This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.mft File: Of-PwW6S-8wHnYDWvj197fHQZo8.mft (raw, json) Hash identifier: scXy48XQwDWLDt58roseaPOATMSwIrJRJz6f437LWX4= Subject key identifier: B9:32:36:A3:EC:A4:B1:BF:03:43:41:D2:50:BB:75:E8:E0:69:69:57 Authority key identifier: 39:FF:8F:C1:6E:92:FB:CC:07:9D:80:D6:BE:3D:7D:ED:F1:D0:66:8F Certificate issuer: /CN=39ff8fc16e92fbcc079d80d6be3d7dedf1d0668f Certificate serial: 019BB05DA90F6F564E316CB830C166BAA127 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Of-PwW6S-8wHnYDWvj197fHQZo8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.mft Manifest number: 0C3C Signing time: Mon 12 Jan 2026 04:01:26 +0000 Manifest this update: Mon 12 Jan 2026 04:01:26 +0000 Manifest next update: Tue 13 Jan 2026 04:01:26 +0000 Files and hashes: 1: Of-PwW6S-8wHnYDWvj197fHQZo8.crl (hash: jOnpyxi83cntppZZNSuHf6uJee8qVIMBWH4k+1WyiN0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.mft rsync://rpki.ripe.net/repository/DEFAULT/Of-PwW6S-8wHnYDWvj197fHQZo8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 04:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b0:5d:a9:0f:6f:56:4e:31:6c:b8:30:c1:66:ba:a1:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39ff8fc16e92fbcc079d80d6be3d7dedf1d0668f Validity Not Before: Jan 12 04:01:26 2026 GMT Not After : Jan 13 04:01:26 2026 GMT Subject: CN=b93236a3eca4b1bf034341d250bb75e8e0696957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:22:ac:8d:a5:cd:4e:b4:33:44:4e:69:69:0e: 87:ff:b2:9c:ac:74:9a:da:42:2b:e6:c8:7c:76:92: c6:f1:7f:d6:e0:09:bb:ed:67:0e:31:ad:ca:80:02: 01:40:a5:d2:af:be:17:f9:9d:8a:59:b1:9b:97:49: 44:ce:fd:38:4b:c0:5f:d6:df:87:b8:78:0a:0d:0a: f3:a8:98:fe:dc:fb:21:4b:f6:7a:a1:99:3f:7e:e4: b2:3c:56:8d:4a:dd:81:4d:3b:90:58:10:81:15:04: 40:7d:bc:6a:b2:ad:b1:1f:d8:b6:c1:c4:fc:d1:34: 7f:4e:2d:d1:f8:f7:bf:95:8a:c0:b8:28:e3:04:a8: 86:82:9f:63:db:b5:67:0b:6b:22:53:46:89:80:a0: e4:ff:7a:e7:06:5d:ca:57:cb:f2:8d:fa:78:17:f4: 7e:04:b9:35:a4:ae:5b:2d:89:b8:f0:7e:24:ea:3d: af:19:18:6a:f7:b1:58:be:52:41:70:17:f3:90:86: ed:7c:30:ca:76:29:d4:f6:ca:c5:a7:e0:59:73:62: be:e4:7f:e7:39:18:2a:91:89:06:88:99:e7:b8:39: 4d:55:0c:68:85:0d:8e:5f:5f:18:56:81:1c:eb:e6: 99:f5:dc:4a:49:72:4d:13:92:75:83:47:9e:c3:f8: ff:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:32:36:A3:EC:A4:B1:BF:03:43:41:D2:50:BB:75:E8:E0:69:69:57 X509v3 Authority Key Identifier: keyid:39:FF:8F:C1:6E:92:FB:CC:07:9D:80:D6:BE:3D:7D:ED:F1:D0:66:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Of-PwW6S-8wHnYDWvj197fHQZo8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:72:c6:7d:0c:f8:40:4c:0a:94:b0:bf:9f:36:5a:7c:f7:d2: 7f:d4:b6:c8:b2:63:ec:60:3b:1d:71:64:e0:56:bb:ae:a0:b4: 98:a7:8b:33:54:30:58:26:c0:4c:33:bd:72:61:60:03:bc:7c: b9:31:42:79:e9:16:76:a2:4b:a0:28:66:c1:ca:ee:1f:96:f0: ba:1e:cb:ca:7b:8f:ba:85:2a:de:93:d3:44:3e:e4:c1:23:26: de:f9:dc:65:ce:18:bd:dc:c2:27:ea:e9:e2:6e:d7:e7:0f:98: 62:2a:90:1c:aa:3e:ac:16:45:f3:74:0e:f4:7b:75:eb:79:4a: e6:91:b5:63:49:40:02:1b:6c:c8:ca:86:46:a5:0b:a0:b1:c1: 67:ec:91:ad:d8:72:81:80:bd:f0:3e:fa:50:84:48:94:85:79: 0e:4c:11:bd:45:3d:f1:1f:e0:77:0e:07:95:bb:6e:dd:0d:7e: 72:7c:d3:32:b8:5d:0a:1a:2d:a6:69:2e:69:1e:e1:ae:4a:9c: 9b:58:51:43:d3:38:0e:ea:0f:5b:b4:b4:68:5d:85:e8:db:58: 33:1b:ee:eb:15:59:4d:72:af:cf:ef:f9:f7:1c:5b:53:db:b0: 0a:bc:7e:3b:8d:37:1d:4e:ff:61:24:62:31:25:a6:3d:ee:bb: b8:ba:4b:9f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuwXakPb1ZOMWy4MMFmuqEnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5ZmY4ZmMxNmU5MmZiY2MwNzlkODBkNmJlM2Q3ZGVkZjFk MDY2OGYwHhcNMjYwMTEyMDQwMTI2WhcNMjYwMTEzMDQwMTI2WjAzMTEwLwYDVQQD EyhiOTMyMzZhM2VjYTRiMWJmMDM0MzQxZDI1MGJiNzVlOGUwNjk2OTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtiKsjaXNTrQzRE5paQ6H/7KcrHSa 2kIr5sh8dpLG8X/W4Am77WcOMa3KgAIBQKXSr74X+Z2KWbGbl0lEzv04S8Bf1t+H uHgKDQrzqJj+3PshS/Z6oZk/fuSyPFaNSt2BTTuQWBCBFQRAfbxqsq2xH9i2wcT8 0TR/Ti3R+Pe/lYrAuCjjBKiGgp9j27VnC2siU0aJgKDk/3rnBl3KV8vyjfp4F/R+ BLk1pK5bLYm48H4k6j2vGRhq97FYvlJBcBfzkIbtfDDKdinU9srFp+BZc2K+5H/n ORgqkYkGiJnnuDlNVQxohQ2OX18YVoEc6+aZ9dxKSXJNE5J1g0eew/j/JwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLkyNqPspLG/A0NB0lC7dejgaWlXMB8GA1UdIwQY MBaAFDn/j8FukvvMB52A1r49fe3x0GaPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2YtUHdXNlMtOHdIbllEV3ZqMTk3ZkhRWm84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC83NzkxMzktNTc1MS00N2ZjLTk2YWQt ZjAxNzA3NTQ4NTRhLzEvT2YtUHdXNlMtOHdIbllEV3ZqMTk3ZkhRWm84Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC83NzkxMzktNTc1MS00N2ZjLTk2YWQtZjAxNzA3NTQ4NTRh LzEvT2YtUHdXNlMtOHdIbllEV3ZqMTk3ZkhRWm84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS3LGfQz4 QEwKlLC/nzZafPfSf9S2yLJj7GA7HXFk4Fa7rqC0mKeLM1QwWCbATDO9cmFgA7x8 uTFCeekWdqJLoChmwcruH5bwuh7LynuPuoUq3pPTRD7kwSMm3vncZc4YvdzCJ+rp 4m7X5w+YYiqQHKo+rBZF83QO9Ht163lK5pG1Y0lAAhtsyMqGRqULoLHBZ+yRrdhy gYC98D76UIRIlIV5DkwRvUU98R/gdw4Hlbtu3Q1+cnzTMrhdChotpmkuaR7hrkqc m1hRQ9M4DuoPW7S0aF2F6NtYMxvu6xVZTXKvz+/59xxbU9uwCrx+O403HU7/YSRi MSWmPe67uLpLnw== -----END CERTIFICATE-----Generated at Mon Jan 12 15:03:15 2026 by rpki-client