This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft File: owjczEdYTD-oJh23kmouQBcrP3k.mft (raw, json) Hash identifier: NHjnj8Hza3f7I7yuuiNLssbhQGuAe4QqGqElmgXpLkA= Subject key identifier: CD:B4:43:34:9B:73:15:AF:72:BF:5D:0E:AE:21:B5:CB:7E:1C:A0:48 Authority key identifier: A3:08:DC:CC:47:58:4C:3F:A8:26:1D:B7:92:6A:2E:40:17:2B:3F:79 Certificate issuer: /CN=a308dccc47584c3fa8261db7926a2e40172b3f79 Certificate serial: 019C4246A6D038F753588BFADA8D25981861 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/owjczEdYTD-oJh23kmouQBcrP3k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft Manifest number: 04E1 Signing time: Mon 09 Feb 2026 12:00:52 +0000 Manifest this update: Mon 09 Feb 2026 12:00:52 +0000 Manifest next update: Tue 10 Feb 2026 12:00:52 +0000 Files and hashes: 1: owjczEdYTD-oJh23kmouQBcrP3k.crl (hash: oPO7PpHye5M+rO3gLIDxe3i/SwhBVi7HnsbttpRFmSc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft rsync://rpki.ripe.net/repository/DEFAULT/owjczEdYTD-oJh23kmouQBcrP3k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:a6:d0:38:f7:53:58:8b:fa:da:8d:25:98:18:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a308dccc47584c3fa8261db7926a2e40172b3f79 Validity Not Before: Feb 9 12:00:52 2026 GMT Not After : Feb 10 12:00:52 2026 GMT Subject: CN=cdb443349b7315af72bf5d0eae21b5cb7e1ca048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:35:ff:70:f6:7f:b2:ec:37:43:e3:a3:82:8f: ed:eb:d4:5c:65:6e:d4:09:1c:b8:f4:c2:85:1b:d0: e9:1c:4e:e3:26:90:ea:8e:bd:98:53:43:01:ea:35: 48:95:5f:d7:f2:b8:e3:ac:4f:29:8d:81:f5:2c:56: 66:27:98:95:36:a9:12:09:4f:c4:6a:3d:4e:49:e2: 12:1f:1f:57:49:38:fb:02:cc:3d:f7:f4:5f:69:6b: 26:13:f0:58:56:f0:9e:ba:bd:2d:e5:82:db:59:c9: de:8a:f5:ae:a6:05:0c:99:35:4a:13:1c:10:0b:39: 4f:c0:4b:f8:99:a9:0f:eb:95:f3:88:e7:63:fe:13: c9:c8:85:89:17:73:a4:47:f6:f8:80:e2:e4:6e:db: f4:4e:55:c8:f7:77:5a:79:8b:e5:fc:df:e8:b5:f4: e3:86:0f:4c:a0:48:5b:29:10:be:9d:d6:b6:3b:f9: b9:66:dc:fa:a2:2c:1d:bf:0f:9b:c0:a2:08:9a:01: c7:fc:15:93:3e:03:e4:a2:54:1a:79:df:7b:b4:7d: 9c:fa:a1:6e:27:37:ce:3b:b6:3a:e1:95:3f:46:44: 1d:38:d5:4e:2a:38:f9:59:b5:5f:b5:72:52:17:1b: da:52:19:b6:e8:5c:eb:33:bd:af:e9:4a:38:f5:5a: 43:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B4:43:34:9B:73:15:AF:72:BF:5D:0E:AE:21:B5:CB:7E:1C:A0:48 X509v3 Authority Key Identifier: keyid:A3:08:DC:CC:47:58:4C:3F:A8:26:1D:B7:92:6A:2E:40:17:2B:3F:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/owjczEdYTD-oJh23kmouQBcrP3k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:4d:c5:df:d9:aa:02:d1:4d:1f:4a:f9:99:09:9f:1c:6b:bb: 2a:07:ba:39:f4:a5:10:99:2d:e8:00:25:04:3b:74:7d:ee:62: 2b:82:a1:e6:82:80:7f:39:46:49:14:f5:1c:c1:51:24:0a:ea: 6e:c3:71:62:8e:75:c6:03:a4:7a:5e:d0:be:f2:f0:4a:43:06: 3f:7b:e7:a3:94:cf:06:fc:e3:cd:bb:bb:ca:08:36:b4:1a:0b: 0c:ed:31:8a:5a:97:ca:b7:d3:ac:7b:6d:b2:b2:e0:b0:f6:49: 25:87:0c:b5:76:59:3d:72:48:47:7c:6c:76:22:2b:58:5d:bb: 77:ae:10:50:80:ca:06:fa:17:2e:22:37:71:3f:c6:de:18:05: d2:46:30:9f:ee:b9:52:32:ac:57:37:ba:e9:08:31:04:ef:35: 6a:9d:b5:3d:f7:38:04:2e:84:79:49:3b:ff:3f:8d:d0:29:a9: fd:49:b6:84:64:ee:62:ae:73:34:10:ac:25:ca:09:6f:e5:d5: 06:1c:fe:2a:33:ba:f9:97:5b:0c:58:8b:d6:57:da:23:1f:49: 76:79:34:c3:1a:63:8e:c0:3c:6a:45:ee:33:d0:88:85:fa:d9: fe:ef:51:d8:cb:db:d2:7d:38:bb:0f:e1:e8:81:86:55:85:a2: ba:83:11:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRqbQOPdTWIv62o0lmBhhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzMDhkY2NjNDc1ODRjM2ZhODI2MWRiNzkyNmEyZTQwMTcy YjNmNzkwHhcNMjYwMjA5MTIwMDUyWhcNMjYwMjEwMTIwMDUyWjAzMTEwLwYDVQQD EyhjZGI0NDMzNDliNzMxNWFmNzJiZjVkMGVhZTIxYjVjYjdlMWNhMDQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwDX/cPZ/suw3Q+Ojgo/t69RcZW7U CRy49MKFG9DpHE7jJpDqjr2YU0MB6jVIlV/X8rjjrE8pjYH1LFZmJ5iVNqkSCU/E aj1OSeISHx9XSTj7Asw99/RfaWsmE/BYVvCeur0t5YLbWcneivWupgUMmTVKExwQ CzlPwEv4makP65XziOdj/hPJyIWJF3OkR/b4gOLkbtv0TlXI93daeYvl/N/otfTj hg9MoEhbKRC+nda2O/m5Ztz6oiwdvw+bwKIImgHH/BWTPgPkolQaed97tH2c+qFu JzfOO7Y64ZU/RkQdONVOKjj5WbVftXJSFxvaUhm26FzrM72v6Uo49VpDxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM20QzSbcxWvcr9dDq4htct+HKBIMB8GA1UdIwQY MBaAFKMI3MxHWEw/qCYdt5JqLkAXKz95MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3dqY3pFZFlURC1vSmgyM2ttb3VRQmNyUDNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9hMjAyNTgtNmRmZi00Mjk1LTlkYzEt MGFmZWIxNDUyNGJlLzEvb3dqY3pFZFlURC1vSmgyM2ttb3VRQmNyUDNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9hMjAyNTgtNmRmZi00Mjk1LTlkYzEtMGFmZWIxNDUyNGJl LzEvb3dqY3pFZFlURC1vSmgyM2ttb3VRQmNyUDNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS03F39mq AtFNH0r5mQmfHGu7Kge6OfSlEJkt6AAlBDt0fe5iK4Kh5oKAfzlGSRT1HMFRJArq bsNxYo51xgOkel7QvvLwSkMGP3vno5TPBvzjzbu7ygg2tBoLDO0xilqXyrfTrHtt srLgsPZJJYcMtXZZPXJIR3xsdiIrWF27d64QUIDKBvoXLiI3cT/G3hgF0kYwn+65 UjKsVze66QgxBO81ap21Pfc4BC6EeUk7/z+N0Cmp/Um2hGTuYq5zNBCsJcoJb+XV Bhz+KjO6+ZdbDFiL1lfaIx9Jdnk0wxpjjsA8akXuM9CIhfrZ/u9R2Mvb0n04uw/h 6IGGVYWiuoMRKw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:35 2026 by rpki-client