This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft File: 0OZTSNwTyFSZx3dNFWYUwSARirU.mft (raw, json) Hash identifier: lgonOnWhj8LYLkQ3tOAp6UcVGcJP3nBY1pNj01PIAAg= Subject key identifier: 07:D7:8A:81:B7:90:0A:DB:D0:01:05:C8:4D:70:BC:47:D5:46:09:F6 Authority key identifier: D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5 Certificate issuer: /CN=d0e65348dc13c85499c7774d156614c120118ab5 Certificate serial: 019C1C151A5ABDC3E37B28B442F5FAF13471 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft Manifest number: 1754 Signing time: Mon 02 Feb 2026 02:01:10 +0000 Manifest this update: Mon 02 Feb 2026 02:01:10 +0000 Manifest next update: Tue 03 Feb 2026 02:01:10 +0000 Files and hashes: 1: 0OZTSNwTyFSZx3dNFWYUwSARirU.crl (hash: tvFtiXtFibYc1cgAfQFmflmEp+Y2gsAEEKIlTYVXeyo=) 2: EK7og_r9H_ffSIUUiem5NEk6UL8.roa (hash: eLq/wtFM6uQM0OwlqKSUvfOwD4gri3G8Vxxkp/URFC4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 02:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1c:15:1a:5a:bd:c3:e3:7b:28:b4:42:f5:fa:f1:34:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0e65348dc13c85499c7774d156614c120118ab5 Validity Not Before: Feb 2 02:01:10 2026 GMT Not After : Feb 3 02:01:10 2026 GMT Subject: CN=07d78a81b7900adbd00105c84d70bc47d54609f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:df:6b:96:39:4d:a7:21:74:de:f5:c2:4c:f0: e0:bd:4d:df:93:52:50:d9:63:df:f3:54:ec:42:7c: a1:7c:3d:c6:11:05:e8:c3:ea:13:fd:bf:2a:e1:56: 0b:3c:a6:3c:46:12:f6:0a:54:58:11:ad:57:b8:be: 5f:38:12:1b:83:c5:56:43:ce:88:8b:d0:3e:49:d1: 35:38:36:97:6d:54:84:cf:cb:42:ce:cb:d0:12:80: 3d:62:b7:aa:05:4c:03:a6:8d:89:a2:38:f8:66:5a: 1e:42:1b:9e:63:c2:0c:f0:0f:99:64:99:f4:30:06: 11:fe:e3:dd:92:cc:47:95:e0:c5:e7:fb:cf:59:7b: 90:2e:01:7b:1a:ce:f1:9f:9a:06:ae:1d:a4:ba:39: 9a:6d:f2:b8:43:8a:70:94:30:6f:a9:4d:45:4b:f1: 1c:35:1e:c0:4b:91:6f:55:08:a8:5b:8c:47:82:f1: 89:90:27:cb:a6:ce:17:7d:6b:bc:11:f9:dc:4f:70: 0d:3e:48:53:59:6c:52:0c:42:91:1d:43:83:ca:8e: d1:d3:74:36:4e:15:d3:80:4d:f6:b8:88:1e:d0:97: f8:9d:29:09:e7:51:fb:8a:ab:13:ad:91:e4:02:be: d3:13:a4:71:95:e6:06:bc:f7:17:f8:66:29:6c:a1: ac:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:D7:8A:81:B7:90:0A:DB:D0:01:05:C8:4D:70:BC:47:D5:46:09:F6 X509v3 Authority Key Identifier: keyid:D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:26:b7:92:2e:5f:fb:68:c2:71:dd:d6:0f:c8:0f:12:6e:44: 2d:2f:54:dc:6a:28:7a:9d:f3:96:8b:6f:b2:17:d6:3b:0d:92: 27:c2:d0:25:dc:c5:55:69:21:4a:ec:9e:a3:d7:de:c4:0d:24: b6:34:fe:12:ee:d2:00:d8:e1:83:c6:2c:91:20:5b:37:ec:e5: fd:d9:59:fe:1b:8b:69:9f:32:19:0d:b7:f7:0b:4d:15:8a:0b: bb:c8:91:af:dc:96:c6:6b:a3:2a:75:51:bb:df:6f:13:cc:46: fe:22:06:69:0b:ff:04:23:c7:28:37:8c:2e:b4:dc:c4:de:6e: 39:06:4c:21:e5:a4:c0:9e:cb:2d:ca:8c:f8:e8:7c:f8:8d:0c: 96:6a:61:6e:85:82:6a:86:2d:1c:5c:9a:ad:6c:83:82:a5:f3: 73:36:fd:21:25:b1:5d:99:e5:65:b1:49:fd:e6:e7:fe:18:66: 55:39:07:c4:08:91:e9:0a:6b:c9:72:b8:ad:5d:a7:f7:c7:a9: 8f:6e:6e:c0:2e:1a:9e:e3:56:14:5e:bf:94:bd:b5:e7:7e:0a: 47:dc:cd:62:00:d3:4c:8d:89:01:b9:3f:55:3a:00:65:d4:78: ac:3a:64:b0:3a:26:27:08:c4:3a:82:38:81:a5:2b:c3:c1:77: b2:b3:dc:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwcFRpavcPjeyi0QvX68TRxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwZTY1MzQ4ZGMxM2M4NTQ5OWM3Nzc0ZDE1NjYxNGMxMjAx MThhYjUwHhcNMjYwMjAyMDIwMTEwWhcNMjYwMjAzMDIwMTEwWjAzMTEwLwYDVQQD EygwN2Q3OGE4MWI3OTAwYWRiZDAwMTA1Yzg0ZDcwYmM0N2Q1NDYwOWY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt99rljlNpyF03vXCTPDgvU3fk1JQ 2WPf81TsQnyhfD3GEQXow+oT/b8q4VYLPKY8RhL2ClRYEa1XuL5fOBIbg8VWQ86I i9A+SdE1ODaXbVSEz8tCzsvQEoA9YreqBUwDpo2Jojj4ZloeQhueY8IM8A+ZZJn0 MAYR/uPdksxHleDF5/vPWXuQLgF7Gs7xn5oGrh2kujmabfK4Q4pwlDBvqU1FS/Ec NR7AS5FvVQioW4xHgvGJkCfLps4XfWu8EfncT3ANPkhTWWxSDEKRHUODyo7R03Q2 ThXTgE32uIge0Jf4nSkJ51H7iqsTrZHkAr7TE6RxleYGvPcX+GYpbKGstwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAfXioG3kArb0AEFyE1wvEfVRgn2MB8GA1UdIwQY MBaAFNDmU0jcE8hUmcd3TRVmFMEgEYq1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvME9aVFNOd1R5RlNaeDNkTkZXWVV3U0FSaXJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9kN2E0YTctMDdlMi00OGFkLWJhNTYt MGRiMGVjMWU5NDVjLzEvME9aVFNOd1R5RlNaeDNkTkZXWVV3U0FSaXJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9kN2E0YTctMDdlMi00OGFkLWJhNTYtMGRiMGVjMWU5NDVj LzEvME9aVFNOd1R5RlNaeDNkTkZXWVV3U0FSaXJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgia3ki5f +2jCcd3WD8gPEm5ELS9U3Gooep3zlotvshfWOw2SJ8LQJdzFVWkhSuyeo9fexA0k tjT+Eu7SANjhg8YskSBbN+zl/dlZ/huLaZ8yGQ239wtNFYoLu8iRr9yWxmujKnVR u99vE8xG/iIGaQv/BCPHKDeMLrTcxN5uOQZMIeWkwJ7LLcqM+Oh8+I0MlmphboWC aoYtHFyarWyDgqXzczb9ISWxXZnlZbFJ/ebn/hhmVTkHxAiR6QpryXK4rV2n98ep j25uwC4anuNWFF6/lL21534KR9zNYgDTTI2JAbk/VToAZdR4rDpksDomJwjEOoI4 gaUrw8F3srPcSA== -----END CERTIFICATE-----Generated at Mon Feb 2 09:42:16 2026 by rpki-client