This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/d7a4d5-5144-4e18-887c-a6b0fde21906/1/OXy939eSBtZcTugWjq9ucJAg-V0.mft File: OXy939eSBtZcTugWjq9ucJAg-V0.mft (raw, json) Hash identifier: YVRAwyZTE74Do3HqlTCqP4lO/a/o1yYgyV4ZO/DQtXQ= Subject key identifier: FA:D3:C6:66:1F:B3:8F:B9:E3:32:81:05:54:CB:A8:9B:3C:1C:0A:68 Authority key identifier: 39:7C:BD:DF:D7:92:06:D6:5C:4E:E8:16:8E:AF:6E:70:90:20:F9:5D Certificate issuer: /CN=397cbddfd79206d65c4ee8168eaf6e709020f95d Certificate serial: 019C4510A189F562C2EAF8084F879AFD2D53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXy939eSBtZcTugWjq9ucJAg-V0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/d7a4d5-5144-4e18-887c-a6b0fde21906/1/OXy939eSBtZcTugWjq9ucJAg-V0.mft Manifest number: 0BD0 Signing time: Tue 10 Feb 2026 01:00:43 +0000 Manifest this update: Tue 10 Feb 2026 01:00:43 +0000 Manifest next update: Wed 11 Feb 2026 01:00:43 +0000 Files and hashes: 1: OXy939eSBtZcTugWjq9ucJAg-V0.crl (hash: LABcyrlAysJ2DNk19Rh5W9VkBpLVsHcgaAQf0UY50yo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/d7a4d5-5144-4e18-887c-a6b0fde21906/1/OXy939eSBtZcTugWjq9ucJAg-V0.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/d7a4d5-5144-4e18-887c-a6b0fde21906/1/OXy939eSBtZcTugWjq9ucJAg-V0.mft rsync://rpki.ripe.net/repository/DEFAULT/OXy939eSBtZcTugWjq9ucJAg-V0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:10:a1:89:f5:62:c2:ea:f8:08:4f:87:9a:fd:2d:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=397cbddfd79206d65c4ee8168eaf6e709020f95d Validity Not Before: Feb 10 01:00:43 2026 GMT Not After : Feb 11 01:00:43 2026 GMT Subject: CN=fad3c6661fb38fb9e332810554cba89b3c1c0a68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d9:0d:50:39:1c:9e:9c:69:9b:04:f1:7a:d0: 9f:a6:2d:fd:10:8d:26:e2:f7:1c:ee:90:10:1f:b1: b9:8b:77:01:63:d9:4f:4e:56:b8:c8:ba:e8:22:2c: 1a:b3:4d:4c:2d:3d:ca:a8:20:e9:99:01:42:d6:2d: c5:1d:96:cd:fd:41:9b:77:79:0b:fe:31:d7:d8:e6: 1a:07:c3:a8:09:12:18:2e:be:06:92:fd:4d:6e:47: b8:ed:1c:78:ec:0a:b2:d2:e8:80:fc:9d:74:85:59: a3:55:1a:0d:61:74:83:c7:b0:75:eb:ec:75:ba:cf: 16:36:f2:0d:ff:5e:ce:e7:86:e0:2b:41:b0:06:3c: 3d:ef:bc:78:08:b4:46:be:6c:1d:c5:5b:a0:5b:70: bc:4a:3b:36:31:72:f4:a3:e0:c1:60:bb:11:48:73: 7e:59:20:b9:8b:d9:71:24:1d:62:c0:70:a5:bb:c5: 64:0b:6a:ed:22:f9:39:c6:10:0f:3c:9f:b0:a4:3e: 3c:a9:fc:bc:42:a6:bf:88:61:d2:e2:df:cd:4a:b2: 87:df:f0:cf:bb:bb:ae:49:ab:71:ed:f2:b9:0b:c4: 1c:86:2b:db:31:49:b6:19:07:73:6b:5b:8a:1c:84: 2b:86:e0:66:0d:fb:ed:a2:a8:04:b4:4f:5d:f6:d0: 8c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D3:C6:66:1F:B3:8F:B9:E3:32:81:05:54:CB:A8:9B:3C:1C:0A:68 X509v3 Authority Key Identifier: keyid:39:7C:BD:DF:D7:92:06:D6:5C:4E:E8:16:8E:AF:6E:70:90:20:F9:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXy939eSBtZcTugWjq9ucJAg-V0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/d7a4d5-5144-4e18-887c-a6b0fde21906/1/OXy939eSBtZcTugWjq9ucJAg-V0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/d7a4d5-5144-4e18-887c-a6b0fde21906/1/OXy939eSBtZcTugWjq9ucJAg-V0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:d7:cf:23:a9:26:5b:1b:c0:c0:8a:9a:a9:8b:c1:c4:8e:ed: ae:3b:8f:8b:4e:ce:e1:59:20:5d:f1:c5:23:dc:76:86:ff:20: 3b:be:2d:c6:56:c4:0b:fe:4a:e8:ce:13:e7:1b:a0:29:f8:e8: 01:e3:91:0d:ef:e0:0e:d8:1f:d2:3c:23:b5:0f:04:af:4f:bc: 4d:67:ce:fe:f4:96:9b:91:90:ab:6a:2f:8e:bd:9a:ae:fc:79: 5a:87:2b:06:eb:bd:d6:b0:06:7c:e8:d8:c7:a0:7a:61:d1:dd: 92:12:f5:2d:18:84:aa:db:15:66:a6:e7:7d:aa:de:99:05:ea: 80:c4:67:28:eb:57:56:93:38:4d:c7:f6:84:52:29:ba:f5:9e: 6b:dd:69:63:c3:d0:5e:29:18:a8:ad:99:92:01:79:56:2f:f5: e0:f7:1a:6e:63:bc:13:08:d0:f3:e2:e3:51:94:69:10:d1:db: 2f:3e:a6:43:b3:25:a7:06:b6:cc:26:eb:48:cc:22:35:45:80: 05:93:47:16:68:c5:06:30:4c:1e:6a:24:db:26:45:c1:dc:f0: 59:1a:79:c9:58:fa:cd:bd:aa:e0:7a:66:42:54:48:dd:8a:c9: a0:53:bb:70:39:26:b0:44:ad:11:a0:c7:7c:9f:53:c7:14:bc: f9:86:0c:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFEKGJ9WLC6vgIT4ea/S1TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5N2NiZGRmZDc5MjA2ZDY1YzRlZTgxNjhlYWY2ZTcwOTAy MGY5NWQwHhcNMjYwMjEwMDEwMDQzWhcNMjYwMjExMDEwMDQzWjAzMTEwLwYDVQQD EyhmYWQzYzY2NjFmYjM4ZmI5ZTMzMjgxMDU1NGNiYTg5YjNjMWMwYTY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy9kNUDkcnpxpmwTxetCfpi39EI0m 4vcc7pAQH7G5i3cBY9lPTla4yLroIiwas01MLT3KqCDpmQFC1i3FHZbN/UGbd3kL /jHX2OYaB8OoCRIYLr4Gkv1Nbke47Rx47Aqy0uiA/J10hVmjVRoNYXSDx7B16+x1 us8WNvIN/17O54bgK0GwBjw977x4CLRGvmwdxVugW3C8Sjs2MXL0o+DBYLsRSHN+ WSC5i9lxJB1iwHClu8VkC2rtIvk5xhAPPJ+wpD48qfy8Qqa/iGHS4t/NSrKH3/DP u7uuSatx7fK5C8QchivbMUm2GQdza1uKHIQrhuBmDfvtoqgEtE9d9tCMgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPrTxmYfs4+54zKBBVTLqJs8HApoMB8GA1UdIwQY MBaAFDl8vd/XkgbWXE7oFo6vbnCQIPldMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1h5OTM5ZVNCdFpjVHVnV2pxOXVjSkFnLVYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9kN2E0ZDUtNTE0NC00ZTE4LTg4N2Mt YTZiMGZkZTIxOTA2LzEvT1h5OTM5ZVNCdFpjVHVnV2pxOXVjSkFnLVYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS9kN2E0ZDUtNTE0NC00ZTE4LTg4N2MtYTZiMGZkZTIxOTA2 LzEvT1h5OTM5ZVNCdFpjVHVnV2pxOXVjSkFnLVYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIdfPI6km WxvAwIqaqYvBxI7trjuPi07O4VkgXfHFI9x2hv8gO74txlbEC/5K6M4T5xugKfjo AeORDe/gDtgf0jwjtQ8Er0+8TWfO/vSWm5GQq2ovjr2arvx5WocrBuu91rAGfOjY x6B6YdHdkhL1LRiEqtsVZqbnfaremQXqgMRnKOtXVpM4Tcf2hFIpuvWea91pY8PQ XikYqK2ZkgF5Vi/14PcabmO8EwjQ8+LjUZRpENHbLz6mQ7Mlpwa2zCbrSMwiNUWA BZNHFmjFBjBMHmok2yZFwdzwWRp5yVj6zb2q4HpmQlRI3YrJoFO7cDkmsEStEaDH fJ9TxxS8+YYMMg== -----END CERTIFICATE-----Generated at Tue Feb 10 03:00:04 2026 by rpki-client