This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.mft File: OCUoqxzRttxzwLCbZ9Pn41hPNj0.mft (raw, json) Hash identifier: buaLxZxSzUcqF6M84+HLAg6U6bJb8Cyxz0r75EL8wNs= Subject key identifier: D7:37:4C:B2:C9:B7:22:7C:3B:EC:F2:F5:C0:03:D9:86:1F:B5:1B:A3 Authority key identifier: 38:25:28:AB:1C:D1:B6:DC:73:C0:B0:9B:67:D3:E7:E3:58:4F:36:3D Certificate issuer: /CN=382528ab1cd1b6dc73c0b09b67d3e7e3584f363d Certificate serial: 019C416A7EF3F34BFBC743FBB31E560B8343 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCUoqxzRttxzwLCbZ9Pn41hPNj0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 08:00:24 +0000 Manifest this update: Mon 09 Feb 2026 08:00:24 +0000 Manifest next update: Tue 10 Feb 2026 08:00:24 +0000 Files and hashes: 1: CA-MzpWp9Dx3CrADIEvJQZw4E7E.roa (hash: cFLJlMvt+zbdg7Xdn6mpst0pNhdveJ/oPmHZEhv3T5Y=) 2: OCUoqxzRttxzwLCbZ9Pn41hPNj0.crl (hash: 8PeEv1wYPEAU/BOK5Mt9kskJfJr2ZvHe6oEb3xGvocA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.mft rsync://rpki.ripe.net/repository/DEFAULT/OCUoqxzRttxzwLCbZ9Pn41hPNj0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 08:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:6a:7e:f3:f3:4b:fb:c7:43:fb:b3:1e:56:0b:83:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=382528ab1cd1b6dc73c0b09b67d3e7e3584f363d Validity Not Before: Feb 9 08:00:24 2026 GMT Not After : Feb 10 08:00:24 2026 GMT Subject: CN=d7374cb2c9b7227c3becf2f5c003d9861fb51ba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8e:ec:c8:2f:c0:80:88:37:b6:71:99:3d:97: b5:0c:41:f6:96:f3:bc:d0:2d:08:1d:4d:10:25:b8: d6:23:dc:4c:5e:c5:04:34:0d:e3:f0:cd:5e:ae:d8: 99:b3:1f:a3:c8:8b:d5:b7:4d:5f:54:bf:d7:68:9c: 1e:ae:43:c5:af:ad:2b:31:d3:47:cb:c1:63:be:fc: 29:2d:3f:cd:bd:4a:6e:43:07:df:e3:d3:a7:c8:15: 0b:ad:da:cd:f3:f5:af:13:9c:4f:19:e6:c3:f0:fa: 98:6d:54:83:9d:9b:fe:e9:b8:fb:82:24:d7:a8:87: 60:b4:a2:ab:9e:90:40:49:62:2b:ea:74:49:cf:81: 19:c7:04:fd:03:81:c8:2e:df:59:72:c8:55:39:b4: 0a:b7:8e:41:60:e6:11:79:66:40:48:54:b0:0f:d5: bd:f7:08:2a:50:53:c1:3b:c2:a9:24:59:09:c5:2e: f0:e3:59:24:16:16:ad:15:f5:fe:49:99:0e:5d:4b: e6:96:0a:8e:e0:2d:cb:41:7c:73:37:5e:83:53:ac: e3:fd:d0:9b:af:32:16:54:55:22:99:ba:8c:0a:9d: 68:3b:68:2e:63:4f:09:12:ba:1f:91:cf:fe:cc:21: d6:e0:79:7b:0e:49:81:6d:be:0b:49:34:e2:7f:61: e1:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:37:4C:B2:C9:B7:22:7C:3B:EC:F2:F5:C0:03:D9:86:1F:B5:1B:A3 X509v3 Authority Key Identifier: keyid:38:25:28:AB:1C:D1:B6:DC:73:C0:B0:9B:67:D3:E7:E3:58:4F:36:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCUoqxzRttxzwLCbZ9Pn41hPNj0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c8:30:8b:60:e9:ac:17:ad:b1:f1:5c:20:a6:34:53:d7:09:be: 9e:ac:12:c4:cb:00:8c:c5:b1:fa:9d:73:d5:71:91:35:2a:10: 48:f6:1b:a3:b8:4a:32:d5:85:57:80:ad:0f:cb:2c:e3:25:c9: 0c:a9:7b:6a:e5:5b:8a:71:9a:c9:40:e3:34:42:80:79:da:99: 5f:26:c7:d5:be:48:e8:83:67:d4:f1:c6:64:08:2a:a4:9a:81: 9a:f9:de:35:4e:7b:55:f8:c5:9d:43:b5:84:76:01:33:7f:80: 25:45:4b:f9:bc:4a:4c:40:d6:70:18:31:e7:64:a1:6e:58:29: 4a:1b:19:c3:c9:06:82:8d:e9:d9:7f:0a:98:8e:a6:79:9a:bc: 9f:24:0a:ab:a7:a8:14:25:44:86:92:2c:42:25:b8:fb:73:bf: f3:12:93:07:f1:08:e5:96:cd:7c:0d:b8:52:9f:08:ac:cf:d7: d5:ad:b1:da:37:eb:72:b0:00:53:59:2d:d0:4b:b0:6b:35:6c: fc:35:f2:0e:55:f2:46:2f:58:e4:17:18:ea:98:9a:86:ac:34: 42:1e:d0:a6:af:ae:6e:71:04:36:f2:58:fc:24:b1:44:40:55: d8:53:c9:aa:cb:3d:76:2e:5a:fe:3b:29:c7:eb:bc:7c:04:59: ce:38:e6:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBan7z80v7x0P7sx5WC4NDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MjUyOGFiMWNkMWI2ZGM3M2MwYjA5YjY3ZDNlN2UzNTg0 ZjM2M2QwHhcNMjYwMjA5MDgwMDI0WhcNMjYwMjEwMDgwMDI0WjAzMTEwLwYDVQQD EyhkNzM3NGNiMmM5YjcyMjdjM2JlY2YyZjVjMDAzZDk4NjFmYjUxYmEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2o7syC/AgIg3tnGZPZe1DEH2lvO8 0C0IHU0QJbjWI9xMXsUENA3j8M1ertiZsx+jyIvVt01fVL/XaJwerkPFr60rMdNH y8FjvvwpLT/NvUpuQwff49OnyBULrdrN8/WvE5xPGebD8PqYbVSDnZv+6bj7giTX qIdgtKKrnpBASWIr6nRJz4EZxwT9A4HILt9ZcshVObQKt45BYOYReWZASFSwD9W9 9wgqUFPBO8KpJFkJxS7w41kkFhatFfX+SZkOXUvmlgqO4C3LQXxzN16DU6zj/dCb rzIWVFUimbqMCp1oO2guY08JErofkc/+zCHW4Hl7DkmBbb4LSTTif2HhWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNc3TLLJtyJ8O+zy9cAD2YYftRujMB8GA1UdIwQY MBaAFDglKKsc0bbcc8Cwm2fT5+NYTzY9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0NVb3F4elJ0dHh6d0xDYlo5UG40MWhQTmowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8wMDgxNmEtZWVkZi00MTkwLWJjMzMt M2EwMmEyNDJmNDQ0LzEvT0NVb3F4elJ0dHh6d0xDYlo5UG40MWhQTmowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS8wMDgxNmEtZWVkZi00MTkwLWJjMzMtM2EwMmEyNDJmNDQ0 LzEvT0NVb3F4elJ0dHh6d0xDYlo5UG40MWhQTmowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyDCLYOms F62x8VwgpjRT1wm+nqwSxMsAjMWx+p1z1XGRNSoQSPYbo7hKMtWFV4CtD8ss4yXJ DKl7auVbinGayUDjNEKAedqZXybH1b5I6INn1PHGZAgqpJqBmvneNU57VfjFnUO1 hHYBM3+AJUVL+bxKTEDWcBgx52ShblgpShsZw8kGgo3p2X8KmI6meZq8nyQKq6eo FCVEhpIsQiW4+3O/8xKTB/EI5ZbNfA24Up8IrM/X1a2x2jfrcrAAU1kt0EuwazVs /DXyDlXyRi9Y5BcY6piahqw0Qh7Qpq+ubnEENvJY/CSxREBV2FPJqss9di5a/jsp x+u8fARZzjjmjQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:25 2026 by rpki-client