This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/05e1ac-e703-4f57-a91a-b0feb4f9319a/1/oKZ-BrWQRjXrTRyRw0Eon1mv6qc.mft File: oKZ-BrWQRjXrTRyRw0Eon1mv6qc.mft (raw, json) Hash identifier: 1Q55VYVOX1wM/V0zKIkSmDppoUYnfFveg9YPlyDVCgU= Subject key identifier: 4D:82:54:66:06:C2:E9:99:2E:E3:04:1A:F8:22:20:C7:DB:24:52:29 Authority key identifier: A0:A6:7E:06:B5:90:46:35:EB:4D:1C:91:C3:41:28:9F:59:AF:EA:A7 Certificate issuer: /CN=a0a67e06b5904635eb4d1c91c341289f59afeaa7 Certificate serial: 019C4133BABF0736A80892C66BC8BF6FE7C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKZ-BrWQRjXrTRyRw0Eon1mv6qc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/05e1ac-e703-4f57-a91a-b0feb4f9319a/1/oKZ-BrWQRjXrTRyRw0Eon1mv6qc.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 07:00:34 +0000 Manifest this update: Mon 09 Feb 2026 07:00:34 +0000 Manifest next update: Tue 10 Feb 2026 07:00:34 +0000 Files and hashes: 1: oKZ-BrWQRjXrTRyRw0Eon1mv6qc.crl (hash: d8ioiie9+i4f1dr05Wg3bpftwMgvj8y37CaPu9CrzGM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/05e1ac-e703-4f57-a91a-b0feb4f9319a/1/oKZ-BrWQRjXrTRyRw0Eon1mv6qc.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/05e1ac-e703-4f57-a91a-b0feb4f9319a/1/oKZ-BrWQRjXrTRyRw0Eon1mv6qc.mft rsync://rpki.ripe.net/repository/DEFAULT/oKZ-BrWQRjXrTRyRw0Eon1mv6qc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:ba:bf:07:36:a8:08:92:c6:6b:c8:bf:6f:e7:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0a67e06b5904635eb4d1c91c341289f59afeaa7 Validity Not Before: Feb 9 07:00:34 2026 GMT Not After : Feb 10 07:00:34 2026 GMT Subject: CN=4d82546606c2e9992ee3041af82220c7db245229 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:07:ab:9f:f2:b3:65:c5:8c:ec:00:26:fb:73: 54:d5:a3:47:69:30:ae:b8:63:68:88:7f:a3:07:e3: bc:bc:ad:f5:f5:d1:fb:e5:00:1c:be:ac:21:93:72: b8:9d:ac:74:78:3b:05:ff:7d:4e:45:12:08:4b:39: d1:b9:50:c4:e7:c1:4b:70:bd:46:1b:85:50:08:0f: bb:96:27:0a:6e:00:80:a7:35:ab:a9:56:32:36:be: 3b:4d:d2:70:04:57:d0:0a:27:fc:a1:92:d3:b0:ff: cc:0f:04:55:af:ac:10:b9:18:ed:9a:24:87:0f:78: a8:a1:0c:94:a6:40:f0:f5:3f:5b:94:40:90:23:ea: db:41:2f:d2:6c:1d:af:72:59:b6:05:fd:ca:21:eb: 92:83:1c:82:3f:40:0d:dc:47:96:a3:72:11:c8:25: 52:f8:dd:ed:e8:c7:9c:69:6c:df:43:b9:1f:86:b9: 94:1a:5f:68:51:0e:bb:fb:6a:a8:11:71:42:8c:25: dd:f8:f2:54:24:e4:77:09:47:63:30:48:54:e9:2b: f2:57:9f:4d:e4:8c:4f:54:50:da:d3:e6:84:7b:20: d8:07:b6:5e:5f:09:17:1a:66:a1:e9:ac:0c:c5:d8: 8a:08:4b:80:d6:e9:88:f3:fb:a6:b7:83:59:b3:55: 13:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:82:54:66:06:C2:E9:99:2E:E3:04:1A:F8:22:20:C7:DB:24:52:29 X509v3 Authority Key Identifier: keyid:A0:A6:7E:06:B5:90:46:35:EB:4D:1C:91:C3:41:28:9F:59:AF:EA:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKZ-BrWQRjXrTRyRw0Eon1mv6qc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/05e1ac-e703-4f57-a91a-b0feb4f9319a/1/oKZ-BrWQRjXrTRyRw0Eon1mv6qc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/05e1ac-e703-4f57-a91a-b0feb4f9319a/1/oKZ-BrWQRjXrTRyRw0Eon1mv6qc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:01:ad:3b:47:ee:36:7f:b5:15:ae:f7:c3:9d:5c:31:5f:5f: ed:81:a4:d7:6c:4e:ce:4e:20:22:5c:f7:32:35:51:01:05:b5: 1d:44:8d:77:9b:aa:75:c4:d0:f9:19:34:ab:80:ec:96:46:67: 1e:8a:d8:77:0c:70:14:21:39:ff:ab:61:4e:a6:b9:cf:53:0e: 61:45:23:6f:4f:b3:c9:3d:6c:d4:20:77:5b:db:65:c1:54:17: 45:a9:37:f1:16:f5:0d:ff:33:5a:5a:a3:56:d7:b9:ef:58:09: 33:2b:61:bc:41:dd:f3:08:1f:df:a6:df:60:00:3b:ad:51:0d: 62:37:82:75:1d:be:b9:25:01:6d:a1:49:46:53:4e:89:71:24: d7:4c:40:97:5c:4f:12:23:82:df:0f:80:eb:cf:b8:47:02:1c: fb:a1:b1:7c:ce:42:79:f1:80:de:d4:58:f0:af:39:01:75:31: 95:e0:fc:c6:e2:2e:e2:23:6c:7c:33:6b:6d:ca:c7:ae:cf:44: e4:62:4b:d9:8c:95:e0:91:ca:34:e4:a4:64:96:f4:72:8f:ce: 29:46:26:e5:11:e8:15:04:dd:b4:02:3c:2f:04:0f:05:bc:75: 63:44:1a:1b:19:82:65:6d:03:e1:cd:71:4c:33:13:03:82:7c: ec:8a:86:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM7q/BzaoCJLGa8i/b+fCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYTY3ZTA2YjU5MDQ2MzVlYjRkMWM5MWMzNDEyODlmNTlh ZmVhYTcwHhcNMjYwMjA5MDcwMDM0WhcNMjYwMjEwMDcwMDM0WjAzMTEwLwYDVQQD Eyg0ZDgyNTQ2NjA2YzJlOTk5MmVlMzA0MWFmODIyMjBjN2RiMjQ1MjI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Aern/KzZcWM7AAm+3NU1aNHaTCu uGNoiH+jB+O8vK319dH75QAcvqwhk3K4nax0eDsF/31ORRIISznRuVDE58FLcL1G G4VQCA+7licKbgCApzWrqVYyNr47TdJwBFfQCif8oZLTsP/MDwRVr6wQuRjtmiSH D3iooQyUpkDw9T9blECQI+rbQS/SbB2vclm2Bf3KIeuSgxyCP0AN3EeWo3IRyCVS +N3t6MecaWzfQ7kfhrmUGl9oUQ67+2qoEXFCjCXd+PJUJOR3CUdjMEhU6SvyV59N 5IxPVFDa0+aEeyDYB7ZeXwkXGmah6awMxdiKCEuA1umI8/umt4NZs1UT7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE2CVGYGwumZLuMEGvgiIMfbJFIpMB8GA1UdIwQY MBaAFKCmfga1kEY1600ckcNBKJ9Zr+qnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0taLUJyV1FSalhyVFJ5UncwRW9uMW12NnFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC8wNWUxYWMtZTcwMy00ZjU3LWE5MWEt YjBmZWI0ZjkzMTlhLzEvb0taLUJyV1FSalhyVFJ5UncwRW9uMW12NnFjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC8wNWUxYWMtZTcwMy00ZjU3LWE5MWEtYjBmZWI0ZjkzMTlh LzEvb0taLUJyV1FSalhyVFJ5UncwRW9uMW12NnFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkwGtO0fu Nn+1Fa73w51cMV9f7YGk12xOzk4gIlz3MjVRAQW1HUSNd5uqdcTQ+Rk0q4DslkZn HorYdwxwFCE5/6thTqa5z1MOYUUjb0+zyT1s1CB3W9tlwVQXRak38Rb1Df8zWlqj Vte571gJMythvEHd8wgf36bfYAA7rVENYjeCdR2+uSUBbaFJRlNOiXEk10xAl1xP EiOC3w+A68+4RwIc+6GxfM5CefGA3tRY8K85AXUxleD8xuIu4iNsfDNrbcrHrs9E 5GJL2YyV4JHKNOSkZJb0co/OKUYm5RHoFQTdtAI8LwQPBbx1Y0QaGxmCZW0D4c1x TDMTA4J87IqG0g== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:42 2026 by rpki-client