This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft (raw, json) Hash identifier: hdmLey+sLq+v3dFQP4uuTja3IdKCQjZYDXeXE7i0cIE= Subject key identifier: 0D:C9:5E:6B:F7:57:63:6F:86:6F:5F:6C:B4:16:D6:FD:56:02:F9:EA Authority key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58 Certificate issuer: /CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58 Certificate serial: 019BF687ED8D053AD648611FCB31A133CA32 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft Manifest number: 17E6 Signing time: Sun 25 Jan 2026 19:01:01 +0000 Manifest this update: Sun 25 Jan 2026 19:01:01 +0000 Manifest next update: Mon 26 Jan 2026 19:01:01 +0000 Files and hashes: 1: UDOQeKm21_HbogaX80qPDYGLszg.roa (hash: oQCYUWGJBiukXuu22aVYGVLYnrdXQVCn7RQqhgm8PBQ=) 2: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl (hash: KR+O6+80lhUVZoGeZhdyq0OZpAtkbG7EVW7svOcCSvI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:87:ed:8d:05:3a:d6:48:61:1f:cb:31:a1:33:ca:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58 Validity Not Before: Jan 25 19:01:01 2026 GMT Not After : Jan 26 19:01:01 2026 GMT Subject: CN=0dc95e6bf757636f866f5f6cb416d6fd5602f9ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9f:0e:a7:32:4b:fd:ff:e8:00:e8:a3:0d:4b: 17:86:c8:2b:68:f5:3c:b9:1a:03:27:30:91:a3:cb: 67:d8:60:31:14:72:35:ba:b5:66:14:14:02:7d:34: 78:1d:b9:bf:ef:a2:4d:7d:91:36:07:2e:c0:96:4d: de:77:56:5f:71:45:3e:88:70:aa:42:7a:08:2b:eb: 3f:21:62:16:67:cb:bf:1d:8b:74:c8:72:5a:d0:49: 7b:5b:d8:42:4a:92:11:30:76:65:f9:72:ae:2e:eb: e2:be:a3:ba:68:40:18:b0:1f:a2:dd:ab:ac:7b:bb: a7:41:aa:dc:4a:23:d0:c3:e6:f6:b5:e5:33:37:05: 99:c1:13:95:30:9a:cf:5e:14:5f:f7:f1:40:e1:1a: 8b:dc:1f:82:34:42:7d:8f:7f:36:6a:6f:9c:8e:f0: 40:54:ba:f2:4f:f4:5b:5e:c6:56:33:9d:d8:7f:d4: b2:83:fd:f2:c8:fe:54:17:b3:7c:88:22:16:9d:ce: 0d:b7:8f:d8:81:11:22:51:77:21:11:f3:a0:d6:00: a6:c6:c2:2f:15:6a:19:ec:72:9e:2c:db:de:31:42: 59:88:4a:15:c2:bd:5e:15:ee:8d:1c:d9:41:01:53: a0:1a:fa:6b:1f:22:ab:ef:ba:3c:37:be:d9:c1:bc: 72:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C9:5E:6B:F7:57:63:6F:86:6F:5F:6C:B4:16:D6:FD:56:02:F9:EA X509v3 Authority Key Identifier: keyid:A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:3f:36:e8:23:9b:8d:9f:8c:cf:5e:82:a7:b9:2c:c0:1c:3c: 70:88:02:12:c1:13:79:15:a5:d1:35:7d:6b:ab:93:70:f2:37: 67:2a:3d:67:c1:d0:fd:6d:5b:ee:1a:63:a8:30:fd:59:e2:de: 48:cf:74:f0:3c:e5:00:f1:eb:8b:7b:db:5e:83:cc:e9:cf:3d: e0:89:cb:be:43:22:70:da:16:bc:bb:ae:91:15:f6:fe:0a:eb: 4e:3a:b8:92:d4:31:6e:2f:c6:ab:78:11:37:19:74:e0:4b:98: 37:95:80:e9:a6:74:7b:63:76:98:c0:bb:70:b4:11:9e:54:63: 70:9a:9e:14:3f:9f:7b:aa:ea:89:6d:1d:8d:5e:74:7d:27:43: 78:d1:ef:41:2d:6b:d8:90:ad:20:43:86:a5:9e:21:58:65:d2: e4:82:4c:be:7e:b9:33:2e:1c:96:97:0e:33:75:90:c6:ab:5b: 3b:53:0a:fb:41:a9:44:ca:ba:7a:c2:53:71:1f:c8:82:b9:d4: 30:6d:af:2c:1b:f1:c2:62:b7:05:13:c7:3f:8f:68:07:41:30: b3:3e:64:47:c3:91:16:bf:b9:2f:ac:92:aa:c4:11:38:bb:74: d1:19:da:ca:05:bc:47:e1:52:0a:58:66:36:0b:9e:96:93:d6: 43:f0:5b:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2h+2NBTrWSGEfyzGhM8oyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYzhjZGE4MTRlNzc3ZDlmZTE1NGI5MmU5OTU5Y2UxMjBi MGFkNTgwHhcNMjYwMTI1MTkwMTAxWhcNMjYwMTI2MTkwMTAxWjAzMTEwLwYDVQQD EygwZGM5NWU2YmY3NTc2MzZmODY2ZjVmNmNiNDE2ZDZmZDU2MDJmOWVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzJ8OpzJL/f/oAOijDUsXhsgraPU8 uRoDJzCRo8tn2GAxFHI1urVmFBQCfTR4Hbm/76JNfZE2By7Alk3ed1ZfcUU+iHCq QnoIK+s/IWIWZ8u/HYt0yHJa0El7W9hCSpIRMHZl+XKuLuvivqO6aEAYsB+i3aus e7unQarcSiPQw+b2teUzNwWZwROVMJrPXhRf9/FA4RqL3B+CNEJ9j382am+cjvBA VLryT/RbXsZWM53Yf9Syg/3yyP5UF7N8iCIWnc4Nt4/YgREiUXchEfOg1gCmxsIv FWoZ7HKeLNveMUJZiEoVwr1eFe6NHNlBAVOgGvprHyKr77o8N77ZwbxypwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA3JXmv3V2Nvhm9fbLQW1v1WAvnqMB8GA1UdIwQY MBaAFKDIzagU53fZ/hVLkumVnOEgsK1YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb01qTnFCVG5kOW4tRlV1UzZaV2M0U0N3clZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9hYTI3MGEtYzA4OS00Nzc4LTkzNDMt YjczNjJlZGJkOGFjLzEvb01qTnFCVG5kOW4tRlV1UzZaV2M0U0N3clZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS9hYTI3MGEtYzA4OS00Nzc4LTkzNDMtYjczNjJlZGJkOGFj LzEvb01qTnFCVG5kOW4tRlV1UzZaV2M0U0N3clZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWD826COb jZ+Mz16Cp7kswBw8cIgCEsETeRWl0TV9a6uTcPI3Zyo9Z8HQ/W1b7hpjqDD9WeLe SM908DzlAPHri3vbXoPM6c894InLvkMicNoWvLuukRX2/grrTjq4ktQxbi/Gq3gR Nxl04EuYN5WA6aZ0e2N2mMC7cLQRnlRjcJqeFD+fe6rqiW0djV50fSdDeNHvQS1r 2JCtIEOGpZ4hWGXS5IJMvn65My4clpcOM3WQxqtbO1MK+0GpRMq6esJTcR/IgrnU MG2vLBvxwmK3BRPHP49oB0Ewsz5kR8ORFr+5L6ySqsQROLt00RnaygW8R+FSClhm NguelpPWQ/Bb2Q== -----END CERTIFICATE-----Generated at Mon Jan 26 02:26:05 2026 by rpki-client