This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft File: oJD-k_R_g4ea4suDVIjNn31pm8A.mft (raw, json) Hash identifier: zKmcFu3pLQLLohQdQ8MD4AgczJFaWgbnLYYpuHXJTz8= Subject key identifier: F2:4B:CE:2F:99:F7:FA:04:F4:5E:43:2F:D2:53:1A:93:BE:FF:A7:AA Authority key identifier: A0:90:FE:93:F4:7F:83:87:9A:E2:CB:83:54:88:CD:9F:7D:69:9B:C0 Certificate issuer: /CN=a090fe93f47f83879ae2cb835488cd9f7d699bc0 Certificate serial: 019C4133F3D80E6D64279C8B0A3F7E2D67FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJD-k_R_g4ea4suDVIjNn31pm8A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 07:00:49 +0000 Manifest this update: Mon 09 Feb 2026 07:00:49 +0000 Manifest next update: Tue 10 Feb 2026 07:00:49 +0000 Files and hashes: 1: oJD-k_R_g4ea4suDVIjNn31pm8A.crl (hash: wkT+IyM1785OAewTRngWvDJYvePONltlt/aYrVYsMnw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft rsync://rpki.ripe.net/repository/DEFAULT/oJD-k_R_g4ea4suDVIjNn31pm8A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:f3:d8:0e:6d:64:27:9c:8b:0a:3f:7e:2d:67:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a090fe93f47f83879ae2cb835488cd9f7d699bc0 Validity Not Before: Feb 9 07:00:49 2026 GMT Not After : Feb 10 07:00:49 2026 GMT Subject: CN=f24bce2f99f7fa04f45e432fd2531a93beffa7aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e7:22:74:fa:db:45:35:94:ab:2d:9d:a7:19: 06:09:4d:0d:84:84:2d:9a:3e:7d:74:82:ed:28:83: 52:0c:fa:7c:3a:d9:98:8e:24:0f:6e:f2:a2:70:48: 72:af:87:39:13:93:b1:5f:35:84:25:c1:ab:16:2c: a1:89:ac:cf:a3:18:3e:42:ba:32:83:47:04:fa:0a: 42:23:52:7f:e7:f5:52:d6:3b:05:cf:04:55:33:56: 13:b6:5f:c2:6c:12:7f:ab:a7:08:c0:78:88:3e:bb: 04:90:81:67:cf:15:f2:93:10:fb:a9:f1:f3:50:7c: 2c:00:61:a5:cd:33:49:0c:e0:e7:f4:ba:0a:e6:a6: 5f:13:00:e2:fa:36:64:28:3c:ff:c6:59:b4:16:49: d9:7a:81:06:c5:11:24:6b:3c:32:e8:12:06:c2:96: 4c:51:7a:a6:c9:e7:54:52:58:12:fc:51:3a:a2:3c: 8c:2d:b1:37:71:2d:fc:30:5b:c4:43:13:40:64:e5: 0f:e2:22:27:50:13:a8:d7:cb:41:3d:6f:fc:0e:12: 94:13:82:71:2d:1c:4d:85:5f:61:81:8b:d1:41:c9: 7a:dc:0b:15:02:7a:f8:62:ca:2c:59:12:89:c7:f9: 75:d8:27:61:b1:81:f5:29:2b:1b:5f:3b:29:fe:a0: 98:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:4B:CE:2F:99:F7:FA:04:F4:5E:43:2F:D2:53:1A:93:BE:FF:A7:AA X509v3 Authority Key Identifier: keyid:A0:90:FE:93:F4:7F:83:87:9A:E2:CB:83:54:88:CD:9F:7D:69:9B:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJD-k_R_g4ea4suDVIjNn31pm8A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:c4:4a:7f:ea:6f:a9:1e:1c:a9:98:a6:ed:f6:87:66:60:f8: 8c:35:09:ad:05:4d:b2:7f:67:f0:b1:3f:f1:32:b6:8c:7a:42: 97:e0:1c:15:a0:6a:96:d6:35:12:32:5f:3c:7c:c0:5d:f7:09: 32:b2:3e:f8:f4:67:c0:cc:8d:77:49:39:8d:fb:e8:4b:2a:8b: 45:d3:26:2a:8f:09:36:e3:98:ec:af:7d:76:5d:87:67:8e:fa: 5d:99:99:fe:5b:f2:23:bc:5e:fe:1a:a6:a5:d6:29:e5:76:99: 0e:74:b5:24:3f:e9:59:80:80:a2:f3:29:4e:a7:bc:02:c0:5c: 65:5a:b4:b5:1c:dd:75:c0:86:b7:de:3e:a0:5d:64:1a:42:3f: b2:57:37:b8:26:88:ac:69:9c:88:a9:95:c7:c7:6a:17:4b:1e: ac:2d:00:76:4a:97:7c:71:db:46:ce:6e:66:1a:1e:b3:9a:97: e3:23:3b:36:6a:b9:0a:17:5d:85:aa:63:d7:5c:b3:33:86:61: 2f:e5:f9:08:5b:06:e5:b2:c2:7e:60:56:7d:98:7e:a0:ad:22: 91:36:10:b4:c6:64:31:64:56:6c:f7:f5:1c:3c:d7:f4:81:da: 08:71:ee:2b:d6:b3:d4:8b:35:f1:29:7e:50:48:4a:df:b1:ac: 35:11:1d:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM/PYDm1kJ5yLCj9+LWf/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwOTBmZTkzZjQ3ZjgzODc5YWUyY2I4MzU0ODhjZDlmN2Q2 OTliYzAwHhcNMjYwMjA5MDcwMDQ5WhcNMjYwMjEwMDcwMDQ5WjAzMTEwLwYDVQQD EyhmMjRiY2UyZjk5ZjdmYTA0ZjQ1ZTQzMmZkMjUzMWE5M2JlZmZhN2FhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4ucidPrbRTWUqy2dpxkGCU0NhIQt mj59dILtKINSDPp8OtmYjiQPbvKicEhyr4c5E5OxXzWEJcGrFiyhiazPoxg+Qroy g0cE+gpCI1J/5/VS1jsFzwRVM1YTtl/CbBJ/q6cIwHiIPrsEkIFnzxXykxD7qfHz UHwsAGGlzTNJDODn9LoK5qZfEwDi+jZkKDz/xlm0FknZeoEGxREkazwy6BIGwpZM UXqmyedUUlgS/FE6ojyMLbE3cS38MFvEQxNAZOUP4iInUBOo18tBPW/8DhKUE4Jx LRxNhV9hgYvRQcl63AsVAnr4YsosWRKJx/l12CdhsYH1KSsbXzsp/qCYgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPJLzi+Z9/oE9F5DL9JTGpO+/6eqMB8GA1UdIwQY MBaAFKCQ/pP0f4OHmuLLg1SIzZ99aZvAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0pELWtfUl9nNGVhNHN1RFZJak5uMzFwbThBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9hYmJjYzktZjgzMi00YjViLWJjMjIt MjU3ODFlMTE2NzgyLzEvb0pELWtfUl9nNGVhNHN1RFZJak5uMzFwbThBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC9hYmJjYzktZjgzMi00YjViLWJjMjItMjU3ODFlMTE2Nzgy LzEvb0pELWtfUl9nNGVhNHN1RFZJak5uMzFwbThBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASsRKf+pv qR4cqZim7faHZmD4jDUJrQVNsn9n8LE/8TK2jHpCl+AcFaBqltY1EjJfPHzAXfcJ MrI++PRnwMyNd0k5jfvoSyqLRdMmKo8JNuOY7K99dl2HZ476XZmZ/lvyI7xe/hqm pdYp5XaZDnS1JD/pWYCAovMpTqe8AsBcZVq0tRzddcCGt94+oF1kGkI/slc3uCaI rGmciKmVx8dqF0serC0AdkqXfHHbRs5uZhoes5qX4yM7Nmq5Chddhapj11yzM4Zh L+X5CFsG5bLCfmBWfZh+oK0ikTYQtMZkMWRWbPf1HDzX9IHaCHHuK9az1Is18Sl+ UEhK37GsNREdyA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:44 2026 by rpki-client