This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft File: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json) Hash identifier: fFgraoXqSheH/+keXvXEZHZOWG4NWQphwgThDHq5yBk= Subject key identifier: 55:0B:08:A5:2D:7C:D9:EF:85:FD:47:D0:B8:2A:3E:59:28:A3:2A:71 Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f Certificate serial: 019BF5073320158DDE1759836128BE7AE6AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft Manifest number: 0743 Signing time: Sun 25 Jan 2026 12:00:48 +0000 Manifest this update: Sun 25 Jan 2026 12:00:48 +0000 Manifest next update: Mon 26 Jan 2026 12:00:48 +0000 Files and hashes: 1: T3IIdcu9O4RqtWN63OnvjHlxoHA.roa (hash: mcKH90gzUrsNVUfzI9EqajlTYUwudYLzyU2jnBM19/w=) 2: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: c+bC90fh5fjUzTkGj2qH3foXH4yC4CPjVGkOHz5rNy0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:07:33:20:15:8d:de:17:59:83:61:28:be:7a:e6:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f Validity Not Before: Jan 25 12:00:48 2026 GMT Not After : Jan 26 12:00:48 2026 GMT Subject: CN=550b08a52d7cd9ef85fd47d0b82a3e5928a32a71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:0b:6a:a5:8d:e2:1d:2d:fe:c1:bf:90:5e:00: a1:e7:59:a9:02:63:f0:03:98:ba:ff:70:9d:c8:9a: f0:16:80:48:95:1b:4e:83:08:4d:f1:06:56:7b:cb: a2:6e:07:13:8f:70:6d:8a:5b:49:23:17:9f:3a:af: 37:7f:84:c8:9c:7f:7f:f2:7d:a4:07:80:b6:ac:f8: 26:9e:54:a5:b5:fe:43:34:41:5a:ae:68:07:92:40: 81:26:45:db:f2:e0:7e:c6:70:b2:b8:e6:fc:36:38: 89:a6:85:d6:f7:d3:a1:19:00:6b:21:6c:ba:35:cb: cd:51:7b:9d:8c:41:7c:1a:69:69:63:20:7a:84:72: 98:66:67:c3:ed:ff:26:8a:ab:e3:df:e7:ff:a0:b5: fc:36:25:92:7f:16:0c:84:71:57:69:02:63:72:5d: 16:b1:9e:9f:53:fd:d6:da:48:a6:95:d2:88:0d:e8: fe:ea:80:fa:83:ed:6f:c6:87:00:e7:b7:1b:65:a8: 36:78:50:74:3a:e1:4d:f8:19:d4:a2:af:14:33:3f: c5:dc:4d:03:42:05:55:83:b0:6c:64:24:44:99:2f: f6:e8:e1:46:b7:3f:d9:46:c2:e7:71:59:c3:f1:a8: 18:df:26:16:77:c5:75:72:a2:71:10:c4:0d:6a:b4: 37:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:0B:08:A5:2D:7C:D9:EF:85:FD:47:D0:B8:2A:3E:59:28:A3:2A:71 X509v3 Authority Key Identifier: keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:38:66:0e:98:9d:f1:5b:52:f5:c3:f7:18:8b:b0:bb:df:3b: 62:86:b0:fd:f4:c0:ee:2a:6b:b4:c9:f4:e0:4f:a5:23:0d:93: 94:35:61:15:b5:1a:69:20:36:4b:ef:51:1b:a2:78:4f:92:a9: de:03:c0:83:9c:51:cf:71:4d:1e:24:b2:70:a8:c0:e0:2a:68: e9:96:a3:d1:70:50:87:51:ca:ff:a2:01:ff:f7:33:9a:79:6b: dd:95:78:ec:18:91:02:b4:be:2a:e8:e3:b4:93:d1:94:1a:fe: 53:67:68:fe:d0:7a:76:a3:47:d4:19:63:e0:36:71:4b:6a:fa: a6:20:b0:f9:d5:46:12:be:86:47:24:39:68:19:47:4a:5d:1f: 91:87:2b:be:4e:bd:f1:48:fd:ac:87:4f:63:d0:09:b4:6e:71: 75:36:e8:36:a4:34:60:7b:3a:63:bd:c5:4f:90:31:83:79:00: 0c:cc:dc:e8:93:29:98:b8:c6:5d:13:e2:15:93:04:72:9f:43: c8:2d:48:c4:87:19:97:fa:20:aa:bd:e2:45:a8:a6:5f:fa:43: a2:97:eb:8a:b4:31:35:94:e0:ce:32:5b:e8:ef:0c:82:38:48: 61:06:e4:1f:ae:90:b2:e7:40:b8:36:24:5d:e0:48:aa:c5:8d: 41:01:bf:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1BzMgFY3eF1mDYSi+euauMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwOWZkYTA0N2IzYTBiMWM4MjA0MzVlNjk5Mzg4NjYwZGEz MmM2M2YwHhcNMjYwMTI1MTIwMDQ4WhcNMjYwMTI2MTIwMDQ4WjAzMTEwLwYDVQQD Eyg1NTBiMDhhNTJkN2NkOWVmODVmZDQ3ZDBiODJhM2U1OTI4YTMyYTcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlAtqpY3iHS3+wb+QXgCh51mpAmPw A5i6/3CdyJrwFoBIlRtOgwhN8QZWe8uibgcTj3BtiltJIxefOq83f4TInH9/8n2k B4C2rPgmnlSltf5DNEFarmgHkkCBJkXb8uB+xnCyuOb8NjiJpoXW99OhGQBrIWy6 NcvNUXudjEF8GmlpYyB6hHKYZmfD7f8miqvj3+f/oLX8NiWSfxYMhHFXaQJjcl0W sZ6fU/3W2kimldKIDej+6oD6g+1vxocA57cbZag2eFB0OuFN+BnUoq8UMz/F3E0D QgVVg7BsZCREmS/26OFGtz/ZRsLncVnD8agY3yYWd8V1cqJxEMQNarQ3EQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFULCKUtfNnvhf1H0LgqPlkooypxMB8GA1UdIwQY MBaAFKCf2gR7OgscggQ15pk4hmDaMsY/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi84YjRkMzItMDM2NS00ZGFhLTlkNWIt Mjk5MjBlNTE2N2Q5LzEvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi84YjRkMzItMDM2NS00ZGFhLTlkNWItMjk5MjBlNTE2N2Q5 LzEvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPThmDpid 8VtS9cP3GIuwu987Yoaw/fTA7iprtMn04E+lIw2TlDVhFbUaaSA2S+9RG6J4T5Kp 3gPAg5xRz3FNHiSycKjA4Cpo6Zaj0XBQh1HK/6IB//czmnlr3ZV47BiRArS+Kujj tJPRlBr+U2do/tB6dqNH1Blj4DZxS2r6piCw+dVGEr6GRyQ5aBlHSl0fkYcrvk69 8Uj9rIdPY9AJtG5xdTboNqQ0YHs6Y73FT5Axg3kADMzc6JMpmLjGXRPiFZMEcp9D yC1IxIcZl/ogqr3iRaimX/pDopfrirQxNZTgzjJb6O8MgjhIYQbkH66QsudAuDYk XeBIqsWNQQG/NA== -----END CERTIFICATE-----Generated at Sun Jan 25 14:45:44 2026 by rpki-client