This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft File: OzBfl6JvMdgAYFn7OrGerPt4NFU.mft (raw, json) Hash identifier: hJEfPdzhA0lIf8cbFeP02T4cZQ+FoIdl/GkgcUJZjG8= Subject key identifier: 6D:91:FB:D8:20:11:C4:E0:F1:1F:8C:32:46:AC:4D:D3:C1:E4:94:7E Authority key identifier: 3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55 Certificate issuer: /CN=3b305f97a26f31d8006059fb3ab19eacfb783455 Certificate serial: 019C42B47F17C036E1BDDB993A600A12C250 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft Manifest number: 0BFA Signing time: Mon 09 Feb 2026 14:00:51 +0000 Manifest this update: Mon 09 Feb 2026 14:00:51 +0000 Manifest next update: Tue 10 Feb 2026 14:00:51 +0000 Files and hashes: 1: Nph9BsHMAWz3v3KuWSmSYaAs3t0.roa (hash: PiH06TnQZKY0ou+2ssqAuJ7EJt+8n060evKXmiAMkgE=) 2: OzBfl6JvMdgAYFn7OrGerPt4NFU.crl (hash: 2JlXvAmUMuiUYb07qCKy+D01UUAzDhQ71I9DPBlKSA0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:7f:17:c0:36:e1:bd:db:99:3a:60:0a:12:c2:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b305f97a26f31d8006059fb3ab19eacfb783455 Validity Not Before: Feb 9 14:00:51 2026 GMT Not After : Feb 10 14:00:51 2026 GMT Subject: CN=6d91fbd82011c4e0f11f8c3246ac4dd3c1e4947e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e1:a8:16:a1:dc:63:b1:b8:f8:13:87:61:7f: de:6e:98:94:1c:38:fc:c7:b6:5f:60:01:3b:e3:4a: 61:7e:9b:0f:d8:5b:e5:cf:02:fe:e5:80:2b:56:0c: 30:c0:9c:a7:9b:bd:28:e0:b3:bf:8f:9f:69:27:dd: 46:a5:25:a0:9e:d1:ec:c0:11:6b:de:90:54:1d:ed: 93:9a:17:11:de:14:68:71:ac:12:d9:98:8e:05:90: 41:c8:f3:cd:cd:ed:42:7d:32:6e:66:c0:a0:67:e0: f4:c2:e6:1c:56:20:33:9e:7a:f0:ae:21:37:3e:62: 93:f3:0a:b9:d7:29:eb:a3:ee:19:e0:90:d9:9e:b8: 6e:1f:e1:4c:82:7a:cd:b5:bf:a3:95:ba:58:58:77: 68:56:26:59:3c:5b:75:31:69:89:e6:21:f5:af:fc: 5c:e1:30:60:ba:97:3c:9e:d8:6c:2c:0e:98:90:50: 86:f9:ea:77:7a:ef:dd:a9:6d:20:58:89:28:cb:87: ff:d0:0b:67:d4:93:3d:49:cf:ad:34:4e:a1:69:06: 80:6f:15:b3:60:44:b4:05:bf:76:f5:9b:05:39:7a: d9:7f:57:be:11:b3:f2:de:94:67:83:93:86:7d:b6: 03:3f:28:30:b7:5d:38:c8:14:56:0c:7d:3f:dc:82: 6f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:91:FB:D8:20:11:C4:E0:F1:1F:8C:32:46:AC:4D:D3:C1:E4:94:7E X509v3 Authority Key Identifier: keyid:3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:5a:80:f0:38:b5:15:ed:66:a9:a5:9d:1a:88:53:bc:26:ac: 0a:bc:ab:df:ed:76:87:d1:6c:4b:15:c9:55:3f:80:da:cf:51: 04:13:b2:f0:fb:1b:5d:20:04:c4:e6:41:70:e9:c7:80:41:80: e4:28:1c:75:12:c9:fc:cc:c8:de:55:ba:f3:27:2c:9d:de:d5: cd:15:29:e0:5f:04:1a:d3:16:64:bd:17:bf:bb:bb:5b:7a:0f: bd:6c:1c:95:e1:f1:ca:90:78:9b:e9:38:e9:0a:48:dc:9d:7f: 19:77:c5:cc:c0:06:65:6e:1b:37:2a:6d:da:21:47:fd:00:12: 6c:f8:47:d3:9c:50:80:b7:d6:f7:77:6c:14:9c:e5:4c:a9:d8: e5:f8:50:f4:9c:c0:5e:d3:b9:c2:95:d0:2f:2e:e9:c8:a1:b4: c3:48:ae:2c:37:0a:44:11:71:1c:3a:a5:8a:42:82:03:bf:af: 64:37:d9:73:c7:ba:2c:01:88:2b:88:83:d1:b4:db:95:b9:82: c1:0e:7a:3e:b5:a9:41:dd:88:37:c3:75:cf:94:67:b4:79:e2: 08:70:ce:7b:b9:9d:f6:97:8b:78:63:0f:71:c7:4b:aa:b2:cf: b6:f8:a0:9f:e7:13:13:03:a2:35:ca:23:4d:8d:e2:a9:ed:b3: 3d:48:18:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtH8XwDbhvduZOmAKEsJQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiMzA1Zjk3YTI2ZjMxZDgwMDYwNTlmYjNhYjE5ZWFjZmI3 ODM0NTUwHhcNMjYwMjA5MTQwMDUxWhcNMjYwMjEwMTQwMDUxWjAzMTEwLwYDVQQD Eyg2ZDkxZmJkODIwMTFjNGUwZjExZjhjMzI0NmFjNGRkM2MxZTQ5NDdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4OGoFqHcY7G4+BOHYX/ebpiUHDj8 x7ZfYAE740phfpsP2FvlzwL+5YArVgwwwJynm70o4LO/j59pJ91GpSWgntHswBFr 3pBUHe2TmhcR3hRocawS2ZiOBZBByPPNze1CfTJuZsCgZ+D0wuYcViAznnrwriE3 PmKT8wq51ynro+4Z4JDZnrhuH+FMgnrNtb+jlbpYWHdoViZZPFt1MWmJ5iH1r/xc 4TBgupc8nthsLA6YkFCG+ep3eu/dqW0gWIkoy4f/0Atn1JM9Sc+tNE6haQaAbxWz YES0Bb929ZsFOXrZf1e+EbPy3pRng5OGfbYDPygwt104yBRWDH0/3IJvBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG2R+9ggEcTg8R+MMkasTdPB5JR+MB8GA1UdIwQY MBaAFDswX5eibzHYAGBZ+zqxnqz7eDRVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3pCZmw2SnZNZGdBWUZuN09yR2VyUHQ0TkZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny8xYWE5NTEtNmM0OC00OTNkLWFkODkt NThiOWIwYzI0NDBiLzEvT3pCZmw2SnZNZGdBWUZuN09yR2VyUHQ0TkZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny8xYWE5NTEtNmM0OC00OTNkLWFkODktNThiOWIwYzI0NDBi LzEvT3pCZmw2SnZNZGdBWUZuN09yR2VyUHQ0TkZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcVqA8Di1 Fe1mqaWdGohTvCasCryr3+12h9FsSxXJVT+A2s9RBBOy8PsbXSAExOZBcOnHgEGA 5CgcdRLJ/MzI3lW68ycsnd7VzRUp4F8EGtMWZL0Xv7u7W3oPvWwcleHxypB4m+k4 6QpI3J1/GXfFzMAGZW4bNypt2iFH/QASbPhH05xQgLfW93dsFJzlTKnY5fhQ9JzA XtO5wpXQLy7pyKG0w0iuLDcKRBFxHDqlikKCA7+vZDfZc8e6LAGIK4iD0bTblbmC wQ56PrWpQd2IN8N1z5RntHniCHDOe7md9peLeGMPccdLqrLPtvign+cTEwOiNcoj TY3iqe2zPUgYmA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:09:15 2026 by rpki-client