This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft File: O_-2BdzjBg37ZtzMqI632grHSvE.mft (raw, json) Hash identifier: MD1WmLEjFA7QJVRZ6HtdzXAkWA5XIpii6dNo7uDjpMQ= Subject key identifier: 17:28:2C:68:D9:72:C4:4C:6D:23:BE:2C:AF:51:B4:91:10:86:28:B0 Authority key identifier: 3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1 Certificate issuer: /CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1 Certificate serial: 019C421006A29A5825CE2E7878B54BF1086F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft Manifest number: 0C0F Signing time: Mon 09 Feb 2026 11:01:12 +0000 Manifest this update: Mon 09 Feb 2026 11:01:12 +0000 Manifest next update: Tue 10 Feb 2026 11:01:12 +0000 Files and hashes: 1: 8qvgkfD_thQ4z_WLXGgGH3lh3Jo.roa (hash: lpIuAWveKCKeQMUzXLJXzixQ82Be/vxjOdAft2Y84BY=) 2: O_-2BdzjBg37ZtzMqI632grHSvE.crl (hash: DnLSCl9h2hdYe+/CpuDEnBrd6q78TzbDupTAdEENyMo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:06:a2:9a:58:25:ce:2e:78:78:b5:4b:f1:08:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1 Validity Not Before: Feb 9 11:01:12 2026 GMT Not After : Feb 10 11:01:12 2026 GMT Subject: CN=17282c68d972c44c6d23be2caf51b491108628b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:81:a7:dd:44:ff:e5:87:65:26:c3:c0:d1:e6: 43:e7:32:94:85:bd:de:9d:c9:8c:35:55:55:87:c4: 75:8c:94:b5:ee:64:48:00:e4:3f:be:be:17:47:6d: 52:d1:f4:7a:ae:bb:93:95:8b:be:a1:b5:02:69:0d: 3b:4e:e6:57:74:f6:5e:68:de:7e:83:15:19:b5:a4: b2:13:e8:21:65:24:59:45:a3:47:c3:b4:ca:25:58: 6b:b6:16:c4:5b:73:d4:96:80:49:1a:40:26:22:7b: 8b:55:1c:89:9d:b8:8a:c8:2e:4b:0f:da:6b:d5:9f: 7b:97:14:16:32:72:eb:5e:ae:55:a8:3c:d6:dc:30: 80:ae:78:fa:4e:b9:c3:27:e6:54:f9:3b:e4:ca:62: a2:cd:cf:80:43:f9:9c:d4:7a:06:3f:3c:d4:b4:98: 4b:71:94:3e:5e:c4:cc:11:40:cf:00:4f:be:2c:5f: fc:0a:25:c7:b2:79:a7:b5:12:51:54:fe:46:6f:61: 03:cf:2a:b2:36:48:b2:a1:82:43:3a:e1:0c:8e:d5: 56:ab:8b:4d:aa:b9:c5:37:a5:15:f0:7a:a1:ce:e9: 4f:d3:b9:c9:5e:83:84:f6:0f:15:9c:5b:59:31:30: 39:5b:5b:b3:4e:cb:d2:11:d6:f0:9f:03:9c:23:ec: 4f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:28:2C:68:D9:72:C4:4C:6D:23:BE:2C:AF:51:B4:91:10:86:28:B0 X509v3 Authority Key Identifier: keyid:3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:02:0f:34:cf:ba:dc:55:84:55:f7:3c:07:f8:25:a9:24:e4: 8b:25:12:d7:68:31:03:8f:95:bd:cb:cb:61:84:ef:bc:e4:04: 11:dc:2e:15:ec:bb:44:39:58:12:5a:a0:b6:5a:9e:f3:bc:a6: 3e:c0:5b:f0:b3:8a:18:e6:a9:31:54:74:13:69:39:23:df:97: 6c:fe:39:68:a7:43:e4:ef:54:89:3e:a8:f2:6f:b0:45:70:42: 97:61:f8:b6:17:2d:d2:80:80:e1:66:5b:5e:05:7b:e4:b8:99: ef:ce:3d:5e:74:c2:2a:57:23:4d:a0:7a:ea:7b:77:5c:15:c3: 84:2f:ae:ee:25:e6:11:2c:58:c1:fe:21:77:0d:7e:94:0a:fd: 8b:54:06:26:2c:2b:25:b3:e6:f5:bd:a2:13:ee:60:e1:8f:c3: 6f:ad:a2:61:f5:d6:ca:87:7e:a0:f6:27:12:98:e9:8c:df:a2: fd:25:9b:b0:cd:91:da:36:c5:9f:55:82:89:c3:b1:12:cc:91: 7a:ea:d7:f7:6c:e3:17:17:26:8a:01:40:87:bd:70:85:eb:bb: 08:d8:61:ca:14:df:1b:30:1f:22:34:f7:e3:c5:ab:da:75:f1: 1e:2e:ab:a3:f5:d2:91:7c:ed:3f:2e:7e:0c:19:ed:16:dd:cf: 60:ab:1b:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEAaimlglzi54eLVL8QhvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiZmZiNjA1ZGNlMzA2MGRmYjY2ZGNjY2E4OGViN2RhMGFj NzRhZjEwHhcNMjYwMjA5MTEwMTEyWhcNMjYwMjEwMTEwMTEyWjAzMTEwLwYDVQQD EygxNzI4MmM2OGQ5NzJjNDRjNmQyM2JlMmNhZjUxYjQ5MTEwODYyOGIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzoGn3UT/5YdlJsPA0eZD5zKUhb3e ncmMNVVVh8R1jJS17mRIAOQ/vr4XR21S0fR6rruTlYu+obUCaQ07TuZXdPZeaN5+ gxUZtaSyE+ghZSRZRaNHw7TKJVhrthbEW3PUloBJGkAmInuLVRyJnbiKyC5LD9pr 1Z97lxQWMnLrXq5VqDzW3DCArnj6TrnDJ+ZU+TvkymKizc+AQ/mc1HoGPzzUtJhL cZQ+XsTMEUDPAE++LF/8CiXHsnmntRJRVP5Gb2EDzyqyNkiyoYJDOuEMjtVWq4tN qrnFN6UV8HqhzulP07nJXoOE9g8VnFtZMTA5W1uzTsvSEdbwnwOcI+xP8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBcoLGjZcsRMbSO+LK9RtJEQhiiwMB8GA1UdIwQY MBaAFDv/tgXc4wYN+2bczKiOt9oKx0rxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT18tMkJkempCZzM3WnR6TXFJNjMyZ3JIU3ZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wY2FhZWItMjg3ZC00ZWQ1LWFkN2Ut NmIxZDA3MTQ1NTRhLzEvT18tMkJkempCZzM3WnR6TXFJNjMyZ3JIU3ZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS8wY2FhZWItMjg3ZC00ZWQ1LWFkN2UtNmIxZDA3MTQ1NTRh LzEvT18tMkJkempCZzM3WnR6TXFJNjMyZ3JIU3ZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABgIPNM+6 3FWEVfc8B/glqSTkiyUS12gxA4+VvcvLYYTvvOQEEdwuFey7RDlYElqgtlqe87ym PsBb8LOKGOapMVR0E2k5I9+XbP45aKdD5O9UiT6o8m+wRXBCl2H4thct0oCA4WZb XgV75LiZ7849XnTCKlcjTaB66nt3XBXDhC+u7iXmESxYwf4hdw1+lAr9i1QGJiwr JbPm9b2iE+5g4Y/Db62iYfXWyod+oPYnEpjpjN+i/SWbsM2R2jbFn1WCicOxEsyR eurX92zjFxcmigFAh71wheu7CNhhyhTfGzAfIjT348Wr2nXxHi6ro/XSkXztPy5+ DBntFt3PYKsbbg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:58 2026 by rpki-client