This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft File: OPnFTxkZPgZUgWP4lcOka5-L-7U.mft (raw, json) Hash identifier: TJcdkwuV/oIFylKrEFTNMCZix+nhyzkJKmUYxHs2XPQ= Subject key identifier: 7B:52:69:FA:94:A7:C9:CD:28:E3:34:55:CF:CA:16:97:65:B6:AB:08 Authority key identifier: 38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5 Certificate issuer: /CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5 Certificate serial: 019C1C4BBC9F06C5BA38E17F36DC9814C8BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft Manifest number: 1803 Signing time: Mon 02 Feb 2026 03:00:51 +0000 Manifest this update: Mon 02 Feb 2026 03:00:51 +0000 Manifest next update: Tue 03 Feb 2026 03:00:51 +0000 Files and hashes: 1: 42Rcnwutm1ywNZ_X0-W_swhKEEM.roa (hash: bi2ZbfhoxgNISP+fs+ffnhhXz6L36QQJYtK0dcQ3mCA=) 2: JnhXW-TDSlbtLU5yFnzY9cnU22U.roa (hash: aevLJ6Ysjd3/L9aPfY8G2yJYnOWM+TqoO6EPF30teKI=) 3: Js4E3rnoh4mQIPNOStdJD87IpLY.roa (hash: LdzJXP4bxTlrjQggVcdC0NIs9C0F1hOoFzJirHnHG24=) 4: OPnFTxkZPgZUgWP4lcOka5-L-7U.crl (hash: N3oDCZpgOKIq1ASrdTyTFrgFQ8w+1oRs7rd9hYmSQoQ=) 5: TkwlaSAb-t_A_q6mMAipvEs0zSk.roa (hash: TpY0AjBJFQQt2MYHF/hCiOfKQkRoDC5zt7ciJI8H/SA=) 6: VX01x5qLEBJVUEQLizxf8saIq-w.roa (hash: LmJXGkg2jRoBx2SiSwnwALTU4Vgo3eK0WFHdZY6wGyA=) 7: fw0YP162WW2RmauK0r76hCJq7FI.asa (hash: gBQWVbDzHTXqbw6Lz9qGJDwJuoShYEIdho/K7qMK5b8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1c:4b:bc:9f:06:c5:ba:38:e1:7f:36:dc:98:14:c8:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5 Validity Not Before: Feb 2 03:00:51 2026 GMT Not After : Feb 3 03:00:51 2026 GMT Subject: CN=7b5269fa94a7c9cd28e33455cfca169765b6ab08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:87:4f:e8:72:3c:55:a8:ef:e3:c4:7e:7c:b7: 62:27:78:91:32:73:9e:9e:58:69:6a:53:be:88:74: eb:db:ab:c2:46:95:4c:70:58:69:e4:80:75:d8:9f: ad:54:f1:1a:f7:7c:c1:7c:55:ab:16:68:cf:71:77: d7:5c:25:63:53:e7:8d:4e:65:46:d4:23:1a:36:6f: 1f:01:07:de:67:82:ff:c3:b5:24:66:c9:1b:29:7f: 96:9c:7a:bd:0d:9c:1d:57:c2:c8:ce:6f:9f:50:37: 2b:3a:92:b5:f6:37:0b:62:aa:ab:7d:b8:52:45:cc: 20:37:38:7d:5b:8e:38:29:66:99:14:24:7a:24:cc: f9:e6:10:f4:35:36:cd:80:68:05:33:6d:df:02:bf: 15:98:30:2a:c3:2d:e7:ef:98:5f:e8:b0:33:c1:cd: 07:ec:99:b6:ee:8b:7c:c3:da:53:2f:fb:b0:59:cf: f5:d8:02:63:00:e1:9b:09:ab:18:0c:e5:ef:fe:8f: 71:dd:01:05:9a:03:13:2d:00:7c:33:62:d9:15:f1: 9f:fc:86:ce:70:db:8c:8a:71:90:f6:00:5c:95:5c: d1:2c:c9:96:9f:71:f6:32:14:8e:30:3e:0b:9f:f3: 0b:88:6b:fa:c2:60:8f:ab:77:0d:70:5f:32:b7:bc: 44:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:52:69:FA:94:A7:C9:CD:28:E3:34:55:CF:CA:16:97:65:B6:AB:08 X509v3 Authority Key Identifier: keyid:38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:4b:8f:c1:f3:6e:4c:dd:f4:2e:46:70:9c:9d:03:75:e5:d3: 10:8f:9c:4a:14:00:f3:b3:60:73:83:94:fa:11:3e:88:a4:a7: eb:58:69:bb:54:3a:ca:f6:f4:f4:7d:79:47:84:cc:ea:2b:87: 3f:88:06:53:2d:3f:8b:bf:fb:6b:12:f2:5f:75:16:d7:48:fb: a0:d3:aa:cb:0f:3a:ca:f5:12:9e:64:ef:cc:f6:6d:9e:91:61: d5:a1:26:74:44:79:58:db:34:bb:dd:41:d7:dc:8a:13:01:ca: b6:aa:a6:c3:c0:43:6c:1e:69:a2:f1:d2:a3:fb:d2:ef:92:8e: 4f:ac:01:fc:00:20:9a:14:a5:60:b8:11:7c:7a:0a:ec:1d:f4: 2c:fa:64:77:b6:fc:1c:bd:04:2f:9b:08:1d:37:00:ef:5f:b1: a2:f0:bd:4c:17:ee:00:b4:72:de:85:2f:af:56:dc:2b:2d:f6: 16:db:f5:ef:7f:8d:e1:a9:4a:f5:9d:a5:2c:4d:dd:79:d8:a2: e3:2f:c3:36:a7:1a:1f:1c:8b:96:9b:67:95:68:25:78:a8:e8: 4e:93:8f:45:fb:6d:d9:6e:28:89:b5:59:86:81:73:f4:56:31: eb:b8:c2:09:b5:51:ba:34:27:7b:7b:28:98:ae:9a:0a:36:1a: a0:53:40:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwcS7yfBsW6OOF/NtyYFMi8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4ZjljNTRmMTkxOTNlMDY1NDgxNjNmODk1YzNhNDZiOWY4 YmZiYjUwHhcNMjYwMjAyMDMwMDUxWhcNMjYwMjAzMDMwMDUxWjAzMTEwLwYDVQQD Eyg3YjUyNjlmYTk0YTdjOWNkMjhlMzM0NTVjZmNhMTY5NzY1YjZhYjA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqYdP6HI8Vajv48R+fLdiJ3iRMnOe nlhpalO+iHTr26vCRpVMcFhp5IB12J+tVPEa93zBfFWrFmjPcXfXXCVjU+eNTmVG 1CMaNm8fAQfeZ4L/w7UkZskbKX+WnHq9DZwdV8LIzm+fUDcrOpK19jcLYqqrfbhS RcwgNzh9W444KWaZFCR6JMz55hD0NTbNgGgFM23fAr8VmDAqwy3n75hf6LAzwc0H 7Jm27ot8w9pTL/uwWc/12AJjAOGbCasYDOXv/o9x3QEFmgMTLQB8M2LZFfGf/IbO cNuMinGQ9gBclVzRLMmWn3H2MhSOMD4Ln/MLiGv6wmCPq3cNcF8yt7xEBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHtSafqUp8nNKOM0Vc/KFpdltqsIMB8GA1UdIwQY MBaAFDj5xU8ZGT4GVIFj+JXDpGufi/u1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1BuRlR4a1pQZ1pVZ1dQNGxjT2thNS1MLTdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9mMGI2YmEtODY3NS00OTFjLTg1OTMt NzI0OTQ5YjQ2MGU5LzEvT1BuRlR4a1pQZ1pVZ1dQNGxjT2thNS1MLTdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9mMGI2YmEtODY3NS00OTFjLTg1OTMtNzI0OTQ5YjQ2MGU5 LzEvT1BuRlR4a1pQZ1pVZ1dQNGxjT2thNS1MLTdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWUuPwfNu TN30LkZwnJ0DdeXTEI+cShQA87Ngc4OU+hE+iKSn61hpu1Q6yvb09H15R4TM6iuH P4gGUy0/i7/7axLyX3UW10j7oNOqyw86yvUSnmTvzPZtnpFh1aEmdER5WNs0u91B 19yKEwHKtqqmw8BDbB5povHSo/vS75KOT6wB/AAgmhSlYLgRfHoK7B30LPpkd7b8 HL0EL5sIHTcA71+xovC9TBfuALRy3oUvr1bcKy32Ftv173+N4alK9Z2lLE3dedii 4y/DNqcaHxyLlptnlWgleKjoTpOPRftt2W4oibVZhoFz9FYx67jCCbVRujQne3so mK6aCjYaoFNAfQ== -----END CERTIFICATE-----Generated at Mon Feb 2 08:16:02 2026 by rpki-client