This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft File: OZETdfzEhZYSGQ6-zHrjcaAaam0.mft (raw, json) Hash identifier: J057NZZ35Vvaken3xo/bu6BbTlJ4JlSjyNQRANm+MaM= Subject key identifier: EC:55:EE:00:2C:57:D5:F0:8E:88:71:77:16:78:70:F0:37:4D:0D:37 Authority key identifier: 39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D Certificate issuer: /CN=39911375fcc4859612190ebecc7ae371a01a6a6d Certificate serial: 019C41D8B48E5A25011A3B538532892463AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft Manifest number: 1139 Signing time: Mon 09 Feb 2026 10:00:46 +0000 Manifest this update: Mon 09 Feb 2026 10:00:46 +0000 Manifest next update: Tue 10 Feb 2026 10:00:46 +0000 Files and hashes: 1: FitNVwmkb-__h9PO6L10GhPup_E.roa (hash: ddZD9lDpQD4dBKWa3tVdSEZbNMB8R3IK9ZzbEU7iNSg=) 2: OZETdfzEhZYSGQ6-zHrjcaAaam0.crl (hash: 9eIDnhD8mbnbP054CPYIfEvGvp+H1Lb64wpyaHlyEFs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:b4:8e:5a:25:01:1a:3b:53:85:32:89:24:63:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39911375fcc4859612190ebecc7ae371a01a6a6d Validity Not Before: Feb 9 10:00:46 2026 GMT Not After : Feb 10 10:00:46 2026 GMT Subject: CN=ec55ee002c57d5f08e887177167870f0374d0d37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:34:af:1a:a4:b5:7c:fb:6d:42:73:1b:f4:6a: 79:95:83:e3:f7:ac:c9:45:8c:f2:12:fa:0b:05:85: b1:6b:f8:be:b6:51:bc:31:d5:90:8d:b7:62:45:aa: 63:54:c4:99:2f:7d:b9:e0:5d:fe:15:2b:ed:38:e9: 33:33:f9:80:ba:56:a2:18:63:8e:0d:0d:ee:fa:35: 83:0f:9c:14:ef:fb:6e:82:29:fb:5b:57:97:e0:60: 42:69:4c:82:d5:74:84:e4:3b:bb:c0:46:1d:9b:9c: 00:0d:9b:46:5b:f0:d2:ae:c3:20:3a:78:aa:76:72: df:fb:81:78:61:10:74:f0:98:bc:47:9f:fa:d5:96: bc:66:aa:40:5f:65:9a:01:79:7a:b9:ea:c1:12:47: fb:e3:ed:dc:11:ce:fb:4e:6c:5c:d7:c3:21:9a:67: e1:d2:e4:e4:0d:e2:e8:43:c1:08:0d:78:d4:87:ec: ad:04:33:66:ea:7d:f9:7d:2e:ee:16:43:4a:6e:c1: f0:56:4c:6c:1c:c3:48:b4:e0:29:31:2e:6d:54:af: ac:9d:6e:40:81:8c:1d:86:15:a5:28:d1:3b:08:10: 39:13:c1:78:5e:c0:ba:8b:a3:1f:3a:52:25:2d:d2: 44:90:80:8d:b9:83:1a:d2:07:48:35:64:2a:18:68: 3a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:55:EE:00:2C:57:D5:F0:8E:88:71:77:16:78:70:F0:37:4D:0D:37 X509v3 Authority Key Identifier: keyid:39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cc:c2:23:2b:8c:c1:73:bf:02:a1:de:a5:cf:6f:72:73:8c:29: 6b:a3:68:a5:15:a7:23:2e:8f:c7:01:87:a1:b7:13:88:36:4f: 65:35:3f:a7:a1:7b:cf:2f:85:52:c7:61:5b:08:52:82:08:ea: 93:14:57:64:9d:d2:67:a1:67:00:2d:13:48:6e:09:37:77:86: 11:59:65:78:f1:b9:87:45:e7:0c:5f:73:3e:71:5f:3c:03:95: 48:d3:74:3e:dd:5e:6b:6b:53:62:de:db:12:d7:ac:1a:6c:9c: a1:7f:36:da:48:a3:1b:71:f4:50:d0:e4:42:bf:f2:87:e0:3e: bf:48:dd:80:1e:e3:69:51:ff:66:21:5a:37:d7:06:8f:38:63: c8:a2:a6:49:27:b6:0f:c6:de:bb:62:51:99:e9:04:a8:0e:ee: 0a:91:d7:27:b8:7f:a2:7b:6b:5e:16:10:99:91:3f:6d:a0:a0: 97:3e:cb:88:77:06:c1:d7:bd:70:17:34:33:95:07:4a:8f:20: 25:20:ff:71:f1:b7:52:ac:da:ae:0d:ce:87:04:7a:5e:5d:2d: 62:e1:30:f7:80:b8:28:8e:af:cd:30:c3:9d:44:26:67:16:59: 20:75:9e:25:6f:64:c1:8e:9f:b8:d3:63:c6:a3:69:1d:83:e9: 2c:8b:f6:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2LSOWiUBGjtThTKJJGOtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5OTExMzc1ZmNjNDg1OTYxMjE5MGViZWNjN2FlMzcxYTAx YTZhNmQwHhcNMjYwMjA5MTAwMDQ2WhcNMjYwMjEwMTAwMDQ2WjAzMTEwLwYDVQQD EyhlYzU1ZWUwMDJjNTdkNWYwOGU4ODcxNzcxNjc4NzBmMDM3NGQwZDM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTSvGqS1fPttQnMb9Gp5lYPj96zJ RYzyEvoLBYWxa/i+tlG8MdWQjbdiRapjVMSZL3254F3+FSvtOOkzM/mAulaiGGOO DQ3u+jWDD5wU7/tugin7W1eX4GBCaUyC1XSE5Du7wEYdm5wADZtGW/DSrsMgOniq dnLf+4F4YRB08Ji8R5/61Za8ZqpAX2WaAXl6uerBEkf74+3cEc77Tmxc18Mhmmfh 0uTkDeLoQ8EIDXjUh+ytBDNm6n35fS7uFkNKbsHwVkxsHMNItOApMS5tVK+snW5A gYwdhhWlKNE7CBA5E8F4XsC6i6MfOlIlLdJEkICNuYMa0gdINWQqGGg68wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOxV7gAsV9XwjohxdxZ4cPA3TQ03MB8GA1UdIwQY MBaAFDmRE3X8xIWWEhkOvsx643GgGmptMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1pFVGRmekVoWllTR1E2LXpIcmpjYUFhYW0wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC82MWMwYzUtNTI1Ny00NTNjLThlNzQt OTMzZDkyZDAwMDBjLzEvT1pFVGRmekVoWllTR1E2LXpIcmpjYUFhYW0wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC82MWMwYzUtNTI1Ny00NTNjLThlNzQtOTMzZDkyZDAwMDBj LzEvT1pFVGRmekVoWllTR1E2LXpIcmpjYUFhYW0wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzMIjK4zB c78Cod6lz29yc4wpa6NopRWnIy6PxwGHobcTiDZPZTU/p6F7zy+FUsdhWwhSggjq kxRXZJ3SZ6FnAC0TSG4JN3eGEVllePG5h0XnDF9zPnFfPAOVSNN0Pt1ea2tTYt7b EtesGmycoX822kijG3H0UNDkQr/yh+A+v0jdgB7jaVH/ZiFaN9cGjzhjyKKmSSe2 D8beu2JRmekEqA7uCpHXJ7h/ontrXhYQmZE/baCglz7LiHcGwde9cBc0M5UHSo8g JSD/cfG3Uqzarg3OhwR6Xl0tYuEw94C4KI6vzTDDnUQmZxZZIHWeJW9kwY6fuNNj xqNpHYPpLIv2fQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:34 2026 by rpki-client