This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft File: onxkG1MKfGuiNAIuMyckYjI2cQA.mft (raw, json) Hash identifier: 83S0+EzYu2WuPMTN+p+cMfveHBqXWkwPet9T4DgpfyA= Subject key identifier: 26:45:36:9F:5F:B3:7A:9D:19:CA:DB:31:29:F4:5F:2E:6C:4D:69:BF Authority key identifier: A2:7C:64:1B:53:0A:7C:6B:A2:34:02:2E:33:27:24:62:32:36:71:00 Certificate issuer: /CN=a27c641b530a7c6ba234022e3327246232367100 Certificate serial: 019BF8AD13B0FD7D68479185B738E0A024AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/onxkG1MKfGuiNAIuMyckYjI2cQA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft Manifest number: 0D30 Signing time: Mon 26 Jan 2026 05:00:50 +0000 Manifest this update: Mon 26 Jan 2026 05:00:50 +0000 Manifest next update: Tue 27 Jan 2026 05:00:50 +0000 Files and hashes: 1: H3RmjMDhi-VIQKw953O9EUU-NrU.roa (hash: u8dYTQtYNEtT+hfaZbOUxQvhTTWTaktw3famZ+VPWSU=) 2: KHZ6X050RQpN8C-zU6JBaEYg3FI.roa (hash: TDPzA+FjAhUQy2Fbl/oOlKCfde+8XwBa4JB9fFqOvmY=) 3: onxkG1MKfGuiNAIuMyckYjI2cQA.crl (hash: QvpOF+jgqmK7iGKNaNGE/fcXXDprG64P9vqOrRuZeRY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.crl rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft rsync://rpki.ripe.net/repository/DEFAULT/onxkG1MKfGuiNAIuMyckYjI2cQA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:ad:13:b0:fd:7d:68:47:91:85:b7:38:e0:a0:24:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a27c641b530a7c6ba234022e3327246232367100 Validity Not Before: Jan 26 05:00:50 2026 GMT Not After : Jan 27 05:00:50 2026 GMT Subject: CN=2645369f5fb37a9d19cadb3129f45f2e6c4d69bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3e:fe:43:56:b1:e7:cf:83:8e:cf:7e:80:ae: d6:c3:44:9d:25:b2:67:53:52:b0:f7:95:48:98:90: 12:7f:11:b1:53:b0:a5:a7:f2:6f:d0:2b:e6:ec:f3: 95:ce:7f:20:7d:5b:02:01:76:19:e0:78:f6:ae:eb: 22:79:97:c7:6a:57:e6:18:a6:fa:25:f0:16:32:ed: a2:6d:52:3b:fd:87:31:41:29:f6:93:3e:67:df:b6: 6a:80:93:14:39:b1:10:a3:87:66:17:db:bd:34:9a: 22:c9:c0:84:80:f9:24:a7:fa:32:f7:be:29:25:22: 28:1a:f3:7e:fd:53:da:9c:2b:1b:c4:9d:ed:8e:bb: 5c:f3:fb:59:23:ca:31:ae:53:04:84:8a:b8:5f:d4: 7f:4e:eb:52:ff:46:3f:cf:9f:9d:f1:24:07:13:f6: 58:7b:86:16:5d:96:90:e1:f7:00:f7:9f:fb:7a:a7: aa:32:9f:08:86:30:16:40:a3:eb:bf:ae:1f:3f:6f: 5a:1a:b2:eb:a7:22:e0:9c:b6:7e:6e:24:a7:fc:d9: ed:7e:20:c7:35:aa:d6:60:6c:98:7d:ed:ac:3e:ef: 3a:6d:f8:8e:b3:38:b3:8d:5a:18:43:25:7e:ee:4e: 8a:f5:e4:1f:8c:7c:14:8e:ec:92:1e:0c:66:72:05: 5f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:45:36:9F:5F:B3:7A:9D:19:CA:DB:31:29:F4:5F:2E:6C:4D:69:BF X509v3 Authority Key Identifier: keyid:A2:7C:64:1B:53:0A:7C:6B:A2:34:02:2E:33:27:24:62:32:36:71:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onxkG1MKfGuiNAIuMyckYjI2cQA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:20:9d:90:e7:8c:60:e2:c2:e0:55:f9:be:3f:95:f8:67:89: cb:4d:b0:0e:12:96:42:e6:d4:37:ec:f9:20:ee:90:48:40:cc: 3f:b5:5a:a2:19:28:38:70:8e:f0:86:9e:0f:43:00:67:7d:7f: 38:ca:a1:cf:f9:c4:43:1a:f5:5c:66:79:37:7a:25:fd:f8:90: da:a8:f0:f8:05:df:89:c1:9f:cb:11:e1:0f:77:52:b2:5d:5f: 87:86:70:b2:c4:dd:2c:45:5f:f4:e5:2d:76:46:0d:26:73:70: a1:02:da:9d:be:c9:30:64:c6:c5:c3:c1:59:4b:65:bc:42:1b: 2f:5b:2d:02:64:43:d6:0c:3f:3b:74:6d:cd:b4:c0:d5:27:32: 55:cf:f3:b0:c1:01:d0:0f:f7:cd:a8:a9:dc:4b:24:21:52:bb: 35:95:93:94:e0:60:d8:a2:79:a9:6c:eb:87:e0:48:bb:5d:c2: 52:10:0e:9c:5d:47:2c:7e:ec:98:e4:ac:1d:45:20:29:20:93: 5c:79:c8:a6:37:a2:fc:d0:66:77:d9:c6:df:84:08:60:10:5c: bc:ab:30:a6:ba:be:9b:d6:a1:8e:81:89:90:64:5b:35:f6:a6: 10:f1:c7:67:f1:21:df:ff:ca:14:29:7a:71:68:ab:ea:8b:db: 7c:1d:83:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4rROw/X1oR5GFtzjgoCStMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyN2M2NDFiNTMwYTdjNmJhMjM0MDIyZTMzMjcyNDYyMzIz NjcxMDAwHhcNMjYwMTI2MDUwMDUwWhcNMjYwMTI3MDUwMDUwWjAzMTEwLwYDVQQD EygyNjQ1MzY5ZjVmYjM3YTlkMTljYWRiMzEyOWY0NWYyZTZjNGQ2OWJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvj7+Q1ax58+Djs9+gK7Ww0SdJbJn U1Kw95VImJASfxGxU7Clp/Jv0Cvm7POVzn8gfVsCAXYZ4Hj2rusieZfHalfmGKb6 JfAWMu2ibVI7/YcxQSn2kz5n37ZqgJMUObEQo4dmF9u9NJoiycCEgPkkp/oy974p JSIoGvN+/VPanCsbxJ3tjrtc8/tZI8oxrlMEhIq4X9R/TutS/0Y/z5+d8SQHE/ZY e4YWXZaQ4fcA95/7eqeqMp8IhjAWQKPrv64fP29aGrLrpyLgnLZ+biSn/NntfiDH NarWYGyYfe2sPu86bfiOszizjVoYQyV+7k6K9eQfjHwUjuySHgxmcgVfZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCZFNp9fs3qdGcrbMSn0Xy5sTWm/MB8GA1UdIwQY MBaAFKJ8ZBtTCnxrojQCLjMnJGIyNnEAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb254a0cxTUtmR3VpTkFJdU15Y2tZakkyY1FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8wMDZmNTYtMWQ4ZS00NWNjLTg2OTQt MWYxODhmY2NlODU1LzEvb254a0cxTUtmR3VpTkFJdU15Y2tZakkyY1FBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8wMDZmNTYtMWQ4ZS00NWNjLTg2OTQtMWYxODhmY2NlODU1 LzEvb254a0cxTUtmR3VpTkFJdU15Y2tZakkyY1FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQSCdkOeM YOLC4FX5vj+V+GeJy02wDhKWQubUN+z5IO6QSEDMP7VaohkoOHCO8IaeD0MAZ31/ OMqhz/nEQxr1XGZ5N3ol/fiQ2qjw+AXficGfyxHhD3dSsl1fh4ZwssTdLEVf9OUt dkYNJnNwoQLanb7JMGTGxcPBWUtlvEIbL1stAmRD1gw/O3RtzbTA1ScyVc/zsMEB 0A/3zaip3EskIVK7NZWTlOBg2KJ5qWzrh+BIu13CUhAOnF1HLH7smOSsHUUgKSCT XHnIpjei/NBmd9nG34QIYBBcvKswprq+m9ahjoGJkGRbNfamEPHHZ/Eh3//KFCl6 cWir6ovbfB2D8g== -----END CERTIFICATE-----Generated at Mon Jan 26 09:01:55 2026 by rpki-client