This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft File: oCN2bGLetRKXFVcI7MtCHIsEeAo.mft (raw, json) Hash identifier: FplcP2dsCDWS1NKKTP5an0+gJrhh6i40XH1su1rpa3g= Subject key identifier: A3:12:DB:10:24:46:95:DE:D1:6C:14:B1:40:1A:A7:90:6C:92:EF:45 Authority key identifier: A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A Certificate issuer: /CN=a023766c62deb51297155708eccb421c8b04780a Certificate serial: 019C2D75E2B3675AB03BCD2B35FEC17FAD9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft Manifest number: 1557 Signing time: Thu 05 Feb 2026 11:00:26 +0000 Manifest this update: Thu 05 Feb 2026 11:00:26 +0000 Manifest next update: Fri 06 Feb 2026 11:00:26 +0000 Files and hashes: 1: g0-HGh4bznaFgiFX5KCpF3Q8z70.roa (hash: kuqsXcay0qN76iKLs/AKqPrHvwfsG46t73MVLxZfYe0=) 2: oCN2bGLetRKXFVcI7MtCHIsEeAo.crl (hash: xjdIKyUens8vlJ1FfbxQ2sN5Rws8/WNSWVH8afzRUA4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Feb 2026 11:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:2d:75:e2:b3:67:5a:b0:3b:cd:2b:35:fe:c1:7f:ad:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a023766c62deb51297155708eccb421c8b04780a Validity Not Before: Feb 5 11:00:26 2026 GMT Not After : Feb 6 11:00:26 2026 GMT Subject: CN=a312db10244695ded16c14b1401aa7906c92ef45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:57:69:7e:f7:26:d3:bd:70:63:9a:ee:cb:8b: 7c:ac:db:c2:92:aa:d8:25:be:4c:8e:55:e6:43:d4: d6:6e:ea:b4:fe:91:83:20:7f:5d:b5:56:c4:54:80: 93:ce:94:df:44:27:66:3b:81:d9:89:dd:65:dd:6f: 0b:de:49:47:7c:39:e7:86:14:57:34:aa:5c:34:4b: d9:9f:73:5b:3d:2a:d1:70:48:5b:a7:38:3f:13:dc: 17:a8:85:ab:08:7c:7b:8c:5e:7a:e3:57:9a:16:65: a3:53:2f:4f:cc:89:9e:07:f5:cb:7e:37:50:b3:f0: 07:ca:70:87:80:38:b4:53:a4:7a:36:91:f9:68:03: 86:a6:7c:c7:11:f4:21:d7:8a:56:84:cb:b9:e9:fb: a4:61:b3:a7:12:13:ae:0b:58:46:cb:a4:95:d7:26: 90:89:66:dc:a6:f4:45:64:ad:48:86:d0:a1:b6:dd: 4c:91:93:10:eb:f8:29:d6:84:f1:a3:10:b6:d8:54: 8f:15:c6:71:e2:d5:c1:3b:6a:8a:fe:22:02:54:cb: 6b:5c:4e:97:bb:4f:73:25:45:24:4d:7c:c4:a9:a1: 09:41:93:dc:3c:a2:c3:aa:75:d8:e2:81:b7:95:3c: da:ed:51:e1:f7:d3:3d:53:a9:ce:d6:de:4b:f1:05: 55:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:12:DB:10:24:46:95:DE:D1:6C:14:B1:40:1A:A7:90:6C:92:EF:45 X509v3 Authority Key Identifier: keyid:A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:2e:46:d5:14:e0:99:d0:43:c6:98:1c:49:a7:70:4d:bc:33: a2:7d:53:58:eb:38:d0:a4:fa:0b:6d:9f:a8:78:9f:3b:09:60: 8f:37:e4:27:fd:5b:db:ee:90:fc:a4:71:05:b3:02:50:37:8b: 89:72:81:55:ac:92:bd:8b:04:9c:99:d7:8b:43:97:30:4a:6d: 06:b0:40:7c:f5:aa:1c:b5:40:61:8c:72:0e:3b:23:26:e7:d2: b1:9b:c8:bc:31:d9:c4:07:77:c5:6c:e4:07:50:8d:b2:58:7a: 6a:aa:83:dd:25:b9:67:d8:47:ac:0e:49:44:88:5f:7d:90:18: b6:94:53:f3:38:37:f2:1d:10:ca:9e:76:cc:6c:4e:88:c7:9e: d4:78:e3:dc:95:68:4f:8f:0d:07:53:95:1d:08:71:8e:de:fb: 3c:5f:63:29:11:fa:c5:a5:93:9c:47:e7:ec:ca:a1:12:1d:55: 65:8c:9b:cd:77:35:01:bf:a1:c8:22:1e:a3:9d:02:8a:3f:c7: 90:7b:c3:91:43:59:07:46:fe:85:ba:4b:0a:c8:93:d5:c4:59: db:74:c8:9b:34:1e:15:41:99:fe:fe:c5:1a:e7:3d:ed:5c:35: 40:11:a9:47:6d:01:bf:e0:3d:38:1b:dd:ce:f7:f6:69:a2:68: 87:80:97:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwtdeKzZ1qwO80rNf7Bf62aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwMjM3NjZjNjJkZWI1MTI5NzE1NTcwOGVjY2I0MjFjOGIw NDc4MGEwHhcNMjYwMjA1MTEwMDI2WhcNMjYwMjA2MTEwMDI2WjAzMTEwLwYDVQQD EyhhMzEyZGIxMDI0NDY5NWRlZDE2YzE0YjE0MDFhYTc5MDZjOTJlZjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvFdpfvcm071wY5ruy4t8rNvCkqrY Jb5MjlXmQ9TWbuq0/pGDIH9dtVbEVICTzpTfRCdmO4HZid1l3W8L3klHfDnnhhRX NKpcNEvZn3NbPSrRcEhbpzg/E9wXqIWrCHx7jF5641eaFmWjUy9PzImeB/XLfjdQ s/AHynCHgDi0U6R6NpH5aAOGpnzHEfQh14pWhMu56fukYbOnEhOuC1hGy6SV1yaQ iWbcpvRFZK1IhtChtt1MkZMQ6/gp1oTxoxC22FSPFcZx4tXBO2qK/iICVMtrXE6X u09zJUUkTXzEqaEJQZPcPKLDqnXY4oG3lTza7VHh99M9U6nO1t5L8QVVHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKMS2xAkRpXe0WwUsUAap5Bsku9FMB8GA1UdIwQY MBaAFKAjdmxi3rUSlxVXCOzLQhyLBHgKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0NOMmJHTGV0UktYRlZjSTdNdENISXNFZUFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9kZjkwOTYtMzZjOS00MzlhLWEwYTAt YTNhMTAwZWY4NmRlLzEvb0NOMmJHTGV0UktYRlZjSTdNdENISXNFZUFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy9kZjkwOTYtMzZjOS00MzlhLWEwYTAtYTNhMTAwZWY4NmRl LzEvb0NOMmJHTGV0UktYRlZjSTdNdENISXNFZUFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUy5G1RTg mdBDxpgcSadwTbwzon1TWOs40KT6C22fqHifOwlgjzfkJ/1b2+6Q/KRxBbMCUDeL iXKBVaySvYsEnJnXi0OXMEptBrBAfPWqHLVAYYxyDjsjJufSsZvIvDHZxAd3xWzk B1CNslh6aqqD3SW5Z9hHrA5JRIhffZAYtpRT8zg38h0Qyp52zGxOiMee1Hjj3JVo T48NB1OVHQhxjt77PF9jKRH6xaWTnEfn7MqhEh1VZYybzXc1Ab+hyCIeo50Cij/H kHvDkUNZB0b+hbpLCsiT1cRZ23TImzQeFUGZ/v7FGuc97Vw1QBGpR20Bv+A9OBvd zvf2aaJoh4CXoA== -----END CERTIFICATE-----Generated at Thu Feb 5 19:47:10 2026 by rpki-client