This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft File: OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft (raw, json) Hash identifier: l65U+d51UFagkNLak6cWFZU2LFPRDOvv8yRKmqTZRZk= Subject key identifier: 48:BC:18:62:9E:D1:02:D0:0E:0B:35:E1:15:D6:0F:C4:7F:B5:5C:7B Authority key identifier: 38:29:D1:31:BE:52:81:0E:47:C9:CB:BF:83:A3:FF:BD:4F:7C:BD:BF Certificate issuer: /CN=3829d131be52810e47c9cbbf83a3ffbd4f7cbdbf Certificate serial: 019C4358D9C9206B1076B928D445055114D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft Manifest number: 0F04 Signing time: Mon 09 Feb 2026 17:00:22 +0000 Manifest this update: Mon 09 Feb 2026 17:00:22 +0000 Manifest next update: Tue 10 Feb 2026 17:00:22 +0000 Files and hashes: 1: OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl (hash: hS9U4eEE9FOj2SlOiNOB0+o1NpWfnff9FsfQHxxlfO4=) 2: SA91wBhkikPDWTrAUdLpOxUcx_0.roa (hash: Y6pGr30mVBYxj09imikNObgMk7TKch+XIWYn2BcZKOo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:d9:c9:20:6b:10:76:b9:28:d4:45:05:51:14:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3829d131be52810e47c9cbbf83a3ffbd4f7cbdbf Validity Not Before: Feb 9 17:00:22 2026 GMT Not After : Feb 10 17:00:22 2026 GMT Subject: CN=48bc18629ed102d00e0b35e115d60fc47fb55c7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:86:b0:e9:eb:d9:f1:1b:e3:46:c1:d4:8f:3c: f6:ab:d2:ee:b0:68:dd:b9:ce:4d:5e:f1:e8:d2:f8: 81:c1:71:a1:06:93:b4:09:93:f9:1f:9c:bc:f6:76: 70:d0:42:d9:1f:1b:8b:b9:97:5a:0b:f7:dc:d8:e9: 3a:57:4b:a2:61:89:e8:fe:51:05:b6:b5:4d:f2:91: 17:81:36:e6:bc:73:bb:5e:94:0a:4d:ee:63:27:3b: 09:97:94:ef:a9:14:13:4c:0e:93:c4:ee:13:d3:d8: c4:94:b1:2a:9f:c4:0f:11:47:0c:17:70:e6:b5:6e: d7:2e:99:21:c1:d3:9b:3a:a3:8a:0c:66:e1:47:c3: 1f:63:7e:22:1a:74:39:8b:5a:4f:c8:8b:59:19:ff: 7d:e4:e9:6b:f5:a2:58:6b:2c:1a:84:24:f2:1d:d2: f7:8b:5f:a0:2b:5a:be:42:1b:65:d0:c5:be:ae:f8: 4f:a9:35:be:72:aa:d9:12:f1:30:ee:1e:f7:75:48: ac:90:a6:a5:9f:8f:56:67:72:b0:17:7b:b9:8a:13: c7:aa:5e:46:cc:cc:5b:35:f1:36:9c:73:1a:66:a0: a3:1e:db:f9:6b:a5:08:d8:b7:de:7f:0d:53:80:a7: 30:f3:2f:b0:c9:24:ae:ab:ee:18:20:b9:a2:09:70: c3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:BC:18:62:9E:D1:02:D0:0E:0B:35:E1:15:D6:0F:C4:7F:B5:5C:7B X509v3 Authority Key Identifier: keyid:38:29:D1:31:BE:52:81:0E:47:C9:CB:BF:83:A3:FF:BD:4F:7C:BD:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:91:2c:bd:f0:12:dd:f6:1d:16:5f:88:fa:ec:85:20:35:5a: ad:e1:e1:bf:a6:65:db:1e:1e:96:91:53:c9:e1:b1:05:74:e8: 40:8d:e1:66:0b:9e:6b:63:ed:c3:6f:c4:cc:a5:41:82:a4:84: 05:f6:d8:a0:ab:09:07:cd:4d:63:b9:01:76:2b:46:d5:f6:39: ff:22:a8:85:24:20:a5:42:52:60:e4:a2:fe:2f:b9:1a:90:30: 46:44:83:01:ec:ad:ca:e8:eb:a3:45:98:af:ed:26:d9:61:3e: 42:36:7f:7e:40:90:2c:a7:d6:7b:43:bd:63:47:02:f4:d1:f9: f6:ed:6a:93:e5:9d:ab:f8:9f:d7:23:50:40:e1:39:8a:fd:28: c6:66:ef:fd:14:60:aa:05:6b:10:07:57:e9:16:e4:a3:81:74: 5b:6a:14:1f:74:cf:e6:30:4a:43:68:88:b8:ff:86:3a:78:25: 2f:84:78:af:fa:0e:16:c0:74:fa:ad:c3:89:bf:80:4b:aa:03: 1d:84:53:0c:98:d3:d3:38:12:80:5c:77:6e:19:e9:aa:8d:31: 23:e1:98:46:3f:96:7e:8c:67:cb:18:48:17:63:c8:ff:df:ed: ce:fe:25:84:c6:fb:d1:9d:de:4f:73:79:a3:ae:15:45:96:66: ed:66:91:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWNnJIGsQdrko1EUFURTQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MjlkMTMxYmU1MjgxMGU0N2M5Y2JiZjgzYTNmZmJkNGY3 Y2JkYmYwHhcNMjYwMjA5MTcwMDIyWhcNMjYwMjEwMTcwMDIyWjAzMTEwLwYDVQQD Eyg0OGJjMTg2MjllZDEwMmQwMGUwYjM1ZTExNWQ2MGZjNDdmYjU1YzdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsIaw6evZ8RvjRsHUjzz2q9LusGjd uc5NXvHo0viBwXGhBpO0CZP5H5y89nZw0ELZHxuLuZdaC/fc2Ok6V0uiYYno/lEF trVN8pEXgTbmvHO7XpQKTe5jJzsJl5TvqRQTTA6TxO4T09jElLEqn8QPEUcMF3Dm tW7XLpkhwdObOqOKDGbhR8MfY34iGnQ5i1pPyItZGf995Olr9aJYaywahCTyHdL3 i1+gK1q+Qhtl0MW+rvhPqTW+cqrZEvEw7h73dUiskKaln49WZ3KwF3u5ihPHql5G zMxbNfE2nHMaZqCjHtv5a6UI2Lfefw1TgKcw8y+wySSuq+4YILmiCXDDawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEi8GGKe0QLQDgs14RXWD8R/tVx7MB8GA1UdIwQY MBaAFDgp0TG+UoEOR8nLv4Oj/71PfL2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0NuUk1iNVNnUTVIeWN1X2c2UF92VTk4dmI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iMWE0ZTEtODc3Yi00MzgwLWJmYmYt YjAzOGRiODk4YjdlLzEvT0NuUk1iNVNnUTVIeWN1X2c2UF92VTk4dmI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9iMWE0ZTEtODc3Yi00MzgwLWJmYmYtYjAzOGRiODk4Yjdl LzEvT0NuUk1iNVNnUTVIeWN1X2c2UF92VTk4dmI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVpEsvfAS 3fYdFl+I+uyFIDVareHhv6Zl2x4elpFTyeGxBXToQI3hZguea2Ptw2/EzKVBgqSE BfbYoKsJB81NY7kBditG1fY5/yKohSQgpUJSYOSi/i+5GpAwRkSDAeytyujro0WY r+0m2WE+QjZ/fkCQLKfWe0O9Y0cC9NH59u1qk+Wdq/if1yNQQOE5iv0oxmbv/RRg qgVrEAdX6Rbko4F0W2oUH3TP5jBKQ2iIuP+GOnglL4R4r/oOFsB0+q3Dib+AS6oD HYRTDJjT0zgSgFx3bhnpqo0xI+GYRj+WfoxnyxhIF2PI/9/tzv4lhMb70Z3eT3N5 o64VRZZm7WaRrw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:19 2026 by rpki-client