This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft File: otCM3GpDDvDaiCmRcla2rY0KNvk.mft (raw, json) Hash identifier: 0cSQO0IG5fPbXm+Vfp6PlmNm5jsCXU6sg7qSUF6a+iI= Subject key identifier: 5F:5C:2F:99:86:F7:CE:5D:63:DD:C9:15:E5:32:F0:B3:6B:25:01:76 Authority key identifier: A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9 Certificate issuer: /CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9 Certificate serial: 019C42B411ADDD9EF5E7AEA29DB5EC5936C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft Manifest number: 0A33 Signing time: Mon 09 Feb 2026 14:00:22 +0000 Manifest this update: Mon 09 Feb 2026 14:00:22 +0000 Manifest next update: Tue 10 Feb 2026 14:00:22 +0000 Files and hashes: 1: SjIFpOv8CU5TAe5BOSptvm-t2X8.roa (hash: noG1uYmKn+lp5DHEKlchBRM5lgdWGa4N1VmV9ta3T+w=) 2: otCM3GpDDvDaiCmRcla2rY0KNvk.crl (hash: rHWNQudmIpeLk0Tc7YDOckm7oswBz52WPwY2mDYaxfg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:11:ad:dd:9e:f5:e7:ae:a2:9d:b5:ec:59:36:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9 Validity Not Before: Feb 9 14:00:22 2026 GMT Not After : Feb 10 14:00:22 2026 GMT Subject: CN=5f5c2f9986f7ce5d63ddc915e532f0b36b250176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7f:a9:00:fd:dc:6d:92:62:70:39:31:fe:b5: d7:ab:4c:bd:61:ca:c6:c8:03:8f:03:67:a6:2f:a4: 0b:47:3b:83:ea:4f:81:9c:36:61:e0:39:d1:b9:ec: f2:bc:c4:4b:e9:b9:4b:c2:c5:ed:36:52:f8:c2:4e: ca:7b:78:30:4f:d7:40:61:71:af:ed:ac:6c:4b:d9: d5:87:b9:b3:27:92:f5:00:86:12:76:b9:66:59:53: 7b:fa:54:ed:00:9d:bc:83:30:5a:a4:77:66:54:59: 16:2a:3a:d8:43:b0:98:2b:9a:40:79:72:09:41:f1: 95:62:bb:b2:d4:4c:51:fe:63:63:40:af:60:6c:dd: a1:8e:31:bf:f1:c3:10:9c:ce:41:cb:dc:fd:5f:76: a7:37:f8:59:36:40:6b:be:7c:99:44:8a:69:d7:a1: 98:8e:50:9b:f0:af:61:f9:90:0e:1e:24:28:8c:ae: b5:06:dd:fa:70:f8:9e:d7:ae:b2:a5:56:92:b9:d9: 6b:84:06:55:5e:69:c1:8e:0a:6e:19:68:1e:4b:d4: 8f:2c:ed:61:5b:92:b5:de:94:46:83:64:a8:06:0c: f9:c4:ed:21:0c:d3:4a:10:01:0a:2e:0b:6a:6b:08: ee:84:6e:d0:fa:ab:ef:8a:07:fd:5b:3e:86:e4:47: a5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:5C:2F:99:86:F7:CE:5D:63:DD:C9:15:E5:32:F0:B3:6B:25:01:76 X509v3 Authority Key Identifier: keyid:A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:28:30:67:eb:be:d4:3f:6a:f7:2f:55:ee:fe:18:33:2e:04: 3a:f7:53:0b:63:84:a6:ea:a0:7e:16:8e:1d:8b:27:98:4d:39: 42:4e:c2:0b:3e:0e:dc:02:57:25:34:b8:54:2c:8b:59:d9:e1: a0:ed:86:c9:c0:5a:76:f8:56:d0:d2:4d:80:5d:1b:ce:9b:9d: b0:3e:df:c5:7b:cb:c3:a3:d8:b6:46:29:c9:cc:b5:99:75:71: d8:0d:54:ab:e5:90:7b:b0:c2:29:0f:b1:de:7d:04:f8:93:f6: e4:bf:ec:2b:d8:7a:9b:1b:52:40:f7:fd:04:3f:cc:65:80:24: 94:47:b6:77:2f:f0:38:ad:a1:74:ef:99:26:b9:07:6b:04:df: 6b:0e:e9:aa:01:20:29:04:21:3e:47:da:20:78:d3:9c:c8:2f: ba:4f:73:62:b4:dc:de:77:99:7f:b6:db:32:b7:6a:3e:61:ff: 8c:a4:fb:74:42:a6:d7:2a:a2:dc:c2:2f:c6:6b:08:18:6f:11: 5b:e7:25:8a:65:bc:cc:18:1c:3b:9c:ce:6d:cf:e4:af:2b:88: ca:d6:6f:73:5c:4e:3c:db:f2:9c:f6:2c:75:9d:11:07:59:ea: 11:c8:7c:45:99:b2:c3:c9:83:9b:a9:d6:9c:46:d3:e0:49:06: ce:ef:31:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtBGt3Z71566inbXsWTbHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyZDA4Y2RjNmE0MzBlZjBkYTg4Mjk5MTcyNTZiNmFkOGQw YTM2ZjkwHhcNMjYwMjA5MTQwMDIyWhcNMjYwMjEwMTQwMDIyWjAzMTEwLwYDVQQD Eyg1ZjVjMmY5OTg2ZjdjZTVkNjNkZGM5MTVlNTMyZjBiMzZiMjUwMTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArH+pAP3cbZJicDkx/rXXq0y9YcrG yAOPA2emL6QLRzuD6k+BnDZh4DnRuezyvMRL6blLwsXtNlL4wk7Ke3gwT9dAYXGv 7axsS9nVh7mzJ5L1AIYSdrlmWVN7+lTtAJ28gzBapHdmVFkWKjrYQ7CYK5pAeXIJ QfGVYruy1ExR/mNjQK9gbN2hjjG/8cMQnM5By9z9X3anN/hZNkBrvnyZRIpp16GY jlCb8K9h+ZAOHiQojK61Bt36cPie166ypVaSudlrhAZVXmnBjgpuGWgeS9SPLO1h W5K13pRGg2SoBgz5xO0hDNNKEAEKLgtqawjuhG7Q+qvvigf9Wz6G5EelWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF9cL5mG985dY93JFeUy8LNrJQF2MB8GA1UdIwQY MBaAFKLQjNxqQw7w2ogpkXJWtq2NCjb5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3RDTTNHcEREdkRhaUNtUmNsYTJyWTBLTnZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9iYzE5Y2MtMGY1My00ZDEwLWFmOTMt ZGMwMWExOWIyODU2LzEvb3RDTTNHcEREdkRhaUNtUmNsYTJyWTBLTnZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS9iYzE5Y2MtMGY1My00ZDEwLWFmOTMtZGMwMWExOWIyODU2 LzEvb3RDTTNHcEREdkRhaUNtUmNsYTJyWTBLTnZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXygwZ+u+ 1D9q9y9V7v4YMy4EOvdTC2OEpuqgfhaOHYsnmE05Qk7CCz4O3AJXJTS4VCyLWdnh oO2GycBadvhW0NJNgF0bzpudsD7fxXvLw6PYtkYpycy1mXVx2A1Uq+WQe7DCKQ+x 3n0E+JP25L/sK9h6mxtSQPf9BD/MZYAklEe2dy/wOK2hdO+ZJrkHawTfaw7pqgEg KQQhPkfaIHjTnMgvuk9zYrTc3neZf7bbMrdqPmH/jKT7dEKm1yqi3MIvxmsIGG8R W+climW8zBgcO5zObc/kryuIytZvc1xOPNvynPYsdZ0RB1nqEch8RZmyw8mDm6nW nEbT4EkGzu8x9Q== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:46 2026 by rpki-client