This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json) Hash identifier: kJJ/pQ3z/y2pAE0YHoDQlnBQsi3SRKtU/WnGXxET7s0= Subject key identifier: 78:D6:EE:81:7D:C6:41:40:2E:78:34:FA:69:2E:E1:0E:BD:7C:84:32 Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a Certificate serial: 019BF72CC3D644437B6C36EFCF86FE5E9A4F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft Manifest number: 12A7 Signing time: Sun 25 Jan 2026 22:01:04 +0000 Manifest this update: Sun 25 Jan 2026 22:01:04 +0000 Manifest next update: Mon 26 Jan 2026 22:01:04 +0000 Files and hashes: 1: OhJpimseggO-Y4_hoEiI1nB-3a4.roa (hash: zDlcOi1opjdDim5XNlXyOBikBSD080S2FUrAKbWMWcM=) 2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: Ligoxb5o2VZTzDN07Y34tjAs+WundMUxESjEFx59LZ4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2c:c3:d6:44:43:7b:6c:36:ef:cf:86:fe:5e:9a:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a Validity Not Before: Jan 25 22:01:04 2026 GMT Not After : Jan 26 22:01:04 2026 GMT Subject: CN=78d6ee817dc641402e7834fa692ee10ebd7c8432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d6:2b:b7:f7:5e:95:b0:72:47:dd:f6:82:ab: f8:99:ba:b9:e2:37:59:ec:69:b7:38:48:fd:af:88: c5:4b:5f:fb:ce:f0:ca:37:fc:56:47:8b:38:38:df: 1c:b4:e7:20:71:2b:d1:15:54:cc:8b:9d:48:c7:b3: bd:1d:85:86:3a:6e:55:2f:f6:34:1a:02:3d:35:2d: 0c:cc:fa:0d:40:ac:72:55:5e:54:ac:9b:f2:49:73: b3:8c:ea:5b:98:5a:d6:f7:a0:0d:11:27:a4:81:df: 30:b8:36:0e:b1:ba:86:59:51:45:7b:59:4a:48:2a: c2:7b:eb:45:62:63:1f:67:8d:93:0b:ed:00:f3:b2: e9:b2:92:9b:c6:04:6c:3d:5d:ef:49:10:49:b4:30: cf:d7:8c:d4:8b:22:6b:ca:fd:54:b8:78:2a:0f:fd: ce:c2:83:b9:27:1a:34:39:da:5e:9f:e5:53:f0:8e: 6b:29:00:2e:c4:78:f1:a5:56:27:2b:21:da:e1:89: 49:0f:ba:df:c2:40:2c:0f:64:a9:85:62:82:0f:d8: c5:ab:37:48:d4:2e:ed:87:7f:4e:27:c9:85:72:dd: 36:ab:38:40:e3:2c:a2:18:b0:c4:46:31:bd:41:59: c4:53:a7:c3:94:7d:3b:45:93:e8:f4:89:46:28:df: cb:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D6:EE:81:7D:C6:41:40:2E:78:34:FA:69:2E:E1:0E:BD:7C:84:32 X509v3 Authority Key Identifier: keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:92:d7:fd:da:b4:4f:b9:71:41:7f:0d:8b:57:4b:4f:55:0c: bb:02:79:03:fd:34:8e:6b:d0:db:93:0d:0c:ac:73:74:96:83: b9:2f:b9:bc:f7:8b:6f:56:ac:88:ac:b1:15:56:f8:2d:41:5b: ea:4c:1e:12:3b:c7:8c:73:1d:b9:cb:7c:c8:4c:5a:9f:d8:47: 6c:bd:35:13:4c:1a:ab:9b:0e:5f:c8:2f:9d:54:af:76:12:2a: 65:58:7e:b0:e9:df:9b:72:e6:19:47:d9:48:7a:77:92:3c:b2: 55:05:a8:31:29:f9:aa:cb:8d:1d:b4:4a:33:0d:be:ff:91:63: 4d:bd:74:31:99:8f:37:9a:37:0c:90:d3:d8:69:2e:4d:90:67: e9:8f:64:67:dc:0f:df:7c:7f:c0:3a:b9:c0:58:3b:1a:98:7a: 93:32:8e:6b:c4:61:13:82:9c:0c:66:a2:2d:15:3f:63:ca:51: c2:65:aa:a0:22:54:f9:d8:66:87:73:1e:60:ce:df:f0:20:a3: 8f:73:66:f1:ae:59:a8:a2:ef:52:66:8f:b4:35:42:9f:46:89: 23:e5:37:ae:72:29:ef:90:f0:17:5c:e3:df:a7:1e:db:c3:56: ba:a3:84:42:6b:c2:e8:fd:80:ef:e4:e7:de:5e:a6:ae:09:b1: 56:3a:9c:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LMPWREN7bDbvz4b+XppPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3YmQ4ZWFlMTY2OWRlYjNhM2ZhNDE4NjQ5MWUwNWNiMzJj ZTA5MmEwHhcNMjYwMTI1MjIwMTA0WhcNMjYwMTI2MjIwMTA0WjAzMTEwLwYDVQQD Eyg3OGQ2ZWU4MTdkYzY0MTQwMmU3ODM0ZmE2OTJlZTEwZWJkN2M4NDMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudYrt/delbByR932gqv4mbq54jdZ 7Gm3OEj9r4jFS1/7zvDKN/xWR4s4ON8ctOcgcSvRFVTMi51Ix7O9HYWGOm5VL/Y0 GgI9NS0MzPoNQKxyVV5UrJvySXOzjOpbmFrW96ANESekgd8wuDYOsbqGWVFFe1lK SCrCe+tFYmMfZ42TC+0A87LpspKbxgRsPV3vSRBJtDDP14zUiyJryv1UuHgqD/3O woO5Jxo0Odpen+VT8I5rKQAuxHjxpVYnKyHa4YlJD7rfwkAsD2SphWKCD9jFqzdI 1C7th39OJ8mFct02qzhA4yyiGLDERjG9QVnEU6fDlH07RZPo9IlGKN/LJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHjW7oF9xkFALng0+mku4Q69fIQyMB8GA1UdIwQY MBaAFLe9jq4Wad6zo/pBhkkeBcsyzgkqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDcyT3JoWnAzck9qLWtHR1NSNEZ5ekxPQ1NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9iMGJkYmQtODAxYy00YjBiLTlmYmUt YWUxNWQ1MDc1OTBlLzEvdDcyT3JoWnAzck9qLWtHR1NSNEZ5ekxPQ1NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9iMGJkYmQtODAxYy00YjBiLTlmYmUtYWUxNWQ1MDc1OTBl LzEvdDcyT3JoWnAzck9qLWtHR1NSNEZ5ekxPQ1NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADZLX/dq0 T7lxQX8Ni1dLT1UMuwJ5A/00jmvQ25MNDKxzdJaDuS+5vPeLb1asiKyxFVb4LUFb 6kweEjvHjHMduct8yExan9hHbL01E0waq5sOX8gvnVSvdhIqZVh+sOnfm3LmGUfZ SHp3kjyyVQWoMSn5qsuNHbRKMw2+/5FjTb10MZmPN5o3DJDT2GkuTZBn6Y9kZ9wP 33x/wDq5wFg7Gph6kzKOa8RhE4KcDGaiLRU/Y8pRwmWqoCJU+dhmh3MeYM7f8CCj j3Nm8a5ZqKLvUmaPtDVCn0aJI+U3rnIp75DwF1zj36ce28NWuqOEQmvC6P2A7+Tn 3l6mrgmxVjqcMQ== -----END CERTIFICATE-----Generated at Mon Jan 26 00:27:03 2026 by rpki-client