This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft File: OC-G8tvQd2xOUZycmuT60EJvOf8.mft (raw, json) Hash identifier: wDWAIrcsubeD98k0OKnqQb11LtlbDUtGGpzzTuhzB4Q= Subject key identifier: C2:80:78:7D:8D:E9:52:C2:4B:5B:7C:0E:81:B9:14:25:38:06:DF:B0 Authority key identifier: 38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF Certificate issuer: /CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff Certificate serial: 019BF3F5776FECB3D710248405D5484267FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft Manifest number: 03CA Signing time: Sun 25 Jan 2026 07:01:48 +0000 Manifest this update: Sun 25 Jan 2026 07:01:48 +0000 Manifest next update: Mon 26 Jan 2026 07:01:48 +0000 Files and hashes: 1: 1-CvN4vL-gOumnUiw8kqYnlyhsGg.roa (hash: j8Mlx4J1MdSRge54lSRG985DTWF3u6cnasrSWFkZ6ac=) 2: OC-G8tvQd2xOUZycmuT60EJvOf8.crl (hash: vlH4TG7d0/GMeh1nNQ5Atp8KFSB1S6b/5Y9Ax+vFykw=) 3: t25FS3p7VfnEPbzfHv-DyXEln4A.roa (hash: 71ZKU18culvAhzrOg6y8Lw3IENicOoZIJiAlIOqPr8E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:f5:77:6f:ec:b3:d7:10:24:84:05:d5:48:42:67:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff Validity Not Before: Jan 25 07:01:48 2026 GMT Not After : Jan 26 07:01:48 2026 GMT Subject: CN=c280787d8de952c24b5b7c0e81b914253806dfb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b1:dd:5e:4a:01:b6:d1:0a:c2:16:b7:a6:84: e0:d4:8a:4f:72:cc:5c:9a:98:1c:85:25:ac:f0:e0: 24:3c:f4:2c:54:3e:e1:88:7f:61:d9:99:9a:91:82: 7e:80:a4:7f:15:ee:8b:eb:3b:da:23:c0:f0:ac:22: 3d:da:16:dd:ad:2c:2a:54:2b:94:9b:63:e8:09:36: 3b:34:80:9d:b3:be:98:5b:83:3f:95:a3:e7:f6:29: ec:50:2f:dd:91:d4:98:47:a1:c3:ac:bb:95:48:4e: e3:1f:b5:c9:3d:40:e2:64:fa:9f:16:d2:f5:4f:e0: 6a:f0:07:7b:0a:61:74:49:cf:0a:13:67:22:9f:b8: 5f:f1:e7:f2:2f:9d:b3:6b:33:a9:d2:4b:39:ff:d8: f7:86:63:6d:3e:26:b3:39:0a:90:53:fd:ac:6b:67: 2d:bc:34:99:ec:8c:f4:c7:59:9e:cd:f5:25:36:e2: 5b:ca:d6:7d:c1:66:8a:e1:57:4f:ac:4e:32:d6:64: 00:13:84:58:7d:eb:b8:fe:dc:2c:7d:a2:86:88:00: 2c:27:e2:82:8d:c2:2b:5d:ea:a9:bd:57:fc:97:53: b5:33:10:0a:5c:cf:06:30:2c:98:1c:16:47:ef:d1: 02:c3:e5:d0:a7:b9:b4:0b:af:bf:dd:15:b0:b9:7b: 93:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:80:78:7D:8D:E9:52:C2:4B:5B:7C:0E:81:B9:14:25:38:06:DF:B0 X509v3 Authority Key Identifier: keyid:38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:bc:da:10:ef:c6:e9:95:18:31:ea:cc:ee:4c:ed:a5:05:9d: 2c:ce:62:61:9b:e1:3a:3e:4c:b4:57:2c:09:f4:7f:64:70:0c: 88:c3:63:dd:90:0f:31:b1:55:d8:3c:83:1f:9d:27:cf:ba:dc: 92:d5:26:bc:75:79:59:ee:29:8e:8f:89:d5:0e:b9:32:6f:97: ad:09:c2:36:d2:3d:b7:d4:58:d1:69:e1:68:46:33:57:00:8f: 8b:e2:65:ee:d8:88:0e:61:75:c4:c0:53:bd:4e:2a:9c:ee:90: 89:12:e7:d2:c7:d0:88:e9:86:e5:e2:87:3e:5d:12:bb:24:ff: 22:a2:06:63:98:68:b6:76:96:3b:39:29:0b:bf:6c:b2:99:41: 09:ab:61:94:8a:8d:40:68:32:84:80:3b:45:6c:97:d8:84:c5: 1c:17:29:96:fa:ce:e3:a7:39:2b:fb:2d:1c:c5:0c:cb:42:52: 21:0b:f3:6a:ac:e5:d4:e4:08:cf:e1:b9:86:f7:d6:51:b5:40: dd:91:59:a5:32:53:af:da:61:06:53:f6:ce:f5:ee:53:5c:bb: 48:34:a6:d1:23:46:d5:5e:5a:0a:d4:92:15:2c:c4:06:49:41: 6a:08:b9:c5:1d:3e:d8:f7:0b:d9:d6:5f:df:d9:45:ef:93:5a: 31:40:60:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvz9Xdv7LPXECSEBdVIQmf/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MmY4NmYyZGJkMDc3NmM0ZTUxOWM5YzlhZTRmYWQwNDI2 ZjM5ZmYwHhcNMjYwMTI1MDcwMTQ4WhcNMjYwMTI2MDcwMTQ4WjAzMTEwLwYDVQQD EyhjMjgwNzg3ZDhkZTk1MmMyNGI1YjdjMGU4MWI5MTQyNTM4MDZkZmIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7HdXkoBttEKwha3poTg1IpPcsxc mpgchSWs8OAkPPQsVD7hiH9h2ZmakYJ+gKR/Fe6L6zvaI8DwrCI92hbdrSwqVCuU m2PoCTY7NICds76YW4M/laPn9insUC/dkdSYR6HDrLuVSE7jH7XJPUDiZPqfFtL1 T+Bq8Ad7CmF0Sc8KE2cin7hf8efyL52zazOp0ks5/9j3hmNtPiazOQqQU/2sa2ct vDSZ7Iz0x1mezfUlNuJbytZ9wWaK4VdPrE4y1mQAE4RYfeu4/twsfaKGiAAsJ+KC jcIrXeqpvVf8l1O1MxAKXM8GMCyYHBZH79ECw+XQp7m0C6+/3RWwuXuTdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMKAeH2N6VLCS1t8DoG5FCU4Bt+wMB8GA1UdIwQY MBaAFDgvhvLb0HdsTlGcnJrk+tBCbzn/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0MtRzh0dlFkMnhPVVp5Y211VDYwRUp2T2Y4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wNDc0OGQtOTIzYi00Mjg0LTk2Mjgt MjAzNTYzZjg0NWJiLzEvT0MtRzh0dlFkMnhPVVp5Y211VDYwRUp2T2Y4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8wNDc0OGQtOTIzYi00Mjg0LTk2MjgtMjAzNTYzZjg0NWJi LzEvT0MtRzh0dlFkMnhPVVp5Y211VDYwRUp2T2Y4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWLzaEO/G 6ZUYMerM7kztpQWdLM5iYZvhOj5MtFcsCfR/ZHAMiMNj3ZAPMbFV2DyDH50nz7rc ktUmvHV5We4pjo+J1Q65Mm+XrQnCNtI9t9RY0WnhaEYzVwCPi+Jl7tiIDmF1xMBT vU4qnO6QiRLn0sfQiOmG5eKHPl0SuyT/IqIGY5hotnaWOzkpC79ssplBCathlIqN QGgyhIA7RWyX2ITFHBcplvrO46c5K/stHMUMy0JSIQvzaqzl1OQIz+G5hvfWUbVA 3ZFZpTJTr9phBlP2zvXuU1y7SDSm0SNG1V5aCtSSFSzEBklBagi5xR0+2PcL2dZf 39lF75NaMUBgSg== -----END CERTIFICATE-----Generated at Sun Jan 25 09:38:01 2026 by rpki-client