This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft File: OoLcXHHOpyxlsCahJnifOIZXC6Y.mft (raw, json) Hash identifier: 2vQL+a2GrOh9VVK0E7vLZH74qlm6kOfFnGy/0MAL0/E= Subject key identifier: 64:A3:CF:14:14:3E:DD:7F:D1:6B:9F:BD:06:12:90:56:8F:F5:A5:4A Authority key identifier: 3A:82:DC:5C:71:CE:A7:2C:65:B0:26:A1:26:78:9F:38:86:57:0B:A6 Certificate issuer: /CN=3a82dc5c71cea72c65b026a126789f3886570ba6 Certificate serial: 019C43224C08B3AB234B8A11CA8575AC1871 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoLcXHHOpyxlsCahJnifOIZXC6Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:00:46 +0000 Manifest this update: Mon 09 Feb 2026 16:00:46 +0000 Manifest next update: Tue 10 Feb 2026 16:00:46 +0000 Files and hashes: 1: OoLcXHHOpyxlsCahJnifOIZXC6Y.crl (hash: CKvbBflEdaoO0nIMgB3DoGUDqFqBn4gXk2opJCdjNnA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft rsync://rpki.ripe.net/repository/DEFAULT/OoLcXHHOpyxlsCahJnifOIZXC6Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:4c:08:b3:ab:23:4b:8a:11:ca:85:75:ac:18:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a82dc5c71cea72c65b026a126789f3886570ba6 Validity Not Before: Feb 9 16:00:46 2026 GMT Not After : Feb 10 16:00:46 2026 GMT Subject: CN=64a3cf14143edd7fd16b9fbd061290568ff5a54a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ce:b1:9a:99:be:76:0c:7c:c6:1a:7f:a9:51: 55:08:04:e0:5c:c5:92:53:46:88:ac:f8:dd:4b:66: 67:3d:63:d7:02:6e:1c:8e:8e:cd:37:43:5d:08:c8: 31:e5:95:b9:c0:93:ac:7f:c1:84:4a:f5:15:d8:6b: 84:cd:9c:d6:60:c9:56:b3:84:bc:74:ec:74:d3:e9: 9b:70:90:ef:ac:98:0f:00:2b:f6:62:83:73:15:ac: 57:b0:aa:52:1d:3f:cb:bb:66:67:4e:d9:49:ef:1e: 11:f9:a7:fa:75:55:43:29:1c:f0:be:4b:e9:80:37: 36:75:17:76:4f:d5:10:bd:e1:1e:54:8e:fb:26:d0: 9d:00:96:c3:51:a4:9a:6e:c0:c4:f8:8e:eb:16:d1: f6:3d:8b:3f:57:ac:17:eb:42:16:30:3e:29:70:36: e7:af:a3:4b:ff:01:b4:37:c2:6f:a1:07:a3:37:26: f2:58:14:bd:e7:65:61:ed:b8:0f:e3:db:0d:40:db: 33:db:c3:88:e5:22:5d:26:ed:86:b3:ad:c9:8b:ce: 33:2a:86:2b:d5:85:23:0d:87:8f:4e:d1:97:73:a2: b7:2e:75:93:32:f7:18:8f:29:17:d0:6f:7a:53:93: d9:ce:00:09:63:db:16:5e:dc:0d:6f:ca:1a:63:92: bf:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:A3:CF:14:14:3E:DD:7F:D1:6B:9F:BD:06:12:90:56:8F:F5:A5:4A X509v3 Authority Key Identifier: keyid:3A:82:DC:5C:71:CE:A7:2C:65:B0:26:A1:26:78:9F:38:86:57:0B:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoLcXHHOpyxlsCahJnifOIZXC6Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:f2:43:c3:bf:13:e8:b6:22:19:a6:39:08:f2:81:c8:12:9c: bd:c3:86:95:d1:a3:ea:e2:3f:82:db:fe:1e:f6:d1:00:20:26: 28:93:e7:32:88:0e:03:8b:68:83:39:9a:3c:9a:11:87:f8:05: b2:1a:11:8a:f3:0c:00:14:c5:db:70:48:2f:82:a0:fd:7e:c6: 46:eb:ea:9c:b1:b0:a1:2b:0e:44:ea:ae:c3:ac:2c:7c:94:43: 57:6a:85:83:ac:37:79:fa:b5:69:c3:8d:f1:d1:47:a1:0e:33: b1:07:99:0f:8a:f9:a0:ad:45:39:72:40:ff:e1:b6:51:6d:f2: 29:89:b6:ed:b8:74:e1:c0:fe:96:57:ad:13:60:78:b8:f3:fe: d0:7a:80:8b:ee:85:f0:c3:d5:97:51:19:3a:07:a4:66:05:2e: a8:99:5d:1b:9b:20:3c:a9:91:b2:53:2f:9a:ef:6c:da:f2:b6: 6e:2b:1d:a3:03:b3:8c:f0:5c:27:87:d7:b8:14:47:80:be:6a: a2:b0:60:31:4b:a6:e9:57:f1:ea:08:1c:3d:e1:60:a9:86:67: 2d:20:ae:58:a7:7c:6c:3a:f9:13:a5:bf:53:c8:5d:b1:57:49: 32:bc:34:e4:11:ea:a5:e4:15:03:ac:f2:1b:ef:be:a6:19:96: 66:00:6e:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIkwIs6sjS4oRyoV1rBhxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhODJkYzVjNzFjZWE3MmM2NWIwMjZhMTI2Nzg5ZjM4ODY1 NzBiYTYwHhcNMjYwMjA5MTYwMDQ2WhcNMjYwMjEwMTYwMDQ2WjAzMTEwLwYDVQQD Eyg2NGEzY2YxNDE0M2VkZDdmZDE2YjlmYmQwNjEyOTA1NjhmZjVhNTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5M6xmpm+dgx8xhp/qVFVCATgXMWS U0aIrPjdS2ZnPWPXAm4cjo7NN0NdCMgx5ZW5wJOsf8GESvUV2GuEzZzWYMlWs4S8 dOx00+mbcJDvrJgPACv2YoNzFaxXsKpSHT/Lu2ZnTtlJ7x4R+af6dVVDKRzwvkvp gDc2dRd2T9UQveEeVI77JtCdAJbDUaSabsDE+I7rFtH2PYs/V6wX60IWMD4pcDbn r6NL/wG0N8JvoQejNybyWBS952Vh7bgP49sNQNsz28OI5SJdJu2Gs63Ji84zKoYr 1YUjDYePTtGXc6K3LnWTMvcYjykX0G96U5PZzgAJY9sWXtwNb8oaY5K/VQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGSjzxQUPt1/0WufvQYSkFaP9aVKMB8GA1UdIwQY MBaAFDqC3FxxzqcsZbAmoSZ4nziGVwumMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT29MY1hISE9weXhsc0NhaEpuaWZPSVpYQzZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9kNTk1OGMtMTRjYS00MWQ1LThkNDIt ZGMxZmFiNDM5ZTMwLzEvT29MY1hISE9weXhsc0NhaEpuaWZPSVpYQzZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi9kNTk1OGMtMTRjYS00MWQ1LThkNDItZGMxZmFiNDM5ZTMw LzEvT29MY1hISE9weXhsc0NhaEpuaWZPSVpYQzZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEfJDw78T 6LYiGaY5CPKByBKcvcOGldGj6uI/gtv+HvbRACAmKJPnMogOA4togzmaPJoRh/gF shoRivMMABTF23BIL4Kg/X7GRuvqnLGwoSsOROquw6wsfJRDV2qFg6w3efq1acON 8dFHoQ4zsQeZD4r5oK1FOXJA/+G2UW3yKYm27bh04cD+lletE2B4uPP+0HqAi+6F 8MPVl1EZOgekZgUuqJldG5sgPKmRslMvmu9s2vK2bisdowOzjPBcJ4fXuBRHgL5q orBgMUum6Vfx6ggcPeFgqYZnLSCuWKd8bDr5E6W/U8hdsVdJMrw05BHqpeQVA6zy G+++phmWZgBuxQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:33 2026 by rpki-client