This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft File: OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft (raw, json) Hash identifier: EDr5zaPSQaQ7VDsetkw/tgTZYrSs6c4rtebXqG6Kias= Subject key identifier: 94:9C:66:C0:76:EE:B9:E4:BF:07:42:15:AC:4A:A6:32:99:77:79:E6 Authority key identifier: 38:EA:D5:DE:B5:35:00:F2:54:8A:E1:81:2C:08:7E:32:A4:7F:C8:B4 Certificate issuer: /CN=38ead5deb53500f2548ae1812c087e32a47fc8b4 Certificate serial: 019BF91B4BBEBF83C18B0F0317225CFD747A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft Manifest number: 0E27 Signing time: Mon 26 Jan 2026 07:01:14 +0000 Manifest this update: Mon 26 Jan 2026 07:01:14 +0000 Manifest next update: Tue 27 Jan 2026 07:01:14 +0000 Files and hashes: 1: O4mhqRGKIoCKcIMKacGidJQTeig.roa (hash: o44fh95pYU44LJ84noRE8s+3KorVfsnK8XoKEFDXt+c=) 2: OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl (hash: 8JjnWWpMVzjoPLXR0WFxkGe1iW6eVCD8zhsSLw17IQ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:1b:4b:be:bf:83:c1:8b:0f:03:17:22:5c:fd:74:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38ead5deb53500f2548ae1812c087e32a47fc8b4 Validity Not Before: Jan 26 07:01:14 2026 GMT Not After : Jan 27 07:01:14 2026 GMT Subject: CN=949c66c076eeb9e4bf074215ac4aa632997779e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:84:e8:d0:e7:92:1d:c7:81:86:ab:e0:7d:02: 68:08:76:fd:0f:61:a1:ba:0e:17:93:53:f3:1a:6f: 6c:da:fd:c8:22:f0:b6:23:c6:fd:27:e2:c1:2c:de: fe:41:0a:be:ea:0b:db:07:81:09:64:36:94:18:f7: 11:d0:c4:49:9e:b4:77:0a:04:f4:df:a4:87:18:5c: 35:09:9c:14:00:11:25:ec:68:04:66:4c:55:6a:36: 1f:2b:94:9f:aa:8f:42:57:f4:9b:45:3d:e8:7e:bb: 7f:86:20:f2:16:e4:59:08:18:f5:49:26:7e:ed:cb: 28:fe:cc:b6:70:dc:07:47:4e:96:6d:3b:b1:31:24: 13:65:d9:75:21:af:69:45:a1:56:90:c0:f3:e8:2e: 43:d1:2f:ba:f8:8d:17:db:1b:7e:d4:a1:84:5f:da: 7a:7f:19:da:7e:b0:64:25:57:1d:c4:3c:fa:21:a2: 60:9a:22:52:d0:35:23:2a:97:be:f4:e9:99:29:0e: 5d:63:0c:fd:44:ea:8a:22:85:a2:e6:bd:f3:b9:43: e1:be:8a:e4:30:8f:c2:f4:7e:59:8a:c4:54:eb:4f: 47:57:85:30:a3:d2:30:74:ac:c3:26:ae:e7:06:1a: 57:66:d0:94:51:14:3c:b7:85:fe:8d:7b:4a:a8:8b: da:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:9C:66:C0:76:EE:B9:E4:BF:07:42:15:AC:4A:A6:32:99:77:79:E6 X509v3 Authority Key Identifier: keyid:38:EA:D5:DE:B5:35:00:F2:54:8A:E1:81:2C:08:7E:32:A4:7F:C8:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:6f:0c:01:a6:34:3e:9d:21:97:43:5f:e1:28:b7:8e:76:29: f2:1b:e7:97:01:41:fb:f6:70:24:b8:f6:52:ef:0f:75:64:6a: bf:67:9e:d6:1e:38:d6:b3:48:54:da:26:0e:09:7e:84:67:23: 2c:d2:bb:0f:39:bd:16:1a:4d:98:70:2d:9e:3c:20:24:17:8c: f5:66:48:13:07:a0:e2:35:e1:a4:43:e7:01:51:fb:26:95:c2: e9:0e:6a:12:13:23:d5:67:6f:3e:05:b1:95:60:31:69:e8:4c: 4e:a8:69:fb:d9:e5:28:bd:9f:0f:48:01:99:54:64:e6:b0:a5: bb:28:d0:13:a9:76:51:45:48:35:51:4c:52:62:87:11:2a:25: d0:05:65:28:cc:63:cd:be:97:7a:e6:0c:ff:8c:28:e0:cb:3a: f0:79:60:eb:e0:13:d4:5b:80:16:cb:c6:2f:c6:d0:ef:8b:17: 7e:78:76:a6:48:92:ab:8c:c5:00:ab:d1:da:60:7f:52:40:00: 8e:39:ba:6e:cc:e5:48:1b:b7:18:e8:9e:2a:6a:cc:56:4f:1b: aa:ab:f2:28:09:8e:03:77:90:2a:a2:60:9f:7c:79:20:69:b8: 93:8f:2b:43:64:6e:5e:90:89:e3:92:a2:d3:1f:b5:a7:37:59: 56:e3:81:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5G0u+v4PBiw8DFyJc/XR6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4ZWFkNWRlYjUzNTAwZjI1NDhhZTE4MTJjMDg3ZTMyYTQ3 ZmM4YjQwHhcNMjYwMTI2MDcwMTE0WhcNMjYwMTI3MDcwMTE0WjAzMTEwLwYDVQQD Eyg5NDljNjZjMDc2ZWViOWU0YmYwNzQyMTVhYzRhYTYzMjk5Nzc3OWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYTo0OeSHceBhqvgfQJoCHb9D2Gh ug4Xk1PzGm9s2v3IIvC2I8b9J+LBLN7+QQq+6gvbB4EJZDaUGPcR0MRJnrR3CgT0 36SHGFw1CZwUABEl7GgEZkxVajYfK5Sfqo9CV/SbRT3ofrt/hiDyFuRZCBj1SSZ+ 7cso/sy2cNwHR06WbTuxMSQTZdl1Ia9pRaFWkMDz6C5D0S+6+I0X2xt+1KGEX9p6 fxnafrBkJVcdxDz6IaJgmiJS0DUjKpe+9OmZKQ5dYwz9ROqKIoWi5r3zuUPhvork MI/C9H5ZisRU609HV4Uwo9IwdKzDJq7nBhpXZtCUURQ8t4X+jXtKqIvaYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJScZsB27rnkvwdCFaxKpjKZd3nmMB8GA1UdIwQY MBaAFDjq1d61NQDyVIrhgSwIfjKkf8i0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT09yVjNyVTFBUEpVaXVHQkxBaC1NcVJfeUxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8zNTE2YTEtZmQ5ZC00ZTI5LWFkZDMt ZDQ0NmYxZjgzYWU5LzEvT09yVjNyVTFBUEpVaXVHQkxBaC1NcVJfeUxRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS8zNTE2YTEtZmQ5ZC00ZTI5LWFkZDMtZDQ0NmYxZjgzYWU5 LzEvT09yVjNyVTFBUEpVaXVHQkxBaC1NcVJfeUxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN28MAaY0 Pp0hl0Nf4Si3jnYp8hvnlwFB+/ZwJLj2Uu8PdWRqv2ee1h441rNIVNomDgl+hGcj LNK7Dzm9FhpNmHAtnjwgJBeM9WZIEweg4jXhpEPnAVH7JpXC6Q5qEhMj1WdvPgWx lWAxaehMTqhp+9nlKL2fD0gBmVRk5rCluyjQE6l2UUVINVFMUmKHESol0AVlKMxj zb6XeuYM/4wo4Ms68Hlg6+AT1FuAFsvGL8bQ74sXfnh2pkiSq4zFAKvR2mB/UkAA jjm6bszlSBu3GOieKmrMVk8bqqvyKAmOA3eQKqJgn3x5IGm4k48rQ2RuXpCJ45Ki 0x+1pzdZVuOBTw== -----END CERTIFICATE-----Generated at Mon Jan 26 11:35:23 2026 by rpki-client