This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/8fca7f-a9ed-48db-a7e2-3a6fe3ba5c4d/1/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.mft File: OKHYmhOz67e_WeQ5Xz8Niop9Ys4.mft (raw, json) Hash identifier: GcoBwoj2107BzriPGU+6ulvSYl5Veo+mqKZLrDWpFjM= Subject key identifier: 29:F7:A1:51:31:B7:90:1A:B2:30:1C:21:C0:88:A9:9B:91:CC:32:7C Authority key identifier: 38:A1:D8:9A:13:B3:EB:B7:BF:59:E4:39:5F:3F:0D:8A:8A:7D:62:CE Certificate issuer: /CN=38a1d89a13b3ebb7bf59e4395f3f0d8a8a7d62ce Certificate serial: 019C42467F68864E48AD254EF823EAD650E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/8fca7f-a9ed-48db-a7e2-3a6fe3ba5c4d/1/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.mft Manifest number: 0791 Signing time: Mon 09 Feb 2026 12:00:42 +0000 Manifest this update: Mon 09 Feb 2026 12:00:42 +0000 Manifest next update: Tue 10 Feb 2026 12:00:42 +0000 Files and hashes: 1: OKHYmhOz67e_WeQ5Xz8Niop9Ys4.crl (hash: Nm5K4e2tYYHFxRX0Tgb1QPtP5uCwobPBA742oisUctI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/8fca7f-a9ed-48db-a7e2-3a6fe3ba5c4d/1/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/8fca7f-a9ed-48db-a7e2-3a6fe3ba5c4d/1/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.mft rsync://rpki.ripe.net/repository/DEFAULT/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:7f:68:86:4e:48:ad:25:4e:f8:23:ea:d6:50:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38a1d89a13b3ebb7bf59e4395f3f0d8a8a7d62ce Validity Not Before: Feb 9 12:00:42 2026 GMT Not After : Feb 10 12:00:42 2026 GMT Subject: CN=29f7a15131b7901ab2301c21c088a99b91cc327c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7f:6b:dd:e5:f7:d4:d4:1d:45:e2:f4:70:04: 9d:91:62:c3:97:d8:aa:2c:4a:02:cf:c6:4d:2b:0f: 3f:d2:16:af:b6:a1:fe:22:3b:52:83:83:cc:0d:72: 29:82:ec:d5:d0:c3:c7:61:df:a7:c4:9c:3d:30:8d: 9e:50:5f:b2:0d:fd:72:c1:38:20:17:6f:e0:66:be: 80:b1:eb:21:2b:db:3c:a6:50:b0:cc:31:72:54:09: 88:db:2f:ae:67:61:94:b3:d5:64:39:a9:8b:d8:47: b6:04:a5:8c:d7:31:92:82:3d:bf:20:86:5b:40:82: 55:6b:a3:3f:29:18:e8:71:5d:8e:05:b4:27:53:84: 9e:ac:5a:6f:c6:34:7d:33:f2:8c:98:1a:4e:ae:3b: e7:10:a4:7d:01:3f:a2:d4:a2:b6:ce:98:cd:ed:4e: 5d:90:43:60:29:98:48:f6:6f:fa:12:f7:0d:da:92: 6c:fe:80:96:14:a8:a7:af:46:c2:3f:6f:26:4b:a0: f5:f3:cc:25:df:c3:a6:f0:fa:67:f3:63:2a:bd:67: c6:4d:bf:26:c9:fb:eb:13:a3:c3:e4:9a:5b:a8:76: 0c:7b:85:14:88:09:1f:ba:88:a2:15:dd:33:d1:56: 2e:fd:8f:a9:6b:e4:df:73:8b:92:94:a0:d3:7a:87: a7:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:F7:A1:51:31:B7:90:1A:B2:30:1C:21:C0:88:A9:9B:91:CC:32:7C X509v3 Authority Key Identifier: keyid:38:A1:D8:9A:13:B3:EB:B7:BF:59:E4:39:5F:3F:0D:8A:8A:7D:62:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/8fca7f-a9ed-48db-a7e2-3a6fe3ba5c4d/1/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/8fca7f-a9ed-48db-a7e2-3a6fe3ba5c4d/1/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:21:bf:81:e4:ff:8b:5b:9e:2f:41:e4:82:fc:14:17:3a:99: 63:d0:a5:b7:99:03:db:87:59:10:38:10:31:e7:3e:1d:f9:ac: 00:f8:eb:6d:71:f3:18:d6:59:f7:f9:0e:29:f2:cb:de:9e:28: b1:20:84:53:11:78:1f:cf:a3:86:15:62:01:48:43:f8:a1:5c: 00:ad:21:a9:94:ee:a1:e0:52:44:42:1b:ed:dc:54:79:60:57: d3:ad:ff:2b:a0:f1:88:11:9e:bd:b7:46:73:52:12:29:0f:ac: 7f:a1:d0:54:53:d5:17:48:d1:33:a4:5d:b1:31:3f:53:48:de: 24:5f:a7:97:01:38:56:57:55:40:c1:7c:d7:68:33:66:82:30: 46:78:72:5f:0f:99:18:39:5a:30:ac:0b:38:1e:02:9e:8e:67: 84:f9:9a:0b:d7:37:e3:c3:56:c2:26:0d:ce:d2:db:be:6b:53: 74:7e:45:d2:ae:bb:72:88:3a:0a:63:4a:54:05:92:19:2e:bd: fd:61:2f:e9:73:03:a2:da:88:f2:f4:4a:b0:4c:61:1a:30:64: e2:0e:fc:bf:79:2f:4f:6f:c2:9b:c6:73:42:fc:14:85:50:59: 0d:95:be:a8:11:1a:54:b1:e7:1d:00:cc:15:93:3e:a1:79:39: 2c:4e:92:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRn9ohk5IrSVO+CPq1lDkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4YTFkODlhMTNiM2ViYjdiZjU5ZTQzOTVmM2YwZDhhOGE3 ZDYyY2UwHhcNMjYwMjA5MTIwMDQyWhcNMjYwMjEwMTIwMDQyWjAzMTEwLwYDVQQD EygyOWY3YTE1MTMxYjc5MDFhYjIzMDFjMjFjMDg4YTk5YjkxY2MzMjdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyn9r3eX31NQdReL0cASdkWLDl9iq LEoCz8ZNKw8/0havtqH+IjtSg4PMDXIpguzV0MPHYd+nxJw9MI2eUF+yDf1ywTgg F2/gZr6AseshK9s8plCwzDFyVAmI2y+uZ2GUs9VkOamL2Ee2BKWM1zGSgj2/IIZb QIJVa6M/KRjocV2OBbQnU4SerFpvxjR9M/KMmBpOrjvnEKR9AT+i1KK2zpjN7U5d kENgKZhI9m/6EvcN2pJs/oCWFKinr0bCP28mS6D188wl38Om8Ppn82MqvWfGTb8m yfvrE6PD5JpbqHYMe4UUiAkfuoiiFd0z0VYu/Y+pa+Tfc4uSlKDTeoencQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCn3oVExt5AasjAcIcCIqZuRzDJ8MB8GA1UdIwQY MBaAFDih2JoTs+u3v1nkOV8/DYqKfWLOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0tIWW1oT3o2N2VfV2VRNVh6OE5pb3A5WXM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC84ZmNhN2YtYTllZC00OGRiLWE3ZTIt M2E2ZmUzYmE1YzRkLzEvT0tIWW1oT3o2N2VfV2VRNVh6OE5pb3A5WXM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC84ZmNhN2YtYTllZC00OGRiLWE3ZTItM2E2ZmUzYmE1YzRk LzEvT0tIWW1oT3o2N2VfV2VRNVh6OE5pb3A5WXM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjSG/geT/ i1ueL0HkgvwUFzqZY9Clt5kD24dZEDgQMec+HfmsAPjrbXHzGNZZ9/kOKfLL3p4o sSCEUxF4H8+jhhViAUhD+KFcAK0hqZTuoeBSREIb7dxUeWBX063/K6DxiBGevbdG c1ISKQ+sf6HQVFPVF0jRM6RdsTE/U0jeJF+nlwE4VldVQMF812gzZoIwRnhyXw+Z GDlaMKwLOB4Cno5nhPmaC9c348NWwiYNztLbvmtTdH5F0q67cog6CmNKVAWSGS69 /WEv6XMDotqI8vRKsExhGjBk4g78v3kvT2/Cm8ZzQvwUhVBZDZW+qBEaVLHnHQDM FZM+oXk5LE6SNA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:02 2026 by rpki-client