This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft File: OEzdzXTQQilYPSwr7tBz4AlrozU.mft (raw, json) Hash identifier: BK6BIkmreQmwgHpXwOZ3KUnSCMuNvgoi7PVgaZU3Hu4= Subject key identifier: 1A:3A:23:85:38:73:DA:20:43:37:D3:31:73:7E:C5:43:0B:EE:B5:7E Authority key identifier: 38:4C:DD:CD:74:D0:42:29:58:3D:2C:2B:EE:D0:73:E0:09:6B:A3:35 Certificate issuer: /CN=384cddcd74d04229583d2c2beed073e0096ba335 Certificate serial: 019C4322155A79BF2E8C7C351EBBC76EAB5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OEzdzXTQQilYPSwr7tBz4AlrozU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft Manifest number: 0862 Signing time: Mon 09 Feb 2026 16:00:33 +0000 Manifest this update: Mon 09 Feb 2026 16:00:33 +0000 Manifest next update: Tue 10 Feb 2026 16:00:33 +0000 Files and hashes: 1: OEzdzXTQQilYPSwr7tBz4AlrozU.crl (hash: raLZ95zCjpp+y6dvG4/SgU0GLFOA+2Oj6BqV0fOLaBw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.crl rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft rsync://rpki.ripe.net/repository/DEFAULT/OEzdzXTQQilYPSwr7tBz4AlrozU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:15:5a:79:bf:2e:8c:7c:35:1e:bb:c7:6e:ab:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=384cddcd74d04229583d2c2beed073e0096ba335 Validity Not Before: Feb 9 16:00:33 2026 GMT Not After : Feb 10 16:00:33 2026 GMT Subject: CN=1a3a23853873da204337d331737ec5430beeb57e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:8f:d5:74:b3:87:00:4f:33:70:cf:74:ba:af: 7a:77:7d:83:26:8b:b5:23:e3:e4:fe:5b:c4:36:00: b0:57:dd:25:34:aa:a9:c3:87:d1:34:e3:da:fb:10: 6a:fc:a0:40:63:c6:e7:a7:85:69:56:d7:8d:1a:67: da:df:53:29:3e:e2:bc:db:e9:6a:83:c9:32:75:69: ff:c1:8c:04:70:50:ae:07:83:54:2c:c0:19:53:a8: f1:d4:41:bd:96:60:bc:af:05:96:97:b5:45:6b:1f: c6:06:fb:7f:2b:34:f5:dc:32:ad:e3:c2:7c:75:94: 7d:f5:6e:6b:36:93:b9:29:f6:f6:79:07:5b:ae:5f: 0f:f1:1b:9e:55:f1:f7:6f:68:5b:05:71:bf:00:3e: 94:10:94:7e:30:34:f9:1b:41:e8:2a:b3:9e:88:20: 51:0b:7f:41:e0:d5:d0:6c:a8:9e:86:6f:a1:f6:b0: b3:8d:8f:fd:37:f5:82:b8:21:4e:24:b4:d6:76:82: 17:2a:0e:f5:32:10:82:a6:20:6d:b7:cf:f3:af:00: e4:d5:b4:8a:23:9d:ec:fe:28:10:2a:44:75:ea:be: 77:41:38:e9:95:26:4e:62:32:99:da:a7:8c:6d:17: b3:d0:e4:04:26:76:a8:7b:61:94:bd:09:8b:86:0b: 32:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:3A:23:85:38:73:DA:20:43:37:D3:31:73:7E:C5:43:0B:EE:B5:7E X509v3 Authority Key Identifier: keyid:38:4C:DD:CD:74:D0:42:29:58:3D:2C:2B:EE:D0:73:E0:09:6B:A3:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OEzdzXTQQilYPSwr7tBz4AlrozU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:25:11:d5:31:47:c8:d2:3e:e5:c6:a0:36:2e:89:78:3b:a9: 3e:48:f5:b5:bc:e4:88:85:f2:07:91:3b:48:3c:da:f2:ad:81: c5:83:b3:dd:81:d0:26:50:8e:0e:2b:6d:4c:81:6a:8d:57:f6: 3d:2c:0f:ce:ec:59:37:9e:96:b6:b6:cd:79:07:23:dc:4b:b2: 05:f1:ac:35:49:e1:e1:22:a5:c7:9c:31:49:a1:ec:20:f6:06: 45:65:96:75:ad:28:61:34:99:8f:5b:07:f7:19:a6:10:d2:49: 9d:4f:79:d4:e5:4a:88:c0:c5:7c:7f:99:fb:85:f8:4e:61:90: 77:0d:57:1d:7c:bd:d1:87:12:53:a6:07:e0:2a:ff:22:22:b5: b6:49:7b:08:e4:01:4a:b1:a6:09:7c:eb:3e:c5:ed:84:21:3d: fb:3f:fa:3b:03:fd:ca:66:b3:8d:7d:0f:b0:6e:8c:4c:01:87: b7:8c:a8:69:de:78:d6:6a:34:c5:c0:72:bb:35:aa:eb:fe:92: b3:a9:94:68:11:89:00:f3:ef:e5:aa:45:76:cf:8c:18:14:78: a9:9e:2a:bd:97:b4:4d:06:d9:0e:fd:be:bd:fd:cb:c0:d3:a9: 05:c2:4c:d4:75:da:18:06:44:e6:7d:ed:ac:35:b0:23:2e:d6: 91:d5:81:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIhVaeb8ujHw1HrvHbqtfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4NGNkZGNkNzRkMDQyMjk1ODNkMmMyYmVlZDA3M2UwMDk2 YmEzMzUwHhcNMjYwMjA5MTYwMDMzWhcNMjYwMjEwMTYwMDMzWjAzMTEwLwYDVQQD EygxYTNhMjM4NTM4NzNkYTIwNDMzN2QzMzE3MzdlYzU0MzBiZWViNTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApo/VdLOHAE8zcM90uq96d32DJou1 I+Pk/lvENgCwV90lNKqpw4fRNOPa+xBq/KBAY8bnp4VpVteNGmfa31MpPuK82+lq g8kydWn/wYwEcFCuB4NULMAZU6jx1EG9lmC8rwWWl7VFax/GBvt/KzT13DKt48J8 dZR99W5rNpO5Kfb2eQdbrl8P8RueVfH3b2hbBXG/AD6UEJR+MDT5G0HoKrOeiCBR C39B4NXQbKiehm+h9rCzjY/9N/WCuCFOJLTWdoIXKg71MhCCpiBtt8/zrwDk1bSK I53s/igQKkR16r53QTjplSZOYjKZ2qeMbRez0OQEJnaoe2GUvQmLhgsy/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBo6I4U4c9ogQzfTMXN+xUML7rV+MB8GA1UdIwQY MBaAFDhM3c100EIpWD0sK+7Qc+AJa6M1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0V6ZHpYVFFRaWxZUFN3cjd0Qno0QWxyb3pVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8xNTFjM2UtOTVkOC00ODNiLThkYzIt OTk4YWQ1MGY0YTJhLzEvT0V6ZHpYVFFRaWxZUFN3cjd0Qno0QWxyb3pVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC8xNTFjM2UtOTVkOC00ODNiLThkYzItOTk4YWQ1MGY0YTJh LzEvT0V6ZHpYVFFRaWxZUFN3cjd0Qno0QWxyb3pVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjiUR1TFH yNI+5cagNi6JeDupPkj1tbzkiIXyB5E7SDza8q2BxYOz3YHQJlCODittTIFqjVf2 PSwPzuxZN56WtrbNeQcj3EuyBfGsNUnh4SKlx5wxSaHsIPYGRWWWda0oYTSZj1sH 9xmmENJJnU951OVKiMDFfH+Z+4X4TmGQdw1XHXy90YcSU6YH4Cr/IiK1tkl7COQB SrGmCXzrPsXthCE9+z/6OwP9ymazjX0PsG6MTAGHt4yoad541mo0xcByuzWq6/6S s6mUaBGJAPPv5apFds+MGBR4qZ4qvZe0TQbZDv2+vf3LwNOpBcJM1HXaGAZE5n3t rDWwIy7WkdWBeA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:42 2026 by rpki-client