This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/27c86c-a5ad-4253-81dc-15526bf7f4eb/1/OOdr5zhCITzgy8kz0aN0g1fyKD8.mft File: OOdr5zhCITzgy8kz0aN0g1fyKD8.mft (raw, json) Hash identifier: xFJxP5AMoEG821jyCoAbtcUobphhbY+UNJ/1ZEVNjRM= Subject key identifier: 42:9E:6D:E8:05:0B:85:DE:8F:73:FD:F1:A2:68:2A:F7:A5:04:52:7B Authority key identifier: 38:E7:6B:E7:38:42:21:3C:E0:CB:C9:33:D1:A3:74:83:57:F2:28:3F Certificate issuer: /CN=38e76be73842213ce0cbc933d1a3748357f2283f Certificate serial: 019C40FCC7FF5CED2929A3E63AD3D1198348 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OOdr5zhCITzgy8kz0aN0g1fyKD8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/27c86c-a5ad-4253-81dc-15526bf7f4eb/1/OOdr5zhCITzgy8kz0aN0g1fyKD8.mft Manifest number: 022A Signing time: Mon 09 Feb 2026 06:00:33 +0000 Manifest this update: Mon 09 Feb 2026 06:00:33 +0000 Manifest next update: Tue 10 Feb 2026 06:00:33 +0000 Files and hashes: 1: OOdr5zhCITzgy8kz0aN0g1fyKD8.crl (hash: Ep+kav5ywHv/m21WoX7cbMyWuhBvqosPnCPKsOqcW0U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/27c86c-a5ad-4253-81dc-15526bf7f4eb/1/OOdr5zhCITzgy8kz0aN0g1fyKD8.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/27c86c-a5ad-4253-81dc-15526bf7f4eb/1/OOdr5zhCITzgy8kz0aN0g1fyKD8.mft rsync://rpki.ripe.net/repository/DEFAULT/OOdr5zhCITzgy8kz0aN0g1fyKD8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fc:c7:ff:5c:ed:29:29:a3:e6:3a:d3:d1:19:83:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38e76be73842213ce0cbc933d1a3748357f2283f Validity Not Before: Feb 9 06:00:33 2026 GMT Not After : Feb 10 06:00:33 2026 GMT Subject: CN=429e6de8050b85de8f73fdf1a2682af7a504527b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ab:e0:2e:e1:7e:18:27:4c:ce:d6:1b:31:6e: 12:6c:75:2b:62:b9:15:5c:fb:86:33:4f:d1:1e:51: 3d:bc:8f:99:02:0f:bb:aa:0b:94:08:01:88:9e:76: a0:df:26:6e:18:2e:76:25:4e:f7:15:20:2c:ec:35: 55:cc:db:4c:83:4a:90:b2:6b:2c:8e:b1:bf:e8:2d: 91:bd:83:a6:f4:4e:9b:06:b2:79:60:e0:ab:c6:f1: 4c:7e:fe:21:c4:3d:80:cb:45:51:86:7c:e9:c0:0b: 5c:3f:90:85:9d:03:19:68:7f:de:28:5a:9b:1c:84: ca:5a:57:f3:d7:b5:aa:da:f1:37:92:7c:0f:c6:99: 61:8f:55:7b:4b:91:ae:56:79:d7:90:cd:9c:19:07: 49:3f:e1:63:62:00:21:a4:e2:6b:22:d8:61:fa:bf: a7:bd:40:7b:2e:a1:9d:b6:60:44:68:77:99:1f:d3: cc:1c:d9:ed:aa:0a:33:f0:70:62:16:55:46:09:e1: 04:5c:69:6f:7f:3a:ab:28:ed:e7:7d:4c:dd:c3:5a: cf:04:b4:68:a1:a8:66:a3:07:ac:38:dd:5f:7e:ae: 23:ee:98:9e:c0:08:35:6e:3d:4e:3a:e9:0e:a6:5f: bb:42:45:54:ac:cc:95:e6:25:34:18:8d:06:60:3e: 51:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:9E:6D:E8:05:0B:85:DE:8F:73:FD:F1:A2:68:2A:F7:A5:04:52:7B X509v3 Authority Key Identifier: keyid:38:E7:6B:E7:38:42:21:3C:E0:CB:C9:33:D1:A3:74:83:57:F2:28:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OOdr5zhCITzgy8kz0aN0g1fyKD8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/27c86c-a5ad-4253-81dc-15526bf7f4eb/1/OOdr5zhCITzgy8kz0aN0g1fyKD8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/27c86c-a5ad-4253-81dc-15526bf7f4eb/1/OOdr5zhCITzgy8kz0aN0g1fyKD8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:a8:d3:fb:62:9b:2b:ab:fa:25:3c:ed:c6:48:5e:9d:8b:3a: b3:a5:db:f7:64:7a:eb:90:f0:44:2b:60:52:26:be:5b:34:e1: 8c:8c:0d:43:3d:cd:29:5a:4c:c3:3e:cd:1e:10:25:79:01:16: d9:7c:ef:6f:16:c4:25:b3:e5:99:02:78:88:0a:c5:d0:d8:05: 88:be:f4:ba:fa:50:0f:66:d1:92:72:b3:d8:36:33:94:6f:c6: c7:b5:38:b1:12:3e:bf:54:51:32:96:51:74:5b:b4:14:c3:6b: 3c:4e:0f:0d:51:e1:15:8a:78:4a:e3:39:7a:c9:b9:6e:2c:58: f3:0f:b5:60:15:42:9e:7a:80:85:ea:9e:59:12:49:84:63:4f: 6d:9a:c6:13:6b:14:11:0e:12:07:a4:f0:0f:87:1b:88:97:ea: 90:66:a0:a0:5d:40:29:e0:55:06:94:99:a7:4b:07:34:ad:a2: 60:b2:01:01:8c:22:4a:1a:59:f1:3c:6e:c7:bb:a6:68:76:2d: b8:2a:b3:cb:fd:90:43:6f:eb:11:a9:bb:19:09:95:71:cd:62: 52:c7:fe:f6:db:cd:32:46:e6:26:7c:78:e5:de:e2:75:79:e1: 50:09:52:e3:ee:28:e6:44:46:3d:e2:ab:1b:f1:91:26:30:cd: 16:a4:27:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/Mf/XO0pKaPmOtPRGYNIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4ZTc2YmU3Mzg0MjIxM2NlMGNiYzkzM2QxYTM3NDgzNTdm MjI4M2YwHhcNMjYwMjA5MDYwMDMzWhcNMjYwMjEwMDYwMDMzWjAzMTEwLwYDVQQD Eyg0MjllNmRlODA1MGI4NWRlOGY3M2ZkZjFhMjY4MmFmN2E1MDQ1MjdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwKvgLuF+GCdMztYbMW4SbHUrYrkV XPuGM0/RHlE9vI+ZAg+7qguUCAGInnag3yZuGC52JU73FSAs7DVVzNtMg0qQsmss jrG/6C2RvYOm9E6bBrJ5YOCrxvFMfv4hxD2Ay0VRhnzpwAtcP5CFnQMZaH/eKFqb HITKWlfz17Wq2vE3knwPxplhj1V7S5GuVnnXkM2cGQdJP+FjYgAhpOJrIthh+r+n vUB7LqGdtmBEaHeZH9PMHNntqgoz8HBiFlVGCeEEXGlvfzqrKO3nfUzdw1rPBLRo oahmowesON1ffq4j7piewAg1bj1OOukOpl+7QkVUrMyV5iU0GI0GYD5RMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEKebegFC4Xej3P98aJoKvelBFJ7MB8GA1UdIwQY MBaAFDjna+c4QiE84MvJM9GjdINX8ig/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT09kcjV6aENJVHpneThrejBhTjBnMWZ5S0Q4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC8yN2M4NmMtYTVhZC00MjUzLTgxZGMt MTU1MjZiZjdmNGViLzEvT09kcjV6aENJVHpneThrejBhTjBnMWZ5S0Q4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC8yN2M4NmMtYTVhZC00MjUzLTgxZGMtMTU1MjZiZjdmNGVi LzEvT09kcjV6aENJVHpneThrejBhTjBnMWZ5S0Q4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANajT+2Kb K6v6JTztxkhenYs6s6Xb92R665DwRCtgUia+WzThjIwNQz3NKVpMwz7NHhAleQEW 2XzvbxbEJbPlmQJ4iArF0NgFiL70uvpQD2bRknKz2DYzlG/Gx7U4sRI+v1RRMpZR dFu0FMNrPE4PDVHhFYp4SuM5esm5bixY8w+1YBVCnnqAheqeWRJJhGNPbZrGE2sU EQ4SB6TwD4cbiJfqkGagoF1AKeBVBpSZp0sHNK2iYLIBAYwiShpZ8Txux7umaHYt uCqzy/2QQ2/rEam7GQmVcc1iUsf+9tvNMkbmJnx45d7idXnhUAlS4+4o5kRGPeKr G/GRJjDNFqQn9A== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:42 2026 by rpki-client