This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft File: OKN8JN3KNH1xPteU0zzUqBqLSYo.mft (raw, json) Hash identifier: NH+ttgnOkGsb71DJGTywwgkEHnlFIkWlXjSLoTi6BM0= Subject key identifier: 9C:56:B3:77:DE:4B:77:EE:12:21:98:21:F1:AF:DA:90:FA:1B:F2:22 Authority key identifier: 38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A Certificate issuer: /CN=38a37c24ddca347d713ed794d33cd4a81a8b498a Certificate serial: 019C427D177AA0B24BC80090F99F5BA8101B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft Manifest number: 17BC Signing time: Mon 09 Feb 2026 13:00:19 +0000 Manifest this update: Mon 09 Feb 2026 13:00:19 +0000 Manifest next update: Tue 10 Feb 2026 13:00:19 +0000 Files and hashes: 1: GRmYf5fBtQllaFBPiERX0WNTqyw.roa (hash: OUUewVjWM6OodlJe2MBm0csiVAeXeLMBert10ePJJOg=) 2: OKN8JN3KNH1xPteU0zzUqBqLSYo.crl (hash: BiDydNvMDZdvzat5AKttj4RidrakXl1SQ+8z8YbcFz8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:17:7a:a0:b2:4b:c8:00:90:f9:9f:5b:a8:10:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38a37c24ddca347d713ed794d33cd4a81a8b498a Validity Not Before: Feb 9 13:00:19 2026 GMT Not After : Feb 10 13:00:19 2026 GMT Subject: CN=9c56b377de4b77ee12219821f1afda90fa1bf222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:45:b3:3b:bf:60:5e:30:25:5b:2c:e0:89:83: 5f:b9:ea:9e:d1:c7:34:19:0d:cc:50:20:4d:8f:87: f7:52:84:17:8c:e8:ee:d7:66:0f:22:fd:2b:f6:2a: 86:e0:ab:36:63:44:e0:c1:5a:ac:ef:db:00:a6:f8: c9:4f:d4:33:c6:16:5d:91:06:bc:b5:c2:87:e2:a7: 76:14:ff:8b:3e:34:35:5b:c4:44:05:93:48:53:02: 77:0e:2e:ab:0c:f7:7a:3d:ce:fa:1c:99:58:d8:9f: 4c:9a:00:05:a3:53:06:13:1c:c3:fe:19:d2:e9:80: 7f:d2:64:d6:0b:ce:61:35:98:e8:25:99:03:57:fb: 83:3d:7f:28:ce:b6:10:bc:33:21:4a:11:e8:43:c4: c7:70:d9:32:86:76:35:96:28:f9:d7:9c:b0:59:8a: be:0e:ee:6e:04:49:33:e2:e3:aa:60:d7:4a:eb:5e: 8d:8e:e3:39:d7:aa:06:c2:d0:fc:bd:87:d6:7d:b4: fc:54:94:39:25:5e:57:85:1d:05:4f:08:5f:68:21: 79:0b:7e:f5:df:66:22:bd:65:28:65:53:09:8e:70: 57:d3:43:3b:5f:42:da:e1:23:11:60:d1:1f:db:bc: 59:25:22:b0:f2:15:14:32:23:bd:80:e0:fb:89:0b: 41:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:56:B3:77:DE:4B:77:EE:12:21:98:21:F1:AF:DA:90:FA:1B:F2:22 X509v3 Authority Key Identifier: keyid:38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:bb:0e:06:3e:de:0c:9c:21:a2:ff:c3:36:b6:f0:2c:86:69: a4:fd:d0:15:3c:b0:f1:c4:26:6a:9d:ee:82:ad:1b:6e:f9:24: 3e:42:85:8e:af:f1:e1:54:55:da:4a:17:58:4a:ac:41:49:ee: f1:e7:80:44:6b:27:70:ea:a9:41:6e:06:a2:35:13:fd:17:15: 4f:cd:43:93:4f:5b:44:ce:70:17:b4:5a:73:2c:e5:eb:43:48: f3:e0:54:1b:0b:13:02:52:b3:e6:e5:86:66:0a:49:1b:1f:22: b2:d4:e6:cd:db:66:b0:c9:61:6a:97:4c:8d:ec:fa:a0:4c:a7: ed:ec:82:6d:2a:68:39:5c:aa:6f:d0:25:66:2d:a8:84:87:db: 26:77:ab:eb:6d:51:21:df:0e:a3:03:d1:83:36:b8:3f:e2:70: 55:e4:1e:51:24:20:85:4e:d3:91:4d:6d:4c:2c:39:e6:6a:ca: 0c:e6:c5:b0:50:ca:ce:0a:f3:db:8b:29:5b:e5:f3:86:63:3a: e1:15:b1:da:5d:34:44:c4:08:44:6b:0d:85:42:59:16:d1:63: c0:e8:c9:e6:37:1e:c6:0d:f1:e8:09:50:2f:5e:7a:b6:fb:96: 01:18:d7:b2:61:65:1f:e6:b8:68:ce:f5:c8:1d:2b:4c:d5:fe: a6:30:8d:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfRd6oLJLyACQ+Z9bqBAbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4YTM3YzI0ZGRjYTM0N2Q3MTNlZDc5NGQzM2NkNGE4MWE4 YjQ5OGEwHhcNMjYwMjA5MTMwMDE5WhcNMjYwMjEwMTMwMDE5WjAzMTEwLwYDVQQD Eyg5YzU2YjM3N2RlNGI3N2VlMTIyMTk4MjFmMWFmZGE5MGZhMWJmMjIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8UWzO79gXjAlWyzgiYNfueqe0cc0 GQ3MUCBNj4f3UoQXjOju12YPIv0r9iqG4Ks2Y0TgwVqs79sApvjJT9QzxhZdkQa8 tcKH4qd2FP+LPjQ1W8REBZNIUwJ3Di6rDPd6Pc76HJlY2J9MmgAFo1MGExzD/hnS 6YB/0mTWC85hNZjoJZkDV/uDPX8ozrYQvDMhShHoQ8THcNkyhnY1lij515ywWYq+ Du5uBEkz4uOqYNdK616NjuM516oGwtD8vYfWfbT8VJQ5JV5XhR0FTwhfaCF5C371 32YivWUoZVMJjnBX00M7X0La4SMRYNEf27xZJSKw8hUUMiO9gOD7iQtB9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJxWs3feS3fuEiGYIfGv2pD6G/IiMB8GA1UdIwQY MBaAFDijfCTdyjR9cT7XlNM81Kgai0mKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0tOOEpOM0tOSDF4UHRlVTB6elVxQnFMU1lvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xZTMzYzMtZDE5Ny00NWYyLTgyOGUt NDRhNDlkMjYzNzAwLzEvT0tOOEpOM0tOSDF4UHRlVTB6elVxQnFMU1lvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8xZTMzYzMtZDE5Ny00NWYyLTgyOGUtNDRhNDlkMjYzNzAw LzEvT0tOOEpOM0tOSDF4UHRlVTB6elVxQnFMU1lvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL7sOBj7e DJwhov/DNrbwLIZppP3QFTyw8cQmap3ugq0bbvkkPkKFjq/x4VRV2koXWEqsQUnu 8eeARGsncOqpQW4GojUT/RcVT81Dk09bRM5wF7Racyzl60NI8+BUGwsTAlKz5uWG ZgpJGx8istTmzdtmsMlhapdMjez6oEyn7eyCbSpoOVyqb9AlZi2ohIfbJner621R Id8OowPRgza4P+JwVeQeUSQghU7TkU1tTCw55mrKDObFsFDKzgrz24spW+XzhmM6 4RWx2l00RMQIRGsNhUJZFtFjwOjJ5jcexg3x6AlQL156tvuWARjXsmFlH+a4aM71 yB0rTNX+pjCNSg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:03 2026 by rpki-client