This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/806328-9042-4c13-ade0-163d03ea6499/1/oPmMXcc-P6i_3MABQ_A5VVLv78A.mft File: oPmMXcc-P6i_3MABQ_A5VVLv78A.mft (raw, json) Hash identifier: 7e/0IAD0ZqC7K9SvqkUgCFpCRCf0bQiYPRef0PCW1Zg= Subject key identifier: 5F:00:D1:94:01:3B:97:D6:BE:C1:F6:2A:00:EC:E2:DF:1B:CA:EE:05 Authority key identifier: A0:F9:8C:5D:C7:3E:3F:A8:BF:DC:C0:01:43:F0:39:55:52:EF:EF:C0 Certificate issuer: /CN=a0f98c5dc73e3fa8bfdcc00143f0395552efefc0 Certificate serial: 019C42EBA61BBBD7667FFBFAD1ACDD876D8A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oPmMXcc-P6i_3MABQ_A5VVLv78A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/806328-9042-4c13-ade0-163d03ea6499/1/oPmMXcc-P6i_3MABQ_A5VVLv78A.mft Manifest number: 4B Signing time: Mon 09 Feb 2026 15:01:05 +0000 Manifest this update: Mon 09 Feb 2026 15:01:05 +0000 Manifest next update: Tue 10 Feb 2026 15:01:05 +0000 Files and hashes: 1: oPmMXcc-P6i_3MABQ_A5VVLv78A.crl (hash: 2EOkaGM5ZhwzTiIHlkwH9dnZSsZvrXjCbDbbD1ZL1Y8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/806328-9042-4c13-ade0-163d03ea6499/1/oPmMXcc-P6i_3MABQ_A5VVLv78A.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/806328-9042-4c13-ade0-163d03ea6499/1/oPmMXcc-P6i_3MABQ_A5VVLv78A.mft rsync://rpki.ripe.net/repository/DEFAULT/oPmMXcc-P6i_3MABQ_A5VVLv78A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:a6:1b:bb:d7:66:7f:fb:fa:d1:ac:dd:87:6d:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0f98c5dc73e3fa8bfdcc00143f0395552efefc0 Validity Not Before: Feb 9 15:01:05 2026 GMT Not After : Feb 10 15:01:05 2026 GMT Subject: CN=5f00d194013b97d6bec1f62a00ece2df1bcaee05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:04:19:e4:8f:c2:26:12:34:96:8c:4d:dc:0e: ae:f3:58:d7:87:4b:01:57:bc:11:cb:23:f8:89:2d: 76:7f:7c:38:6e:f2:bd:be:cc:95:19:a6:5c:d7:11: 6d:f4:72:18:02:9b:c4:1e:d3:ad:9b:63:4f:bf:42: f5:c5:4d:00:15:1a:7f:9a:16:71:a3:f0:87:4e:d6: 0c:9c:e6:4a:44:77:e8:32:ea:e5:5d:c5:d5:08:f0: 3c:f3:5c:fc:1d:06:2b:24:e2:2d:ab:37:23:66:59: 1d:ed:07:5d:08:a4:ae:af:16:03:ca:d2:59:70:be: 92:f1:ff:48:51:ec:34:52:24:a0:60:c2:3e:b6:99: 7c:48:85:fe:2b:5f:2f:3f:07:97:3f:7a:2b:ee:f9: 0f:46:f9:fa:78:95:f1:bb:37:83:e5:d5:27:f5:94: f3:76:45:1e:ea:51:2c:3c:11:c0:8d:45:2e:a2:35: 04:56:e0:a6:8a:57:f2:cc:64:9f:2c:54:10:2e:85: 62:93:0f:f3:15:9c:1a:50:c7:38:35:20:e3:6a:2e: 70:9a:f3:1e:58:10:7f:63:74:68:1d:45:02:4a:45: 7b:e2:7e:46:1f:bd:7c:47:12:af:26:36:5e:4e:23: be:49:e4:db:0d:26:e4:0b:20:1b:46:5f:40:fe:8f: 8b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:00:D1:94:01:3B:97:D6:BE:C1:F6:2A:00:EC:E2:DF:1B:CA:EE:05 X509v3 Authority Key Identifier: keyid:A0:F9:8C:5D:C7:3E:3F:A8:BF:DC:C0:01:43:F0:39:55:52:EF:EF:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oPmMXcc-P6i_3MABQ_A5VVLv78A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/806328-9042-4c13-ade0-163d03ea6499/1/oPmMXcc-P6i_3MABQ_A5VVLv78A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/806328-9042-4c13-ade0-163d03ea6499/1/oPmMXcc-P6i_3MABQ_A5VVLv78A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:f5:63:12:37:56:27:5e:ac:54:61:3d:39:18:e4:87:39:22: e0:cf:62:7c:c5:75:a1:ca:37:ce:30:1a:a6:94:72:81:3d:54: 8a:04:6d:e4:92:73:d0:f8:5e:6b:19:05:7f:b1:a0:19:ba:ee: b5:bb:4f:48:88:ab:26:ae:56:5e:b0:4e:c9:64:5b:97:ec:20: 14:b5:71:20:7a:29:c8:9b:41:af:60:97:9d:98:87:90:fb:cd: 04:49:16:af:4f:1b:24:70:44:d4:81:88:1f:76:a8:d2:fa:14: 2a:3a:fa:18:c1:b0:31:e0:fe:be:db:bb:60:e8:9d:61:ec:01: ec:1c:3c:c0:48:63:b1:a6:26:09:48:a4:3f:e6:63:df:f0:ae: 38:0f:d1:48:9d:08:59:52:ff:87:81:30:24:43:7f:09:0d:90: 66:9c:05:0c:62:a1:af:12:41:e6:36:d7:25:88:71:fa:b9:3e: 9b:51:3a:0b:36:05:e0:96:e6:7a:0c:85:a6:34:24:89:c7:38: 11:c1:96:32:07:c3:c9:01:4d:9e:c7:02:ef:3b:f2:fb:18:71: 62:8a:d8:8f:07:8b:c2:eb:73:e0:00:2b:41:1e:e0:29:eb:8d: e9:3a:7d:df:7f:42:06:da:91:de:b2:fd:46:d4:44:54:39:f9: c7:1d:2c:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC66Ybu9dmf/v60azdh22KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwZjk4YzVkYzczZTNmYThiZmRjYzAwMTQzZjAzOTU1NTJl ZmVmYzAwHhcNMjYwMjA5MTUwMTA1WhcNMjYwMjEwMTUwMTA1WjAzMTEwLwYDVQQD Eyg1ZjAwZDE5NDAxM2I5N2Q2YmVjMWY2MmEwMGVjZTJkZjFiY2FlZTA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgQZ5I/CJhI0loxN3A6u81jXh0sB V7wRyyP4iS12f3w4bvK9vsyVGaZc1xFt9HIYApvEHtOtm2NPv0L1xU0AFRp/mhZx o/CHTtYMnOZKRHfoMurlXcXVCPA881z8HQYrJOItqzcjZlkd7QddCKSurxYDytJZ cL6S8f9IUew0UiSgYMI+tpl8SIX+K18vPweXP3or7vkPRvn6eJXxuzeD5dUn9ZTz dkUe6lEsPBHAjUUuojUEVuCmilfyzGSfLFQQLoVikw/zFZwaUMc4NSDjai5wmvMe WBB/Y3RoHUUCSkV74n5GH718RxKvJjZeTiO+SeTbDSbkCyAbRl9A/o+LlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF8A0ZQBO5fWvsH2KgDs4t8byu4FMB8GA1UdIwQY MBaAFKD5jF3HPj+ov9zAAUPwOVVS7+/AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1BtTVhjYy1QNmlfM01BQlFfQTVWVkx2NzhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy84MDYzMjgtOTA0Mi00YzEzLWFkZTAt MTYzZDAzZWE2NDk5LzEvb1BtTVhjYy1QNmlfM01BQlFfQTVWVkx2NzhBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy84MDYzMjgtOTA0Mi00YzEzLWFkZTAtMTYzZDAzZWE2NDk5 LzEvb1BtTVhjYy1QNmlfM01BQlFfQTVWVkx2NzhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf/VjEjdW J16sVGE9ORjkhzki4M9ifMV1oco3zjAappRygT1UigRt5JJz0PheaxkFf7GgGbru tbtPSIirJq5WXrBOyWRbl+wgFLVxIHopyJtBr2CXnZiHkPvNBEkWr08bJHBE1IGI H3ao0voUKjr6GMGwMeD+vtu7YOidYewB7Bw8wEhjsaYmCUikP+Zj3/CuOA/RSJ0I WVL/h4EwJEN/CQ2QZpwFDGKhrxJB5jbXJYhx+rk+m1E6CzYF4JbmegyFpjQkicc4 EcGWMgfDyQFNnscC7zvy+xhxYorYjweLwutz4AArQR7gKeuN6Tp9339CBtqR3rL9 RtREVDn5xx0sBQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:46:42 2026 by rpki-client