This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft File: 0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft (raw, json) Hash identifier: Qu5/o1VIpUWVZNWi3j7S9F3g1pZ9az5bVraYeVn/rDU= Subject key identifier: E6:5A:47:98:66:BA:20:1D:C7:A0:51:E6:97:CC:0C:38:C0:A6:98:29 Authority key identifier: D0:48:50:F8:06:9D:F6:2D:C5:15:5C:02:ED:1E:62:BF:51:CE:DB:C8 Certificate issuer: /CN=d04850f8069df62dc5155c02ed1e62bf51cedbc8 Certificate serial: 019C427D1D922E9FD0951785A50D5E5C950A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft Manifest number: 0495 Signing time: Mon 09 Feb 2026 13:00:21 +0000 Manifest this update: Mon 09 Feb 2026 13:00:21 +0000 Manifest next update: Tue 10 Feb 2026 13:00:21 +0000 Files and hashes: 1: 0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl (hash: STYpoI791Bw6iCkPSV+TwZ3L1WQZDNSmCxlvDCXBOw4=) 2: v795sY2U8jhvRzL8MVmYlvFz9_s.roa (hash: Hn47sYXDYoB/4A+t0th2lMVq06CbmCPSmHDsJlsUcW8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:1d:92:2e:9f:d0:95:17:85:a5:0d:5e:5c:95:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d04850f8069df62dc5155c02ed1e62bf51cedbc8 Validity Not Before: Feb 9 13:00:21 2026 GMT Not After : Feb 10 13:00:21 2026 GMT Subject: CN=e65a479866ba201dc7a051e697cc0c38c0a69829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e3:84:17:68:ed:f6:65:a6:bb:30:29:52:c7: 47:05:24:2d:14:38:37:e3:63:ea:88:bc:53:2c:bd: 39:3b:6c:29:ad:43:7d:2b:ef:9a:65:43:81:17:88: 11:a6:c0:cb:87:2e:00:ae:ed:c2:d7:65:b6:ab:48: 8a:d4:bb:de:02:e0:78:f0:5b:4e:05:da:be:1a:f3: 56:30:fe:df:7c:8b:5e:98:a7:4c:21:44:20:21:d9: 33:52:0a:0f:19:4a:91:ca:3d:bb:ff:ed:a7:a3:18: b6:27:44:36:04:c1:8d:8c:83:de:c0:24:d3:34:57: 11:b4:35:f8:2f:4d:9b:f5:0e:90:c0:76:9b:39:39: 15:76:5a:2a:3f:d0:29:84:02:07:01:d3:af:28:83: 16:a3:23:6d:c8:8d:99:82:d9:91:e7:67:9d:d1:5b: 10:68:b2:02:cb:78:d7:7c:74:3f:35:bd:3c:26:17: 80:cd:2e:eb:ae:1f:ce:8f:23:f2:58:a5:35:1c:ee: 1d:a2:57:5f:42:83:5f:00:6c:c4:c0:69:88:62:cb: 88:ef:f9:ce:d8:f5:6e:cd:6f:51:62:2d:0e:64:03: e1:6e:07:4f:3f:e5:67:28:62:aa:dc:86:2d:a7:f5: 23:fc:fc:cc:d9:17:05:26:e9:76:d5:41:b1:52:5f: 46:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:5A:47:98:66:BA:20:1D:C7:A0:51:E6:97:CC:0C:38:C0:A6:98:29 X509v3 Authority Key Identifier: keyid:D0:48:50:F8:06:9D:F6:2D:C5:15:5C:02:ED:1E:62:BF:51:CE:DB:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:74:8f:62:64:4d:70:30:46:a7:d4:67:28:6c:ed:71:77:45: 27:d9:2f:18:d3:eb:2c:2a:d6:d8:12:65:cd:ee:64:44:e7:3b: ad:2d:64:37:a3:47:d2:f4:02:9e:08:cb:f6:b7:f7:8c:eb:db: fe:ff:33:68:a3:83:9b:92:d7:80:1b:de:a5:62:4a:07:e8:df: 52:96:6d:ce:9a:55:2d:01:d9:22:38:2d:78:42:4b:6b:51:d4: 94:71:a6:6e:91:71:bf:a0:b8:bc:4b:0d:b7:f8:70:b0:54:d6: 2f:ca:fa:5b:d7:75:81:64:86:21:ae:31:73:ba:6d:51:5b:6c: 28:45:fc:71:6b:2e:d0:8e:df:43:b2:b3:9e:c3:07:e7:a5:a2: 78:dc:de:65:5d:b8:8b:f5:0e:8e:cd:59:36:b3:55:0e:ae:02: 91:60:3e:04:e9:6c:eb:d4:06:3c:68:ff:86:10:9b:91:88:cf: f4:43:a1:9f:4e:2f:0a:6c:28:f1:38:23:72:24:aa:9e:18:67: d7:75:32:f4:91:cd:72:69:20:0a:d1:98:e1:06:91:73:a0:04: ee:b3:1f:71:43:8b:d2:fe:b6:b7:17:51:72:5a:ba:96:69:ba: cd:40:7d:59:06:45:16:8e:76:56:23:2a:e1:55:83:52:7f:fe: 28:a9:fd:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfR2SLp/QlReFpQ1eXJUKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwNDg1MGY4MDY5ZGY2MmRjNTE1NWMwMmVkMWU2MmJmNTFj ZWRiYzgwHhcNMjYwMjA5MTMwMDIxWhcNMjYwMjEwMTMwMDIxWjAzMTEwLwYDVQQD EyhlNjVhNDc5ODY2YmEyMDFkYzdhMDUxZTY5N2NjMGMzOGMwYTY5ODI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOOEF2jt9mWmuzApUsdHBSQtFDg3 42PqiLxTLL05O2wprUN9K++aZUOBF4gRpsDLhy4Aru3C12W2q0iK1LveAuB48FtO Bdq+GvNWMP7ffItemKdMIUQgIdkzUgoPGUqRyj27/+2noxi2J0Q2BMGNjIPewCTT NFcRtDX4L02b9Q6QwHabOTkVdloqP9AphAIHAdOvKIMWoyNtyI2ZgtmR52ed0VsQ aLICy3jXfHQ/Nb08JheAzS7rrh/OjyPyWKU1HO4doldfQoNfAGzEwGmIYsuI7/nO 2PVuzW9RYi0OZAPhbgdPP+VnKGKq3IYtp/Uj/PzM2RcFJul21UGxUl9GhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOZaR5hmuiAdx6BR5pfMDDjAppgpMB8GA1UdIwQY MBaAFNBIUPgGnfYtxRVcAu0eYr9RztvIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEVoUS1BYWQ5aTNGRlZ3QzdSNWl2MUhPMjhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9kMDk3ZDMtZDRiYS00MTMwLThlOTYt YWQ5NWViZmFhYWUyLzEvMEVoUS1BYWQ5aTNGRlZ3QzdSNWl2MUhPMjhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9kMDk3ZDMtZDRiYS00MTMwLThlOTYtYWQ5NWViZmFhYWUy LzEvMEVoUS1BYWQ5aTNGRlZ3QzdSNWl2MUhPMjhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUXSPYmRN cDBGp9RnKGztcXdFJ9kvGNPrLCrW2BJlze5kROc7rS1kN6NH0vQCngjL9rf3jOvb /v8zaKODm5LXgBvepWJKB+jfUpZtzppVLQHZIjgteEJLa1HUlHGmbpFxv6C4vEsN t/hwsFTWL8r6W9d1gWSGIa4xc7ptUVtsKEX8cWsu0I7fQ7KznsMH56WieNzeZV24 i/UOjs1ZNrNVDq4CkWA+BOls69QGPGj/hhCbkYjP9EOhn04vCmwo8TgjciSqnhhn 13Uy9JHNcmkgCtGY4QaRc6AE7rMfcUOL0v62txdRclq6lmm6zUB9WQZFFo52ViMq 4VWDUn/+KKn9HQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:58 2026 by rpki-client