This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft File: OUjkpbK65iNUmZE9y-wE38pTHpA.mft (raw, json) Hash identifier: 8OfKq04joTVg5wr5KV3gWGdpfZ93OsF6FldTGs+tHHU= Subject key identifier: 7D:5A:3C:E0:46:96:29:9B:84:19:D8:16:C6:83:F4:75:0A:B4:7B:06 Authority key identifier: 39:48:E4:A5:B2:BA:E6:23:54:99:91:3D:CB:EC:04:DF:CA:53:1E:90 Certificate issuer: /CN=3948e4a5b2bae6235499913dcbec04dfca531e90 Certificate serial: 019C41D8566F5E16AD59E6C5A373CA35B978 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUjkpbK65iNUmZE9y-wE38pTHpA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft Manifest number: 16E1 Signing time: Mon 09 Feb 2026 10:00:22 +0000 Manifest this update: Mon 09 Feb 2026 10:00:22 +0000 Manifest next update: Tue 10 Feb 2026 10:00:22 +0000 Files and hashes: 1: OUjkpbK65iNUmZE9y-wE38pTHpA.crl (hash: qeu58TpCsn/BgcTUIslnh15qFRMj3NtOSX9s6Fry5cg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.crl rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft rsync://rpki.ripe.net/repository/DEFAULT/OUjkpbK65iNUmZE9y-wE38pTHpA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:56:6f:5e:16:ad:59:e6:c5:a3:73:ca:35:b9:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3948e4a5b2bae6235499913dcbec04dfca531e90 Validity Not Before: Feb 9 10:00:22 2026 GMT Not After : Feb 10 10:00:22 2026 GMT Subject: CN=7d5a3ce04696299b8419d816c683f4750ab47b06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:db:8d:94:54:8e:8f:58:08:8b:72:ca:43:3a: 01:d8:2e:85:07:77:45:2c:0b:36:20:28:da:af:8b: 89:8e:76:3c:b6:eb:aa:65:8e:f6:4d:d1:e0:4d:be: 91:1c:a2:01:48:ea:74:85:32:fd:ea:47:0f:fa:17: 04:17:6d:b3:fc:0c:69:af:60:a8:64:31:de:d4:89: e8:9d:b4:f7:7a:e3:ab:bf:e4:26:48:5f:82:b9:31: c4:52:16:dd:1b:a3:6a:07:96:61:5d:9d:ea:1b:35: 52:7a:96:be:76:e7:98:41:c7:92:e2:1a:0c:ae:b2: 98:da:66:a5:89:d7:c9:3b:5e:b5:a4:66:02:74:8a: 5d:3e:f5:d5:bd:b2:c2:40:3e:4a:c8:6f:8a:e0:aa: 61:fd:ce:4f:03:0a:e8:56:04:d3:e2:16:51:9a:37: 3b:e1:70:75:f4:64:4c:0c:ec:a5:88:c9:26:3b:ff: 2d:3b:f0:1c:60:ac:e3:c8:d6:a9:31:36:cb:2f:c1: 2f:c7:0a:56:9f:58:4d:de:64:7d:51:b4:da:a8:09: 6f:ce:75:9f:80:01:e6:16:bf:a9:7f:83:9f:23:b2: 2b:d3:b5:e8:93:b1:8f:a8:25:b2:f5:a9:8f:a1:19: 15:62:92:e0:f9:ec:77:c1:b5:6c:98:ac:1f:37:b5: fe:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:5A:3C:E0:46:96:29:9B:84:19:D8:16:C6:83:F4:75:0A:B4:7B:06 X509v3 Authority Key Identifier: keyid:39:48:E4:A5:B2:BA:E6:23:54:99:91:3D:CB:EC:04:DF:CA:53:1E:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUjkpbK65iNUmZE9y-wE38pTHpA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:55:50:90:7b:df:d3:e4:3e:3f:ce:fc:6e:87:f6:3b:23:82: 82:4c:ee:72:61:a2:33:c6:2e:be:aa:6b:30:22:bc:b6:d8:54: da:40:8f:5e:d8:75:83:c5:a4:6f:9a:15:ff:ff:46:cd:aa:52: f4:a3:15:1a:ef:46:65:df:f4:43:f1:44:47:8f:74:f7:7a:60: e7:61:20:d1:25:64:4e:7d:2e:d6:b4:63:d7:3a:58:2f:39:20: 91:8c:7c:3e:7f:12:f7:22:4e:24:27:12:d0:25:9e:40:9d:b0: 8d:15:1a:cc:80:d2:dd:83:0f:65:91:29:19:b2:da:02:4d:14: 4d:77:cb:73:20:08:ce:f2:b6:94:5c:ae:a1:9f:59:be:3e:e8: e8:b7:33:51:16:90:eb:8a:af:ad:20:54:da:04:75:23:bd:5d: 7a:96:b9:96:b3:26:bc:4d:81:5a:fc:62:0e:dd:cd:be:21:05: 30:85:6d:48:59:da:d6:26:72:3a:d6:61:84:e7:f4:3d:03:56: 21:67:aa:39:d5:bc:fa:d6:7d:51:c3:87:53:93:6e:5b:65:d5: 74:ce:f6:fc:2b:78:9d:83:2d:bb:ae:61:8a:ab:ae:ea:4d:2e: f0:91:05:b1:48:08:60:74:df:b5:fe:a0:10:1d:9c:e8:b4:94: 6b:80:9d:1b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2FZvXhatWebFo3PKNbl4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5NDhlNGE1YjJiYWU2MjM1NDk5OTEzZGNiZWMwNGRmY2E1 MzFlOTAwHhcNMjYwMjA5MTAwMDIyWhcNMjYwMjEwMTAwMDIyWjAzMTEwLwYDVQQD Eyg3ZDVhM2NlMDQ2OTYyOTliODQxOWQ4MTZjNjgzZjQ3NTBhYjQ3YjA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtuNlFSOj1gIi3LKQzoB2C6FB3dF LAs2ICjar4uJjnY8tuuqZY72TdHgTb6RHKIBSOp0hTL96kcP+hcEF22z/Axpr2Co ZDHe1InonbT3euOrv+QmSF+CuTHEUhbdG6NqB5ZhXZ3qGzVSepa+dueYQceS4hoM rrKY2malidfJO161pGYCdIpdPvXVvbLCQD5KyG+K4Kph/c5PAwroVgTT4hZRmjc7 4XB19GRMDOyliMkmO/8tO/AcYKzjyNapMTbLL8EvxwpWn1hN3mR9UbTaqAlvznWf gAHmFr+pf4OfI7Ir07Xok7GPqCWy9amPoRkVYpLg+ex3wbVsmKwfN7X+bQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH1aPOBGlimbhBnYFsaD9HUKtHsGMB8GA1UdIwQY MBaAFDlI5KWyuuYjVJmRPcvsBN/KUx6QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1Vqa3BiSzY1aU5VbVpFOXktd0UzOHBUSHBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9iMWMzZjMtN2E0MC00MzJjLWI0MWUt ZjY1MGU1MDdhNzZkLzEvT1Vqa3BiSzY1aU5VbVpFOXktd0UzOHBUSHBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9iMWMzZjMtN2E0MC00MzJjLWI0MWUtZjY1MGU1MDdhNzZk LzEvT1Vqa3BiSzY1aU5VbVpFOXktd0UzOHBUSHBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFFVQkHvf 0+Q+P878bof2OyOCgkzucmGiM8YuvqprMCK8tthU2kCPXth1g8Wkb5oV//9GzapS 9KMVGu9GZd/0Q/FER49093pg52Eg0SVkTn0u1rRj1zpYLzkgkYx8Pn8S9yJOJCcS 0CWeQJ2wjRUazIDS3YMPZZEpGbLaAk0UTXfLcyAIzvK2lFyuoZ9Zvj7o6LczURaQ 64qvrSBU2gR1I71depa5lrMmvE2BWvxiDt3NviEFMIVtSFna1iZyOtZhhOf0PQNW IWeqOdW8+tZ9UcOHU5NuW2XVdM72/Ct4nYMtu65hiquu6k0u8JEFsUgIYHTftf6g EB2c6LSUa4CdGw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:00:04 2026 by rpki-client