This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft File: oYhrwvjZOpz8WoN-LydS7knyJHQ.mft (raw, json) Hash identifier: jeK1GomKG8i0y2fOkMqqk4ikwcGbAFYcyC0FNZHksOQ= Subject key identifier: 3A:86:91:CC:09:C9:ED:87:23:F3:78:B9:0F:A1:18:55:FA:69:5B:4C Authority key identifier: A1:88:6B:C2:F8:D9:3A:9C:FC:5A:83:7E:2F:27:52:EE:49:F2:24:74 Certificate issuer: /CN=a1886bc2f8d93a9cfc5a837e2f2752ee49f22474 Certificate serial: 019C41A21C6FB98FADDF5685E984D3AFE3C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYhrwvjZOpz8WoN-LydS7knyJHQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 09:01:08 +0000 Manifest this update: Mon 09 Feb 2026 09:01:08 +0000 Manifest next update: Tue 10 Feb 2026 09:01:08 +0000 Files and hashes: 1: oYhrwvjZOpz8WoN-LydS7knyJHQ.crl (hash: K/O422rUycFQ7Pg0068OKHpXmQPss7Et+QoyYKkXgXw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft rsync://rpki.ripe.net/repository/DEFAULT/oYhrwvjZOpz8WoN-LydS7knyJHQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:1c:6f:b9:8f:ad:df:56:85:e9:84:d3:af:e3:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1886bc2f8d93a9cfc5a837e2f2752ee49f22474 Validity Not Before: Feb 9 09:01:08 2026 GMT Not After : Feb 10 09:01:08 2026 GMT Subject: CN=3a8691cc09c9ed8723f378b90fa11855fa695b4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:43:56:f1:ae:03:8a:ca:97:cc:3a:24:18:01: a0:43:3e:12:75:ee:9b:45:c2:ba:d5:7a:60:4b:73: a5:12:b0:e3:28:28:e1:f7:9a:aa:b2:10:47:9e:a6: f9:e8:46:cd:38:08:0f:8a:db:c5:db:67:4b:17:48: 8f:3b:ac:14:12:92:1a:b1:e2:1c:c4:9a:c0:88:aa: 43:27:d0:b5:fa:84:84:8a:9d:66:7f:94:52:c3:e0: 8e:db:3e:36:45:da:47:5b:cf:9f:65:79:2e:4d:d8: eb:5a:fe:84:d2:56:3c:80:35:4c:73:ab:8a:59:ff: 27:7f:77:f4:2c:9c:09:58:1b:86:91:aa:a0:8c:10: 0a:17:fe:8e:6a:f5:0b:b7:e1:08:58:5a:39:d1:f5: 23:34:12:73:ae:a7:b6:9f:ce:c8:5a:bc:f2:f4:50: 26:9f:53:fe:6e:dd:e3:db:72:ba:3a:d8:d1:1e:07: b7:82:14:57:2b:92:2f:68:fd:77:93:e0:0c:27:98: 76:59:a4:8e:f4:e4:5c:48:28:e9:f4:18:e2:cd:92: 82:18:15:ad:a8:33:a6:b7:9c:80:5d:bd:0a:f4:13: 3f:1d:a0:c7:ff:ac:42:4a:b1:8b:01:fb:13:c9:0a: 79:a8:35:f4:c6:aa:81:9e:0e:47:d1:aa:60:17:ff: 3f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:86:91:CC:09:C9:ED:87:23:F3:78:B9:0F:A1:18:55:FA:69:5B:4C X509v3 Authority Key Identifier: keyid:A1:88:6B:C2:F8:D9:3A:9C:FC:5A:83:7E:2F:27:52:EE:49:F2:24:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYhrwvjZOpz8WoN-LydS7knyJHQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/7cb76e-957b-4311-89c9-995d11a86015/1/oYhrwvjZOpz8WoN-LydS7knyJHQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b7:c8:5a:b5:b9:9a:6f:26:76:c1:e3:08:89:ca:aa:a3:4e:67: a2:9d:bd:7d:2c:db:3b:8b:fd:ab:f9:2b:7b:cd:b3:ab:83:34: b5:c1:62:09:55:65:38:df:39:d5:23:c0:4a:54:2a:33:fd:fa: 34:51:52:f8:71:59:d3:31:8a:16:f4:5a:9f:87:16:f0:f8:bc: f9:b2:71:71:14:56:d4:33:f4:98:59:f0:e6:19:03:b3:b6:cb: 26:73:21:49:c3:d5:fd:69:2e:50:4d:f3:87:59:f7:30:5d:31: 64:5e:55:bf:a7:f1:31:ef:e3:e7:d7:bd:d9:f6:54:b6:69:96: d4:6d:bd:24:0d:99:52:3d:20:c8:3d:c1:7c:bf:7e:2b:b7:c9: 28:c5:9e:19:c8:4d:d9:e4:56:08:47:16:86:24:c5:ac:73:4d: 14:ae:88:58:9e:3b:2a:27:a9:c6:2e:b2:df:01:75:96:b8:45: 92:8d:04:23:a9:34:90:78:0c:dd:da:95:3e:60:66:c1:52:4e: 97:c9:c8:70:a5:a6:fa:c7:4f:ce:9a:f4:46:d4:47:5f:2f:73: 89:3b:bf:53:8e:a3:b5:dd:23:fb:d8:e9:6d:ed:80:39:ea:90: b6:de:09:a1:6d:67:68:bd:92:ea:36:5e:56:4b:5e:aa:b3:23: 37:7f:07:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBohxvuY+t31aF6YTTr+PGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExODg2YmMyZjhkOTNhOWNmYzVhODM3ZTJmMjc1MmVlNDlm MjI0NzQwHhcNMjYwMjA5MDkwMTA4WhcNMjYwMjEwMDkwMTA4WjAzMTEwLwYDVQQD EygzYTg2OTFjYzA5YzllZDg3MjNmMzc4YjkwZmExMTg1NWZhNjk1YjRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0NW8a4DisqXzDokGAGgQz4Sde6b RcK61XpgS3OlErDjKCjh95qqshBHnqb56EbNOAgPitvF22dLF0iPO6wUEpIaseIc xJrAiKpDJ9C1+oSEip1mf5RSw+CO2z42RdpHW8+fZXkuTdjrWv6E0lY8gDVMc6uK Wf8nf3f0LJwJWBuGkaqgjBAKF/6OavULt+EIWFo50fUjNBJzrqe2n87IWrzy9FAm n1P+bt3j23K6OtjRHge3ghRXK5IvaP13k+AMJ5h2WaSO9ORcSCjp9BjizZKCGBWt qDOmt5yAXb0K9BM/HaDH/6xCSrGLAfsTyQp5qDX0xqqBng5H0apgF/8/oQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDqGkcwJye2HI/N4uQ+hGFX6aVtMMB8GA1UdIwQY MBaAFKGIa8L42Tqc/FqDfi8nUu5J8iR0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1locnd2alpPcHo4V29OLUx5ZFM3a255SkhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi83Y2I3NmUtOTU3Yi00MzExLTg5Yzkt OTk1ZDExYTg2MDE1LzEvb1locnd2alpPcHo4V29OLUx5ZFM3a255SkhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi83Y2I3NmUtOTU3Yi00MzExLTg5YzktOTk1ZDExYTg2MDE1 LzEvb1locnd2alpPcHo4V29OLUx5ZFM3a255SkhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt8hatbma byZ2weMIicqqo05nop29fSzbO4v9q/kre82zq4M0tcFiCVVlON851SPASlQqM/36 NFFS+HFZ0zGKFvRan4cW8Pi8+bJxcRRW1DP0mFnw5hkDs7bLJnMhScPV/WkuUE3z h1n3MF0xZF5Vv6fxMe/j59e92fZUtmmW1G29JA2ZUj0gyD3BfL9+K7fJKMWeGchN 2eRWCEcWhiTFrHNNFK6IWJ47Kiepxi6y3wF1lrhFko0EI6k0kHgM3dqVPmBmwVJO l8nIcKWm+sdPzpr0RtRHXy9ziTu/U46jtd0j+9jpbe2AOeqQtt4JoW1naL2S6jZe VkteqrMjN38HDA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:55 2026 by rpki-client