This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft File: mlCFOiSox2IjTokTpKWymFwzHa0.mft (raw, json) Hash identifier: 4yI5dSYa8ru2aNFLZEhUVOBFbamzXBNQBZLwM99vs/U= Subject key identifier: A6:8B:55:12:52:00:45:A5:A2:E4:00:63:17:C4:6F:FA:AA:4F:4F:76 Authority key identifier: 9A:50:85:3A:24:A8:C7:62:23:4E:89:13:A4:A5:B2:98:5C:33:1D:AD Certificate issuer: /CN=9a50853a24a8c762234e8913a4a5b2985c331dad Certificate serial: 019C43FE11C7D0ACF31B2BCBED12E7CBC094 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mlCFOiSox2IjTokTpKWymFwzHa0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft Manifest number: 15D1 Signing time: Mon 09 Feb 2026 20:00:49 +0000 Manifest this update: Mon 09 Feb 2026 20:00:49 +0000 Manifest next update: Tue 10 Feb 2026 20:00:49 +0000 Files and hashes: 1: 8fdsNHAoxPgGvUJ1-IIbNzs4kR8.roa (hash: oToJ7/CBn32SApKsPhftng2rCZIvh8kkblOHjghDJj8=) 2: mlCFOiSox2IjTokTpKWymFwzHa0.crl (hash: mEWgUjW8MPzlzREd9hnOwMklu67XdXMLciC4ESMfFZQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft rsync://rpki.ripe.net/repository/DEFAULT/mlCFOiSox2IjTokTpKWymFwzHa0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:11:c7:d0:ac:f3:1b:2b:cb:ed:12:e7:cb:c0:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a50853a24a8c762234e8913a4a5b2985c331dad Validity Not Before: Feb 9 20:00:49 2026 GMT Not After : Feb 10 20:00:49 2026 GMT Subject: CN=a68b5512520045a5a2e4006317c46ffaaa4f4f76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:67:a5:3c:6f:54:d3:e2:3e:a0:9b:e9:a3:f4: 49:cd:3f:3f:cd:7d:38:ce:f9:1e:d3:f2:89:fb:7a: b4:27:d8:c3:1d:86:42:15:fa:37:83:22:13:08:17: ac:7e:33:c3:4c:0c:41:19:53:77:fa:7b:e2:10:25: 8c:61:3b:9f:e5:0e:59:c6:9c:93:c5:44:76:7b:4f: e9:5d:30:8f:2c:2e:0d:a6:62:76:39:66:ce:a7:b0: c9:67:48:27:24:f6:5e:78:09:ca:af:77:46:c1:18: 82:3e:a2:b2:95:c5:b6:20:45:29:54:0b:63:29:f4: 0e:ed:db:9c:da:e1:08:67:a0:19:4f:8f:e1:48:39: 9b:93:69:27:f8:fc:7c:c9:76:12:10:19:d5:f8:35: f5:c3:15:d5:7a:af:a9:d0:7f:0c:4c:bc:9d:f2:ee: ea:e2:65:6b:a2:f4:a8:b6:1d:a6:64:03:4b:c8:3b: 1d:ec:c1:e2:c2:e0:4a:4a:5a:80:e4:ab:be:88:b5: 57:b9:16:28:37:3f:c7:72:2d:69:ed:90:fa:1d:bb: f4:ea:66:03:87:8e:0e:3e:8f:b7:f0:1b:a3:2f:10: 09:90:7d:91:24:d6:4c:04:cc:1d:bb:5d:46:f6:c0: ab:68:70:64:65:51:01:a2:59:85:fd:b2:f1:c1:cc: 6d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:8B:55:12:52:00:45:A5:A2:E4:00:63:17:C4:6F:FA:AA:4F:4F:76 X509v3 Authority Key Identifier: keyid:9A:50:85:3A:24:A8:C7:62:23:4E:89:13:A4:A5:B2:98:5C:33:1D:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mlCFOiSox2IjTokTpKWymFwzHa0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:19:3a:e2:2c:9b:c7:e7:22:c2:be:0f:e5:38:bd:a4:c0:60: 15:49:de:e4:4d:16:aa:ef:e6:94:d1:fd:ab:85:e0:ca:11:80: 6a:c9:c3:da:21:ad:00:a7:a9:99:26:77:b5:eb:2f:62:51:90: 05:67:19:14:59:0e:a2:fa:b8:cc:07:73:66:13:ca:76:90:a0: 26:cc:b2:f6:1c:7b:25:85:84:49:4b:44:e5:73:62:52:96:02: e2:11:2a:a4:0a:21:b4:1f:d5:0f:64:de:20:20:c8:ef:71:60: be:12:25:f7:77:09:6c:5a:18:3e:63:d4:7a:4e:9d:d5:4f:ef: 43:0e:5a:69:6f:28:02:6d:23:34:5d:a6:91:29:c3:54:cc:0c: 21:ba:29:3f:25:42:e3:07:98:7e:c8:53:bc:c2:17:ce:3f:84: a9:0b:69:d3:5e:68:8a:47:67:8d:95:37:b7:05:a2:87:73:20: 0a:05:1b:0c:d0:18:d4:86:e4:c9:75:54:14:1b:8f:1f:58:64: 3b:b2:d6:15:4e:20:ec:9f:a3:a7:f5:6e:6e:cc:9f:cd:0c:91: 52:51:e7:fb:b1:f4:c9:15:31:30:b1:77:21:5f:a2:73:ca:ac: 0d:2d:d0:d8:10:6a:33:b1:13:f4:31:d8:58:5f:b0:c6:97:bc: ef:89:fc:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/hHH0KzzGyvL7RLny8CUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNTA4NTNhMjRhOGM3NjIyMzRlODkxM2E0YTViMjk4NWMz MzFkYWQwHhcNMjYwMjA5MjAwMDQ5WhcNMjYwMjEwMjAwMDQ5WjAzMTEwLwYDVQQD EyhhNjhiNTUxMjUyMDA0NWE1YTJlNDAwNjMxN2M0NmZmYWFhNGY0Zjc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjmelPG9U0+I+oJvpo/RJzT8/zX04 zvke0/KJ+3q0J9jDHYZCFfo3gyITCBesfjPDTAxBGVN3+nviECWMYTuf5Q5ZxpyT xUR2e0/pXTCPLC4NpmJ2OWbOp7DJZ0gnJPZeeAnKr3dGwRiCPqKylcW2IEUpVAtj KfQO7duc2uEIZ6AZT4/hSDmbk2kn+Px8yXYSEBnV+DX1wxXVeq+p0H8MTLyd8u7q 4mVrovSoth2mZANLyDsd7MHiwuBKSlqA5Ku+iLVXuRYoNz/Hci1p7ZD6Hbv06mYD h44OPo+38BujLxAJkH2RJNZMBMwdu11G9sCraHBkZVEBolmF/bLxwcxtLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKaLVRJSAEWlouQAYxfEb/qqT092MB8GA1UdIwQY MBaAFJpQhTokqMdiI06JE6SlsphcMx2tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWxDRk9pU294MklqVG9rVHBLV3ltRnd6SGEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8wYTQyOWItYTQ1NC00MjhiLWJiODgt ODhiNThkMDJiMmExLzEvbWxDRk9pU294MklqVG9rVHBLV3ltRnd6SGEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS8wYTQyOWItYTQ1NC00MjhiLWJiODgtODhiNThkMDJiMmEx LzEvbWxDRk9pU294MklqVG9rVHBLV3ltRnd6SGEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAORk64iyb x+ciwr4P5Ti9pMBgFUne5E0Wqu/mlNH9q4XgyhGAasnD2iGtAKepmSZ3tesvYlGQ BWcZFFkOovq4zAdzZhPKdpCgJsyy9hx7JYWESUtE5XNiUpYC4hEqpAohtB/VD2Te ICDI73FgvhIl93cJbFoYPmPUek6d1U/vQw5aaW8oAm0jNF2mkSnDVMwMIbopPyVC 4weYfshTvMIXzj+EqQtp015oikdnjZU3twWih3MgCgUbDNAY1IbkyXVUFBuPH1hk O7LWFU4g7J+jp/VubsyfzQyRUlHn+7H0yRUxMLF3IV+ic8qsDS3Q2BBqM7ET9DHY WF+wxpe874n8Mg== -----END CERTIFICATE-----Generated at Tue Feb 10 02:58:57 2026 by rpki-client