This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft File: OxRinHZc4axPaIlW47kPatjEtYI.mft (raw, json) Hash identifier: NOmcfItg4ETSDKPbZILV4FZo0Qds9C+vTa22Q9/+be8= Subject key identifier: 31:64:4D:14:1C:6A:5F:AD:55:68:F7:B6:9A:DD:7A:ED:00:3B:E9:10 Authority key identifier: 3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82 Certificate issuer: /CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582 Certificate serial: 019C43FE92D5B35ACCABF4F154AC698BC5C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft Manifest number: 17A5 Signing time: Mon 09 Feb 2026 20:01:23 +0000 Manifest this update: Mon 09 Feb 2026 20:01:23 +0000 Manifest next update: Tue 10 Feb 2026 20:01:23 +0000 Files and hashes: 1: 0yRcFcA3OBSplazAFaiD6lfC3B0.roa (hash: 2qPLWspuMTgkMxkS4l/YyisgXYynSeGYaJD2ttoyg+o=) 2: OxRinHZc4axPaIlW47kPatjEtYI.crl (hash: vFmjhyyqpxaaAp0zLi1CZHuIVySlKgnkec6SyIZw0wM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:92:d5:b3:5a:cc:ab:f4:f1:54:ac:69:8b:c5:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582 Validity Not Before: Feb 9 20:01:23 2026 GMT Not After : Feb 10 20:01:23 2026 GMT Subject: CN=31644d141c6a5fad5568f7b69add7aed003be910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:44:e5:4f:4e:e3:c7:17:99:73:62:a8:bb:ab: 0d:ba:3a:e4:ef:3d:51:b2:d1:3a:68:7b:a5:60:1a: 7a:5a:f4:5c:81:fa:f3:5d:25:4d:41:c9:7f:90:2a: 67:52:8f:0e:b1:e3:36:60:6a:ab:6e:2a:4a:c1:ab: 98:7e:82:44:aa:c7:68:69:c8:25:f2:e5:d3:24:84: 86:50:49:93:76:f7:d7:dc:78:bc:da:a0:84:4b:43: af:f5:1a:7f:c4:db:ab:ec:78:c2:52:01:aa:94:86: c1:92:04:95:f4:63:65:2f:0a:d2:18:ff:65:72:05: f6:f5:b5:3d:41:a1:44:dd:da:b3:7a:65:87:7f:6c: 9a:10:22:f0:7a:cb:97:62:c1:77:63:96:12:48:5e: f4:1d:d9:15:76:ed:26:85:55:b0:68:ed:e8:e5:69: 7a:46:1d:4c:53:72:ed:2f:62:f5:c0:08:f3:e6:60: a4:68:9e:1a:ed:f9:56:ba:34:0e:2c:03:ed:a9:bc: 9d:ca:55:35:f1:c8:38:ad:25:78:d5:6e:74:88:9c: e6:fa:a6:1b:62:26:38:66:a0:4c:7d:cb:97:ac:be: 5f:b9:40:ff:ec:18:84:50:96:bd:26:70:68:0c:c0: 27:c2:63:cc:56:41:34:ca:d5:2b:e4:1f:41:62:8e: f3:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:64:4D:14:1C:6A:5F:AD:55:68:F7:B6:9A:DD:7A:ED:00:3B:E9:10 X509v3 Authority Key Identifier: keyid:3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ba:2e:cc:bf:a7:59:81:92:5a:c3:02:3f:f8:cf:d9:86:65:d8: 5d:ac:ef:27:fe:fd:fe:f5:ff:4c:b0:43:91:bf:bb:31:32:50: f4:7d:da:ab:0f:35:c4:bb:17:61:19:9b:7a:3d:eb:68:f4:8d: ea:3e:6e:db:87:6e:96:30:20:99:2e:2e:5c:60:e0:8a:f2:2e: b9:b8:24:7e:d9:37:c2:a2:9b:14:0d:53:2d:c2:56:1f:e9:2b: f5:d6:2b:35:76:f9:78:96:97:19:ed:85:37:31:7d:bb:77:73: c4:b8:46:ae:de:88:ce:ca:bb:5e:61:f0:63:f9:ba:2f:3b:b4: fd:02:30:9a:b5:80:33:bd:e6:c9:75:e7:d4:4f:69:60:0f:b0: f7:61:d0:9e:62:1b:c0:f1:e6:31:b0:19:c4:d3:b0:49:06:ab: 63:73:96:25:cb:15:02:28:4f:b4:d5:0d:d4:f9:22:64:46:7e: f1:13:12:74:a5:06:92:31:2c:ae:a4:86:0b:d0:6d:2d:22:45: 9d:24:e8:f6:7d:37:7b:c5:15:4e:cc:9c:b0:a4:96:61:af:b1: 89:ed:6e:5b:28:6a:49:fc:33:a5:c0:58:a2:49:9d:54:7a:4c: 78:6f:23:ee:24:a2:5e:89:16:5f:ca:37:df:0b:3c:d9:db:e6: 2d:b1:c3:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/pLVs1rMq/TxVKxpi8XIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiMTQ2MjljNzY1Y2UxYWM0ZjY4ODk1NmUzYjkwZjZhZDhj NGI1ODIwHhcNMjYwMjA5MjAwMTIzWhcNMjYwMjEwMjAwMTIzWjAzMTEwLwYDVQQD EygzMTY0NGQxNDFjNmE1ZmFkNTU2OGY3YjY5YWRkN2FlZDAwM2JlOTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi0TlT07jxxeZc2Kou6sNujrk7z1R stE6aHulYBp6WvRcgfrzXSVNQcl/kCpnUo8OseM2YGqrbipKwauYfoJEqsdoacgl 8uXTJISGUEmTdvfX3Hi82qCES0Ov9Rp/xNur7HjCUgGqlIbBkgSV9GNlLwrSGP9l cgX29bU9QaFE3dqzemWHf2yaECLwesuXYsF3Y5YSSF70HdkVdu0mhVWwaO3o5Wl6 Rh1MU3LtL2L1wAjz5mCkaJ4a7flWujQOLAPtqbydylU18cg4rSV41W50iJzm+qYb YiY4ZqBMfcuXrL5fuUD/7BiEUJa9JnBoDMAnwmPMVkE0ytUr5B9BYo7zHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDFkTRQcal+tVWj3tprdeu0AO+kQMB8GA1UdIwQY MBaAFDsUYpx2XOGsT2iJVuO5D2rYxLWCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3hSaW5IWmM0YXhQYUlsVzQ3a1BhdGpFdFlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9hMzdmOWMtMWU2YS00NjY1LWEwZTIt ZmUzMTEwMGQwODFmLzEvT3hSaW5IWmM0YXhQYUlsVzQ3a1BhdGpFdFlJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9hMzdmOWMtMWU2YS00NjY1LWEwZTItZmUzMTEwMGQwODFm LzEvT3hSaW5IWmM0YXhQYUlsVzQ3a1BhdGpFdFlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAui7Mv6dZ gZJawwI/+M/ZhmXYXazvJ/79/vX/TLBDkb+7MTJQ9H3aqw81xLsXYRmbej3raPSN 6j5u24duljAgmS4uXGDgivIuubgkftk3wqKbFA1TLcJWH+kr9dYrNXb5eJaXGe2F NzF9u3dzxLhGrt6Izsq7XmHwY/m6Lzu0/QIwmrWAM73myXXn1E9pYA+w92HQnmIb wPHmMbAZxNOwSQarY3OWJcsVAihPtNUN1PkiZEZ+8RMSdKUGkjEsrqSGC9BtLSJF nSTo9n03e8UVTsycsKSWYa+xie1uWyhqSfwzpcBYokmdVHpMeG8j7iSiXokWX8o3 3ws82dvmLbHDrg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:07:11 2026 by rpki-client