This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft File: pOd3fHr7fUObRvaBxMe_aoJS4xU.mft (raw, json) Hash identifier: aG6Fgl2ESKoxfCz9TXivfeyZy1vKoVd3Okeb6aYV4Ho= Subject key identifier: 46:0B:61:35:9C:FF:40:04:8E:CE:F4:BA:B7:BD:F7:AE:10:A9:D5:86 Authority key identifier: A4:E7:77:7C:7A:FB:7D:43:9B:46:F6:81:C4:C7:BF:6A:82:52:E3:15 Certificate issuer: /CN=a4e7777c7afb7d439b46f681c4c7bf6a8252e315 Certificate serial: 019BF72CC5CAA653AE761130FB3B80CD99BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOd3fHr7fUObRvaBxMe_aoJS4xU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft Manifest number: 0ED4 Signing time: Sun 25 Jan 2026 22:01:05 +0000 Manifest this update: Sun 25 Jan 2026 22:01:05 +0000 Manifest next update: Mon 26 Jan 2026 22:01:05 +0000 Files and hashes: 1: buuNqOKeytQjK-fw0E6NNtyOW_g.roa (hash: QnGFqGYlvy+0tU6e4bILPLthTrwM/mOAa/IAuKQfucs=) 2: pOd3fHr7fUObRvaBxMe_aoJS4xU.crl (hash: j8RnF1Cm7hIRpxAWC3DusgGji7DKUjBgyvXOZMHihTw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.crl rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft rsync://rpki.ripe.net/repository/DEFAULT/pOd3fHr7fUObRvaBxMe_aoJS4xU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2c:c5:ca:a6:53:ae:76:11:30:fb:3b:80:cd:99:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4e7777c7afb7d439b46f681c4c7bf6a8252e315 Validity Not Before: Jan 25 22:01:05 2026 GMT Not After : Jan 26 22:01:05 2026 GMT Subject: CN=460b61359cff40048ecef4bab7bdf7ae10a9d586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d7:8a:4a:cf:28:56:38:1b:79:37:0d:00:3e: ce:58:81:e8:f4:21:6f:a5:78:cd:d5:a0:7d:a0:99: 80:45:7d:72:7f:75:a3:3f:b8:7a:92:54:78:7a:b9: c6:d0:02:20:19:ee:61:be:68:73:58:88:0d:4a:10: ae:6f:d8:97:e8:42:7f:be:52:69:f4:a9:13:19:1e: c5:09:04:66:d5:c1:b4:f7:61:68:e2:d7:58:2c:68: a3:00:b0:23:61:fe:6e:b8:65:5d:24:b0:60:5a:83: a1:e5:44:4c:75:44:af:18:e0:84:bd:98:7d:64:12: 9d:e2:be:07:52:a3:58:a3:76:f7:8b:40:47:c2:99: 9d:98:fe:ac:d6:9b:27:ce:ef:72:8c:55:26:20:d4: 65:da:50:01:9c:a5:e5:6c:c9:c4:5f:9b:de:d9:80: 71:7e:5a:73:43:c0:c2:4c:6b:b3:d5:76:ec:15:8a: ed:31:d4:61:10:b1:75:cf:b0:7a:b0:ca:f1:fb:22: 5e:99:4d:1e:72:32:a7:4a:c2:09:7b:28:12:62:07: 89:88:77:fb:d9:8a:81:a0:9d:a1:7f:df:a1:60:2e: a5:b7:ba:fa:c7:71:4d:8b:5c:bc:c8:90:c9:5f:ac: fb:c6:7c:2b:36:c3:01:a4:1a:8f:7b:46:dc:29:6a: 66:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:0B:61:35:9C:FF:40:04:8E:CE:F4:BA:B7:BD:F7:AE:10:A9:D5:86 X509v3 Authority Key Identifier: keyid:A4:E7:77:7C:7A:FB:7D:43:9B:46:F6:81:C4:C7:BF:6A:82:52:E3:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOd3fHr7fUObRvaBxMe_aoJS4xU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:71:9b:c6:b6:78:46:6a:c2:98:45:03:85:60:ae:79:92:e6: d7:75:3d:98:1f:6c:54:f4:b9:66:e2:03:65:54:2a:f0:4e:52: 7f:d0:3e:f1:90:81:49:29:43:27:a7:45:58:eb:47:12:d5:f7: 1f:62:cb:48:f8:31:ed:63:0c:aa:cc:90:c2:97:b8:99:87:bb: 2f:79:6b:32:34:47:32:79:75:d3:75:16:30:8f:c2:a8:e6:bc: b6:74:a4:60:01:1a:b0:8c:5f:51:43:54:0e:2d:4a:0d:ab:b0: e5:40:5e:b9:5b:44:bf:a2:6c:e4:f6:1e:3e:02:09:38:37:73: f8:04:aa:e7:17:e8:cc:a1:0e:c6:08:ae:35:54:8a:b6:f5:9e: 29:bd:f0:87:54:da:a5:a1:00:64:45:c7:2c:14:6a:03:23:00: a8:f3:3a:15:43:cd:b3:58:c3:66:16:34:c5:6c:76:24:70:38: 41:61:5a:7c:e3:f4:8a:c4:6e:49:6c:9a:85:15:95:98:00:a2: c3:5d:4e:74:eb:42:09:f8:82:79:2e:4b:09:2a:44:6d:8f:3e: 32:c6:69:75:69:c7:b6:87:84:48:4b:8f:46:ae:8e:84:e9:b4: d6:b9:f8:b7:4a:a6:dd:90:91:fb:80:53:cc:8f:37:d1:20:c7: 25:c7:5d:9f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LMXKplOudhEw+zuAzZm8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0ZTc3NzdjN2FmYjdkNDM5YjQ2ZjY4MWM0YzdiZjZhODI1 MmUzMTUwHhcNMjYwMTI1MjIwMTA1WhcNMjYwMTI2MjIwMTA1WjAzMTEwLwYDVQQD Eyg0NjBiNjEzNTljZmY0MDA0OGVjZWY0YmFiN2JkZjdhZTEwYTlkNTg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNeKSs8oVjgbeTcNAD7OWIHo9CFv pXjN1aB9oJmARX1yf3WjP7h6klR4ernG0AIgGe5hvmhzWIgNShCub9iX6EJ/vlJp 9KkTGR7FCQRm1cG092Fo4tdYLGijALAjYf5uuGVdJLBgWoOh5URMdUSvGOCEvZh9 ZBKd4r4HUqNYo3b3i0BHwpmdmP6s1psnzu9yjFUmINRl2lABnKXlbMnEX5ve2YBx flpzQ8DCTGuz1XbsFYrtMdRhELF1z7B6sMrx+yJemU0ecjKnSsIJeygSYgeJiHf7 2YqBoJ2hf9+hYC6lt7r6x3FNi1y8yJDJX6z7xnwrNsMBpBqPe0bcKWpmHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEYLYTWc/0AEjs70ure9964QqdWGMB8GA1UdIwQY MBaAFKTnd3x6+31Dm0b2gcTHv2qCUuMVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcE9kM2ZIcjdmVU9iUnZhQnhNZV9hb0pTNHhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS80NWFkNWItM2NlMS00OGYxLWJlZjct NjQxY2ZiNmUzZDliLzEvcE9kM2ZIcjdmVU9iUnZhQnhNZV9hb0pTNHhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS80NWFkNWItM2NlMS00OGYxLWJlZjctNjQxY2ZiNmUzZDli LzEvcE9kM2ZIcjdmVU9iUnZhQnhNZV9hb0pTNHhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU3GbxrZ4 RmrCmEUDhWCueZLm13U9mB9sVPS5ZuIDZVQq8E5Sf9A+8ZCBSSlDJ6dFWOtHEtX3 H2LLSPgx7WMMqsyQwpe4mYe7L3lrMjRHMnl103UWMI/CqOa8tnSkYAEasIxfUUNU Di1KDauw5UBeuVtEv6Js5PYePgIJODdz+ASq5xfozKEOxgiuNVSKtvWeKb3wh1Ta paEAZEXHLBRqAyMAqPM6FUPNs1jDZhY0xWx2JHA4QWFafOP0isRuSWyahRWVmACi w11OdOtCCfiCeS5LCSpEbY8+MsZpdWnHtoeESEuPRq6OhOm01rn4t0qm3ZCR+4BT zI830SDHJcddnw== -----END CERTIFICATE-----Generated at Mon Jan 26 03:59:55 2026 by rpki-client