7:22:bc:f1:09:98:be:91: 14:39:26:80:27:f6:c1:b7:33:51:e0:14:cb:b9:5e:f3:3c:69: e0:8a:3c:37:ab:a5:c9:5a:fa:90:e5:82:83:18:36:66:51:c9: 6b:bf:9a:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/bwfQYJ42Ks+Z5r5eQn7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4YTg1NTA2NTliYjY4ZTc3MGQ4YjAxMjZiNzI2MWZiODdk ODI0MGIwHhcNMjYwMjA5MjAwMDI3WhcNMjYwMjEwMjAwMDI3WjAzMTEwLwYDVQQD EyhiYjg3NGVkOTZiMmNmNWJmMTIwNDlkOWEyNGEyZTM5MWE2YmEzYjViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/Uvm3zhFt8dyRWateYvfacqFVGw5 NfYfJ7yJFlJWhogH6lhG04lZ0zTmxaapkGhuyuM3prFZ/PHHRnam5FtFZEHxs3hJ ozQf0q/C3SysGsgUqiS2fDoKKtPb+SHiHNEJ4vt3nFwzAj6NKgXOnkb7tXkXZQaH v5qMhRqF0SCbYup+xTU/Ktc8gzT9sgHoOuFoA1z5bgbqc70UTOcBTk6CIx/Adktz QAF0vtbP7w6SL5LIfjZeoucmtToZvzNT8IbMMCww2lP4pQw8y8oqefG2jP5Yg9Ss A9BWFLhyUSzDApf0GIwm4dlq0+o+8dl5FKPHkfsZSwWxTXJBMFc1WsDkhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLuHTtlrLPW/EgSdmiSi45GmujtbMB8GA1UdIwQY MBaAFDioVQZZu2jncNiwEmtyYfuH2CQLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0toVkJsbTdhT2R3MkxBU2EzSmgtNGZZSkFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi83ZGNlNzMtYzRkZi00MzMzLThlODEt MWQ3MDNiNDk2NjM0LzEvT0toVkJsbTdhT2R3MkxBU2EzSmgtNGZZSkFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi83ZGNlNzMtYzRkZi00MzMzLThlODEtMWQ3MDNiNDk2NjM0 LzEvT0toVkJsbTdhT2R3MkxBU2EzSmgtNGZZSkFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlpLZkRyv 0M+rZL0akq4iDEIXbMeGYMqxRRVbVdFCsJbV4fdHKB51IwXCrmfOTlPRp22Xhcby 3H1EM/DKV6DlFllIY6LLSvEl0zUt/69L/6Idd5MFRQ7zyRfVzQJsjTgKOHWkDnuR GDkP8oam+YvGfz0z+t2aJqbGBVVOcZtomTPJ5BmFqbiJD84avchsDi5GSRvLwhsY t+1teMGavI3+NWALT/nOmLKm7yVx8LWZvDm5upCRtCcS4wrszkogeeXWXuFT9dcm s5bjQmtmOhhoqbcivPEJmL6RFDkmgCf2wbczUeAUy7le8zxp4Io8N6ulyVr6kOWC gxg2ZlHJa7+aiw== -----END CERTIFICATE-----Generated at Tue Feb 10 03:00:04 2026 by rpki-client