This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.mft File: oRiq_bvKjU4AY8MRlfpsGUw5Q8s.mft (raw, json) Hash identifier: 7dtAKSokRVz5/GS0UIwMayeWpSsC3ZpKWuhbbRnc9Eg= Subject key identifier: 4E:39:AA:98:9D:6F:BA:E7:5B:34:A5:C8:D4:87:BE:09:AD:0E:10:F0 Authority key identifier: A1:18:AA:FD:BB:CA:8D:4E:00:63:C3:11:95:FA:6C:19:4C:39:43:CB Certificate issuer: /CN=a118aafdbbca8d4e0063c31195fa6c194c3943cb Certificate serial: 019C427D74C9608768ED60AF07351DDA1975 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.mft Manifest number: 072F Signing time: Mon 09 Feb 2026 13:00:43 +0000 Manifest this update: Mon 09 Feb 2026 13:00:43 +0000 Manifest next update: Tue 10 Feb 2026 13:00:43 +0000 Files and hashes: 1: oRiq_bvKjU4AY8MRlfpsGUw5Q8s.crl (hash: F6iNF0rNrFMuzE2460JBNpUAZcokuCdR87NOslX8X0M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.mft rsync://rpki.ripe.net/repository/DEFAULT/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:74:c9:60:87:68:ed:60:af:07:35:1d:da:19:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a118aafdbbca8d4e0063c31195fa6c194c3943cb Validity Not Before: Feb 9 13:00:43 2026 GMT Not After : Feb 10 13:00:43 2026 GMT Subject: CN=4e39aa989d6fbae75b34a5c8d487be09ad0e10f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:10:c7:9d:0f:25:38:a5:c4:95:37:4a:ef:73: 05:2b:11:90:f7:d0:ca:cb:38:db:20:0d:80:c6:d0: 79:0d:07:d2:e4:06:98:3d:1c:53:c7:a8:bd:a3:33: 7f:48:b8:41:59:98:ac:3d:1f:5c:69:be:94:43:48: 45:0d:5d:06:72:98:97:1e:7e:c6:60:3c:96:72:f9: 78:28:af:4f:11:5a:62:45:5f:0e:78:03:8b:15:4d: 30:4a:02:c2:ee:1b:30:80:e1:67:8f:be:94:50:03: ce:0c:3b:59:21:ef:76:23:74:76:9c:6e:05:b5:ff: 3a:b3:15:ad:1e:39:68:8f:53:02:a9:44:a4:7b:9d: 5b:6c:e5:8c:9b:0e:93:45:55:88:82:a7:20:10:1e: 42:de:93:5f:28:8b:13:fb:42:cd:e4:7d:ce:1c:07: 0b:3d:4d:95:7d:55:eb:0c:45:d7:b2:44:43:1b:19: 2f:b3:67:90:d1:6b:9d:a1:6c:96:fa:a5:29:57:e7: 45:69:e6:e0:a7:5b:42:b0:83:62:77:ba:f1:33:ba: 3e:29:d2:64:85:78:3e:e8:7d:c9:4e:17:75:df:72: c1:37:aa:84:af:3f:1b:ad:48:e7:b3:6b:d5:53:92: 5c:a7:73:f9:19:87:c8:cb:01:7d:e3:a1:ae:a9:16: ad:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:39:AA:98:9D:6F:BA:E7:5B:34:A5:C8:D4:87:BE:09:AD:0E:10:F0 X509v3 Authority Key Identifier: keyid:A1:18:AA:FD:BB:CA:8D:4E:00:63:C3:11:95:FA:6C:19:4C:39:43:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ea:c2:65:50:c3:43:b6:b7:ea:d6:a8:3a:20:06:2a:f2:38:af: 83:c2:ac:6e:6d:0a:25:7d:ca:6d:a2:0b:f9:34:67:7c:20:40: 01:2b:b0:23:4b:9f:15:a5:13:6a:b9:27:53:b1:e4:ff:9d:32: 49:5e:fe:4e:1b:40:4c:aa:69:b1:af:10:c4:69:ed:2f:00:b9: e6:e2:6e:48:39:e0:fe:a4:d3:87:df:ed:de:49:4e:3f:77:0c: ee:ff:68:15:b7:b4:f4:a9:89:5e:7f:55:a1:ce:c9:c0:dc:1a: dd:5f:24:f1:f4:67:d2:a0:62:8f:d3:7f:77:01:0c:69:d2:60: 05:3d:ef:4e:27:4c:e9:ea:dc:c6:e9:59:ae:6d:54:6c:72:e9: 98:53:92:05:d1:87:39:82:0f:c0:7f:8c:cd:fd:d9:dc:d7:de: b4:c8:59:8c:f0:ee:fd:e5:63:d2:ec:57:ec:c5:93:21:e7:3a: 2a:86:ee:1c:ff:9b:03:09:4d:c1:75:fb:e5:27:df:bd:90:35: 50:ab:67:0a:92:71:15:2d:ad:80:87:94:45:c7:a8:64:44:02: e4:b2:55:9c:60:b3:60:0b:d0:de:18:19:23:14:a0:07:bd:70: 7a:b5:a0:b0:a5:86:f4:65:e5:21:e3:d1:a2:1a:1c:1d:78:4d: 0a:07:55:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfXTJYIdo7WCvBzUd2hl1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMThhYWZkYmJjYThkNGUwMDYzYzMxMTk1ZmE2YzE5NGMz OTQzY2IwHhcNMjYwMjA5MTMwMDQzWhcNMjYwMjEwMTMwMDQzWjAzMTEwLwYDVQQD Eyg0ZTM5YWE5ODlkNmZiYWU3NWIzNGE1YzhkNDg3YmUwOWFkMGUxMGYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBDHnQ8lOKXElTdK73MFKxGQ99DK yzjbIA2AxtB5DQfS5AaYPRxTx6i9ozN/SLhBWZisPR9cab6UQ0hFDV0GcpiXHn7G YDyWcvl4KK9PEVpiRV8OeAOLFU0wSgLC7hswgOFnj76UUAPODDtZIe92I3R2nG4F tf86sxWtHjloj1MCqUSke51bbOWMmw6TRVWIgqcgEB5C3pNfKIsT+0LN5H3OHAcL PU2VfVXrDEXXskRDGxkvs2eQ0WudoWyW+qUpV+dFaebgp1tCsINid7rxM7o+KdJk hXg+6H3JThd133LBN6qErz8brUjns2vVU5Jcp3P5GYfIywF946GuqRatKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE45qpidb7rnWzSlyNSHvgmtDhDwMB8GA1UdIwQY MBaAFKEYqv27yo1OAGPDEZX6bBlMOUPLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1JpcV9idktqVTRBWThNUmxmcHNHVXc1UThzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC80NjVjNTEtNzhlNC00MTc4LTg1ODUt NzJmMjFlNjQ2ZThlLzEvb1JpcV9idktqVTRBWThNUmxmcHNHVXc1UThzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC80NjVjNTEtNzhlNC00MTc4LTg1ODUtNzJmMjFlNjQ2ZThl LzEvb1JpcV9idktqVTRBWThNUmxmcHNHVXc1UThzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA6sJlUMND trfq1qg6IAYq8jivg8Ksbm0KJX3KbaIL+TRnfCBAASuwI0ufFaUTarknU7Hk/50y SV7+ThtATKppsa8QxGntLwC55uJuSDng/qTTh9/t3klOP3cM7v9oFbe09KmJXn9V oc7JwNwa3V8k8fRn0qBij9N/dwEMadJgBT3vTidM6ercxulZrm1UbHLpmFOSBdGH OYIPwH+Mzf3Z3NfetMhZjPDu/eVj0uxX7MWTIec6KobuHP+bAwlNwXX75SffvZA1 UKtnCpJxFS2tgIeURceoZEQC5LJVnGCzYAvQ3hgZIxSgB71werWgsKWG9GXlIePR ohocHXhNCgdVDQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:40 2026 by rpki-client