This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft File: OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft (raw, json) Hash identifier: CIRXz4RiNdB813m7ZF0KyXgPzBZA5PGKMxwmjXxTrII= Subject key identifier: 79:BF:DE:5F:45:7F:D5:A8:44:8B:67:A6:15:83:48:93:31:07:1F:D7 Authority key identifier: 3A:6B:08:44:26:D9:DE:0B:10:E0:14:1D:1D:E4:3C:76:29:C1:96:82 Certificate issuer: /CN=3a6b084426d9de0b10e0141d1de43c7629c19682 Certificate serial: 019C43FE2FC586DB90949FA49F985A79157B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft Manifest number: 0EC4 Signing time: Mon 09 Feb 2026 20:00:57 +0000 Manifest this update: Mon 09 Feb 2026 20:00:57 +0000 Manifest next update: Tue 10 Feb 2026 20:00:57 +0000 Files and hashes: 1: OmsIRCbZ3gsQ4BQdHeQ8dinBloI.crl (hash: S4K8fQM+SnPj6DreSDxITRYBjSJ8tMFbA63hHDUSo50=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.crl rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft rsync://rpki.ripe.net/repository/DEFAULT/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:2f:c5:86:db:90:94:9f:a4:9f:98:5a:79:15:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a6b084426d9de0b10e0141d1de43c7629c19682 Validity Not Before: Feb 9 20:00:57 2026 GMT Not After : Feb 10 20:00:57 2026 GMT Subject: CN=79bfde5f457fd5a8448b67a61583489331071fd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0d:5e:aa:3d:08:13:a2:09:e1:69:75:01:48: 59:01:7a:b7:f1:47:2d:8f:93:e3:77:84:c6:83:15: 31:93:d3:57:e3:c3:09:7e:7e:eb:b0:f4:2a:8e:dd: 0c:45:da:75:5f:d5:5b:64:c9:60:98:36:75:01:cf: 3d:b0:20:fe:fb:6f:37:13:d2:5d:d0:d8:4f:ac:5f: 9c:19:9d:a1:03:de:1d:9e:c8:6e:55:4c:c0:74:57: e1:99:62:b5:97:c4:66:04:59:10:77:89:c1:cb:65: ec:b1:55:46:a1:4b:6e:23:62:d8:2b:2a:de:f1:0c: a7:b0:ed:31:85:0e:6d:86:54:06:11:e9:31:6e:e7: 2b:3a:0b:61:48:85:f1:ac:54:2a:0a:12:ad:76:9a: 4d:50:c8:a5:15:30:3d:a2:1a:76:81:bf:63:c5:31: 1e:e1:48:e9:f0:08:0c:f2:02:34:32:e3:33:30:fc: 26:98:4f:8e:66:cb:04:72:f4:fd:d3:e1:8f:51:19: c0:8e:9b:2a:a5:a3:2d:67:53:0f:01:1a:4b:01:52: cc:a4:f2:b7:ce:c1:1c:9c:87:55:52:59:40:a3:df: bb:ae:2c:94:5b:6c:a9:01:fc:c3:92:f0:02:83:68: e5:e1:8e:f2:b3:d5:41:17:b9:d5:80:7d:60:c6:62: c0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:BF:DE:5F:45:7F:D5:A8:44:8B:67:A6:15:83:48:93:31:07:1F:D7 X509v3 Authority Key Identifier: keyid:3A:6B:08:44:26:D9:DE:0B:10:E0:14:1D:1D:E4:3C:76:29:C1:96:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:c2:93:07:1a:24:8a:0b:61:cf:bf:78:3e:d8:68:68:24:5d: 22:ce:4a:f8:c9:fc:7e:b5:55:12:22:71:7b:26:6e:70:df:fb: e3:8b:3c:c3:60:a2:ce:23:be:7a:a0:c8:1b:a2:87:fb:a8:44: f3:60:1b:e4:79:a5:85:28:f2:67:ee:4f:32:71:61:3a:96:56: ce:cf:30:d8:04:63:dd:59:42:f0:26:13:68:7a:ba:86:1b:c4: 87:10:b0:ec:5d:0d:aa:23:37:72:9e:6b:f8:d1:51:dc:3e:94: 64:6f:b5:33:7b:c0:d8:0f:f8:58:fd:58:e2:fc:17:29:97:68: e1:25:fd:0e:12:be:44:ae:10:82:5c:dc:c0:56:0a:a3:a6:22: e8:07:4c:95:d4:a1:20:70:cf:64:cf:f1:59:23:3e:94:82:a8: 61:93:36:a6:3e:c1:ac:7b:80:f5:89:35:f2:48:84:08:33:a1: 0b:52:42:68:e2:d9:ab:5f:e2:11:3a:61:c2:d0:75:79:33:f4: 8f:51:0e:93:b5:ce:91:da:6e:06:42:8d:76:8c:ae:f1:13:33: ed:7f:67:03:a5:9b:f8:fa:50:8e:41:f9:cf:fe:ee:b1:9b:bc: aa:b4:2e:6c:4a:f7:e5:32:23:0d:be:28:3b:43:b2:e2:39:da: 8b:13:77:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/i/FhtuQlJ+kn5haeRV7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNmIwODQ0MjZkOWRlMGIxMGUwMTQxZDFkZTQzYzc2Mjlj MTk2ODIwHhcNMjYwMjA5MjAwMDU3WhcNMjYwMjEwMjAwMDU3WjAzMTEwLwYDVQQD Eyg3OWJmZGU1ZjQ1N2ZkNWE4NDQ4YjY3YTYxNTgzNDg5MzMxMDcxZmQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsA1eqj0IE6IJ4Wl1AUhZAXq38Uct j5Pjd4TGgxUxk9NX48MJfn7rsPQqjt0MRdp1X9VbZMlgmDZ1Ac89sCD++283E9Jd 0NhPrF+cGZ2hA94dnshuVUzAdFfhmWK1l8RmBFkQd4nBy2XssVVGoUtuI2LYKyre 8QynsO0xhQ5thlQGEekxbucrOgthSIXxrFQqChKtdppNUMilFTA9ohp2gb9jxTEe 4Ujp8AgM8gI0MuMzMPwmmE+OZssEcvT90+GPURnAjpsqpaMtZ1MPARpLAVLMpPK3 zsEcnIdVUllAo9+7riyUW2ypAfzDkvACg2jl4Y7ys9VBF7nVgH1gxmLARwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHm/3l9Ff9WoRItnphWDSJMxBx/XMB8GA1UdIwQY MBaAFDprCEQm2d4LEOAUHR3kPHYpwZaCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT21zSVJDYlozZ3NRNEJRZEhlUThkaW5CbG9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC85YmIyNzUtODZiMC00MmIyLWE2Y2Ut MzA1YjdjZWViNzk2LzEvT21zSVJDYlozZ3NRNEJRZEhlUThkaW5CbG9JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC85YmIyNzUtODZiMC00MmIyLWE2Y2UtMzA1YjdjZWViNzk2 LzEvT21zSVJDYlozZ3NRNEJRZEhlUThkaW5CbG9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX8KTBxok igthz794PthoaCRdIs5K+Mn8frVVEiJxeyZucN/744s8w2CiziO+eqDIG6KH+6hE 82Ab5HmlhSjyZ+5PMnFhOpZWzs8w2ARj3VlC8CYTaHq6hhvEhxCw7F0NqiM3cp5r +NFR3D6UZG+1M3vA2A/4WP1Y4vwXKZdo4SX9DhK+RK4QglzcwFYKo6Yi6AdMldSh IHDPZM/xWSM+lIKoYZM2pj7BrHuA9Yk18kiECDOhC1JCaOLZq1/iETphwtB1eTP0 j1EOk7XOkdpuBkKNdoyu8RMz7X9nA6Wb+PpQjkH5z/7usZu8qrQubEr35TIjDb4o O0Oy4jnaixN3lA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:16 2026 by rpki-client