This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft File: owVfB71HqGR4w79HOSVzrNU9Y24.mft (raw, json) Hash identifier: A/oQWbBXm98LszGF7Ox5WGM93J31RVT2qWDnx45jW+c= Subject key identifier: F0:5E:CE:11:EC:18:4E:01:62:B0:21:97:EB:2F:37:0E:21:80:A7:C6 Authority key identifier: A3:05:5F:07:BD:47:A8:64:78:C3:BF:47:39:25:73:AC:D5:3D:63:6E Certificate issuer: /CN=a3055f07bd47a86478c3bf47392573acd53d636e Certificate serial: 019C438FED9AD6310CFBA0BFD22EA0CF878B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/owVfB71HqGR4w79HOSVzrNU9Y24.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 18:00:31 +0000 Manifest this update: Mon 09 Feb 2026 18:00:31 +0000 Manifest next update: Tue 10 Feb 2026 18:00:31 +0000 Files and hashes: 1: owVfB71HqGR4w79HOSVzrNU9Y24.crl (hash: fTzkSMm1UK5iPmsqzKwKEedQceP4y6FqZ1EBoUYLYSU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft rsync://rpki.ripe.net/repository/DEFAULT/owVfB71HqGR4w79HOSVzrNU9Y24.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:ed:9a:d6:31:0c:fb:a0:bf:d2:2e:a0:cf:87:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3055f07bd47a86478c3bf47392573acd53d636e Validity Not Before: Feb 9 18:00:31 2026 GMT Not After : Feb 10 18:00:31 2026 GMT Subject: CN=f05ece11ec184e0162b02197eb2f370e2180a7c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b6:e3:36:99:73:db:6a:c7:1a:48:ab:c1:6f: 2d:42:04:35:8f:55:f9:17:23:e3:90:8e:8d:ab:6d: 01:5e:7c:86:de:b8:a2:55:b8:30:e2:01:b7:13:cc: 40:b4:ad:e1:40:c0:e1:39:ba:17:ad:03:d5:0e:30: 06:22:9e:86:2b:48:15:19:ca:2e:e2:ac:2f:e3:65: 55:11:ce:8b:96:23:45:86:7d:96:89:c0:16:d6:90: 6e:88:94:32:89:d5:57:14:aa:b6:4b:e5:cb:1d:4f: c5:84:2c:39:01:c0:be:8b:36:49:d3:5d:0b:f4:ab: c9:d3:73:d7:0c:0b:42:d1:12:0f:51:61:b6:54:5f: 14:15:bb:ca:7c:06:84:d3:a1:54:5f:ff:09:04:b3: dc:a4:06:b6:f0:e3:d6:e0:f1:e6:ca:88:3a:5b:87: 48:fe:1c:a4:4f:02:8a:b1:97:47:80:fd:29:e6:19: be:9b:ea:83:7a:0d:48:ff:a4:33:a9:25:8b:a0:a5: 98:f5:30:99:ab:d5:d7:a3:6a:c2:ee:46:75:c4:17: 06:56:e8:01:b0:6d:b2:da:c8:c4:ee:85:fa:b8:0a: 2b:b9:c8:0c:5f:c4:25:4c:03:d6:97:a7:24:71:71: 3d:e8:75:39:6d:9e:19:8f:b1:ba:ee:4a:19:72:9e: 9b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:5E:CE:11:EC:18:4E:01:62:B0:21:97:EB:2F:37:0E:21:80:A7:C6 X509v3 Authority Key Identifier: keyid:A3:05:5F:07:BD:47:A8:64:78:C3:BF:47:39:25:73:AC:D5:3D:63:6E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/owVfB71HqGR4w79HOSVzrNU9Y24.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:d6:31:4a:84:c0:ac:4e:77:69:89:08:3a:c4:71:02:64:0f: a5:72:58:34:7b:68:77:f0:bc:5b:ce:40:2b:98:ef:44:08:18: 3d:84:71:72:7a:99:9f:5d:39:81:3a:6d:c7:c3:c9:63:54:a9: 38:3a:a7:4b:d7:06:95:76:72:a6:e4:6d:5d:c7:11:dc:4b:21: ff:81:34:f3:6f:c7:ad:bc:be:f9:27:17:06:64:b0:0e:61:6a: 44:60:85:66:fc:35:20:19:fc:cf:c8:7e:8a:4f:c0:f1:f1:00: 87:18:b8:9f:fe:da:4c:f0:ec:27:6d:11:15:2c:3b:f1:87:e7: d3:25:15:34:91:89:e0:d1:b2:be:9f:a3:a4:f4:bd:e0:9e:44: 5f:f8:36:9b:f4:b7:87:a5:7b:ca:0c:f0:64:54:76:8d:40:07: c0:eb:87:11:01:87:94:80:ea:ce:11:34:89:ab:9d:f5:a2:83: 33:80:b6:be:15:55:9f:78:e5:91:89:7d:24:0f:b3:f3:bb:ab: db:e4:86:01:b1:4b:54:e3:51:8f:d3:ea:63:3c:97:1d:34:49: b4:a7:75:8f:54:b2:ef:1f:e3:f6:87:4f:42:6d:0c:33:77:a2: 52:30:b6:18:f9:e0:f6:e2:4c:33:57:05:57:7b:22:d1:6b:5b: 8f:e5:1b:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj+2a1jEM+6C/0i6gz4eLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzMDU1ZjA3YmQ0N2E4NjQ3OGMzYmY0NzM5MjU3M2FjZDUz ZDYzNmUwHhcNMjYwMjA5MTgwMDMxWhcNMjYwMjEwMTgwMDMxWjAzMTEwLwYDVQQD EyhmMDVlY2UxMWVjMTg0ZTAxNjJiMDIxOTdlYjJmMzcwZTIxODBhN2M2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnLbjNplz22rHGkirwW8tQgQ1j1X5 FyPjkI6Nq20BXnyG3riiVbgw4gG3E8xAtK3hQMDhOboXrQPVDjAGIp6GK0gVGcou 4qwv42VVEc6LliNFhn2WicAW1pBuiJQyidVXFKq2S+XLHU/FhCw5AcC+izZJ010L 9KvJ03PXDAtC0RIPUWG2VF8UFbvKfAaE06FUX/8JBLPcpAa28OPW4PHmyog6W4dI /hykTwKKsZdHgP0p5hm+m+qDeg1I/6QzqSWLoKWY9TCZq9XXo2rC7kZ1xBcGVugB sG2y2sjE7oX6uAorucgMX8QlTAPWl6ckcXE96HU5bZ4Zj7G67koZcp6bJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPBezhHsGE4BYrAhl+svNw4hgKfGMB8GA1UdIwQY MBaAFKMFXwe9R6hkeMO/Rzklc6zVPWNuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3dWZkI3MUhxR1I0dzc5SE9TVnpyTlU5WTI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9kOWQwYmYtNmQ1MS00MDhmLWI3YWUt YTNhYWQxMTc4Y2Q0LzEvb3dWZkI3MUhxR1I0dzc5SE9TVnpyTlU5WTI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi9kOWQwYmYtNmQ1MS00MDhmLWI3YWUtYTNhYWQxMTc4Y2Q0 LzEvb3dWZkI3MUhxR1I0dzc5SE9TVnpyTlU5WTI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP9YxSoTA rE53aYkIOsRxAmQPpXJYNHtod/C8W85AK5jvRAgYPYRxcnqZn105gTptx8PJY1Sp ODqnS9cGlXZypuRtXccR3Esh/4E082/Hrby++ScXBmSwDmFqRGCFZvw1IBn8z8h+ ik/A8fEAhxi4n/7aTPDsJ20RFSw78Yfn0yUVNJGJ4NGyvp+jpPS94J5EX/g2m/S3 h6V7ygzwZFR2jUAHwOuHEQGHlIDqzhE0iaud9aKDM4C2vhVVn3jlkYl9JA+z87ur 2+SGAbFLVONRj9PqYzyXHTRJtKd1j1Sy7x/j9odPQm0MM3eiUjC2GPng9uJMM1cF V3si0Wtbj+UbRQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:22:23 2026 by rpki-client