This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft File: OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft (raw, json) Hash identifier: nj6QkZL1TWhPjffbOUTE3/mwJBNsEG8C7B7LFyEbOGs= Subject key identifier: 3A:72:60:A8:A6:76:57:8A:CE:AB:50:CF:43:50:D9:50:CB:A5:EA:96 Authority key identifier: 38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0 Certificate issuer: /CN=385cf4939beeeaeaf4409c2840eb344cab0850e0 Certificate serial: 019C42B3E9EEF235A75D2A8F5B529E4C11C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft Manifest number: 0D57 Signing time: Mon 09 Feb 2026 14:00:12 +0000 Manifest this update: Mon 09 Feb 2026 14:00:12 +0000 Manifest next update: Tue 10 Feb 2026 14:00:12 +0000 Files and hashes: 1: Cyn38xr_aKjpDo4P5qrp-xma_-Q.roa (hash: EIt3b7IJ5biIXSp4ZF9k1ni8CNt6QRDhPAAZE5+8sT4=) 2: OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl (hash: p/wkgYgUlEpWxZrrYRBHGLE1CHq7B0EMaYFfds3BtpQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b3:e9:ee:f2:35:a7:5d:2a:8f:5b:52:9e:4c:11:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=385cf4939beeeaeaf4409c2840eb344cab0850e0 Validity Not Before: Feb 9 14:00:12 2026 GMT Not After : Feb 10 14:00:12 2026 GMT Subject: CN=3a7260a8a676578aceab50cf4350d950cba5ea96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fa:30:f9:08:03:eb:34:ab:09:a9:24:7d:8b: 66:e7:14:7d:11:e5:aa:ad:f2:9c:e3:e0:8a:e1:75: 67:be:ae:37:19:14:51:fa:5d:23:b4:83:59:99:2a: 65:13:31:b7:f4:db:bc:d1:c7:e9:f2:ee:9a:af:b4: dc:5c:4d:ec:ad:e0:ba:c5:60:22:ac:aa:98:db:25: 7d:0a:15:ea:4a:57:33:49:91:00:9c:5e:ff:37:62: 64:e4:1f:1a:b4:c1:a6:c0:84:3c:9f:94:e0:74:c9: ff:f5:00:b6:3b:2c:80:19:55:17:73:1b:90:ed:52: dc:c7:c6:d6:dd:0e:16:36:a8:24:40:40:d7:5e:73: 6e:c4:6a:45:88:75:74:1c:ee:f0:4b:b1:33:5c:08: 75:71:aa:7f:7d:b6:46:07:bb:cd:0d:79:f8:5f:63: 98:c0:c0:26:73:9f:b9:ad:85:25:36:52:8e:a8:b6: a5:24:51:bc:b1:84:fa:72:01:dd:db:19:34:fa:06: 0d:96:2f:39:ea:3a:87:40:91:e7:97:fa:97:42:99: 94:bd:bd:68:d1:f1:f2:68:cb:56:91:f4:99:fb:60: 2b:1a:b0:6f:06:95:0d:ea:8b:12:60:d8:cc:fc:49: df:54:b7:6c:2b:8a:34:c2:27:32:1d:0d:48:97:46: ca:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:72:60:A8:A6:76:57:8A:CE:AB:50:CF:43:50:D9:50:CB:A5:EA:96 X509v3 Authority Key Identifier: keyid:38:5C:F4:93:9B:EE:EA:EA:F4:40:9C:28:40:EB:34:4C:AB:08:50:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFz0k5vu6ur0QJwoQOs0TKsIUOA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/35b6bd-14b6-43dc-8384-7b7615ff0e96/1/OFz0k5vu6ur0QJwoQOs0TKsIUOA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:09:2c:50:c7:6e:27:58:4a:0b:e8:a7:80:22:98:52:9e:63: 45:66:1c:b6:f8:af:e4:9f:7a:35:4a:80:a0:19:61:c2:6e:74: 37:7c:86:92:70:fa:6e:d7:a9:3d:dc:43:77:6f:a9:cf:d5:d2: 48:d0:8d:51:a1:da:1d:7c:7d:f6:57:46:d6:32:fb:2c:f1:b8: df:42:ee:16:b0:39:29:35:1a:05:3a:ee:66:89:1e:97:1b:d8: 66:72:40:dd:34:02:65:aa:89:ad:f9:eb:d6:3f:d2:5b:b8:e9: 20:d3:62:4c:c1:9a:4a:6e:0b:be:6b:6b:e1:c1:f0:38:a3:b7: 4e:8a:86:88:c2:ff:9b:26:f6:4d:df:35:b1:9d:d6:77:61:f0: e3:ab:25:73:4d:2d:f2:08:fa:51:b1:1d:d6:c4:84:08:20:c9: 1f:56:f0:8b:9b:80:7e:a2:c5:4a:df:4c:05:33:99:a7:81:63: 74:39:d0:64:e7:c3:1c:10:bc:20:9f:70:fe:51:97:54:ef:ce: 93:67:c3:2d:71:fd:8d:85:0f:61:9d:f6:03:f8:4b:61:15:d5: 95:70:7c:53:71:af:c4:18:89:e4:59:bc:14:9e:12:d2:32:f7: 0b:07:98:2c:96:52:11:1b:b2:db:9f:1b:92:dc:68:0a:6e:5e: 84:70:90:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCs+nu8jWnXSqPW1KeTBHBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4NWNmNDkzOWJlZWVhZWFmNDQwOWMyODQwZWIzNDRjYWIw ODUwZTAwHhcNMjYwMjA5MTQwMDEyWhcNMjYwMjEwMTQwMDEyWjAzMTEwLwYDVQQD EygzYTcyNjBhOGE2NzY1NzhhY2VhYjUwY2Y0MzUwZDk1MGNiYTVlYTk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuPow+QgD6zSrCakkfYtm5xR9EeWq rfKc4+CK4XVnvq43GRRR+l0jtINZmSplEzG39Nu80cfp8u6ar7TcXE3sreC6xWAi rKqY2yV9ChXqSlczSZEAnF7/N2Jk5B8atMGmwIQ8n5TgdMn/9QC2OyyAGVUXcxuQ 7VLcx8bW3Q4WNqgkQEDXXnNuxGpFiHV0HO7wS7EzXAh1cap/fbZGB7vNDXn4X2OY wMAmc5+5rYUlNlKOqLalJFG8sYT6cgHd2xk0+gYNli856jqHQJHnl/qXQpmUvb1o 0fHyaMtWkfSZ+2ArGrBvBpUN6osSYNjM/EnfVLdsK4o0wicyHQ1Il0bKrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDpyYKimdleKzqtQz0NQ2VDLpeqWMB8GA1UdIwQY MBaAFDhc9JOb7urq9ECcKEDrNEyrCFDgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0Z6MGs1dnU2dXIwUUp3b1FPczBUS3NJVU9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8zNWI2YmQtMTRiNi00M2RjLTgzODQt N2I3NjE1ZmYwZTk2LzEvT0Z6MGs1dnU2dXIwUUp3b1FPczBUS3NJVU9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi8zNWI2YmQtMTRiNi00M2RjLTgzODQtN2I3NjE1ZmYwZTk2 LzEvT0Z6MGs1dnU2dXIwUUp3b1FPczBUS3NJVU9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjgksUMdu J1hKC+ingCKYUp5jRWYctviv5J96NUqAoBlhwm50N3yGknD6btepPdxDd2+pz9XS SNCNUaHaHXx99ldG1jL7LPG430LuFrA5KTUaBTruZokelxvYZnJA3TQCZaqJrfnr 1j/SW7jpINNiTMGaSm4Lvmtr4cHwOKO3ToqGiML/myb2Td81sZ3Wd2Hw46slc00t 8gj6UbEd1sSECCDJH1bwi5uAfqLFSt9MBTOZp4FjdDnQZOfDHBC8IJ9w/lGXVO/O k2fDLXH9jYUPYZ32A/hLYRXVlXB8U3GvxBiJ5Fm8FJ4S0jL3CweYLJZSERuy258b ktxoCm5ehHCQgw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:49 2026 by rpki-client