This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft File: aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft (raw, json) Hash identifier: hz68nmlOclj4kQkTou4CyIfrMamfOfMpMMlCj73tsXQ= Subject key identifier: 83:A4:0B:0E:5F:3C:98:3C:2A:7D:E5:E3:D5:96:58:53:B1:26:29:4C Authority key identifier: 68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2 Certificate issuer: /CN=68e1e6ea527dc385a79a3e08827dbf690c91c4c2 Certificate serial: 019C41336D0EB4649B46BF823C178BAF7AC3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft Manifest number: 17F3 Signing time: Mon 09 Feb 2026 07:00:15 +0000 Manifest this update: Mon 09 Feb 2026 07:00:15 +0000 Manifest next update: Tue 10 Feb 2026 07:00:15 +0000 Files and hashes: 1: aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl (hash: C7nsx3yjJJi93hFJK7TpfqhAE57rQHyV6eBd7Z8uLhU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:6d:0e:b4:64:9b:46:bf:82:3c:17:8b:af:7a:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68e1e6ea527dc385a79a3e08827dbf690c91c4c2 Validity Not Before: Feb 9 07:00:15 2026 GMT Not After : Feb 10 07:00:15 2026 GMT Subject: CN=83a40b0e5f3c983c2a7de5e3d5965853b126294c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f1:bd:ed:f7:1d:8b:bf:9e:76:a6:d3:22:9a: cc:5b:a9:a5:ff:1d:60:7e:54:a7:d1:22:a4:80:cf: c3:78:13:21:d7:bc:e1:6b:bd:4c:77:bd:05:db:9f: a1:cf:c9:5c:24:62:4a:06:80:6e:d1:43:61:68:ec: 16:e1:79:c0:c1:35:03:be:e0:86:b6:e3:12:9e:4a: d3:13:aa:58:c9:6b:35:09:86:82:31:a0:25:08:54: d1:d6:a9:ae:81:5d:64:77:24:e8:00:e6:46:1b:c2: 5d:29:5a:1c:f7:66:b4:2f:49:8f:06:c2:b5:81:b7: ce:91:4e:fe:8c:36:de:26:ec:85:04:86:62:d0:fe: 93:81:59:d2:06:69:7b:89:df:e5:11:25:5c:51:e9: a1:93:a8:bc:25:e5:67:26:38:7d:46:24:1a:ff:e8: 25:3f:7c:e5:9f:11:bf:72:4e:bb:b5:56:dd:65:e3: 83:73:95:49:75:dc:69:ef:5a:f1:83:d5:b8:0b:97: 34:a7:13:ce:91:e5:3f:3f:e4:aa:b2:a6:3d:a1:93: d4:1b:01:d5:28:cc:4c:a7:b3:83:22:a4:96:1b:76: cd:c3:e3:f2:ac:6c:e4:91:b0:57:c4:3b:7e:13:04: 78:51:21:4d:e6:d7:81:b0:3c:fe:cb:93:d6:89:f7: 9b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:A4:0B:0E:5F:3C:98:3C:2A:7D:E5:E3:D5:96:58:53:B1:26:29:4C X509v3 Authority Key Identifier: keyid:68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:9b:44:ea:3d:b1:ec:07:e6:4e:d4:99:37:01:08:1d:96:09: a8:71:c0:b3:19:43:67:44:ae:43:f3:80:7f:76:42:86:4b:6d: 8f:8b:2b:3b:16:5d:95:f2:60:df:80:3f:e4:13:eb:fa:c4:24: 43:06:df:fa:bf:fc:7e:73:87:00:cf:11:3c:51:67:7f:ac:fa: ad:3a:56:a2:19:7e:81:06:1d:d7:ba:47:6e:47:23:97:6c:ec: 83:e5:80:33:56:88:bb:9e:44:cb:30:f0:ae:38:27:8f:41:9d: 92:d5:a7:72:1a:32:ea:ec:3d:fc:3c:f1:13:10:13:4c:16:db: e6:f8:cd:cf:39:b0:be:6e:04:21:67:5f:cd:fe:42:d7:0d:fb: 99:3e:cf:ea:7b:f2:20:a5:29:6a:71:f6:21:31:a4:82:a4:33: 5c:af:75:71:3c:58:f9:63:f6:da:fc:fb:cc:a1:25:8b:1c:81: c6:1a:2c:1a:29:56:4f:4a:67:c0:33:b3:2c:c2:1c:be:6c:dc: 62:ab:33:f7:60:e1:fd:bd:f7:2d:b9:0a:6e:df:a6:f4:95:42: 9c:d3:f0:84:42:41:81:77:56:45:f2:43:a8:10:94:93:20:1e: 7a:00:c3:30:01:29:e0:df:84:3d:75:dd:ca:3e:41:a0:de:6c: a1:36:68:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM20OtGSbRr+CPBeLr3rDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZTFlNmVhNTI3ZGMzODVhNzlhM2UwODgyN2RiZjY5MGM5 MWM0YzIwHhcNMjYwMjA5MDcwMDE1WhcNMjYwMjEwMDcwMDE1WjAzMTEwLwYDVQQD Eyg4M2E0MGIwZTVmM2M5ODNjMmE3ZGU1ZTNkNTk2NTg1M2IxMjYyOTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfG97fcdi7+edqbTIprMW6ml/x1g flSn0SKkgM/DeBMh17zha71Md70F25+hz8lcJGJKBoBu0UNhaOwW4XnAwTUDvuCG tuMSnkrTE6pYyWs1CYaCMaAlCFTR1qmugV1kdyToAOZGG8JdKVoc92a0L0mPBsK1 gbfOkU7+jDbeJuyFBIZi0P6TgVnSBml7id/lESVcUemhk6i8JeVnJjh9RiQa/+gl P3zlnxG/ck67tVbdZeODc5VJddxp71rxg9W4C5c0pxPOkeU/P+SqsqY9oZPUGwHV KMxMp7ODIqSWG3bNw+PyrGzkkbBXxDt+EwR4USFN5teBsDz+y5PWifebLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIOkCw5fPJg8Kn3l49WWWFOxJilMMB8GA1UdIwQY MBaAFGjh5upSfcOFp5o+CIJ9v2kMkcTCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU9IbTZsSjl3NFdubWo0SWduMl9hUXlSeE1JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS85MzMxYzktZTE2NC00ZDJlLWI4Mzkt MTdkMDk3ZmY4OWMyLzEvYU9IbTZsSjl3NFdubWo0SWduMl9hUXlSeE1JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS85MzMxYzktZTE2NC00ZDJlLWI4MzktMTdkMDk3ZmY4OWMy LzEvYU9IbTZsSjl3NFdubWo0SWduMl9hUXlSeE1JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEJtE6j2x 7AfmTtSZNwEIHZYJqHHAsxlDZ0SuQ/OAf3ZChkttj4srOxZdlfJg34A/5BPr+sQk Qwbf+r/8fnOHAM8RPFFnf6z6rTpWohl+gQYd17pHbkcjl2zsg+WAM1aIu55EyzDw rjgnj0GdktWnchoy6uw9/DzxExATTBbb5vjNzzmwvm4EIWdfzf5C1w37mT7P6nvy IKUpanH2ITGkgqQzXK91cTxY+WP22vz7zKElixyBxhosGilWT0pnwDOzLMIcvmzc Yqsz92Dh/b33LbkKbt+m9JVCnNPwhEJBgXdWRfJDqBCUkyAeegDDMAEp4N+EPXXd yj5BoN5soTZolA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:56 2026 by rpki-client