This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft File: ocG-CYGk51dsVi9vCeZcF8GA48o.mft (raw, json) Hash identifier: ioGALS95aCc+QI63mi0dVSbM+wMicl1PyfQcMuVsNdc= Subject key identifier: 5C:BB:93:C6:DA:45:9C:3C:E6:6B:1B:3B:26:7E:20:A4:6B:81:0F:83 Authority key identifier: A1:C1:BE:09:81:A4:E7:57:6C:56:2F:6F:09:E6:5C:17:C1:80:E3:CA Certificate issuer: /CN=a1c1be0981a4e7576c562f6f09e65c17c180e3ca Certificate serial: 019C41A1CDA9CBFC595F012699DFDCCFE54C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ocG-CYGk51dsVi9vCeZcF8GA48o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 09:00:48 +0000 Manifest this update: Mon 09 Feb 2026 09:00:48 +0000 Manifest next update: Tue 10 Feb 2026 09:00:48 +0000 Files and hashes: 1: ocG-CYGk51dsVi9vCeZcF8GA48o.crl (hash: idRfIFBrrv9o5+oXFBWA3WNsYrJQ+54JXVg+4b8mdBc=) 2: wu-G3RyBE4hAU-OLiWD-QOCIX_4.roa (hash: rgoDex3C8KLhszdHAASmB1VMl9HshjIiBd1RRJ0afb4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft rsync://rpki.ripe.net/repository/DEFAULT/ocG-CYGk51dsVi9vCeZcF8GA48o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:cd:a9:cb:fc:59:5f:01:26:99:df:dc:cf:e5:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1c1be0981a4e7576c562f6f09e65c17c180e3ca Validity Not Before: Feb 9 09:00:48 2026 GMT Not After : Feb 10 09:00:48 2026 GMT Subject: CN=5cbb93c6da459c3ce66b1b3b267e20a46b810f83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6a:61:bd:39:14:90:48:af:97:24:2e:93:e6: e9:b0:a9:dd:e6:c2:23:7b:7b:fe:52:ef:03:d7:53: 13:56:c2:c1:f1:5b:60:74:d9:8d:2b:65:cf:e7:51: d9:48:53:c4:ad:fd:06:7f:98:78:5a:62:3b:69:4b: c6:db:c9:e8:2d:9e:f1:60:74:50:d6:7f:56:40:be: ff:4b:11:54:ca:b8:8c:71:c4:9e:d0:d3:d3:50:53: 75:4d:38:eb:8b:be:f3:26:5e:51:f2:ed:c5:ec:ee: a9:2e:09:bb:65:8a:12:20:ba:43:7d:51:46:9c:1b: 29:fe:eb:87:42:f8:49:59:4a:77:0b:57:2c:cc:0d: e2:96:2f:6e:33:c5:ed:51:d1:1f:cd:7e:5d:b2:6c: 55:74:11:8b:e9:1b:4a:e8:b6:8c:db:81:fc:ca:09: fa:44:80:8e:92:de:40:15:2f:b9:fe:73:65:96:12: 4e:d4:14:ae:1f:ef:f6:31:81:6a:a1:fc:42:c1:4b: 71:e8:19:19:c4:b8:eb:19:ba:df:73:90:64:3d:fb: fb:ec:e1:ec:b6:ae:ea:14:05:76:7d:e1:a4:f4:fe: ad:5c:1e:04:82:3e:4f:fc:26:84:83:34:e4:88:61: 9d:4f:a4:1b:60:73:fc:9f:38:72:25:bd:f3:25:cf: eb:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:BB:93:C6:DA:45:9C:3C:E6:6B:1B:3B:26:7E:20:A4:6B:81:0F:83 X509v3 Authority Key Identifier: keyid:A1:C1:BE:09:81:A4:E7:57:6C:56:2F:6F:09:E6:5C:17:C1:80:E3:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ocG-CYGk51dsVi9vCeZcF8GA48o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:0a:00:57:c7:a3:4c:0c:6a:39:ea:19:6f:a5:db:50:ed:0b: 33:f3:20:59:24:6a:20:8b:46:a9:a9:fe:c2:0e:cc:b1:90:e8: bb:e6:fc:73:67:5d:fe:75:45:04:a4:5c:18:65:f5:c7:d7:7b: f1:49:73:9e:37:02:2c:27:49:fd:f7:2d:49:25:53:80:87:b0: fc:c8:c6:3a:a6:a9:d2:88:df:e8:61:91:6e:f8:9b:f0:49:6c: 95:82:52:04:c7:0d:6e:00:dd:69:51:44:cc:d5:c8:45:a4:d4: 4a:1f:b1:a8:c2:43:50:59:58:2f:56:ef:3a:8e:f7:7d:8f:d6: 70:59:5f:8e:09:d3:11:51:4b:42:a9:35:7c:05:03:c9:35:80: c3:47:90:d7:61:36:e0:ca:91:2c:57:6d:af:af:24:d4:26:a6: 32:d8:8c:ab:f9:ec:79:c7:1d:96:c5:48:90:99:03:06:ff:0e: 83:41:12:88:17:f4:f2:c2:3e:41:d8:0a:b2:6a:f3:22:22:c7: 1e:df:3b:66:67:af:4f:ef:e5:8c:0b:33:bb:c0:e6:54:82:8b: d0:62:b5:bd:a6:84:2b:a6:08:02:d5:62:b9:c1:8c:b5:3d:cf: 60:b0:20:ea:45:8b:c6:9b:f6:60:3f:92:9c:a7:01:c3:be:e9: 7a:d9:ff:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoc2py/xZXwEmmd/cz+VMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExYzFiZTA5ODFhNGU3NTc2YzU2MmY2ZjA5ZTY1YzE3YzE4 MGUzY2EwHhcNMjYwMjA5MDkwMDQ4WhcNMjYwMjEwMDkwMDQ4WjAzMTEwLwYDVQQD Eyg1Y2JiOTNjNmRhNDU5YzNjZTY2YjFiM2IyNjdlMjBhNDZiODEwZjgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2mphvTkUkEivlyQuk+bpsKnd5sIj e3v+Uu8D11MTVsLB8VtgdNmNK2XP51HZSFPErf0Gf5h4WmI7aUvG28noLZ7xYHRQ 1n9WQL7/SxFUyriMccSe0NPTUFN1TTjri77zJl5R8u3F7O6pLgm7ZYoSILpDfVFG nBsp/uuHQvhJWUp3C1cszA3ili9uM8XtUdEfzX5dsmxVdBGL6RtK6LaM24H8ygn6 RICOkt5AFS+5/nNllhJO1BSuH+/2MYFqofxCwUtx6BkZxLjrGbrfc5BkPfv77OHs tq7qFAV2feGk9P6tXB4Egj5P/CaEgzTkiGGdT6QbYHP8nzhyJb3zJc/rlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFy7k8baRZw85msbOyZ+IKRrgQ+DMB8GA1UdIwQY MBaAFKHBvgmBpOdXbFYvbwnmXBfBgOPKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2NHLUNZR2s1MWRzVmk5dkNlWmNGOEdBNDhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi84MWU1YTUtYWMzOS00M2MxLTg3MmYt OThkZmMyZWU2ZTBjLzEvb2NHLUNZR2s1MWRzVmk5dkNlWmNGOEdBNDhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi84MWU1YTUtYWMzOS00M2MxLTg3MmYtOThkZmMyZWU2ZTBj LzEvb2NHLUNZR2s1MWRzVmk5dkNlWmNGOEdBNDhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAAoAV8ej TAxqOeoZb6XbUO0LM/MgWSRqIItGqan+wg7MsZDou+b8c2dd/nVFBKRcGGX1x9d7 8UlznjcCLCdJ/fctSSVTgIew/MjGOqap0ojf6GGRbvib8ElslYJSBMcNbgDdaVFE zNXIRaTUSh+xqMJDUFlYL1bvOo73fY/WcFlfjgnTEVFLQqk1fAUDyTWAw0eQ12E2 4MqRLFdtr68k1CamMtiMq/nseccdlsVIkJkDBv8Og0ESiBf08sI+QdgKsmrzIiLH Ht87ZmevT+/ljAszu8DmVIKL0GK1vaaEK6YIAtViucGMtT3PYLAg6kWLxpv2YD+S nKcBw77petn/rQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:04 2026 by rpki-client