This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft File: OCZCPrAZVSJObBHRnG05OB6L4h0.mft (raw, json) Hash identifier: XfUkQrfQKY+aa95kxfUuuQ18CRssh7EXxkuJkvtzIX4= Subject key identifier: B7:98:D1:8B:D6:79:19:76:76:0C:F3:B0:32:26:37:37:8E:04:02:FD Authority key identifier: 38:26:42:3E:B0:19:55:22:4E:6C:11:D1:9C:6D:39:38:1E:8B:E2:1D Certificate issuer: /CN=3826423eb01955224e6c11d19c6d39381e8be21d Certificate serial: 019C4133746A0EB51ECD790E1D301E7ACCCD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCZCPrAZVSJObBHRnG05OB6L4h0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft Manifest number: 0C44 Signing time: Mon 09 Feb 2026 07:00:17 +0000 Manifest this update: Mon 09 Feb 2026 07:00:17 +0000 Manifest next update: Tue 10 Feb 2026 07:00:17 +0000 Files and hashes: 1: OCZCPrAZVSJObBHRnG05OB6L4h0.crl (hash: sVUJwQOqMlyaIIIExk+T8bF8rH+Ku0UZB9ki/9Q3zA8=) 2: h9uxXItcVMUhyEnd-qfo0NworEk.roa (hash: cN3aXRc8HLSRjs8+K7/jdo4PEzNiyVUr1h8Z9QW7HmQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.crl rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft rsync://rpki.ripe.net/repository/DEFAULT/OCZCPrAZVSJObBHRnG05OB6L4h0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:74:6a:0e:b5:1e:cd:79:0e:1d:30:1e:7a:cc:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3826423eb01955224e6c11d19c6d39381e8be21d Validity Not Before: Feb 9 07:00:17 2026 GMT Not After : Feb 10 07:00:17 2026 GMT Subject: CN=b798d18bd6791976760cf3b0322637378e0402fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7d:44:1e:53:6a:e1:13:4e:99:4b:33:ce:54: 33:c6:e0:01:f2:09:c6:11:91:87:6c:9d:56:76:e7: b4:e0:e6:c6:95:38:a5:0b:21:c3:83:45:95:dd:65: 16:fe:f1:18:70:40:f4:ce:93:49:6e:2a:d0:3b:cc: 29:db:78:9e:82:b6:db:91:36:b9:15:76:09:62:56: c2:b4:61:ab:d6:97:b7:0e:40:0b:84:34:1a:ed:65: dc:eb:b0:9b:bc:4d:e2:d8:ac:0b:9f:dd:d8:92:9e: 3e:f7:f7:65:2f:5c:06:d4:3e:22:a3:09:f5:45:ca: 63:50:17:8c:5f:85:13:d2:c1:06:20:67:c4:4d:60: 9c:54:a0:7f:fa:29:e1:cd:ce:76:82:d9:40:e3:dc: b3:03:9e:43:fd:6a:31:4f:b3:e8:6d:03:b9:a9:e1: 3d:a4:e4:63:67:9a:e7:05:8f:af:bf:bc:c7:70:4d: 5c:87:c2:78:c2:7b:e4:c4:d0:76:03:b3:72:2d:d4: f4:ba:79:74:2f:06:c9:bb:fa:1c:b5:6e:c9:22:54: 38:27:1f:40:5e:80:40:23:53:78:93:35:33:d7:46: 74:57:4f:d6:28:ef:1a:19:d5:1f:08:b0:48:b0:a8: 90:12:a8:bb:fe:e3:a5:3f:b7:5e:ac:61:b9:34:83: f1:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:98:D1:8B:D6:79:19:76:76:0C:F3:B0:32:26:37:37:8E:04:02:FD X509v3 Authority Key Identifier: keyid:38:26:42:3E:B0:19:55:22:4E:6C:11:D1:9C:6D:39:38:1E:8B:E2:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCZCPrAZVSJObBHRnG05OB6L4h0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption be:b8:d2:6c:ed:6b:1d:7b:d8:0b:60:33:eb:15:ca:dd:b5:8f: 66:00:3f:34:9d:ff:2e:39:10:e0:aa:c4:11:d6:54:77:64:b0: f8:cf:e9:0d:f4:b7:0a:7f:3d:57:e0:ea:43:00:1c:c9:63:a7: e5:79:b6:e0:42:f2:28:81:ad:b9:54:66:ea:02:c5:4c:b9:6b: a8:e2:8a:ad:09:31:f3:9e:22:4e:4d:ae:5f:e6:90:48:76:e6: 92:d6:de:19:72:6d:87:41:27:29:a6:0b:29:e6:01:30:79:e3: 4e:3f:c1:49:43:09:e7:b7:32:77:f2:a5:f4:a9:7d:37:39:c4: 47:75:75:45:3a:40:bb:65:66:a7:04:09:27:d0:0d:12:dd:7e: 4f:4c:d5:fd:ca:4b:30:30:35:f7:5a:91:ee:fe:e4:91:32:cc: 09:5f:63:41:d2:0e:95:43:62:e9:69:c7:57:99:af:0c:f5:88: e7:a1:be:40:d2:92:30:14:05:b9:06:9d:a5:7c:6a:58:97:9e: 4f:f8:5d:99:ad:b2:fa:c4:99:41:f6:9e:18:a1:44:b3:90:46: 4c:2b:a5:94:b3:05:6d:a8:89:c0:25:19:f0:51:ab:43:2a:81: 29:26:37:e6:f8:59:51:f5:f7:63:ea:22:2c:11:82:cc:37:b7: 85:2d:ef:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM3RqDrUezXkOHTAeeszNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MjY0MjNlYjAxOTU1MjI0ZTZjMTFkMTljNmQzOTM4MWU4 YmUyMWQwHhcNMjYwMjA5MDcwMDE3WhcNMjYwMjEwMDcwMDE3WjAzMTEwLwYDVQQD EyhiNzk4ZDE4YmQ2NzkxOTc2NzYwY2YzYjAzMjI2MzczNzhlMDQwMmZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo31EHlNq4RNOmUszzlQzxuAB8gnG EZGHbJ1Wdue04ObGlTilCyHDg0WV3WUW/vEYcED0zpNJbirQO8wp23iegrbbkTa5 FXYJYlbCtGGr1pe3DkALhDQa7WXc67CbvE3i2KwLn93Ykp4+9/dlL1wG1D4iown1 RcpjUBeMX4UT0sEGIGfETWCcVKB/+inhzc52gtlA49yzA55D/WoxT7PobQO5qeE9 pORjZ5rnBY+vv7zHcE1ch8J4wnvkxNB2A7NyLdT0unl0LwbJu/octW7JIlQ4Jx9A XoBAI1N4kzUz10Z0V0/WKO8aGdUfCLBIsKiQEqi7/uOlP7derGG5NIPxYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLeY0YvWeRl2dgzzsDImNzeOBAL9MB8GA1UdIwQY MBaAFDgmQj6wGVUiTmwR0ZxtOTgei+IdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0NaQ1ByQVpWU0pPYkJIUm5HMDVPQjZMNGgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8xMWQxZTUtM2NjNy00OTcyLWEwN2Et Nzg1ZTNlODc2OGY5LzEvT0NaQ1ByQVpWU0pPYkJIUm5HMDVPQjZMNGgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC8xMWQxZTUtM2NjNy00OTcyLWEwN2EtNzg1ZTNlODc2OGY5 LzEvT0NaQ1ByQVpWU0pPYkJIUm5HMDVPQjZMNGgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvrjSbO1r HXvYC2Az6xXK3bWPZgA/NJ3/LjkQ4KrEEdZUd2Sw+M/pDfS3Cn89V+DqQwAcyWOn 5Xm24ELyKIGtuVRm6gLFTLlrqOKKrQkx854iTk2uX+aQSHbmktbeGXJth0EnKaYL KeYBMHnjTj/BSUMJ57cyd/Kl9Kl9NznER3V1RTpAu2VmpwQJJ9ANEt1+T0zV/cpL MDA191qR7v7kkTLMCV9jQdIOlUNi6WnHV5mvDPWI56G+QNKSMBQFuQadpXxqWJee T/hdma2y+sSZQfaeGKFEs5BGTCullLMFbaiJwCUZ8FGrQyqBKSY35vhZUfX3Y+oi LBGCzDe3hS3vBg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:55 2026 by rpki-client