This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft File: 0phnd6RO0JQPKaeVx19Fpi9EuzM.mft (raw, json) Hash identifier: vY61dKOcWgNLT4+zD+WvPut0q21goJgRce8i3kjTOpg= Subject key identifier: 5B:F9:91:AA:08:EB:2D:FC:89:08:9E:2F:F3:A1:71:41:A1:EA:46:75 Authority key identifier: D2:98:67:77:A4:4E:D0:94:0F:29:A7:95:C7:5F:45:A6:2F:44:BB:33 Certificate issuer: /CN=d2986777a44ed0940f29a795c75f45a62f44bb33 Certificate serial: 019C43223FB505E03A1B116BFC7C0298E809 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0phnd6RO0JQPKaeVx19Fpi9EuzM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft Manifest number: 07FA Signing time: Mon 09 Feb 2026 16:00:43 +0000 Manifest this update: Mon 09 Feb 2026 16:00:43 +0000 Manifest next update: Tue 10 Feb 2026 16:00:43 +0000 Files and hashes: 1: 0phnd6RO0JQPKaeVx19Fpi9EuzM.crl (hash: mVKluXckH+WgmAH9rPcN93bxVRdI6ISWnpMUZ3g20N8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.crl rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft rsync://rpki.ripe.net/repository/DEFAULT/0phnd6RO0JQPKaeVx19Fpi9EuzM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:3f:b5:05:e0:3a:1b:11:6b:fc:7c:02:98:e8:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2986777a44ed0940f29a795c75f45a62f44bb33 Validity Not Before: Feb 9 16:00:43 2026 GMT Not After : Feb 10 16:00:43 2026 GMT Subject: CN=5bf991aa08eb2dfc89089e2ff3a17141a1ea4675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:82:23:ed:3d:05:30:f1:f6:fe:10:3b:23:b1: ab:0f:6b:d7:c2:7f:92:ac:94:22:0f:7f:da:3b:0e: ff:79:e8:cc:92:55:c2:14:8f:ce:1c:f0:7c:4f:f1: f4:9d:05:de:70:81:af:a8:88:15:e8:3a:20:82:79: 26:f8:26:72:04:fc:00:87:8b:54:2d:b6:62:84:13: 57:d2:9e:62:59:53:17:ad:c3:7f:d8:d7:fa:94:a8: 70:3c:19:40:99:e0:44:ae:7e:de:02:d5:1b:37:e3: c4:98:f4:ee:5d:ba:a7:52:4f:49:cd:08:9d:b6:61: 34:5a:9c:55:70:77:e9:21:4d:25:e4:2a:b1:be:dc: f1:48:bf:aa:8d:ec:d4:19:5a:73:43:a6:22:fc:95: 9f:ce:71:90:46:94:b7:25:08:81:6e:fc:53:6e:80: ac:00:52:0f:af:6f:5e:d9:53:62:ca:9d:a8:fd:5a: ee:93:78:88:90:13:03:71:8f:61:11:c2:37:37:0f: a9:7a:8d:73:bd:b0:ea:15:15:49:d1:59:0e:12:29: 6e:a5:c5:81:e0:96:2f:7d:6d:02:b6:01:2e:c5:a8: 12:79:37:72:91:31:ed:46:ef:bc:db:c5:3a:91:09: ef:6b:92:f2:25:d9:1d:2d:09:73:44:d1:b8:29:b6: b8:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:F9:91:AA:08:EB:2D:FC:89:08:9E:2F:F3:A1:71:41:A1:EA:46:75 X509v3 Authority Key Identifier: keyid:D2:98:67:77:A4:4E:D0:94:0F:29:A7:95:C7:5F:45:A6:2F:44:BB:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0phnd6RO0JQPKaeVx19Fpi9EuzM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:00:ee:dc:05:da:fb:c4:65:92:79:c7:f2:01:5b:54:8b:fc: 10:2f:85:2e:80:8d:bb:5d:77:68:dd:bf:9e:ee:17:ff:bc:cb: b8:e0:ce:37:5f:44:5a:d3:99:7a:ce:54:8b:8c:61:e0:0e:a9: 87:d2:0b:cb:4d:12:df:39:4d:af:3c:9e:b1:f4:88:a4:30:13: 7c:ea:ce:87:3d:39:a5:c5:d7:fc:43:4d:74:6e:00:1b:75:1e: 85:7c:4e:6c:c8:61:11:d9:8f:d5:f1:7f:66:48:e3:54:45:77: da:58:83:a6:c7:f9:b3:0e:67:3c:ec:a0:2b:2d:cb:1f:c3:8d: e0:33:62:74:2e:c3:93:67:2b:e0:c1:9b:41:eb:a0:8c:9d:41: a3:9b:cd:33:74:3e:84:76:d1:3a:72:aa:4c:d1:85:16:1e:b2: d3:87:c3:d6:f5:6a:92:72:b7:eb:a0:6d:15:36:cc:8d:69:f4: b4:67:a3:bc:1b:38:84:ec:4e:3c:ac:c5:07:07:c7:63:de:13: 59:ed:60:47:7a:46:b3:5c:6f:ab:7d:88:ba:08:13:3d:9d:2b: 5b:03:6b:03:28:6a:2b:48:4d:a8:9b:a9:15:e4:d6:c1:5d:66: 36:36:7a:01:bf:f3:81:e4:f6:83:f3:7e:77:e3:42:20:10:15: 28:77:8a:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIj+1BeA6GxFr/HwCmOgJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyOTg2Nzc3YTQ0ZWQwOTQwZjI5YTc5NWM3NWY0NWE2MmY0 NGJiMzMwHhcNMjYwMjA5MTYwMDQzWhcNMjYwMjEwMTYwMDQzWjAzMTEwLwYDVQQD Eyg1YmY5OTFhYTA4ZWIyZGZjODkwODllMmZmM2ExNzE0MWExZWE0Njc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYIj7T0FMPH2/hA7I7GrD2vXwn+S rJQiD3/aOw7/eejMklXCFI/OHPB8T/H0nQXecIGvqIgV6Doggnkm+CZyBPwAh4tU LbZihBNX0p5iWVMXrcN/2Nf6lKhwPBlAmeBErn7eAtUbN+PEmPTuXbqnUk9JzQid tmE0WpxVcHfpIU0l5CqxvtzxSL+qjezUGVpzQ6Yi/JWfznGQRpS3JQiBbvxTboCs AFIPr29e2VNiyp2o/Vruk3iIkBMDcY9hEcI3Nw+peo1zvbDqFRVJ0VkOEilupcWB 4JYvfW0CtgEuxagSeTdykTHtRu+828U6kQnva5LyJdkdLQlzRNG4Kba4CQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFv5kaoI6y38iQieL/OhcUGh6kZ1MB8GA1UdIwQY MBaAFNKYZ3ekTtCUDymnlcdfRaYvRLszMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHBobmQ2Uk8wSlFQS2FlVngxOUZwaTlFdXpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS85NzczZGMtZDhlOC00ODBkLTk4ZjIt YzAwY2JjMTQ5MmJmLzEvMHBobmQ2Uk8wSlFQS2FlVngxOUZwaTlFdXpNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS85NzczZGMtZDhlOC00ODBkLTk4ZjItYzAwY2JjMTQ5MmJm LzEvMHBobmQ2Uk8wSlFQS2FlVngxOUZwaTlFdXpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAggDu3AXa +8RlknnH8gFbVIv8EC+FLoCNu113aN2/nu4X/7zLuODON19EWtOZes5Ui4xh4A6p h9ILy00S3zlNrzyesfSIpDATfOrOhz05pcXX/ENNdG4AG3UehXxObMhhEdmP1fF/ ZkjjVEV32liDpsf5sw5nPOygKy3LH8ON4DNidC7Dk2cr4MGbQeugjJ1Bo5vNM3Q+ hHbROnKqTNGFFh6y04fD1vVqknK366BtFTbMjWn0tGejvBs4hOxOPKzFBwfHY94T We1gR3pGs1xvq32IuggTPZ0rWwNrAyhqK0hNqJupFeTWwV1mNjZ6Ab/zgeT2g/N+ d+NCIBAVKHeK0Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:42 2026 by rpki-client