This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/cfb54d-a553-4324-b541-0b535120f327/1/ohv-an3Hf0ADcofKevZeOEhfxuk.mft File: ohv-an3Hf0ADcofKevZeOEhfxuk.mft (raw, json) Hash identifier: BgQF94KLw9uNlOlemVoiEtD3VRwUhXl3oyUDwyUxODE= Subject key identifier: 5F:5F:8E:8D:D9:A5:25:51:BE:18:6D:A8:3A:AF:6B:B2:CB:16:85:73 Authority key identifier: A2:1B:FE:6A:7D:C7:7F:40:03:72:87:CA:7A:F6:5E:38:48:5F:C6:E9 Certificate issuer: /CN=a21bfe6a7dc77f40037287ca7af65e38485fc6e9 Certificate serial: 019C43229769F6F73CDC77A6F4FF5744B4CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ohv-an3Hf0ADcofKevZeOEhfxuk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/cfb54d-a553-4324-b541-0b535120f327/1/ohv-an3Hf0ADcofKevZeOEhfxuk.mft Manifest number: 100E Signing time: Mon 09 Feb 2026 16:01:06 +0000 Manifest this update: Mon 09 Feb 2026 16:01:06 +0000 Manifest next update: Tue 10 Feb 2026 16:01:06 +0000 Files and hashes: 1: ohv-an3Hf0ADcofKevZeOEhfxuk.crl (hash: L2pFkgEUrbssLtje+FuuND/g6+ZuhCzmxyuA+MEm3Uk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/cfb54d-a553-4324-b541-0b535120f327/1/ohv-an3Hf0ADcofKevZeOEhfxuk.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/cfb54d-a553-4324-b541-0b535120f327/1/ohv-an3Hf0ADcofKevZeOEhfxuk.mft rsync://rpki.ripe.net/repository/DEFAULT/ohv-an3Hf0ADcofKevZeOEhfxuk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:97:69:f6:f7:3c:dc:77:a6:f4:ff:57:44:b4:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a21bfe6a7dc77f40037287ca7af65e38485fc6e9 Validity Not Before: Feb 9 16:01:06 2026 GMT Not After : Feb 10 16:01:06 2026 GMT Subject: CN=5f5f8e8dd9a52551be186da83aaf6bb2cb168573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:6f:fe:57:e6:52:2c:d9:9d:9d:76:ce:ff:e6: 96:5a:09:f7:ab:3b:fd:b3:17:f1:60:14:40:da:8c: 3a:5f:32:fe:66:e2:a7:fd:b7:f3:cd:48:72:25:94: 8c:bb:c6:73:f4:34:ce:cb:2f:10:8d:cf:b8:e5:55: d9:b4:c0:70:84:3b:c8:27:90:6f:f0:ce:f6:0d:90: 8f:8c:7d:73:27:40:7e:9d:9b:a7:a5:15:33:5f:80: f9:d5:7a:8f:3a:64:b4:ed:65:e6:d7:ca:db:be:56: 8b:44:93:4b:51:65:d7:a1:6a:58:04:91:af:4d:06: 28:71:f3:1b:03:e3:f3:17:49:12:91:bd:c1:70:71: 78:f6:da:06:49:0e:8a:29:19:64:91:2a:3c:3c:e7: 8c:2f:92:4f:83:64:9a:fe:60:07:53:12:d0:a8:c7: e3:97:db:cf:cf:b6:a4:6f:71:0e:41:23:8d:8d:05: 40:04:a8:96:5c:21:ac:cf:26:01:0f:50:64:90:64: a7:dc:ff:3b:06:9d:86:01:16:aa:0d:a4:bf:a8:a5: b6:0f:5b:fb:95:51:15:d4:04:33:f4:c5:49:c7:de: 89:c9:81:4b:1a:c6:aa:32:2c:29:9e:7c:a4:8d:ce: 7a:df:01:75:21:e7:03:a7:5a:1f:d9:fa:44:d0:b2: 49:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:5F:8E:8D:D9:A5:25:51:BE:18:6D:A8:3A:AF:6B:B2:CB:16:85:73 X509v3 Authority Key Identifier: keyid:A2:1B:FE:6A:7D:C7:7F:40:03:72:87:CA:7A:F6:5E:38:48:5F:C6:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ohv-an3Hf0ADcofKevZeOEhfxuk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/cfb54d-a553-4324-b541-0b535120f327/1/ohv-an3Hf0ADcofKevZeOEhfxuk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/cfb54d-a553-4324-b541-0b535120f327/1/ohv-an3Hf0ADcofKevZeOEhfxuk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:ec:40:66:4d:01:03:d8:59:31:5b:a9:50:1b:3a:a8:0f:4d: 9a:db:9a:eb:17:f6:b2:39:87:6f:57:0d:42:14:60:1f:e9:6d: 50:f3:6e:dc:65:09:c5:12:4f:3a:02:5b:10:9c:17:40:c7:99: bb:95:c7:4b:50:53:09:f4:29:66:c5:f6:59:69:38:4e:4f:25: 38:90:06:4e:a6:e3:5d:6e:fe:cf:f0:ad:c1:07:01:70:6b:91: 1e:82:2c:54:52:8d:f1:cf:64:83:9f:e7:ca:02:39:89:25:98: 0d:2e:ac:2a:04:fc:09:dd:84:ae:22:d0:fa:61:93:96:b5:cd: 39:d0:44:fb:27:90:62:ff:fe:42:06:09:dc:5b:74:b0:51:4b: 6f:7e:ee:53:95:70:bc:b0:e5:b6:04:24:50:2f:77:f7:01:08: 8d:db:c8:19:35:97:1f:75:0c:e5:cc:da:f2:b7:ea:a3:ae:04: ad:89:e6:e7:c5:82:5c:03:23:ed:dd:ef:0e:3e:5a:03:85:91: 87:d8:02:2a:be:fe:97:0a:7c:6c:e7:13:3b:24:bd:65:76:10: 1e:83:9a:66:57:47:58:75:30:c9:4e:d4:28:85:ce:68:90:57: 64:a0:a3:40:7c:a3:a7:e4:a7:60:c0:a2:8f:26:88:bf:7a:2b: d9:3e:2f:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIpdp9vc83Hem9P9XRLTLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyMWJmZTZhN2RjNzdmNDAwMzcyODdjYTdhZjY1ZTM4NDg1 ZmM2ZTkwHhcNMjYwMjA5MTYwMTA2WhcNMjYwMjEwMTYwMTA2WjAzMTEwLwYDVQQD Eyg1ZjVmOGU4ZGQ5YTUyNTUxYmUxODZkYTgzYWFmNmJiMmNiMTY4NTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl2/+V+ZSLNmdnXbO/+aWWgn3qzv9 sxfxYBRA2ow6XzL+ZuKn/bfzzUhyJZSMu8Zz9DTOyy8Qjc+45VXZtMBwhDvIJ5Bv 8M72DZCPjH1zJ0B+nZunpRUzX4D51XqPOmS07WXm18rbvlaLRJNLUWXXoWpYBJGv TQYocfMbA+PzF0kSkb3BcHF49toGSQ6KKRlkkSo8POeML5JPg2Sa/mAHUxLQqMfj l9vPz7akb3EOQSONjQVABKiWXCGszyYBD1BkkGSn3P87Bp2GARaqDaS/qKW2D1v7 lVEV1AQz9MVJx96JyYFLGsaqMiwpnnykjc563wF1IecDp1of2fpE0LJJKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF9fjo3ZpSVRvhhtqDqva7LLFoVzMB8GA1UdIwQY MBaAFKIb/mp9x39AA3KHynr2XjhIX8bpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2h2LWFuM0hmMEFEY29mS2V2WmVPRWhmeHVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9jZmI1NGQtYTU1My00MzI0LWI1NDEt MGI1MzUxMjBmMzI3LzEvb2h2LWFuM0hmMEFEY29mS2V2WmVPRWhmeHVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9jZmI1NGQtYTU1My00MzI0LWI1NDEtMGI1MzUxMjBmMzI3 LzEvb2h2LWFuM0hmMEFEY29mS2V2WmVPRWhmeHVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArexAZk0B A9hZMVupUBs6qA9Nmtua6xf2sjmHb1cNQhRgH+ltUPNu3GUJxRJPOgJbEJwXQMeZ u5XHS1BTCfQpZsX2WWk4Tk8lOJAGTqbjXW7+z/CtwQcBcGuRHoIsVFKN8c9kg5/n ygI5iSWYDS6sKgT8Cd2EriLQ+mGTlrXNOdBE+yeQYv/+QgYJ3Ft0sFFLb37uU5Vw vLDltgQkUC939wEIjdvIGTWXH3UM5cza8rfqo64ErYnm58WCXAMj7d3vDj5aA4WR h9gCKr7+lwp8bOcTOyS9ZXYQHoOaZldHWHUwyU7UKIXOaJBXZKCjQHyjp+SnYMCi jyaIv3or2T4v+Q== -----END CERTIFICATE-----Generated at Mon Feb 9 19:49:11 2026 by rpki-client