This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft File: Ojz5kZosgUbJb1oUsVdFm3lLai4.mft (raw, json) Hash identifier: 92reGK/gmGrsNItS2SN1lPOVcx4+pvEzkZ6bf5C/OPE= Subject key identifier: BC:CB:E0:8C:F8:B7:EC:B6:EE:3B:F6:E8:B3:47:C7:47:5F:A4:4E:59 Authority key identifier: 3A:3C:F9:91:9A:2C:81:46:C9:6F:5A:14:B1:57:45:9B:79:4B:6A:2E Certificate issuer: /CN=3a3cf9919a2c8146c96f5a14b157459b794b6a2e Certificate serial: 019C435969AFE642D2D1CC564BA9AB253371 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ojz5kZosgUbJb1oUsVdFm3lLai4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 17:00:59 +0000 Manifest this update: Mon 09 Feb 2026 17:00:59 +0000 Manifest next update: Tue 10 Feb 2026 17:00:59 +0000 Files and hashes: 1: Ojz5kZosgUbJb1oUsVdFm3lLai4.crl (hash: luUYWRx2mPcW4RNqdNx5FDGJezTzgbKwNgCjgcLwCGA=) 2: nDu8hN-j-Vp_Vtv9oUPzxmmLDIk.roa (hash: WwxgQJEoxT9RlD+HkKWEjQjejeBr0IIFvMv1CfM5j4U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft rsync://rpki.ripe.net/repository/DEFAULT/Ojz5kZosgUbJb1oUsVdFm3lLai4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:69:af:e6:42:d2:d1:cc:56:4b:a9:ab:25:33:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a3cf9919a2c8146c96f5a14b157459b794b6a2e Validity Not Before: Feb 9 17:00:59 2026 GMT Not After : Feb 10 17:00:59 2026 GMT Subject: CN=bccbe08cf8b7ecb6ee3bf6e8b347c7475fa44e59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fd:9a:96:bd:98:fb:9f:bc:37:bf:1c:f6:5d: 1e:25:ff:f4:14:1d:10:29:66:f2:07:e4:7c:b3:df: 81:f2:29:50:1b:5d:f4:16:11:d1:ce:a1:71:00:cb: 97:b4:f4:26:a5:2e:77:d3:6e:e7:48:81:ed:88:97: 12:2d:41:fc:64:fe:4c:a9:bb:a9:4b:da:b4:68:af: 42:67:f6:6d:ba:f1:f0:17:83:96:ca:d5:24:2b:2a: 99:ae:a8:d7:46:4f:8a:94:66:50:dc:72:bf:89:ee: e9:8c:43:d2:9f:b6:42:80:9a:d3:2f:51:5c:8c:4d: d1:ef:8f:17:de:58:fe:44:e9:6e:ab:d8:85:27:ac: 18:23:47:ad:70:2a:21:ab:37:2a:c1:56:7c:c0:d5: bb:37:9c:cd:d4:0b:1b:10:1c:b8:51:37:ef:06:a9: 45:71:50:49:28:2f:8f:97:5a:9a:ed:ed:d6:b1:87: 6c:49:e4:4c:ee:0e:8a:d9:c3:93:af:a6:98:de:ae: 30:eb:5c:ed:7d:be:6f:39:d3:12:16:24:07:af:00: a7:54:67:6d:54:52:92:07:08:1e:66:1e:d9:f8:c6: 3d:13:6c:1c:2b:1a:64:6a:29:25:37:c5:84:27:92: 45:9e:2c:cd:fe:36:1f:1f:23:50:e4:7f:f8:c7:1f: 2e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:CB:E0:8C:F8:B7:EC:B6:EE:3B:F6:E8:B3:47:C7:47:5F:A4:4E:59 X509v3 Authority Key Identifier: keyid:3A:3C:F9:91:9A:2C:81:46:C9:6F:5A:14:B1:57:45:9B:79:4B:6A:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ojz5kZosgUbJb1oUsVdFm3lLai4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:01:c5:69:a0:8c:5b:fb:8a:06:1a:13:71:47:a5:cf:d7:b9: 5c:cd:0c:67:fa:18:3e:94:b7:75:cc:4c:f6:44:cc:d2:6d:29: c2:88:1b:ec:95:94:51:08:1e:74:23:aa:55:a1:39:85:66:fa: da:95:04:83:c4:c3:7a:c7:ce:43:ba:2c:1f:8d:eb:1f:a9:7b: f6:7c:08:f8:b3:61:79:d9:b1:9c:4b:10:f8:56:40:02:19:f2: 06:5a:e0:04:29:a4:f8:e4:76:f7:df:ef:1e:16:13:bb:96:4e: 96:35:97:cd:1c:e5:5e:4b:a7:9f:12:90:f7:f7:61:83:9a:a2: e7:5e:4b:88:8a:a3:9c:e0:ca:c1:20:a7:2d:f7:ef:b3:c2:7f: e5:ae:99:8e:75:52:48:a2:18:91:e5:67:73:32:91:db:01:e2: 38:72:e7:97:b8:22:7d:9b:ff:d7:89:09:a5:1c:7c:8f:36:a6: f4:86:cf:b8:85:21:2b:14:25:1c:2f:a9:8e:76:d6:87:7c:7b: d1:b3:72:13:17:66:12:ea:13:5e:5d:3b:25:52:b1:78:82:f0: 28:cd:25:91:11:a9:61:90:46:23:c0:41:d1:26:0b:5c:a5:97: 10:70:06:5e:b3:86:a4:8e:30:06:36:90:df:38:01:fc:2c:13: 71:37:79:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWWmv5kLS0cxWS6mrJTNxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhM2NmOTkxOWEyYzgxNDZjOTZmNWExNGIxNTc0NTliNzk0 YjZhMmUwHhcNMjYwMjA5MTcwMDU5WhcNMjYwMjEwMTcwMDU5WjAzMTEwLwYDVQQD EyhiY2NiZTA4Y2Y4YjdlY2I2ZWUzYmY2ZThiMzQ3Yzc0NzVmYTQ0ZTU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuP2alr2Y+5+8N78c9l0eJf/0FB0Q KWbyB+R8s9+B8ilQG130FhHRzqFxAMuXtPQmpS53027nSIHtiJcSLUH8ZP5Mqbup S9q0aK9CZ/ZtuvHwF4OWytUkKyqZrqjXRk+KlGZQ3HK/ie7pjEPSn7ZCgJrTL1Fc jE3R748X3lj+ROluq9iFJ6wYI0etcCohqzcqwVZ8wNW7N5zN1AsbEBy4UTfvBqlF cVBJKC+Pl1qa7e3WsYdsSeRM7g6K2cOTr6aY3q4w61ztfb5vOdMSFiQHrwCnVGdt VFKSBwgeZh7Z+MY9E2wcKxpkaiklN8WEJ5JFnizN/jYfHyNQ5H/4xx8uIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLzL4Iz4t+y27jv26LNHx0dfpE5ZMB8GA1UdIwQY MBaAFDo8+ZGaLIFGyW9aFLFXRZt5S2ouMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2p6NWtab3NnVWJKYjFvVXNWZEZtM2xMYWk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS85ZWE0OWEtY2Y2Ny00NjZhLWFiNWMt NzBjYmY1MTQ5YTVhLzEvT2p6NWtab3NnVWJKYjFvVXNWZEZtM2xMYWk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS85ZWE0OWEtY2Y2Ny00NjZhLWFiNWMtNzBjYmY1MTQ5YTVh LzEvT2p6NWtab3NnVWJKYjFvVXNWZEZtM2xMYWk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAwHFaaCM W/uKBhoTcUelz9e5XM0MZ/oYPpS3dcxM9kTM0m0pwogb7JWUUQgedCOqVaE5hWb6 2pUEg8TDesfOQ7osH43rH6l79nwI+LNhedmxnEsQ+FZAAhnyBlrgBCmk+OR299/v HhYTu5ZOljWXzRzlXkunnxKQ9/dhg5qi515LiIqjnODKwSCnLffvs8J/5a6ZjnVS SKIYkeVnczKR2wHiOHLnl7gifZv/14kJpRx8jzam9IbPuIUhKxQlHC+pjnbWh3x7 0bNyExdmEuoTXl07JVKxeILwKM0lkRGpYZBGI8BB0SYLXKWXEHAGXrOGpI4wBjaQ 3zgB/CwTcTd5Dw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:14 2026 by rpki-client