This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft File: OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft (raw, json) Hash identifier: bLNXSZwZzjLwUESKGNbUYQ55po5xdy9WV7mKZvCDd1M= Subject key identifier: D3:95:EC:03:16:48:F0:51:46:10:1D:62:FD:C5:2C:AA:FA:3E:85:74 Authority key identifier: 38:6A:B9:70:BF:B6:94:75:97:E9:7C:EF:B9:16:EC:76:A0:C5:68:58 Certificate issuer: /CN=386ab970bfb6947597e97cefb916ec76a0c56858 Certificate serial: 019C44350B835861202A31FCB3AF46BC5E54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft Manifest number: 1814 Signing time: Mon 09 Feb 2026 21:00:52 +0000 Manifest this update: Mon 09 Feb 2026 21:00:52 +0000 Manifest next update: Tue 10 Feb 2026 21:00:52 +0000 Files and hashes: 1: OGq5cL-2lHWX6XzvuRbsdqDFaFg.crl (hash: taHWI4zFI/s6ee4VA/wviS/aOdG5Pma8qpZqy6WIbVY=) 2: VORDTVglX3Z4o11ha_rQMbeYDBY.roa (hash: R9axiVVKyBivLuau19G2S1ECw/WVMKwzWPLucwXXO9s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft rsync://rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:35:0b:83:58:61:20:2a:31:fc:b3:af:46:bc:5e:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=386ab970bfb6947597e97cefb916ec76a0c56858 Validity Not Before: Feb 9 21:00:52 2026 GMT Not After : Feb 10 21:00:52 2026 GMT Subject: CN=d395ec031648f05146101d62fdc52caafa3e8574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:35:fb:a9:49:06:0d:7f:83:9b:7c:a0:f1:d3: 6d:c3:d6:0a:a0:8d:ae:1f:6e:f9:a2:b9:30:ec:90: 87:ce:94:23:52:27:11:e2:f9:83:f5:59:8b:5b:4c: ce:f4:c6:79:90:f0:81:36:c0:a5:c4:eb:b8:f8:54: fd:70:a2:a2:9f:fe:70:71:dd:b2:98:cd:ab:bd:f1: af:b1:04:81:11:b1:62:f2:d6:28:af:e2:6f:d4:f8: ea:24:3f:b7:f3:2a:a4:7c:4c:0c:8d:fd:fa:9e:31: e8:b9:1c:9f:8d:98:9b:20:4d:61:2c:2e:bc:dc:1e: b4:df:ea:36:ce:62:87:e3:65:88:a8:34:54:21:66: 0d:94:17:2f:4e:2b:e0:af:8a:37:c6:db:d9:a9:98: 3c:59:78:23:92:ec:3f:a9:4e:4a:b8:76:8b:da:f7: 2b:8c:b5:02:80:aa:ae:05:c5:a6:52:8a:8d:fd:f3: b4:91:f4:89:93:d6:7c:8a:b7:4a:a4:b2:34:7a:b6: 37:40:ae:ca:a4:b9:e3:98:f5:9e:a8:70:1d:9d:9c: 36:67:ff:32:a4:33:49:06:f6:84:b3:28:24:e5:91: 67:fd:74:70:e8:89:85:d5:f7:6c:c6:f6:50:14:6b: 3a:2d:ae:88:7d:75:27:1d:ec:22:18:16:bc:56:02: 35:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:95:EC:03:16:48:F0:51:46:10:1D:62:FD:C5:2C:AA:FA:3E:85:74 X509v3 Authority Key Identifier: keyid:38:6A:B9:70:BF:B6:94:75:97:E9:7C:EF:B9:16:EC:76:A0:C5:68:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption da:cc:f1:fd:ee:e3:9c:5d:da:c5:15:bd:c8:ff:3a:f4:38:48: d1:c2:58:71:c5:b6:b7:5c:f2:c5:70:fb:e8:4f:52:47:85:f8: 1b:42:b8:87:51:ac:5f:ab:d8:d6:b7:d0:de:76:41:a5:81:6d: d0:e9:8d:79:75:f3:73:bd:62:ac:6c:db:0d:a4:96:b4:9e:7b: 44:90:8b:9c:70:84:65:3b:0a:52:4c:c1:62:77:09:8c:95:8a: fc:e9:a4:4c:03:f5:ff:05:61:25:1e:67:2e:df:b2:b9:a8:cd: 9a:12:ca:b4:95:c4:db:68:54:a0:f0:20:dd:ed:4b:fc:4d:bd: 35:82:e7:07:dc:b1:58:89:a8:a1:1c:56:f8:27:57:37:46:9c: 90:6f:fd:44:db:e5:e6:da:a3:d8:1f:4e:22:55:38:14:bc:9a: 8a:d9:1f:24:2f:50:15:8d:a9:39:9d:f4:67:7c:08:26:82:93: 4d:8a:02:61:00:df:f0:ac:20:a3:56:8b:50:3f:a7:07:c7:0d: 1b:7e:33:f5:e1:b9:2c:ee:41:9e:17:9f:81:4b:58:23:70:fb: 72:ec:84:25:10:96:3d:21:d8:c3:a9:fd:f1:44:31:c8:a1:7d: cd:25:31:b1:2c:ee:0a:01:d2:1f:8c:13:db:98:1c:7d:88:e5: 74:04:e5:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENQuDWGEgKjH8s69GvF5UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4NmFiOTcwYmZiNjk0NzU5N2U5N2NlZmI5MTZlYzc2YTBj NTY4NTgwHhcNMjYwMjA5MjEwMDUyWhcNMjYwMjEwMjEwMDUyWjAzMTEwLwYDVQQD EyhkMzk1ZWMwMzE2NDhmMDUxNDYxMDFkNjJmZGM1MmNhYWZhM2U4NTc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxDX7qUkGDX+Dm3yg8dNtw9YKoI2u H275orkw7JCHzpQjUicR4vmD9VmLW0zO9MZ5kPCBNsClxOu4+FT9cKKin/5wcd2y mM2rvfGvsQSBEbFi8tYor+Jv1PjqJD+38yqkfEwMjf36njHouRyfjZibIE1hLC68 3B603+o2zmKH42WIqDRUIWYNlBcvTivgr4o3xtvZqZg8WXgjkuw/qU5KuHaL2vcr jLUCgKquBcWmUoqN/fO0kfSJk9Z8irdKpLI0erY3QK7KpLnjmPWeqHAdnZw2Z/8y pDNJBvaEsygk5ZFn/XRw6ImF1fdsxvZQFGs6La6IfXUnHewiGBa8VgI1LQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNOV7AMWSPBRRhAdYv3FLKr6PoV0MB8GA1UdIwQY MBaAFDhquXC/tpR1l+l877kW7HagxWhYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0dxNWNMLTJsSFdYNlh6dnVSYnNkcURGYUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC80MWZkYTktOTcwMi00NThkLTk4MmYt OGQxMTI1N2Q0YWY2LzEvT0dxNWNMLTJsSFdYNlh6dnVSYnNkcURGYUZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC80MWZkYTktOTcwMi00NThkLTk4MmYtOGQxMTI1N2Q0YWY2 LzEvT0dxNWNMLTJsSFdYNlh6dnVSYnNkcURGYUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2szx/e7j nF3axRW9yP869DhI0cJYccW2t1zyxXD76E9SR4X4G0K4h1GsX6vY1rfQ3nZBpYFt 0OmNeXXzc71irGzbDaSWtJ57RJCLnHCEZTsKUkzBYncJjJWK/OmkTAP1/wVhJR5n Lt+yuajNmhLKtJXE22hUoPAg3e1L/E29NYLnB9yxWImooRxW+CdXN0ackG/9RNvl 5tqj2B9OIlU4FLyaitkfJC9QFY2pOZ30Z3wIJoKTTYoCYQDf8Kwgo1aLUD+nB8cN G34z9eG5LO5BnhefgUtYI3D7cuyEJRCWPSHYw6n98UQxyKF9zSUxsSzuCgHSH4wT 25gcfYjldATlKA== -----END CERTIFICATE-----Generated at Tue Feb 10 02:54:59 2026 by rpki-client