This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/4de805-d5dc-46f7-b397-5b5332af1851/1/0ol7M1OC-CJPXYkOMbOGMhxrs-0.mft File: 0ol7M1OC-CJPXYkOMbOGMhxrs-0.mft (raw, json) Hash identifier: 2f8e3I4r5VS/ADoJgboj7IGPMLwBCCAV7RASpe6eqYo= Subject key identifier: 46:15:F3:C6:F8:D4:12:C8:07:56:B6:E9:30:BC:16:67:E8:7B:D8:F9 Authority key identifier: D2:89:7B:33:53:82:F8:22:4F:5D:89:0E:31:B3:86:32:1C:6B:B3:ED Certificate issuer: /CN=d2897b335382f8224f5d890e31b386321c6bb3ed Certificate serial: 019C4322EE40FE7BFDD9935A804AB92D4291 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ol7M1OC-CJPXYkOMbOGMhxrs-0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/4de805-d5dc-46f7-b397-5b5332af1851/1/0ol7M1OC-CJPXYkOMbOGMhxrs-0.mft Manifest number: 0C1C Signing time: Mon 09 Feb 2026 16:01:28 +0000 Manifest this update: Mon 09 Feb 2026 16:01:28 +0000 Manifest next update: Tue 10 Feb 2026 16:01:28 +0000 Files and hashes: 1: 0ol7M1OC-CJPXYkOMbOGMhxrs-0.crl (hash: nNg9AtXdSkWt4EMFXE7cIrZGADz8cHXLoZG4+utsY20=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/4de805-d5dc-46f7-b397-5b5332af1851/1/0ol7M1OC-CJPXYkOMbOGMhxrs-0.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/4de805-d5dc-46f7-b397-5b5332af1851/1/0ol7M1OC-CJPXYkOMbOGMhxrs-0.mft rsync://rpki.ripe.net/repository/DEFAULT/0ol7M1OC-CJPXYkOMbOGMhxrs-0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:ee:40:fe:7b:fd:d9:93:5a:80:4a:b9:2d:42:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2897b335382f8224f5d890e31b386321c6bb3ed Validity Not Before: Feb 9 16:01:28 2026 GMT Not After : Feb 10 16:01:28 2026 GMT Subject: CN=4615f3c6f8d412c80756b6e930bc1667e87bd8f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:93:90:db:50:70:42:a2:fb:ca:50:07:d3:24: 00:b0:68:bb:dd:91:f5:51:3e:06:10:1b:a9:8d:26: 91:40:67:f6:bb:c4:0a:23:27:b3:a2:2b:12:b2:0d: 75:6e:13:91:2e:2f:68:b1:c5:29:18:a6:ef:ce:6a: 7c:f5:86:37:b5:47:00:41:1c:91:fd:b8:b7:e7:2f: 57:61:94:33:03:55:e3:e8:98:9c:54:f8:fc:4e:4b: 68:9e:a9:21:88:67:c0:63:9c:64:8a:c7:70:5a:f4: de:b5:1b:8a:f8:17:f3:63:75:fa:b5:5b:e8:47:36: 12:4b:b0:0e:cf:0b:26:e7:19:4e:92:29:03:e5:67: 40:23:1f:31:c9:c9:9a:21:48:e7:c0:c9:a4:d9:69: 11:ad:4b:75:47:22:5e:06:53:b3:bb:e2:0c:02:4b: 04:e3:fd:f7:72:4c:55:aa:cb:68:04:9b:6c:bf:15: 29:3e:0a:e1:98:1c:a0:1e:5c:18:82:2b:ec:df:04: 98:79:5c:15:02:f6:39:9f:56:43:e6:bd:20:e6:f0: 54:ca:86:f1:d5:e3:2a:28:e1:f0:07:41:4a:f9:46: 18:5c:ee:b1:73:1a:cf:88:3d:db:18:66:bd:f6:68: 17:ac:cc:72:a0:79:0e:07:7f:48:57:23:d8:9c:28: c5:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:15:F3:C6:F8:D4:12:C8:07:56:B6:E9:30:BC:16:67:E8:7B:D8:F9 X509v3 Authority Key Identifier: keyid:D2:89:7B:33:53:82:F8:22:4F:5D:89:0E:31:B3:86:32:1C:6B:B3:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ol7M1OC-CJPXYkOMbOGMhxrs-0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4de805-d5dc-46f7-b397-5b5332af1851/1/0ol7M1OC-CJPXYkOMbOGMhxrs-0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4de805-d5dc-46f7-b397-5b5332af1851/1/0ol7M1OC-CJPXYkOMbOGMhxrs-0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:a7:2c:85:59:ff:28:ef:aa:c3:00:82:b1:b1:09:9c:5e:f7: 38:19:1a:7e:12:2d:4c:d5:e1:0e:a3:64:26:0e:17:38:ba:4f: 22:87:12:d7:0b:2a:fd:68:4e:d2:72:68:e9:3e:3f:c0:72:e7: 4c:73:12:57:69:fa:c8:54:1e:76:a7:4b:ec:db:3b:ec:6d:4b: 5c:c6:56:fa:d5:dc:07:e4:2d:cd:b5:ab:80:94:5e:29:49:c2: 06:1f:89:5f:1e:93:8d:91:db:82:53:e8:8a:65:80:44:06:65: 8f:3f:ed:d4:2b:6a:a7:c2:df:55:90:6c:d8:e8:dd:c4:d8:5a: 9b:40:57:6b:b3:76:b8:1c:61:fb:f2:7a:3e:f9:4b:9e:6e:63: 95:11:d2:45:ff:0a:ec:b2:0b:85:45:25:5b:8d:2c:84:ac:0b: 65:c2:8e:9e:c0:2d:8f:4e:bb:7a:9f:79:f7:8d:3e:55:ed:65: f4:f4:c4:03:94:d0:d5:6b:f3:cc:da:1e:49:59:b7:49:7e:7e: 46:71:92:e5:d0:ab:0c:26:27:e0:38:ac:66:6a:b5:9c:fa:5f: 31:ae:39:e6:49:8d:a8:22:74:b0:31:2e:56:1f:6f:e4:dd:03: ae:fd:54:49:ce:d5:1f:33:01:67:64:f5:87:11:4c:40:d8:51: ef:87:01:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIu5A/nv92ZNagEq5LUKRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyODk3YjMzNTM4MmY4MjI0ZjVkODkwZTMxYjM4NjMyMWM2 YmIzZWQwHhcNMjYwMjA5MTYwMTI4WhcNMjYwMjEwMTYwMTI4WjAzMTEwLwYDVQQD Eyg0NjE1ZjNjNmY4ZDQxMmM4MDc1NmI2ZTkzMGJjMTY2N2U4N2JkOGY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo5OQ21BwQqL7ylAH0yQAsGi73ZH1 UT4GEBupjSaRQGf2u8QKIyezoisSsg11bhORLi9oscUpGKbvzmp89YY3tUcAQRyR /bi35y9XYZQzA1Xj6JicVPj8TktonqkhiGfAY5xkisdwWvTetRuK+BfzY3X6tVvo RzYSS7AOzwsm5xlOkikD5WdAIx8xycmaIUjnwMmk2WkRrUt1RyJeBlOzu+IMAksE 4/33ckxVqstoBJtsvxUpPgrhmBygHlwYgivs3wSYeVwVAvY5n1ZD5r0g5vBUyobx 1eMqKOHwB0FK+UYYXO6xcxrPiD3bGGa99mgXrMxyoHkOB39IVyPYnCjFEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEYV88b41BLIB1a26TC8Fmfoe9j5MB8GA1UdIwQY MBaAFNKJezNTgvgiT12JDjGzhjIca7PtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMG9sN00xT0MtQ0pQWFlrT01iT0dNaHhycy0wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80ZGU4MDUtZDVkYy00NmY3LWIzOTct NWI1MzMyYWYxODUxLzEvMG9sN00xT0MtQ0pQWFlrT01iT0dNaHhycy0wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC80ZGU4MDUtZDVkYy00NmY3LWIzOTctNWI1MzMyYWYxODUx LzEvMG9sN00xT0MtQ0pQWFlrT01iT0dNaHhycy0wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoqcshVn/ KO+qwwCCsbEJnF73OBkafhItTNXhDqNkJg4XOLpPIocS1wsq/WhO0nJo6T4/wHLn THMSV2n6yFQedqdL7Ns77G1LXMZW+tXcB+QtzbWrgJReKUnCBh+JXx6TjZHbglPo imWARAZljz/t1Ctqp8LfVZBs2OjdxNham0BXa7N2uBxh+/J6PvlLnm5jlRHSRf8K 7LILhUUlW40shKwLZcKOnsAtj067ep95940+Ve1l9PTEA5TQ1WvzzNoeSVm3SX5+ RnGS5dCrDCYn4DisZmq1nPpfMa455kmNqCJ0sDEuVh9v5N0Drv1USc7VHzMBZ2T1 hxFMQNhR74cBCA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:34 2026 by rpki-client