This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft File: AOezY1s9V4VgNwpYMDz81c2SkQU.mft (raw, json) Hash identifier: O/X/amYVTkzCV5u2zjTV0eMlDSgnelRSE9tkmeh4hP8= Subject key identifier: 8F:F7:F5:91:0B:8C:5D:B8:A1:D7:23:AC:AA:77:9B:96:2E:AC:5A:2C Authority key identifier: 00:E7:B3:63:5B:3D:57:85:60:37:0A:58:30:3C:FC:D5:CD:92:91:05 Certificate issuer: /CN=00e7b3635b3d578560370a58303cfcd5cd929105 Certificate serial: 019C432229AF674B6A9A6E74AB6007F2CCCA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOezY1s9V4VgNwpYMDz81c2SkQU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft Manifest number: 0F22 Signing time: Mon 09 Feb 2026 16:00:38 +0000 Manifest this update: Mon 09 Feb 2026 16:00:38 +0000 Manifest next update: Tue 10 Feb 2026 16:00:38 +0000 Files and hashes: 1: AOezY1s9V4VgNwpYMDz81c2SkQU.crl (hash: C9yWxBpPJV8tUqukCT8SfS/26XwO11TeMqa/7j5F7OE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft rsync://rpki.ripe.net/repository/DEFAULT/AOezY1s9V4VgNwpYMDz81c2SkQU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:29:af:67:4b:6a:9a:6e:74:ab:60:07:f2:cc:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e7b3635b3d578560370a58303cfcd5cd929105 Validity Not Before: Feb 9 16:00:38 2026 GMT Not After : Feb 10 16:00:38 2026 GMT Subject: CN=8ff7f5910b8c5db8a1d723acaa779b962eac5a2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f6:5a:09:3e:24:5b:1f:df:9a:43:dd:0e:3b: be:d5:80:ec:fe:c1:e3:ef:07:82:18:b3:9c:8a:e1: c6:f6:d0:35:2c:a8:2d:ef:02:b5:a7:20:24:4e:51: 97:79:41:08:c7:ff:06:1f:db:e4:79:fc:22:91:92: 59:53:b1:2d:1c:4e:fd:e4:50:80:00:ea:70:a2:eb: 4c:b8:91:60:38:1b:74:7d:1c:53:4d:64:00:b9:a3: 5a:16:19:82:51:10:e1:69:4a:ba:27:47:fe:42:c2: 57:4f:2e:2d:f4:8f:e2:ac:bb:65:f5:29:e7:68:25: db:b4:cb:80:61:3b:cb:af:a2:a6:61:ac:32:3c:23: 5d:45:dd:33:fb:47:ef:c3:2d:fa:cd:7e:ec:3d:96: a4:d2:cc:2f:b4:cc:5a:b3:fc:1e:de:5e:05:3d:85: cb:00:3e:9a:73:cd:8b:c9:44:6f:fa:6f:54:2e:39: 18:b1:79:c4:be:6f:d3:e4:1f:17:b7:ca:97:61:88: 7e:6c:a5:88:b4:60:d8:e0:cf:49:82:aa:34:9e:90: 3c:97:e1:13:20:91:7a:76:65:50:cc:1e:9a:6a:e3: da:da:05:bc:0c:d3:e5:03:8f:11:1c:71:86:68:9e: 5b:1a:19:d2:2d:6b:07:42:77:19:1a:0c:41:f9:09: 10:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F7:F5:91:0B:8C:5D:B8:A1:D7:23:AC:AA:77:9B:96:2E:AC:5A:2C X509v3 Authority Key Identifier: keyid:00:E7:B3:63:5B:3D:57:85:60:37:0A:58:30:3C:FC:D5:CD:92:91:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOezY1s9V4VgNwpYMDz81c2SkQU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:85:8d:6e:d9:fb:05:63:d5:2d:78:52:f6:c5:7e:56:3a:f0: 69:71:48:39:a8:ef:c2:75:dd:5c:56:29:5c:f1:ea:10:d8:d5: 25:67:1f:85:07:c5:0a:c4:d4:cf:ba:55:6c:9a:0a:59:e1:0f: 51:95:d2:f0:0e:5b:6d:77:a5:cd:b3:01:a7:fc:c4:ff:17:b1: 96:56:e5:09:e9:ee:c2:18:73:76:76:cf:eb:78:3f:3a:4e:14: 64:1d:87:81:97:80:b9:2c:2e:54:4e:7a:1e:1c:f1:9f:62:e7: 67:13:24:00:44:4d:42:5b:da:69:9f:ef:62:81:0a:dd:cf:79: f9:86:f6:02:3f:57:29:99:10:31:6a:83:1d:50:01:7c:f6:b6: 79:0f:cf:54:04:40:51:f2:a0:cc:28:83:08:32:46:2c:90:15: 9b:f9:f2:97:7a:ca:d3:ee:96:f3:80:73:41:f1:68:3f:0d:31: 57:70:01:dd:d5:51:94:d6:1e:a2:10:5b:01:2a:d7:0a:3d:07: 53:db:ed:40:4f:b8:8c:28:a6:f1:2e:d7:26:d7:55:7d:c7:7c: 5d:26:f7:a1:c8:2e:92:c7:dc:b8:f5:57:4e:ce:22:9d:30:3d: 13:1a:88:3d:17:b5:c2:ee:4f:46:df:64:45:31:06:58:47:9d: 20:8f:b4:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIimvZ0tqmm50q2AH8szKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTdiMzYzNWIzZDU3ODU2MDM3MGE1ODMwM2NmY2Q1Y2Q5 MjkxMDUwHhcNMjYwMjA5MTYwMDM4WhcNMjYwMjEwMTYwMDM4WjAzMTEwLwYDVQQD Eyg4ZmY3ZjU5MTBiOGM1ZGI4YTFkNzIzYWNhYTc3OWI5NjJlYWM1YTJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4PZaCT4kWx/fmkPdDju+1YDs/sHj 7weCGLOciuHG9tA1LKgt7wK1pyAkTlGXeUEIx/8GH9vkefwikZJZU7EtHE795FCA AOpwoutMuJFgOBt0fRxTTWQAuaNaFhmCURDhaUq6J0f+QsJXTy4t9I/irLtl9Snn aCXbtMuAYTvLr6KmYawyPCNdRd0z+0fvwy36zX7sPZak0swvtMxas/we3l4FPYXL AD6ac82LyURv+m9ULjkYsXnEvm/T5B8Xt8qXYYh+bKWItGDY4M9Jgqo0npA8l+ET IJF6dmVQzB6aauPa2gW8DNPlA48RHHGGaJ5bGhnSLWsHQncZGgxB+QkQMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI/39ZELjF24odcjrKp3m5YurFosMB8GA1UdIwQY MBaAFADns2NbPVeFYDcKWDA8/NXNkpEFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9lelkxczlWNFZnTndwWU1EejgxYzJTa1FVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC80NjIzOGEtYTE5YS00OTE1LThhNDct YTBjZDE0MTUxM2NiLzEvQU9lelkxczlWNFZnTndwWU1EejgxYzJTa1FVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC80NjIzOGEtYTE5YS00OTE1LThhNDctYTBjZDE0MTUxM2Ni LzEvQU9lelkxczlWNFZnTndwWU1EejgxYzJTa1FVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApIWNbtn7 BWPVLXhS9sV+VjrwaXFIOajvwnXdXFYpXPHqENjVJWcfhQfFCsTUz7pVbJoKWeEP UZXS8A5bbXelzbMBp/zE/xexllblCenuwhhzdnbP63g/Ok4UZB2HgZeAuSwuVE56 Hhzxn2LnZxMkAERNQlvaaZ/vYoEK3c95+Yb2Aj9XKZkQMWqDHVABfPa2eQ/PVARA UfKgzCiDCDJGLJAVm/nyl3rK0+6W84BzQfFoPw0xV3AB3dVRlNYeohBbASrXCj0H U9vtQE+4jCim8S7XJtdVfcd8XSb3ocguksfcuPVXTs4inTA9ExqIPRe1wu5PRt9k RTEGWEedII+0PA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:39:32 2026 by rpki-client