This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/825011-3e5b-4404-a7b0-66f9c92d4fa1/1/ODH5qlDO_oJdpfkNpnswMlSp24U.mft File: ODH5qlDO_oJdpfkNpnswMlSp24U.mft (raw, json) Hash identifier: /icZpPi5uct+XRW8TbNFBzQH35y97uDOVBMSN7hveUg= Subject key identifier: EC:32:0D:E5:95:5C:CD:C0:D5:F5:6E:CC:79:DC:1E:CD:F5:27:5E:04 Authority key identifier: 38:31:F9:AA:50:CE:FE:82:5D:A5:F9:0D:A6:7B:30:32:54:A9:DB:85 Certificate issuer: /CN=3831f9aa50cefe825da5f90da67b303254a9db85 Certificate serial: 019C446B8F75E40AEE3399F34877172D5956 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ODH5qlDO_oJdpfkNpnswMlSp24U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/825011-3e5b-4404-a7b0-66f9c92d4fa1/1/ODH5qlDO_oJdpfkNpnswMlSp24U.mft Manifest number: 0C20 Signing time: Mon 09 Feb 2026 22:00:25 +0000 Manifest this update: Mon 09 Feb 2026 22:00:25 +0000 Manifest next update: Tue 10 Feb 2026 22:00:25 +0000 Files and hashes: 1: ODH5qlDO_oJdpfkNpnswMlSp24U.crl (hash: 8YKhMKEqDwj7B3WcJ3AgggNq9iphmcvh/aAevZRtWg0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/825011-3e5b-4404-a7b0-66f9c92d4fa1/1/ODH5qlDO_oJdpfkNpnswMlSp24U.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/825011-3e5b-4404-a7b0-66f9c92d4fa1/1/ODH5qlDO_oJdpfkNpnswMlSp24U.mft rsync://rpki.ripe.net/repository/DEFAULT/ODH5qlDO_oJdpfkNpnswMlSp24U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:8f:75:e4:0a:ee:33:99:f3:48:77:17:2d:59:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3831f9aa50cefe825da5f90da67b303254a9db85 Validity Not Before: Feb 9 22:00:25 2026 GMT Not After : Feb 10 22:00:25 2026 GMT Subject: CN=ec320de5955ccdc0d5f56ecc79dc1ecdf5275e04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:dc:0a:6b:7d:db:6a:8b:d7:cd:29:94:c8:27: 4d:f0:e2:b9:95:ea:78:ab:40:4e:61:81:0e:82:94: 2e:09:83:f6:6d:08:d2:0c:e8:a6:f8:4a:d6:90:31: d1:6d:02:a5:e8:e3:e9:d6:32:13:42:9f:52:55:a6: 98:93:7d:e8:6a:db:3c:97:d6:86:25:c6:ae:51:f6: dd:a8:c0:16:9a:61:39:ab:a0:e1:86:ed:78:82:66: dd:58:61:43:0f:a1:c2:bb:a3:50:0d:77:ee:45:02: 33:fe:9d:72:3d:e8:fe:e5:78:a6:a2:e2:b9:5d:28: ae:ab:4f:4a:58:84:f7:5f:7d:b9:c5:38:9b:55:c2: b0:ef:33:58:98:88:bf:ca:0b:86:50:4c:fa:c5:ec: 86:fc:f6:36:ce:08:4f:bd:60:14:86:a8:3a:4f:86: 0c:3a:d4:da:70:fa:6f:1d:02:3c:60:68:3a:2a:a0: 64:04:b3:eb:8e:04:b6:85:c9:93:45:e3:79:71:d2: 6b:0f:8f:55:7d:b3:5c:cc:1e:52:33:48:4e:fa:c4: 5c:6c:4a:39:32:ca:c2:2d:3e:e4:b0:77:6e:1b:35: af:cb:3d:4f:68:72:4d:64:46:e7:b6:c1:3d:51:1d: a5:38:2b:94:b3:3a:67:8d:8f:e1:54:4f:b1:ff:bb: 0f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:32:0D:E5:95:5C:CD:C0:D5:F5:6E:CC:79:DC:1E:CD:F5:27:5E:04 X509v3 Authority Key Identifier: keyid:38:31:F9:AA:50:CE:FE:82:5D:A5:F9:0D:A6:7B:30:32:54:A9:DB:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ODH5qlDO_oJdpfkNpnswMlSp24U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/825011-3e5b-4404-a7b0-66f9c92d4fa1/1/ODH5qlDO_oJdpfkNpnswMlSp24U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/825011-3e5b-4404-a7b0-66f9c92d4fa1/1/ODH5qlDO_oJdpfkNpnswMlSp24U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:f5:24:18:6a:22:ad:ed:48:6a:6d:19:ce:61:11:89:85:7b: 87:42:7f:82:ff:9e:a1:3e:45:dc:e4:8c:db:85:01:40:93:41: 7b:77:68:94:9b:e3:4f:5a:0b:78:b1:34:a0:29:e4:08:9f:bd: 8d:6f:91:11:5c:f0:28:7e:8a:40:e7:75:2e:87:f1:3f:6b:c8: 78:0d:76:13:50:bf:9f:2b:51:80:bf:90:ab:e5:82:ab:d8:76: 03:c3:ae:27:5e:2f:16:2e:3c:e7:27:e1:71:c2:e3:bf:2a:e5: 6d:d0:8b:0f:8b:74:c3:d0:3d:b6:c6:3d:9a:85:07:84:61:3d: e9:07:22:86:fb:c8:93:f4:b7:c4:4c:73:b6:89:31:fc:6c:b0: 5c:f8:8e:a9:26:3c:e2:38:2b:a7:9e:ce:80:7a:6b:cc:4b:c5: 46:7d:75:5a:35:5b:c0:11:bf:e3:16:48:30:27:c0:5e:85:6a: 53:d9:2e:c2:77:ff:0d:0f:56:e8:e3:a8:05:6c:b2:46:e5:72: 50:49:5c:d3:70:d3:35:a4:67:7e:d3:9d:09:16:bf:6e:58:c6: e0:2a:70:e4:16:07:b8:b4:84:c8:a3:96:8b:f4:8f:c9:7c:d5: bc:54:0e:77:65:a5:0b:b3:df:0c:22:df:da:1d:4f:32:26:85: dc:a4:b0:02 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa4915AruM5nzSHcXLVlWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MzFmOWFhNTBjZWZlODI1ZGE1ZjkwZGE2N2IzMDMyNTRh OWRiODUwHhcNMjYwMjA5MjIwMDI1WhcNMjYwMjEwMjIwMDI1WjAzMTEwLwYDVQQD EyhlYzMyMGRlNTk1NWNjZGMwZDVmNTZlY2M3OWRjMWVjZGY1Mjc1ZTA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvtwKa33baovXzSmUyCdN8OK5lep4 q0BOYYEOgpQuCYP2bQjSDOim+ErWkDHRbQKl6OPp1jITQp9SVaaYk33oats8l9aG JcauUfbdqMAWmmE5q6Dhhu14gmbdWGFDD6HCu6NQDXfuRQIz/p1yPej+5XimouK5 XSiuq09KWIT3X325xTibVcKw7zNYmIi/yguGUEz6xeyG/PY2zghPvWAUhqg6T4YM OtTacPpvHQI8YGg6KqBkBLPrjgS2hcmTReN5cdJrD49VfbNczB5SM0hO+sRcbEo5 MsrCLT7ksHduGzWvyz1PaHJNZEbntsE9UR2lOCuUszpnjY/hVE+x/7sPjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOwyDeWVXM3A1fVuzHncHs31J14EMB8GA1UdIwQY MBaAFDgx+apQzv6CXaX5DaZ7MDJUqduFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0RINXFsRE9fb0pkcGZrTnBuc3dNbFNwMjRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS84MjUwMTEtM2U1Yi00NDA0LWE3YjAt NjZmOWM5MmQ0ZmExLzEvT0RINXFsRE9fb0pkcGZrTnBuc3dNbFNwMjRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS84MjUwMTEtM2U1Yi00NDA0LWE3YjAtNjZmOWM5MmQ0ZmEx LzEvT0RINXFsRE9fb0pkcGZrTnBuc3dNbFNwMjRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAifUkGGoi re1Iam0ZzmERiYV7h0J/gv+eoT5F3OSM24UBQJNBe3dolJvjT1oLeLE0oCnkCJ+9 jW+REVzwKH6KQOd1LofxP2vIeA12E1C/nytRgL+Qq+WCq9h2A8OuJ14vFi485yfh ccLjvyrlbdCLD4t0w9A9tsY9moUHhGE96QcihvvIk/S3xExztokx/GywXPiOqSY8 4jgrp57OgHprzEvFRn11WjVbwBG/4xZIMCfAXoVqU9kuwnf/DQ9W6OOoBWyyRuVy UElc03DTNaRnftOdCRa/bljG4Cpw5BYHuLSEyKOWi/SPyXzVvFQOd2WlC7PfDCLf 2h1PMiaF3KSwAg== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:04 2026 by rpki-client