This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft File: OSG38e7pDZnilCGKk4dTweotwmc.mft (raw, json) Hash identifier: 0NUErEyuIhLjTlMYBL1PZEzenOFbxbAk7BcD1BzPK54= Subject key identifier: 31:B9:EF:05:5F:31:DA:72:84:38:32:D5:BD:36:DD:42:57:37:82:E0 Authority key identifier: 39:21:B7:F1:EE:E9:0D:99:E2:94:21:8A:93:87:53:C1:EA:2D:C2:67 Certificate issuer: /CN=3921b7f1eee90d99e294218a938753c1ea2dc267 Certificate serial: 019C427D3BE62733E493E7F259EFC348DE75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OSG38e7pDZnilCGKk4dTweotwmc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft Manifest number: 179F Signing time: Mon 09 Feb 2026 13:00:29 +0000 Manifest this update: Mon 09 Feb 2026 13:00:29 +0000 Manifest next update: Tue 10 Feb 2026 13:00:29 +0000 Files and hashes: 1: 68yVcmurp-TUH6bcEYJFrYBYlHA.roa (hash: GhcpVTrzvKoo7+y/CR4zZ8nvtr04ppIcAONYUpBet9U=) 2: OSG38e7pDZnilCGKk4dTweotwmc.crl (hash: EA/+my4GnTZlEsEomXlDT582zYLFG6sV4bbTlf95O9g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft rsync://rpki.ripe.net/repository/DEFAULT/OSG38e7pDZnilCGKk4dTweotwmc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:3b:e6:27:33:e4:93:e7:f2:59:ef:c3:48:de:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3921b7f1eee90d99e294218a938753c1ea2dc267 Validity Not Before: Feb 9 13:00:29 2026 GMT Not After : Feb 10 13:00:29 2026 GMT Subject: CN=31b9ef055f31da72843832d5bd36dd42573782e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a1:93:ca:4e:60:02:39:27:f6:2d:24:0c:1a: a3:80:d3:a6:24:ce:b2:13:54:a0:93:72:c6:81:a5: 1c:e4:d2:91:24:88:61:f1:b0:6e:14:e5:36:18:6a: d8:16:aa:6b:96:79:2a:53:c2:09:ea:32:8b:cc:6e: 8d:ad:de:f9:d2:13:e9:82:73:0d:83:4f:a0:4c:83: 83:2b:70:76:83:e9:25:ea:df:fb:b5:d2:2a:bf:f6: 7e:2a:9d:24:06:0d:ec:99:e5:8c:45:a8:09:8c:e9: b3:4f:87:87:a5:da:e1:bf:7a:ac:7b:a0:fb:e5:be: 99:58:d9:91:e5:e7:b5:a8:bc:5d:33:7c:29:0b:6d: 4c:c0:2a:35:29:55:16:1b:dc:39:1e:43:22:8b:aa: e3:e2:e1:ae:19:e7:eb:5f:8a:c5:60:74:28:66:de: 24:1b:4e:46:96:de:cd:80:a5:28:25:ab:2d:ae:ef: b0:04:e2:57:cc:d5:6f:8b:92:6c:31:a4:55:b0:2b: 38:90:65:0e:04:4e:11:24:e7:d4:f6:0a:cf:30:d9: bc:5f:0e:63:d6:f1:32:91:7e:59:71:0a:9f:fc:d4: 78:41:a1:21:c0:5b:04:7e:ea:06:32:c2:91:c0:e3: cd:06:3c:dc:ac:0e:22:78:2e:b1:9f:45:ce:8f:e8: 13:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:B9:EF:05:5F:31:DA:72:84:38:32:D5:BD:36:DD:42:57:37:82:E0 X509v3 Authority Key Identifier: keyid:39:21:B7:F1:EE:E9:0D:99:E2:94:21:8A:93:87:53:C1:EA:2D:C2:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OSG38e7pDZnilCGKk4dTweotwmc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/be1db1-4dc4-463c-baf8-2441e10f6f8f/1/OSG38e7pDZnilCGKk4dTweotwmc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:b4:16:7e:e0:b0:2b:85:36:5e:dd:92:f7:01:c4:56:53:bc: 5e:a4:24:85:74:40:c2:27:8b:3f:14:6a:42:ab:f2:1e:a6:e3: 92:ed:f8:ae:80:cd:0a:67:14:11:3a:6f:c3:a6:2c:d0:26:b6: 3d:aa:63:68:3d:79:bf:2a:ec:5b:43:f0:0f:5b:18:d4:f7:a3: c4:81:27:3f:e3:75:04:7e:51:d4:79:04:84:bb:86:ef:e3:07: 8e:17:5e:46:b9:ad:51:aa:04:ba:8d:e0:3c:5f:69:b9:3b:c9: 66:66:24:1a:e4:8f:ab:12:29:3f:d1:aa:31:a3:7b:b0:33:93: ab:d4:c7:b0:bd:15:2d:2e:09:66:87:1b:7a:a6:08:7c:cf:af: 0d:47:42:cf:a2:6b:27:ff:9b:7d:e0:e0:28:1b:57:dd:ef:81: 88:23:54:2e:1f:d7:00:6d:67:69:31:36:91:cb:57:65:d7:a7: d5:58:5b:f3:8c:db:6c:e4:06:5e:e1:0a:bb:7c:a6:5e:53:bf: 7d:0d:b1:97:83:9d:11:22:dd:5f:64:b6:b7:1d:61:97:20:38: 1c:4a:dd:8d:ec:fe:83:63:ef:1c:8b:0f:12:39:2b:b1:82:0a: 8e:98:c0:1b:c7:62:2b:39:76:01:2b:d7:b8:7a:b7:d4:8d:18: ea:b5:94:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfTvmJzPkk+fyWe/DSN51MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5MjFiN2YxZWVlOTBkOTllMjk0MjE4YTkzODc1M2MxZWEy ZGMyNjcwHhcNMjYwMjA5MTMwMDI5WhcNMjYwMjEwMTMwMDI5WjAzMTEwLwYDVQQD EygzMWI5ZWYwNTVmMzFkYTcyODQzODMyZDViZDM2ZGQ0MjU3Mzc4MmUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA16GTyk5gAjkn9i0kDBqjgNOmJM6y E1Sgk3LGgaUc5NKRJIhh8bBuFOU2GGrYFqprlnkqU8IJ6jKLzG6Nrd750hPpgnMN g0+gTIODK3B2g+kl6t/7tdIqv/Z+Kp0kBg3smeWMRagJjOmzT4eHpdrhv3qse6D7 5b6ZWNmR5ee1qLxdM3wpC21MwCo1KVUWG9w5HkMii6rj4uGuGefrX4rFYHQoZt4k G05Glt7NgKUoJastru+wBOJXzNVvi5JsMaRVsCs4kGUOBE4RJOfU9grPMNm8Xw5j 1vEykX5ZcQqf/NR4QaEhwFsEfuoGMsKRwOPNBjzcrA4ieC6xn0XOj+gTjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDG57wVfMdpyhDgy1b023UJXN4LgMB8GA1UdIwQY MBaAFDkht/Hu6Q2Z4pQhipOHU8HqLcJnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1NHMzhlN3BEWm5pbENHS2s0ZFR3ZW90d21jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9iZTFkYjEtNGRjNC00NjNjLWJhZjgt MjQ0MWUxMGY2ZjhmLzEvT1NHMzhlN3BEWm5pbENHS2s0ZFR3ZW90d21jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS9iZTFkYjEtNGRjNC00NjNjLWJhZjgtMjQ0MWUxMGY2Zjhm LzEvT1NHMzhlN3BEWm5pbENHS2s0ZFR3ZW90d21jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjbQWfuCw K4U2Xt2S9wHEVlO8XqQkhXRAwieLPxRqQqvyHqbjku34roDNCmcUETpvw6Ys0Ca2 PapjaD15vyrsW0PwD1sY1PejxIEnP+N1BH5R1HkEhLuG7+MHjhdeRrmtUaoEuo3g PF9puTvJZmYkGuSPqxIpP9GqMaN7sDOTq9THsL0VLS4JZocbeqYIfM+vDUdCz6Jr J/+bfeDgKBtX3e+BiCNULh/XAG1naTE2kctXZden1Vhb84zbbOQGXuEKu3ymXlO/ fQ2xl4OdESLdX2S2tx1hlyA4HErdjez+g2PvHIsPEjkrsYIKjpjAG8diKzl2ASvX uHq31I0Y6rWUCA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:04:57 2026 by rpki-client