This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.mft File: OhsBRND2_wuDzON2eUYxdFt8p6A.mft (raw, json) Hash identifier: jDPjrXOJdDcCV0X0Uk0LiXUbWd1rJrK7OWCZ5MLVl7o= Subject key identifier: D2:94:33:1A:F2:CC:85:A5:2A:A1:AF:2F:05:6C:B9:6C:5B:A6:31:F3 Authority key identifier: 3A:1B:01:44:D0:F6:FF:0B:83:CC:E3:76:79:46:31:74:5B:7C:A7:A0 Certificate issuer: /CN=3a1b0144d0f6ff0b83cce376794631745b7ca7a0 Certificate serial: 019C43C6EDC48CB09C8F2B0A723B91C893C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OhsBRND2_wuDzON2eUYxdFt8p6A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.mft Manifest number: 1341 Signing time: Mon 09 Feb 2026 19:00:36 +0000 Manifest this update: Mon 09 Feb 2026 19:00:36 +0000 Manifest next update: Tue 10 Feb 2026 19:00:36 +0000 Files and hashes: 1: OhsBRND2_wuDzON2eUYxdFt8p6A.crl (hash: sUn7vlTL9a5Urg15GX85zDqMBNfNsMp+ha8g/jDOc1A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.crl rsync://rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.mft rsync://rpki.ripe.net/repository/DEFAULT/OhsBRND2_wuDzON2eUYxdFt8p6A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:ed:c4:8c:b0:9c:8f:2b:0a:72:3b:91:c8:93:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a1b0144d0f6ff0b83cce376794631745b7ca7a0 Validity Not Before: Feb 9 19:00:36 2026 GMT Not After : Feb 10 19:00:36 2026 GMT Subject: CN=d294331af2cc85a52aa1af2f056cb96c5ba631f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3d:c3:fd:6a:b2:9e:45:44:c9:e5:52:9f:28: db:c2:c8:b3:85:ed:bb:77:b5:81:65:7e:ad:42:bb: dd:4d:11:52:ff:8b:47:1e:90:3c:5b:fe:3d:1f:6b: 4c:cd:eb:19:86:42:d1:8c:1c:1a:96:6b:b8:9b:5b: 7a:a3:78:09:e6:81:ba:28:2b:6e:93:38:d8:6d:ef: b3:62:17:a8:f6:a2:72:53:ab:78:f7:44:47:b0:92: 0c:56:61:02:3f:85:e8:ab:76:98:f4:b8:fe:08:af: fb:ea:15:9f:99:40:5d:50:7e:5f:b7:95:65:06:50: 28:fc:e6:5a:40:4e:3a:25:73:ff:c7:3e:6e:d0:76: 3b:b9:fb:96:bc:de:db:55:46:9a:4f:08:13:8f:9d: cc:8c:5c:1b:57:28:99:15:76:da:ea:a1:cd:6b:8f: e0:ac:52:c5:78:ab:c6:ba:ff:02:05:0c:35:d8:60: 5c:39:63:f1:61:b0:c6:1a:f8:6e:c5:f1:83:9b:0a: 25:d8:71:11:71:6e:e3:45:61:22:1c:66:66:98:a9: 19:d4:fa:f7:d8:ca:c7:ea:a3:f2:d2:08:0a:7b:ec: 5c:2e:05:55:6d:77:4f:3e:fc:ac:5a:e7:af:3c:5a: dc:21:2a:98:ae:43:55:e6:3d:70:d2:50:4b:41:10: 70:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:94:33:1A:F2:CC:85:A5:2A:A1:AF:2F:05:6C:B9:6C:5B:A6:31:F3 X509v3 Authority Key Identifier: keyid:3A:1B:01:44:D0:F6:FF:0B:83:CC:E3:76:79:46:31:74:5B:7C:A7:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OhsBRND2_wuDzON2eUYxdFt8p6A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:3e:6c:d7:00:6b:80:eb:61:a3:a6:7b:52:34:95:8c:34:ce: 68:c6:40:2e:32:e1:7b:ba:a1:94:d3:27:0f:ee:a2:2d:4a:ff: 6e:62:83:9e:65:29:26:aa:ce:18:b4:8c:c9:43:b2:60:5b:29: 9d:78:ac:0a:2d:bc:db:9e:80:87:5c:54:99:e5:25:19:2b:b7: bc:3d:26:11:cc:32:9b:86:16:e8:3f:43:23:ca:e6:18:70:66: e5:04:76:0d:4d:2c:77:a5:07:81:b5:cf:9c:69:9c:3c:e8:eb: 5d:10:09:e4:68:d7:62:fe:23:ca:2e:a1:4d:06:d8:01:25:2f: b3:87:62:b8:78:e1:80:26:e5:d6:ff:5e:21:8d:89:de:a0:ba: ef:37:7a:73:ae:e1:4c:05:71:8d:1e:8e:78:2c:53:b0:80:d9: db:42:e1:eb:c6:9a:af:2b:f4:ec:a5:fa:82:bd:12:ca:37:53: ed:7c:85:95:b4:a9:ea:07:21:9a:68:8c:bb:8a:83:7f:c4:1e: 1a:96:41:37:e1:d1:4f:52:41:3e:53:5c:cc:26:4c:38:6b:f4: d5:7a:db:8f:94:8f:59:5d:09:1e:cb:7c:0f:67:f9:7d:dd:8c: 82:c6:8f:e7:b1:11:c0:90:eb:1b:f4:d5:c0:f9:17:6a:9f:91: 3d:8a:4c:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxu3EjLCcjysKcjuRyJPBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhMWIwMTQ0ZDBmNmZmMGI4M2NjZTM3Njc5NDYzMTc0NWI3 Y2E3YTAwHhcNMjYwMjA5MTkwMDM2WhcNMjYwMjEwMTkwMDM2WjAzMTEwLwYDVQQD EyhkMjk0MzMxYWYyY2M4NWE1MmFhMWFmMmYwNTZjYjk2YzViYTYzMWYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvj3D/WqynkVEyeVSnyjbwsizhe27 d7WBZX6tQrvdTRFS/4tHHpA8W/49H2tMzesZhkLRjBwalmu4m1t6o3gJ5oG6KCtu kzjYbe+zYheo9qJyU6t490RHsJIMVmECP4Xoq3aY9Lj+CK/76hWfmUBdUH5ft5Vl BlAo/OZaQE46JXP/xz5u0HY7ufuWvN7bVUaaTwgTj53MjFwbVyiZFXba6qHNa4/g rFLFeKvGuv8CBQw12GBcOWPxYbDGGvhuxfGDmwol2HERcW7jRWEiHGZmmKkZ1Pr3 2MrH6qPy0ggKe+xcLgVVbXdPPvysWuevPFrcISqYrkNV5j1w0lBLQRBwRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNKUMxryzIWlKqGvLwVsuWxbpjHzMB8GA1UdIwQY MBaAFDobAUTQ9v8Lg8zjdnlGMXRbfKegMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2hzQlJORDJfd3VEek9OMmVVWXhkRnQ4cDZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82Mjg0MDYtM2UyYy00ODk2LTgyZWEt MjUwNTQ0Mjc3ZDVjLzEvT2hzQlJORDJfd3VEek9OMmVVWXhkRnQ4cDZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82Mjg0MDYtM2UyYy00ODk2LTgyZWEtMjUwNTQ0Mjc3ZDVj LzEvT2hzQlJORDJfd3VEek9OMmVVWXhkRnQ4cDZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkT5s1wBr gOtho6Z7UjSVjDTOaMZALjLhe7qhlNMnD+6iLUr/bmKDnmUpJqrOGLSMyUOyYFsp nXisCi28256Ah1xUmeUlGSu3vD0mEcwym4YW6D9DI8rmGHBm5QR2DU0sd6UHgbXP nGmcPOjrXRAJ5GjXYv4jyi6hTQbYASUvs4diuHjhgCbl1v9eIY2J3qC67zd6c67h TAVxjR6OeCxTsIDZ20Lh68aaryv07KX6gr0SyjdT7XyFlbSp6gchmmiMu4qDf8Qe GpZBN+HRT1JBPlNczCZMOGv01Xrbj5SPWV0JHst8D2f5fd2MgsaP57ERwJDrG/TV wPkXap+RPYpMjg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:13 2026 by rpki-client