This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft File: OzdnJSANjYwAzw91FK8l_zYjEPA.mft (raw, json) Hash identifier: AW2aSBxUBSuRUAph9ojS7u7vjkZdqzWV/MHXl29VGfQ= Subject key identifier: 75:91:A8:34:32:38:FB:17:76:27:63:78:D9:E8:6D:7B:86:4F:54:6D Authority key identifier: 3B:37:67:25:20:0D:8D:8C:00:CF:0F:75:14:AF:25:FF:36:23:10:F0 Certificate issuer: /CN=3b376725200d8d8c00cf0f7514af25ff362310f0 Certificate serial: 019C427D73B24EADAEDAC2C1FA76C97A7803 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 13:00:43 +0000 Manifest this update: Mon 09 Feb 2026 13:00:43 +0000 Manifest next update: Tue 10 Feb 2026 13:00:43 +0000 Files and hashes: 1: OzdnJSANjYwAzw91FK8l_zYjEPA.crl (hash: SSMK09qI47L5NmJlQG0q5mpyF/zm9LFyVg2DVf6tdvg=) 2: cpS1wHSQ6aTdnwNWUDjBZlgAC7Y.roa (hash: XiHOtWW1/pqGi1+Lnl6yq25m5xXc7tXDYaQje+WHC+0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:73:b2:4e:ad:ae:da:c2:c1:fa:76:c9:7a:78:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b376725200d8d8c00cf0f7514af25ff362310f0 Validity Not Before: Feb 9 13:00:43 2026 GMT Not After : Feb 10 13:00:43 2026 GMT Subject: CN=7591a8343238fb1776276378d9e86d7b864f546d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ac:27:a7:93:18:c7:35:3c:35:6f:61:af:c3: fa:6f:c6:f0:79:fb:95:e7:0c:53:e4:4a:a0:73:07: ab:22:c8:72:d3:11:b0:be:c8:42:39:80:75:16:34: ae:9d:2f:ab:cb:d3:60:5a:c9:40:b4:e1:1d:d7:75: 98:93:80:83:54:dc:fb:f6:19:06:37:ea:00:12:d6: 53:3a:b1:ae:b2:03:bd:b7:00:2f:2e:b9:52:bb:9a: a5:af:db:f7:37:8f:fc:f5:fe:31:ff:cc:0e:8e:8e: 25:c5:d2:2d:95:bb:7d:05:b4:2e:80:54:ab:0b:a6: be:3b:d4:5d:87:49:86:9b:85:7e:9c:c2:0d:02:14: cb:46:e7:f0:fe:e3:52:ad:1d:e7:a9:40:c4:e1:02: 09:f3:d2:b6:43:c6:98:df:1c:db:8a:d4:3c:bf:9c: 33:14:5c:88:af:7d:ee:7d:0a:e4:27:3b:7e:8b:81: 31:02:9c:9e:8e:c7:25:64:74:24:10:a0:be:5c:12: 43:b6:ba:b6:42:6c:a3:53:24:6c:99:3b:97:58:84: 5f:ea:09:5f:46:26:bf:03:df:10:5a:3b:3a:aa:76: c0:e7:7d:32:43:d7:12:da:89:e0:d4:9d:4e:4d:20: ac:21:7f:b6:e3:f4:3c:c8:6e:95:df:06:7d:ff:cd: 04:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:91:A8:34:32:38:FB:17:76:27:63:78:D9:E8:6D:7B:86:4F:54:6D X509v3 Authority Key Identifier: keyid:3B:37:67:25:20:0D:8D:8C:00:CF:0F:75:14:AF:25:FF:36:23:10:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:18:24:4c:5f:13:a7:bc:ca:4d:32:f3:d0:6f:ea:c4:39:20: ec:8d:8e:95:9b:5d:7e:8a:75:31:ea:57:a3:e1:cd:5a:6a:74: de:86:70:b7:f7:35:10:39:42:f3:ef:39:b5:43:ec:00:58:54: 01:d2:9e:2e:c5:3d:a8:f5:b1:da:ce:a6:08:a9:46:34:bf:66: f0:6e:cb:58:90:f5:12:7b:91:e6:31:3a:1c:96:2e:5c:76:c3: 51:be:b8:ff:5f:11:ea:57:99:33:15:96:f5:88:63:e5:a3:c7: 8c:d9:48:f9:9e:3b:d9:27:de:1f:f7:e2:12:85:b6:30:a6:dd: a3:79:33:63:ff:61:7b:cf:85:e7:29:ec:87:e9:8a:2b:78:f8: 70:e8:12:eb:7e:24:72:58:49:a3:9a:b6:09:d5:c2:62:a1:10: 9b:ad:66:4a:06:53:32:f2:a3:54:26:89:7d:61:92:2f:a8:58: 3f:32:75:ba:da:fa:86:9e:71:b8:f6:ca:2a:4d:ee:f3:d1:b6: 22:be:4e:31:9b:00:23:0c:4c:93:ef:83:6f:1e:18:94:58:9f: cf:f7:71:c7:b6:23:cd:d6:31:e5:a3:dd:de:7e:d3:14:a9:6c: f5:82:b1:c7:31:50:5c:81:be:8d:ec:7b:9e:b8:18:c3:40:ee: 20:e5:33:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfXOyTq2u2sLB+nbJengDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiMzc2NzI1MjAwZDhkOGMwMGNmMGY3NTE0YWYyNWZmMzYy MzEwZjAwHhcNMjYwMjA5MTMwMDQzWhcNMjYwMjEwMTMwMDQzWjAzMTEwLwYDVQQD Eyg3NTkxYTgzNDMyMzhmYjE3NzYyNzYzNzhkOWU4NmQ3Yjg2NGY1NDZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn6wnp5MYxzU8NW9hr8P6b8bwefuV 5wxT5EqgcwerIshy0xGwvshCOYB1FjSunS+ry9NgWslAtOEd13WYk4CDVNz79hkG N+oAEtZTOrGusgO9twAvLrlSu5qlr9v3N4/89f4x/8wOjo4lxdItlbt9BbQugFSr C6a+O9Rdh0mGm4V+nMINAhTLRufw/uNSrR3nqUDE4QIJ89K2Q8aY3xzbitQ8v5wz FFyIr33ufQrkJzt+i4ExApyejsclZHQkEKC+XBJDtrq2QmyjUyRsmTuXWIRf6glf Ria/A98QWjs6qnbA530yQ9cS2ong1J1OTSCsIX+24/Q8yG6V3wZ9/80E5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHWRqDQyOPsXdidjeNnobXuGT1RtMB8GA1UdIwQY MBaAFDs3ZyUgDY2MAM8PdRSvJf82IxDwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3pkbkpTQU5qWXdBenc5MUZLOGxfellqRVBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9lNTRhNjMtMzZiNC00Njg0LTkxNTkt MjkyMDk4ZGEyZTM5LzEvT3pkbkpTQU5qWXdBenc5MUZLOGxfellqRVBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy9lNTRhNjMtMzZiNC00Njg0LTkxNTktMjkyMDk4ZGEyZTM5 LzEvT3pkbkpTQU5qWXdBenc5MUZLOGxfellqRVBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHhgkTF8T p7zKTTLz0G/qxDkg7I2OlZtdfop1MepXo+HNWmp03oZwt/c1EDlC8+85tUPsAFhU AdKeLsU9qPWx2s6mCKlGNL9m8G7LWJD1EnuR5jE6HJYuXHbDUb64/18R6leZMxWW 9Yhj5aPHjNlI+Z472SfeH/fiEoW2MKbdo3kzY/9he8+F5ynsh+mKK3j4cOgS634k clhJo5q2CdXCYqEQm61mSgZTMvKjVCaJfWGSL6hYPzJ1utr6hp5xuPbKKk3u89G2 Ir5OMZsAIwxMk++Dbx4YlFifz/dxx7YjzdYx5aPd3n7TFKls9YKxxzFQXIG+jex7 nrgYw0DuIOUzsg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:03 2026 by rpki-client