This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft File: obtQVKF8yU__wrwpWhW_74qQQwo.mft (raw, json) Hash identifier: MJiD9TjsDy478fbu6yA5/6VBEcVTMw+IEdMMaqvu8o0= Subject key identifier: E4:94:2F:A3:5C:12:4C:CA:13:86:3D:27:18:CC:5E:F4:E1:72:56:07 Authority key identifier: A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A Certificate issuer: /CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a Certificate serial: 019C421014244EB35442CCC0DFA5D010FBA7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft Manifest number: 0824 Signing time: Mon 09 Feb 2026 11:01:15 +0000 Manifest this update: Mon 09 Feb 2026 11:01:15 +0000 Manifest next update: Tue 10 Feb 2026 11:01:15 +0000 Files and hashes: 1: obtQVKF8yU__wrwpWhW_74qQQwo.crl (hash: G4Hpn+5hI3JmCbHAy0l1Rtg3+zjcRt/gGlNLKAQfK3c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:14:24:4e:b3:54:42:cc:c0:df:a5:d0:10:fb:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a Validity Not Before: Feb 9 11:01:15 2026 GMT Not After : Feb 10 11:01:15 2026 GMT Subject: CN=e4942fa35c124cca13863d2718cc5ef4e1725607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:a4:ca:ae:f4:38:2b:11:7e:1c:d0:e0:ed:93: 35:31:6b:c2:b1:1f:24:c6:23:d9:06:9a:6e:9d:8f: f3:ad:1e:51:2a:58:38:73:25:07:1d:90:43:91:ac: 1f:47:8e:63:1f:40:65:98:f5:ac:ca:fa:23:77:a6: 1f:f8:4c:cd:14:87:4a:a4:e4:3f:d0:39:82:55:57: 88:cd:fa:ff:ed:6a:40:ae:0d:55:60:c8:a3:fa:10: f5:e0:af:15:e4:f5:f7:43:6a:75:6b:50:32:26:a6: 4b:e9:d8:6e:91:8e:21:9a:61:2a:13:39:f5:ba:78: 77:3d:b4:d9:78:71:a2:e6:b5:70:87:23:b2:b7:04: 5d:a0:02:c8:d4:bd:75:bf:99:c4:12:79:f7:1f:c9: 80:59:bf:7a:e9:65:76:92:0b:12:d1:d7:92:f5:e6: 51:0e:77:5d:c0:35:57:8b:ed:a6:4f:99:59:4e:58: b0:40:fc:0d:cc:2f:2f:8f:26:59:ac:51:80:48:ca: e0:cf:f2:dd:23:39:55:ec:8b:cb:03:b2:3a:82:01: 79:65:0a:60:f5:b8:65:15:03:69:b5:0a:33:4c:1f: 7b:bd:68:23:ee:53:41:77:15:a4:6f:3b:87:2c:51: 03:c5:62:9b:6b:be:81:90:53:98:43:44:00:ff:53: 80:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:94:2F:A3:5C:12:4C:CA:13:86:3D:27:18:CC:5E:F4:E1:72:56:07 X509v3 Authority Key Identifier: keyid:A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:9a:0f:6e:16:65:8d:9c:c7:03:eb:d6:54:8e:b1:14:38:1f: e6:e6:8c:ff:d0:3e:4a:f7:bb:19:8e:00:65:e2:bf:47:93:b5: 6c:2b:d7:15:20:3a:bc:e7:80:24:2f:2a:cd:8a:14:99:7a:3f: dd:70:79:66:c6:bc:56:41:e1:6f:b1:55:8e:f7:98:fe:2b:d2: 2b:a4:16:4c:25:db:54:bc:d8:6e:1e:30:65:3b:6c:81:a9:7a: 88:ec:8b:ea:bc:11:52:b8:86:a9:a9:d1:cf:99:33:df:52:2c: 71:c3:31:3f:6c:8c:b1:66:b9:74:1a:b7:97:29:2b:ec:a2:86: e3:17:88:80:e2:80:04:ed:16:b0:30:e9:b4:73:7b:f5:63:90: 4a:7d:76:3f:51:f8:54:bd:97:51:31:ab:9b:22:5f:47:51:f9: 00:a8:9c:0f:0c:f4:f9:f8:8f:65:f7:30:13:9c:c6:c0:61:27: c9:f1:9e:ec:13:28:80:ae:70:39:99:c4:a8:e7:db:e9:8f:53: 03:76:16:b9:cf:9a:b2:22:36:72:ee:98:16:19:8d:db:01:cc: fa:1a:21:d2:dc:dc:78:12:3b:a8:84:23:89:ad:2e:bb:ce:82: 6a:34:55:eb:62:53:ec:6a:ca:2b:bf:da:bc:04:de:63:a8:b8: 81:22:44:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEBQkTrNUQszA36XQEPunMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExYmI1MDU0YTE3Y2M5NGZmZmMyYmMyOTVhMTViZmVmOGE5 MDQzMGEwHhcNMjYwMjA5MTEwMTE1WhcNMjYwMjEwMTEwMTE1WjAzMTEwLwYDVQQD EyhlNDk0MmZhMzVjMTI0Y2NhMTM4NjNkMjcxOGNjNWVmNGUxNzI1NjA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+KTKrvQ4KxF+HNDg7ZM1MWvCsR8k xiPZBppunY/zrR5RKlg4cyUHHZBDkawfR45jH0BlmPWsyvojd6Yf+EzNFIdKpOQ/ 0DmCVVeIzfr/7WpArg1VYMij+hD14K8V5PX3Q2p1a1AyJqZL6dhukY4hmmEqEzn1 unh3PbTZeHGi5rVwhyOytwRdoALI1L11v5nEEnn3H8mAWb966WV2kgsS0deS9eZR DnddwDVXi+2mT5lZTliwQPwNzC8vjyZZrFGASMrgz/LdIzlV7IvLA7I6ggF5ZQpg 9bhlFQNptQozTB97vWgj7lNBdxWkbzuHLFEDxWKba76BkFOYQ0QA/1OAiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOSUL6NcEkzKE4Y9JxjMXvThclYHMB8GA1UdIwQY MBaAFKG7UFShfMlP/8K8KVoVv++KkEMKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9hMzBjMTAtMWMyZC00NzhjLTljZjgt NzIyNTVkMjQ5YzVkLzEvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS9hMzBjMTAtMWMyZC00NzhjLTljZjgtNzIyNTVkMjQ5YzVk LzEvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmZoPbhZl jZzHA+vWVI6xFDgf5uaM/9A+Sve7GY4AZeK/R5O1bCvXFSA6vOeAJC8qzYoUmXo/ 3XB5Zsa8VkHhb7FVjveY/ivSK6QWTCXbVLzYbh4wZTtsgal6iOyL6rwRUriGqanR z5kz31IsccMxP2yMsWa5dBq3lykr7KKG4xeIgOKABO0WsDDptHN79WOQSn12P1H4 VL2XUTGrmyJfR1H5AKicDwz0+fiPZfcwE5zGwGEnyfGe7BMogK5wOZnEqOfb6Y9T A3YWuc+asiI2cu6YFhmN2wHM+hoh0tzceBI7qIQjia0uu86CajRV62JT7GrKK7/a vATeY6i4gSJERQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:57 2026 by rpki-client