This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft File: OzNj5H5p68XRwiUd3V2sfJiYmSI.mft (raw, json) Hash identifier: 2MdJg6H6P8LJT5PEaeMHie2Fc3CkGPo0QCXg+t5q1J4= Subject key identifier: 5F:91:C8:29:5E:68:DC:C4:D0:8D:69:FC:34:19:B0:F3:D4:3E:BB:CA Authority key identifier: 3B:33:63:E4:7E:69:EB:C5:D1:C2:25:1D:DD:5D:AC:7C:98:98:99:22 Certificate issuer: /CN=3b3363e47e69ebc5d1c2251ddd5dac7c98989922 Certificate serial: 019C42EB9C733E66A22D32D1034BA4BA57FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 15:01:03 +0000 Manifest this update: Mon 09 Feb 2026 15:01:03 +0000 Manifest next update: Tue 10 Feb 2026 15:01:03 +0000 Files and hashes: 1: OzNj5H5p68XRwiUd3V2sfJiYmSI.crl (hash: /VNZZbIplz20HYHAdYWnu2wL/k3RpXqW0ZJPZLfXR4Q=) 2: j6GSjngp4zBMa0A6Up3-vP_HpYA.roa (hash: eFIS08YcHeuG7OXuLasqB4hIQnIZETYTn/VjLjZa0pQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.crl rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:9c:73:3e:66:a2:2d:32:d1:03:4b:a4:ba:57:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b3363e47e69ebc5d1c2251ddd5dac7c98989922 Validity Not Before: Feb 9 15:01:03 2026 GMT Not After : Feb 10 15:01:03 2026 GMT Subject: CN=5f91c8295e68dcc4d08d69fc3419b0f3d43ebbca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:29:4f:7d:ef:7c:d4:07:a2:22:9a:94:99:a6: 46:8c:ec:39:46:40:7d:76:33:6c:c9:0e:c2:bd:e8: 9c:df:17:c5:6e:e4:c2:71:75:0c:58:af:63:5d:1a: de:a5:84:83:7b:84:61:a4:ac:12:63:e4:b7:73:f1: b7:d8:ad:e0:6f:b3:b1:a9:c6:08:e1:6e:85:01:32: 90:84:be:a7:87:a9:cc:1f:cf:af:1a:3d:f0:5a:87: 66:e4:da:04:bc:a6:5b:90:4e:74:94:7d:79:b4:78: 64:60:4f:15:c8:48:99:91:43:c7:3e:66:a8:a9:46: 40:00:5c:17:fe:38:68:a1:1e:9c:ec:4f:f5:b5:ea: e7:dc:95:44:80:2b:99:12:17:c0:37:0c:07:0a:f4: c5:0e:af:40:69:88:6f:e1:50:f3:66:bc:d1:45:91: 28:a2:53:aa:ff:65:0d:9b:fe:b7:d6:c4:5d:bd:c9: 10:68:4f:48:43:a8:b5:3e:b4:1e:63:f5:46:bb:c2: 31:9b:1c:b7:e2:d3:64:30:ca:ce:b1:c9:c9:dd:28: bc:70:4e:1c:74:af:49:23:0c:89:f4:85:98:32:76: ea:05:1f:a7:d0:a9:62:05:f7:d5:27:52:0c:30:27: 02:06:7d:43:c0:6b:dc:6b:7f:28:87:a8:96:16:70: d3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:91:C8:29:5E:68:DC:C4:D0:8D:69:FC:34:19:B0:F3:D4:3E:BB:CA X509v3 Authority Key Identifier: keyid:3B:33:63:E4:7E:69:EB:C5:D1:C2:25:1D:DD:5D:AC:7C:98:98:99:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:87:f4:8d:2c:0f:58:39:e3:6f:e7:e5:9f:6f:f4:25:6c:4a: e8:12:ab:98:01:6f:4c:92:34:88:60:a6:45:9e:54:75:e9:16: 9f:a7:90:d6:0d:8e:76:8f:1e:82:44:e7:7b:a3:58:f8:41:e7: 0e:95:aa:12:ec:0c:81:c8:f2:e1:39:4c:b6:bf:6e:11:2a:30: 06:4a:c6:e6:2b:44:4d:00:15:63:0d:23:f0:07:e4:a5:04:32: af:48:af:67:ec:16:4e:79:e1:52:10:9a:97:ed:34:aa:16:19: 34:18:13:e9:8a:43:e6:3b:10:f6:3d:2d:b7:bd:ac:c4:2b:b6: 03:ed:c3:25:5a:8a:66:57:4c:18:b6:c2:9e:51:32:6d:d2:10: ea:98:7c:16:72:a4:38:8e:8c:eb:7b:b5:57:2e:dd:bc:d9:fe: 98:f1:f5:fb:14:6e:ed:01:94:61:90:62:83:06:4e:d6:c8:e6: d8:5d:db:aa:b3:a8:0a:a9:ff:bc:43:c8:df:f4:fa:c3:f0:d9: ee:f0:86:c8:7b:eb:08:cb:f7:f2:d7:03:80:44:dc:90:7f:d3: 4f:2d:88:37:8f:17:2c:da:24:2e:30:ff:a5:05:82:49:5f:1a: 61:9f:f9:25:80:5c:da:7b:a2:62:01:ef:1a:fb:a7:d6:72:5a: d4:dd:fc:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC65xzPmaiLTLRA0ukulf9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiMzM2M2U0N2U2OWViYzVkMWMyMjUxZGRkNWRhYzdjOTg5 ODk5MjIwHhcNMjYwMjA5MTUwMTAzWhcNMjYwMjEwMTUwMTAzWjAzMTEwLwYDVQQD Eyg1ZjkxYzgyOTVlNjhkY2M0ZDA4ZDY5ZmMzNDE5YjBmM2Q0M2ViYmNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwClPfe981AeiIpqUmaZGjOw5RkB9 djNsyQ7Cveic3xfFbuTCcXUMWK9jXRrepYSDe4RhpKwSY+S3c/G32K3gb7OxqcYI 4W6FATKQhL6nh6nMH8+vGj3wWodm5NoEvKZbkE50lH15tHhkYE8VyEiZkUPHPmao qUZAAFwX/jhooR6c7E/1tern3JVEgCuZEhfANwwHCvTFDq9AaYhv4VDzZrzRRZEo olOq/2UNm/631sRdvckQaE9IQ6i1PrQeY/VGu8Ixmxy34tNkMMrOscnJ3Si8cE4c dK9JIwyJ9IWYMnbqBR+n0KliBffVJ1IMMCcCBn1DwGvca38oh6iWFnDTpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF+RyCleaNzE0I1p/DQZsPPUPrvKMB8GA1UdIwQY MBaAFDszY+R+aevF0cIlHd1drHyYmJkiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3pOajVINXA2OFhSd2lVZDNWMnNmSmlZbVNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9kMzJjZDQtYmE5My00ZjE2LTg5OWMt Y2NkYWRmN2Y2NWYyLzEvT3pOajVINXA2OFhSd2lVZDNWMnNmSmlZbVNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC9kMzJjZDQtYmE5My00ZjE2LTg5OWMtY2NkYWRmN2Y2NWYy LzEvT3pOajVINXA2OFhSd2lVZDNWMnNmSmlZbVNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALIf0jSwP WDnjb+fln2/0JWxK6BKrmAFvTJI0iGCmRZ5UdekWn6eQ1g2Odo8egkTne6NY+EHn DpWqEuwMgcjy4TlMtr9uESowBkrG5itETQAVYw0j8AfkpQQyr0ivZ+wWTnnhUhCa l+00qhYZNBgT6YpD5jsQ9j0tt72sxCu2A+3DJVqKZldMGLbCnlEybdIQ6ph8FnKk OI6M63u1Vy7dvNn+mPH1+xRu7QGUYZBigwZO1sjm2F3bqrOoCqn/vEPI3/T6w/DZ 7vCGyHvrCMv38tcDgETckH/TTy2IN48XLNokLjD/pQWCSV8aYZ/5JYBc2nuiYgHv Gvun1nJa1N38Kw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:06:35 2026 by rpki-client