This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft File: o2n7GRvuUc3HQUppYxl_hrvzE6s.mft (raw, json) Hash identifier: 39ddQF27S4WRcR356ZWEX5I/wWNHqOKV3sQ0srGaF+s= Subject key identifier: EC:90:1E:C4:8D:D4:C0:57:73:45:49:2A:62:A3:F1:5C:AC:FF:6C:8A Authority key identifier: A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB Certificate issuer: /CN=a369fb191bee51cdc7414a6963197f86bbf313ab Certificate serial: 019C4246CF0021DC11EA03686F4AD0005684 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft Manifest number: 1271 Signing time: Mon 09 Feb 2026 12:01:02 +0000 Manifest this update: Mon 09 Feb 2026 12:01:02 +0000 Manifest next update: Tue 10 Feb 2026 12:01:02 +0000 Files and hashes: 1: o2n7GRvuUc3HQUppYxl_hrvzE6s.crl (hash: rm6K53oZNBYWHRIxvASFekgK5kDNWXvMJFlMvd+2Cko=) 2: u-PjOq1WjK6PsqFBvXy59id7R_I.roa (hash: Pz8fOepb3H13pqdKO3L1FSkff2yUOqZGUk6QeB6m10U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:cf:00:21:dc:11:ea:03:68:6f:4a:d0:00:56:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a369fb191bee51cdc7414a6963197f86bbf313ab Validity Not Before: Feb 9 12:01:02 2026 GMT Not After : Feb 10 12:01:02 2026 GMT Subject: CN=ec901ec48dd4c0577345492a62a3f15cacff6c8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0e:a7:e5:f7:e9:bd:6e:59:55:7e:3c:3d:06: 3d:66:cf:d2:cf:8f:58:7f:69:0c:cd:23:f6:51:6f: 4f:3b:4f:61:82:90:95:ca:07:ef:48:22:3a:3b:38: 8b:e2:23:39:7c:44:b1:82:2a:88:ae:2a:b4:70:07: 64:76:84:9f:5b:50:78:99:ce:e9:db:e7:ca:4d:54: 89:36:19:9c:09:e8:f4:81:7b:48:44:42:9f:61:c5: 4c:1e:cc:98:ad:c6:d1:7e:75:1d:50:7b:c8:22:26: 32:f2:32:25:50:e7:9e:46:14:da:bf:cc:60:7a:f0: 74:ee:2b:22:93:9c:d7:fe:c0:1c:86:f9:3d:b7:89: 44:dd:3d:85:25:01:67:8d:7e:88:f2:96:f7:72:f2: ee:e5:2f:0c:72:9f:ca:35:57:bb:2d:a0:fb:9c:61: c2:37:3b:78:94:dd:53:a5:a4:51:4f:0e:65:e8:8b: 65:f8:59:ce:2a:16:08:e7:88:c2:d7:28:a0:b8:e3: 32:dc:54:b6:e8:59:6d:27:9f:a2:99:1e:67:7e:aa: 9c:8f:3b:f6:5a:35:91:4b:c5:39:2d:04:75:46:88: 4b:ce:d7:14:ca:17:19:6e:69:34:30:4e:78:c8:31: 37:c3:92:44:ab:a4:00:ac:a1:11:3d:b3:57:f1:49: f3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:90:1E:C4:8D:D4:C0:57:73:45:49:2A:62:A3:F1:5C:AC:FF:6C:8A X509v3 Authority Key Identifier: keyid:A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cb:e2:a8:d3:13:83:66:f8:4f:ed:81:de:37:2f:1b:a3:6f:66: 26:58:21:3a:4f:b2:7d:50:2f:a0:d8:fb:9d:bf:a9:61:7c:66: bf:78:c8:99:d9:bf:40:c6:24:fc:fe:12:ca:2d:3e:6d:f5:80: 0c:a8:70:41:c4:60:a3:7d:0e:4b:73:6a:a9:98:08:fd:6e:aa: b2:e7:2e:9c:13:f4:47:6b:5b:5a:85:8d:10:a5:73:b8:ff:e6: 20:cc:46:82:e1:f6:d2:4a:5f:63:33:20:0f:12:a3:7e:8c:39: fa:e2:7c:37:55:e5:01:87:c6:82:e3:7a:d6:d3:6f:21:b9:a3: d6:ca:a5:b2:21:75:05:11:c3:16:75:80:47:06:5c:87:28:47: c6:06:f0:ce:fc:70:d9:1c:39:05:50:a1:45:1a:38:6f:bd:5e: 48:50:53:7e:e4:5e:96:7f:13:4a:e1:74:b2:69:c5:4c:fd:63: 32:da:ac:7c:aa:23:41:50:93:19:6e:6d:2c:a5:17:59:b3:c0: 7d:6c:f5:e2:3d:5e:15:d7:0b:8a:36:8f:89:94:ea:5d:96:ad: 31:e5:8e:2a:3f:bd:56:cb:4d:43:c1:47:45:e5:45:fb:7a:15: 18:94:06:97:69:a3:31:eb:06:6f:81:04:ca:d3:44:e6:f8:9d: d5:c8:5e:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRs8AIdwR6gNob0rQAFaEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzNjlmYjE5MWJlZTUxY2RjNzQxNGE2OTYzMTk3Zjg2YmJm MzEzYWIwHhcNMjYwMjA5MTIwMTAyWhcNMjYwMjEwMTIwMTAyWjAzMTEwLwYDVQQD EyhlYzkwMWVjNDhkZDRjMDU3NzM0NTQ5MmE2MmEzZjE1Y2FjZmY2YzhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmw6n5ffpvW5ZVX48PQY9Zs/Sz49Y f2kMzSP2UW9PO09hgpCVygfvSCI6OziL4iM5fESxgiqIriq0cAdkdoSfW1B4mc7p 2+fKTVSJNhmcCej0gXtIREKfYcVMHsyYrcbRfnUdUHvIIiYy8jIlUOeeRhTav8xg evB07isik5zX/sAchvk9t4lE3T2FJQFnjX6I8pb3cvLu5S8Mcp/KNVe7LaD7nGHC Nzt4lN1TpaRRTw5l6Itl+FnOKhYI54jC1yiguOMy3FS26FltJ5+imR5nfqqcjzv2 WjWRS8U5LQR1RohLztcUyhcZbmk0ME54yDE3w5JEq6QArKERPbNX8UnzcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOyQHsSN1MBXc0VJKmKj8Vys/2yKMB8GA1UdIwQY MBaAFKNp+xkb7lHNx0FKaWMZf4a78xOrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8yMGRhNjAtYzcxOS00YmUxLThlNGYt ZTE4MDUyZjM4MWJiLzEvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS8yMGRhNjAtYzcxOS00YmUxLThlNGYtZTE4MDUyZjM4MWJi LzEvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAy+Ko0xOD ZvhP7YHeNy8bo29mJlghOk+yfVAvoNj7nb+pYXxmv3jImdm/QMYk/P4Syi0+bfWA DKhwQcRgo30OS3NqqZgI/W6qsucunBP0R2tbWoWNEKVzuP/mIMxGguH20kpfYzMg DxKjfow5+uJ8N1XlAYfGguN61tNvIbmj1sqlsiF1BRHDFnWARwZchyhHxgbwzvxw 2Rw5BVChRRo4b71eSFBTfuReln8TSuF0smnFTP1jMtqsfKojQVCTGW5tLKUXWbPA fWz14j1eFdcLijaPiZTqXZatMeWOKj+9VstNQ8FHReVF+3oVGJQGl2mjMesGb4EE ytNE5vid1cheyg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:37 2026 by rpki-client