This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft File: obceuN8XHmQvGyuQQZAB8fxEXk0.mft (raw, json) Hash identifier: h/Y/a6FC8gS/xQc2VIVBOaXH4du+HjiIZ8Jyr83w5aE= Subject key identifier: 6C:BB:AA:BB:09:F8:D4:30:4E:3A:7B:13:07:39:9B:F1:E7:F7:B0:1A Authority key identifier: A1:B7:1E:B8:DF:17:1E:64:2F:1B:2B:90:41:90:01:F1:FC:44:5E:4D Certificate issuer: /CN=a1b71eb8df171e642f1b2b90419001f1fc445e4d Certificate serial: 019C420FE1D407314AD6853BAB957F5E2CFC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obceuN8XHmQvGyuQQZAB8fxEXk0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft Manifest number: 10D6 Signing time: Mon 09 Feb 2026 11:01:02 +0000 Manifest this update: Mon 09 Feb 2026 11:01:02 +0000 Manifest next update: Tue 10 Feb 2026 11:01:02 +0000 Files and hashes: 1: obceuN8XHmQvGyuQQZAB8fxEXk0.crl (hash: Wm9mzLtRX1VP4FX0P/tNNubxnrb1vtEgYg69akLN/wg=) 2: xlLzehGeb23GwrEYVRV1RxUYUhY.roa (hash: c1c4Sj/u0qy2xja1j0e40LLkcNGc0g4Li0sbH5urZJU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft rsync://rpki.ripe.net/repository/DEFAULT/obceuN8XHmQvGyuQQZAB8fxEXk0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:e1:d4:07:31:4a:d6:85:3b:ab:95:7f:5e:2c:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1b71eb8df171e642f1b2b90419001f1fc445e4d Validity Not Before: Feb 9 11:01:02 2026 GMT Not After : Feb 10 11:01:02 2026 GMT Subject: CN=6cbbaabb09f8d4304e3a7b1307399bf1e7f7b01a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2c:80:62:9a:66:a6:13:fa:85:71:6a:fc:2d: 5b:51:14:76:03:ec:3c:82:da:8e:1d:a9:77:f3:73: 5c:4c:fb:6b:4d:73:c9:e9:d0:42:d6:d7:e7:8c:5b: 94:92:9f:46:6f:c0:c5:d4:2a:f6:f4:5d:bc:88:b9: 41:d1:af:92:99:15:dd:d6:b2:fa:5a:0c:bd:8b:43: 97:da:33:7a:a9:3d:41:d6:56:e0:a7:9c:9b:4a:37: df:41:d5:cc:98:c2:1c:71:85:2e:e2:7a:48:1c:43: 2f:59:52:3c:0d:cb:12:72:a1:6d:1b:06:2c:39:dd: f9:ac:34:64:5e:bb:88:20:de:fb:de:98:b5:31:37: 30:a9:5e:03:05:68:79:22:d2:13:5f:23:19:cf:14: 0f:f8:3d:16:7b:18:56:6f:d8:44:c8:d6:67:9e:e3: 9f:32:16:11:a0:32:1e:e8:08:6e:74:76:98:ae:83: 39:da:a1:92:0c:11:89:41:fe:40:35:fe:67:d3:f9: 84:f1:5e:ff:0c:da:4c:b9:06:bf:df:63:01:dc:3a: 37:d2:02:81:67:be:a5:2c:e9:30:49:63:48:d6:f4: ac:53:09:51:75:3f:0a:70:d1:5d:f2:5a:d5:7c:c4: 11:32:a6:01:0e:58:67:22:4a:ed:1a:ba:ff:60:ca: 18:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:BB:AA:BB:09:F8:D4:30:4E:3A:7B:13:07:39:9B:F1:E7:F7:B0:1A X509v3 Authority Key Identifier: keyid:A1:B7:1E:B8:DF:17:1E:64:2F:1B:2B:90:41:90:01:F1:FC:44:5E:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obceuN8XHmQvGyuQQZAB8fxEXk0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:a8:da:3e:07:97:96:ed:27:3e:b6:d9:c5:8f:01:d2:a2:2a: bd:67:80:66:ce:98:a5:1b:01:39:74:06:c3:91:56:9b:d3:43: 8d:c2:d8:31:18:d7:b7:05:0a:fd:7f:89:1b:61:a6:ee:77:d4: b7:cc:2d:1b:b5:bb:70:2c:03:a1:38:5a:6c:e9:54:e4:5c:8e: 08:87:85:89:09:4f:c2:f9:fc:bd:cf:e0:da:83:20:38:e5:db: 4c:20:16:c3:d1:e6:d8:95:02:2f:4f:15:2d:d9:7f:be:46:e5: 1e:15:e8:a2:47:8f:eb:48:6b:31:17:0f:d2:31:64:f7:95:10: d9:3a:5d:31:45:e8:82:a7:09:7d:84:d8:0a:e1:87:b2:17:bd: 2b:d3:6e:1d:7e:60:eb:76:3d:53:92:8a:92:4c:7d:20:e9:15: 05:7f:38:85:00:8c:3a:4d:a4:8f:40:63:83:fe:f3:1d:df:be: f6:98:97:c8:0f:19:f1:af:31:3a:5b:09:41:36:e6:55:5b:a7: 58:61:81:6c:22:23:f3:b0:f7:9d:bb:72:a5:a8:51:9e:60:7f: 1a:91:a7:b4:bc:11:c8:fb:bb:c9:5b:57:d0:e2:95:1c:51:69: 53:a7:f2:7a:75:10:50:46:d7:1e:a4:63:0d:16:19:f4:e6:9b: 37:3a:14:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD+HUBzFK1oU7q5V/Xiz8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExYjcxZWI4ZGYxNzFlNjQyZjFiMmI5MDQxOTAwMWYxZmM0 NDVlNGQwHhcNMjYwMjA5MTEwMTAyWhcNMjYwMjEwMTEwMTAyWjAzMTEwLwYDVQQD Eyg2Y2JiYWFiYjA5ZjhkNDMwNGUzYTdiMTMwNzM5OWJmMWU3ZjdiMDFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsyyAYppmphP6hXFq/C1bURR2A+w8 gtqOHal383NcTPtrTXPJ6dBC1tfnjFuUkp9Gb8DF1Cr29F28iLlB0a+SmRXd1rL6 Wgy9i0OX2jN6qT1B1lbgp5ybSjffQdXMmMIccYUu4npIHEMvWVI8DcsScqFtGwYs Od35rDRkXruIIN773pi1MTcwqV4DBWh5ItITXyMZzxQP+D0WexhWb9hEyNZnnuOf MhYRoDIe6AhudHaYroM52qGSDBGJQf5ANf5n0/mE8V7/DNpMuQa/32MB3Do30gKB Z76lLOkwSWNI1vSsUwlRdT8KcNFd8lrVfMQRMqYBDlhnIkrtGrr/YMoYGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGy7qrsJ+NQwTjp7Ewc5m/Hn97AaMB8GA1UdIwQY MBaAFKG3HrjfFx5kLxsrkEGQAfH8RF5NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2JjZXVOOFhIbVF2R3l1UVFaQUI4ZnhFWGswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9mMDg4YmQtNTAyOS00OTAzLTk2MTYt MDY3MmVhMDQ0MGJiLzEvb2JjZXVOOFhIbVF2R3l1UVFaQUI4ZnhFWGswLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy9mMDg4YmQtNTAyOS00OTAzLTk2MTYtMDY3MmVhMDQ0MGJi LzEvb2JjZXVOOFhIbVF2R3l1UVFaQUI4ZnhFWGswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbKjaPgeX lu0nPrbZxY8B0qIqvWeAZs6YpRsBOXQGw5FWm9NDjcLYMRjXtwUK/X+JG2Gm7nfU t8wtG7W7cCwDoThabOlU5FyOCIeFiQlPwvn8vc/g2oMgOOXbTCAWw9Hm2JUCL08V Ldl/vkblHhXookeP60hrMRcP0jFk95UQ2TpdMUXogqcJfYTYCuGHshe9K9NuHX5g 63Y9U5KKkkx9IOkVBX84hQCMOk2kj0Bjg/7zHd++9piXyA8Z8a8xOlsJQTbmVVun WGGBbCIj87D3nbtypahRnmB/GpGntLwRyPu7yVtX0OKVHFFpU6fyenUQUEbXHqRj DRYZ9OabNzoUMA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:28 2026 by rpki-client