This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/8af1cd-5021-463b-99a3-04e4a84a74ac/1/OPJMluat5giBDDDZoTB8xpr5_00.mft File: OPJMluat5giBDDDZoTB8xpr5_00.mft (raw, json) Hash identifier: 8LfEFQFdqh16YuZvRDsPCl4r7Oss8snUJhq1YSPsQfU= Subject key identifier: 96:8A:83:6D:2E:4A:71:7F:12:9D:FE:C7:26:E3:E0:81:4B:B3:98:97 Authority key identifier: 38:F2:4C:96:E6:AD:E6:08:81:0C:30:D9:A1:30:7C:C6:9A:F9:FF:4D Certificate issuer: /CN=38f24c96e6ade608810c30d9a1307cc69af9ff4d Certificate serial: 019C427E2ED74D8B8B27EFDE7023887CA557 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPJMluat5giBDDDZoTB8xpr5_00.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/8af1cd-5021-463b-99a3-04e4a84a74ac/1/OPJMluat5giBDDDZoTB8xpr5_00.mft Manifest number: 0EC5 Signing time: Mon 09 Feb 2026 13:01:31 +0000 Manifest this update: Mon 09 Feb 2026 13:01:31 +0000 Manifest next update: Tue 10 Feb 2026 13:01:31 +0000 Files and hashes: 1: OPJMluat5giBDDDZoTB8xpr5_00.crl (hash: ZDPKuKg33AneLGI3wGSYdLAIOq933RtpaPSFyjVx/FA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/8af1cd-5021-463b-99a3-04e4a84a74ac/1/OPJMluat5giBDDDZoTB8xpr5_00.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/8af1cd-5021-463b-99a3-04e4a84a74ac/1/OPJMluat5giBDDDZoTB8xpr5_00.mft rsync://rpki.ripe.net/repository/DEFAULT/OPJMluat5giBDDDZoTB8xpr5_00.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:2e:d7:4d:8b:8b:27:ef:de:70:23:88:7c:a5:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38f24c96e6ade608810c30d9a1307cc69af9ff4d Validity Not Before: Feb 9 13:01:31 2026 GMT Not After : Feb 10 13:01:31 2026 GMT Subject: CN=968a836d2e4a717f129dfec726e3e0814bb39897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4d:c6:3b:29:96:3b:d5:a4:95:c8:e0:b0:b3: 84:0f:05:c9:ba:4f:45:3b:5a:08:d6:08:be:9c:5d: b0:a9:46:b5:7e:36:27:6e:52:f8:e6:37:af:21:69: 14:0c:1c:11:23:2d:31:90:55:87:3d:92:a4:a1:0e: 9e:ab:0a:ad:5b:d1:9e:bb:d5:98:72:0b:e9:b4:de: 35:13:bf:fa:87:be:5d:b0:e0:79:67:4f:b6:8a:bf: dd:27:33:f2:6c:36:3f:45:1c:78:5a:a3:4d:69:60: 07:56:8e:fb:70:d9:6e:f4:b7:08:1b:b5:e6:d4:e3: 7d:20:27:22:2c:e4:29:05:2c:79:a4:14:ea:ad:68: d0:da:39:50:bc:c6:b8:fc:4b:f1:bc:d6:7d:b6:93: 14:75:9a:3d:85:fd:64:39:40:1e:1b:83:44:68:06: 27:4c:00:15:0b:ad:85:ce:5d:74:8c:27:b5:ce:16: 27:12:49:d0:5b:b3:da:41:8d:1d:b4:9e:d1:5a:1e: 07:89:e1:0b:9e:7a:af:97:06:e1:d4:69:74:a9:d2: 6d:a1:df:4c:2f:82:12:56:d1:10:fd:91:da:20:31: 9b:dc:b3:45:87:32:c0:f9:f8:7e:58:fd:61:82:69: a7:ee:b9:44:a9:1d:5e:b9:eb:15:eb:c6:06:6e:bc: 28:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:8A:83:6D:2E:4A:71:7F:12:9D:FE:C7:26:E3:E0:81:4B:B3:98:97 X509v3 Authority Key Identifier: keyid:38:F2:4C:96:E6:AD:E6:08:81:0C:30:D9:A1:30:7C:C6:9A:F9:FF:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPJMluat5giBDDDZoTB8xpr5_00.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8af1cd-5021-463b-99a3-04e4a84a74ac/1/OPJMluat5giBDDDZoTB8xpr5_00.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8af1cd-5021-463b-99a3-04e4a84a74ac/1/OPJMluat5giBDDDZoTB8xpr5_00.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:82:ec:51:72:58:cf:d8:a3:83:67:f6:06:c8:a7:7d:b2:ba: be:4b:a6:56:20:60:79:62:24:be:09:a3:e5:38:07:f9:03:50: 1f:ae:01:f5:49:3e:ef:5c:1a:19:b5:02:5f:5b:52:26:12:ae: 08:36:17:05:5f:70:27:11:95:c5:4e:53:58:7e:c8:7b:9b:e8: c9:3c:e2:e4:a2:1a:c6:ec:d8:1c:08:69:62:ed:a8:aa:46:a7: 35:1e:12:58:b5:6d:f3:f1:ec:eb:8a:49:33:7f:53:e5:e6:36: 6c:c5:21:30:48:72:12:ee:ea:2a:04:91:3c:4a:09:54:a0:03: a8:3a:63:f0:b7:ef:ad:7a:86:80:61:85:55:7e:f1:16:ae:9a: e6:ce:2c:65:86:6c:c7:b5:f5:ac:be:fa:dd:d2:06:46:9b:03: c2:b8:06:fa:06:19:eb:3b:88:6b:da:1e:42:fd:97:a7:51:07: aa:c0:05:29:28:e1:34:ad:d2:ec:b0:e9:6c:e1:c3:1d:1d:fc: cb:17:20:da:fb:61:5f:a1:3d:59:45:97:04:3d:2b:44:f4:ed: 8f:7d:fd:2b:9a:bf:ad:a1:e4:dd:29:d8:c5:c7:d8:17:01:17: 5a:ce:07:01:fa:d5:02:7b:5c:c3:45:2f:25:61:b4:52:01:93: 44:b2:0e:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfi7XTYuLJ+/ecCOIfKVXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4ZjI0Yzk2ZTZhZGU2MDg4MTBjMzBkOWExMzA3Y2M2OWFm OWZmNGQwHhcNMjYwMjA5MTMwMTMxWhcNMjYwMjEwMTMwMTMxWjAzMTEwLwYDVQQD Eyg5NjhhODM2ZDJlNGE3MTdmMTI5ZGZlYzcyNmUzZTA4MTRiYjM5ODk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuE3GOymWO9WklcjgsLOEDwXJuk9F O1oI1gi+nF2wqUa1fjYnblL45jevIWkUDBwRIy0xkFWHPZKkoQ6eqwqtW9Geu9WY cgvptN41E7/6h75dsOB5Z0+2ir/dJzPybDY/RRx4WqNNaWAHVo77cNlu9LcIG7Xm 1ON9ICciLOQpBSx5pBTqrWjQ2jlQvMa4/EvxvNZ9tpMUdZo9hf1kOUAeG4NEaAYn TAAVC62Fzl10jCe1zhYnEknQW7PaQY0dtJ7RWh4HieELnnqvlwbh1Gl0qdJtod9M L4ISVtEQ/ZHaIDGb3LNFhzLA+fh+WP1hgmmn7rlEqR1euesV68YGbrwoNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJaKg20uSnF/Ep3+xybj4IFLs5iXMB8GA1UdIwQY MBaAFDjyTJbmreYIgQww2aEwfMaa+f9NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1BKTWx1YXQ1Z2lCREREWm9UQjh4cHI1XzAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS84YWYxY2QtNTAyMS00NjNiLTk5YTMt MDRlNGE4NGE3NGFjLzEvT1BKTWx1YXQ1Z2lCREREWm9UQjh4cHI1XzAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS84YWYxY2QtNTAyMS00NjNiLTk5YTMtMDRlNGE4NGE3NGFj LzEvT1BKTWx1YXQ1Z2lCREREWm9UQjh4cHI1XzAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHoLsUXJY z9ijg2f2BsinfbK6vkumViBgeWIkvgmj5TgH+QNQH64B9Uk+71waGbUCX1tSJhKu CDYXBV9wJxGVxU5TWH7Ie5voyTzi5KIaxuzYHAhpYu2oqkanNR4SWLVt8/Hs64pJ M39T5eY2bMUhMEhyEu7qKgSRPEoJVKADqDpj8LfvrXqGgGGFVX7xFq6a5s4sZYZs x7X1rL763dIGRpsDwrgG+gYZ6zuIa9oeQv2Xp1EHqsAFKSjhNK3S7LDpbOHDHR38 yxcg2vthX6E9WUWXBD0rRPTtj339K5q/raHk3SnYxcfYFwEXWs4HAfrVAntcw0Uv JWG0UgGTRLIOGQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:36 2026 by rpki-client