This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json) Hash identifier: OhF/vc+QCTI+OacmEIHH25CPCoxz1nofYVlAYE5yDwE= Subject key identifier: FD:FC:75:4A:48:0C:80:3C:45:51:6F:91:A0:58:F1:2D:57:A4:D7:D0 Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a Certificate serial: 019C438FD99DEB0FD7466A23AD30CB4C7DBE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft Manifest number: 0F93 Signing time: Mon 09 Feb 2026 18:00:26 +0000 Manifest this update: Mon 09 Feb 2026 18:00:26 +0000 Manifest next update: Tue 10 Feb 2026 18:00:26 +0000 Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: FIjWuWYBFrB+udBUi0aGpVbLdzsvqldRZuaC8ZLLJUY=) 2: qvZ-nKf7EFh0r3KXcsWmv_aLkqs.roa (hash: XaQIlBTlE+Jhvgae5CyaS1DgkFx27OpIcetptyKOkgg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:d9:9d:eb:0f:d7:46:6a:23:ad:30:cb:4c:7d:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a Validity Not Before: Feb 9 18:00:26 2026 GMT Not After : Feb 10 18:00:26 2026 GMT Subject: CN=fdfc754a480c803c45516f91a058f12d57a4d7d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9b:e0:c7:c8:fa:81:b9:d1:86:b3:4a:f3:1f: 94:96:4a:04:70:c7:a6:c7:31:40:f1:2b:3b:e8:83: 69:c0:15:47:8f:ce:0c:91:79:93:45:12:2f:62:c0: 0a:89:3d:9d:d2:9d:8f:05:dc:b5:0f:0c:e5:81:0f: 05:e7:ac:13:1b:1e:24:ca:d3:2d:b2:08:05:27:de: 3e:2d:7a:67:7c:a5:f3:49:eb:a3:ad:fb:25:7f:3f: b8:4e:b1:2d:64:b5:8c:36:74:7d:e1:28:9a:05:d8: 49:88:86:f6:d3:d7:71:17:26:3e:2f:65:2b:8b:4a: 27:b6:19:dc:e9:7e:4d:3c:1a:c7:2a:0d:6c:93:a4: d7:90:c6:9b:fc:2b:2f:d7:73:5d:f1:5e:d9:54:3b: d5:9b:5f:06:2c:68:1f:03:4b:17:65:64:b2:15:30: 50:1b:aa:65:0f:37:55:56:ba:fe:b9:72:df:01:20: 40:dd:81:81:0f:8e:57:b9:26:eb:cb:cf:4e:f6:a2: 81:a6:8e:e2:12:18:d6:36:54:1d:31:7c:f6:83:48: 1e:61:47:40:72:af:fa:24:e7:53:e8:91:c2:d4:ce: b2:71:e9:02:1b:33:22:0c:74:65:43:d9:00:f6:76: 42:83:aa:c1:9e:75:64:e8:42:5e:29:27:c4:d5:07: f3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:FC:75:4A:48:0C:80:3C:45:51:6F:91:A0:58:F1:2D:57:A4:D7:D0 X509v3 Authority Key Identifier: keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:01:34:89:fb:a2:64:a4:02:c9:34:4f:de:ee:d9:25:6a:61: 61:21:91:f6:fa:06:9f:ae:00:8b:09:c5:97:f0:d2:51:29:40: 1b:1f:3c:d4:70:ff:43:be:a8:03:b3:37:c4:e7:41:18:22:0a: 2b:55:4d:a8:b9:33:d9:74:1f:76:80:e9:f8:06:26:b3:91:5e: ee:14:c4:ac:86:1a:48:f9:dc:b6:49:70:37:35:fa:12:0c:a2: 10:17:21:e8:ba:f1:9e:1d:48:94:18:94:41:b9:92:30:95:03: 8d:f7:fa:7a:fe:c6:d2:9c:9e:3d:f5:e4:d5:aa:f6:96:83:f1: a9:fe:9a:c4:ea:8c:27:00:65:dc:e4:3a:83:49:10:46:ab:be: 64:3e:06:44:d0:9f:b3:6a:4e:97:a2:56:04:74:ed:c7:69:d8: da:e4:b0:0a:31:a4:16:60:e8:95:e7:63:ed:40:61:98:75:f4: 54:2d:f0:da:6a:d5:c1:9b:98:8c:f9:de:c8:1f:e9:5e:c6:34: 3e:cc:29:10:2d:27:ca:ce:bb:81:2b:45:92:c1:46:5c:2e:2b: ae:76:db:fc:d4:01:cf:cf:e4:8a:a0:90:9c:1e:93:31:7c:b2: 52:b4:58:e5:a0:26:eb:bd:07:a9:e7:48:e1:6c:c4:8e:a6:a2: 4b:f8:bb:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj9md6w/XRmojrTDLTH2+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5OWRjMTM2MTlhYWJhN2YyMjJjZWFjYjA1ZjFiYmFjNTli ZDNhOWEwHhcNMjYwMjA5MTgwMDI2WhcNMjYwMjEwMTgwMDI2WjAzMTEwLwYDVQQD EyhmZGZjNzU0YTQ4MGM4MDNjNDU1MTZmOTFhMDU4ZjEyZDU3YTRkN2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoJvgx8j6gbnRhrNK8x+UlkoEcMem xzFA8Ss76INpwBVHj84MkXmTRRIvYsAKiT2d0p2PBdy1DwzlgQ8F56wTGx4kytMt sggFJ94+LXpnfKXzSeujrfslfz+4TrEtZLWMNnR94SiaBdhJiIb209dxFyY+L2Ur i0onthnc6X5NPBrHKg1sk6TXkMab/Csv13Nd8V7ZVDvVm18GLGgfA0sXZWSyFTBQ G6plDzdVVrr+uXLfASBA3YGBD45XuSbry89O9qKBpo7iEhjWNlQdMXz2g0geYUdA cq/6JOdT6JHC1M6ycekCGzMiDHRlQ9kA9nZCg6rBnnVk6EJeKSfE1QfzGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP38dUpIDIA8RVFvkaBY8S1XpNfQMB8GA1UdIwQY MBaAFDmdwTYZqrp/IizqywXxu6xZvTqaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9lZmEyMjUtMTZkYy00ZjQzLWFhZTkt MDAzMmZkYzU0NTBiLzEvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC9lZmEyMjUtMTZkYy00ZjQzLWFhZTktMDAzMmZkYzU0NTBi LzEvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArAE0ifui ZKQCyTRP3u7ZJWphYSGR9voGn64AiwnFl/DSUSlAGx881HD/Q76oA7M3xOdBGCIK K1VNqLkz2XQfdoDp+AYms5Fe7hTErIYaSPnctklwNzX6EgyiEBch6Lrxnh1IlBiU QbmSMJUDjff6ev7G0pyePfXk1ar2loPxqf6axOqMJwBl3OQ6g0kQRqu+ZD4GRNCf s2pOl6JWBHTtx2nY2uSwCjGkFmDoledj7UBhmHX0VC3w2mrVwZuYjPneyB/pXsY0 PswpEC0nys67gStFksFGXC4rrnbb/NQBz8/kiqCQnB6TMXyyUrRY5aAm670HqedI 4WzEjqaiS/i7Qw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:09 2026 by rpki-client