This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft File: OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft (raw, json) Hash identifier: hFDzYKjiot1QYtb1UZ4TwArwevtJCjbNh/km+sYMWEo= Subject key identifier: 29:C5:65:9A:07:AB:21:6B:A4:8B:CF:CE:C7:B8:00:E8:E6:ED:BF:1D Authority key identifier: 38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D Certificate issuer: /CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d Certificate serial: 019C435963D02592B9D551B57C938F460677 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft Manifest number: 1827 Signing time: Mon 09 Feb 2026 17:00:57 +0000 Manifest this update: Mon 09 Feb 2026 17:00:57 +0000 Manifest next update: Tue 10 Feb 2026 17:00:57 +0000 Files and hashes: 1: JgeqMp-5oO_S80v0VekWcg72-Eg.roa (hash: tVMPOaelruFEfeEIzj1RQOAzlajxyQUW4rwlWncH9tQ=) 2: OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl (hash: 321pmNf/GHo/OikDwvLofpE+S/gP8ybdaZb/xOeXKJ8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:63:d0:25:92:b9:d5:51:b5:7c:93:8f:46:06:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d Validity Not Before: Feb 9 17:00:57 2026 GMT Not After : Feb 10 17:00:57 2026 GMT Subject: CN=29c5659a07ab216ba48bcfcec7b800e8e6edbf1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f7:ab:6c:dc:62:29:16:20:4c:78:01:0e:f3: 77:dc:36:39:a3:52:f1:9f:39:d6:ea:7b:f5:d4:3a: 9f:b4:a7:94:7b:8e:a6:8b:1a:f0:07:40:0d:84:dc: 12:a6:8d:19:f4:e3:de:3c:1c:f5:4a:d4:f5:55:59: ca:d0:ab:50:bc:25:3a:26:ef:f6:1e:91:eb:ba:07: 3b:30:16:83:d9:18:83:1c:9e:24:8e:41:a1:e2:ca: eb:5e:fd:75:15:eb:d7:9a:d9:0a:96:13:6e:fc:5b: 1b:e6:34:ee:17:99:2a:07:f0:56:fb:81:f9:ff:9f: b7:24:30:a8:47:51:79:42:68:ff:8f:3d:01:44:43: ef:9a:27:10:38:52:2b:02:51:13:06:0b:65:4c:f0: 50:00:5c:b7:2c:f6:b5:d4:33:2c:e9:6c:12:90:f1: 02:06:46:81:86:cc:fb:25:75:b2:e9:2f:f6:a9:10: 22:83:f6:21:a7:81:8c:a6:75:aa:f1:f8:a3:ed:94: 02:2d:00:f2:64:b6:3b:aa:cb:a9:bf:ab:f0:9f:18: b9:9a:3a:1f:2c:6a:0e:0c:da:9c:fe:26:1b:3d:63: bd:2f:6d:74:34:7f:2d:1a:5e:88:ec:b9:cf:5e:e7: 8a:3f:91:79:1f:c0:ce:36:e0:88:6c:66:bd:83:1c: c1:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C5:65:9A:07:AB:21:6B:A4:8B:CF:CE:C7:B8:00:E8:E6:ED:BF:1D X509v3 Authority Key Identifier: keyid:38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:c4:9d:f6:a7:3f:ad:76:2a:5a:3e:6c:8e:57:4d:67:80:fb: f5:e2:9f:70:b6:58:f1:87:60:bc:55:93:e3:e6:62:43:6f:32: 98:60:78:55:cf:a1:7b:12:1d:cf:f6:0e:bf:0b:56:d4:04:ae: b1:32:cf:68:b9:f4:e8:34:48:40:ad:84:a4:ef:59:e9:b1:c8: 84:9b:b8:3e:56:60:09:97:06:79:0f:0b:69:8c:a9:39:7d:6b: 3c:c9:ac:88:dd:8d:67:b2:64:08:28:a1:6f:e8:f8:c7:35:39: b8:c2:30:bd:e0:e9:86:93:69:b1:78:c8:17:32:ae:18:30:3d: af:e2:44:d7:9d:ec:d3:a3:b2:c7:4a:a9:8b:6b:f8:9e:5b:28: cc:7b:94:27:c4:aa:61:39:ed:96:59:7f:0d:4f:76:60:ed:20: 6f:77:f6:a9:ba:55:5d:f8:30:91:60:67:6e:c6:8f:64:2c:7b: 8f:8d:d3:6d:bb:86:b9:79:d2:0e:10:f4:45:02:73:49:dd:f4: b5:47:91:e8:88:d9:81:8a:f4:0a:9a:81:5d:86:29:31:30:55: 06:36:af:41:cc:12:bd:6e:82:04:8a:4a:a7:94:ce:16:e3:b8: 07:9f:18:9f:cd:55:58:21:14:a9:69:17:98:e0:c8:35:14:f9: fe:54:d5:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWWPQJZK51VG1fJOPRgZ3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4Y2EzZjM4ZDhlNWEzMDFlYWY2OTI0YjkyNGZlOGY1N2Fh YzY5MGQwHhcNMjYwMjA5MTcwMDU3WhcNMjYwMjEwMTcwMDU3WjAzMTEwLwYDVQQD EygyOWM1NjU5YTA3YWIyMTZiYTQ4YmNmY2VjN2I4MDBlOGU2ZWRiZjFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm/erbNxiKRYgTHgBDvN33DY5o1Lx nznW6nv11DqftKeUe46mixrwB0ANhNwSpo0Z9OPePBz1StT1VVnK0KtQvCU6Ju/2 HpHrugc7MBaD2RiDHJ4kjkGh4srrXv11FevXmtkKlhNu/Fsb5jTuF5kqB/BW+4H5 /5+3JDCoR1F5Qmj/jz0BREPvmicQOFIrAlETBgtlTPBQAFy3LPa11DMs6WwSkPEC BkaBhsz7JXWy6S/2qRAig/Yhp4GMpnWq8fij7ZQCLQDyZLY7qsupv6vwnxi5mjof LGoODNqc/iYbPWO9L210NH8tGl6I7LnPXueKP5F5H8DONuCIbGa9gxzBjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCnFZZoHqyFrpIvPzse4AOjm7b8dMB8GA1UdIwQY MBaAFDjKPzjY5aMB6vaSS5JP6PV6rGkNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT01vX09Oamxvd0hxOXBKTGtrX285WHFzYVEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9iYTY3NTUtNDI3My00OGUxLTg1ODIt NzEyZmE2NWEyNWJhLzEvT01vX09Oamxvd0hxOXBKTGtrX285WHFzYVEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9iYTY3NTUtNDI3My00OGUxLTg1ODItNzEyZmE2NWEyNWJh LzEvT01vX09Oamxvd0hxOXBKTGtrX285WHFzYVEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANMSd9qc/ rXYqWj5sjldNZ4D79eKfcLZY8YdgvFWT4+ZiQ28ymGB4Vc+hexIdz/YOvwtW1ASu sTLPaLn06DRIQK2EpO9Z6bHIhJu4PlZgCZcGeQ8LaYypOX1rPMmsiN2NZ7JkCCih b+j4xzU5uMIwveDphpNpsXjIFzKuGDA9r+JE153s06Oyx0qpi2v4nlsozHuUJ8Sq YTntlll/DU92YO0gb3f2qbpVXfgwkWBnbsaPZCx7j43TbbuGuXnSDhD0RQJzSd30 tUeR6IjZgYr0CpqBXYYpMTBVBjavQcwSvW6CBIpKp5TOFuO4B58Yn81VWCEUqWkX mODINRT5/lTVlg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:47:07 2026 by rpki-client