This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft File: o3U2my1LsuLe3maGRTE-NE5vHMA.mft (raw, json) Hash identifier: R1fhxwWTmbKbk69PaMRhLL1J3Rdu81/cQmoaKYKa3mg= Subject key identifier: F3:45:D8:28:CF:37:75:65:55:4A:1C:0A:36:5C:EF:A9:72:ED:56:BF Authority key identifier: A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0 Certificate issuer: /CN=a375369b2d4bb2e2dede668645313e344e6f1cc0 Certificate serial: 019BF72D2B74DA3494632A3862EDF1C148E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft Manifest number: 17ED Signing time: Sun 25 Jan 2026 22:01:31 +0000 Manifest this update: Sun 25 Jan 2026 22:01:31 +0000 Manifest next update: Mon 26 Jan 2026 22:01:31 +0000 Files and hashes: 1: cqrDqsllU4angXR7ZhiixighcHI.roa (hash: fhOWug7UyzusWzCmpcbK8cX3/PPspaEdcPiG9KdZ6F4=) 2: o3U2my1LsuLe3maGRTE-NE5vHMA.crl (hash: 4prQz8XJgKEKQyoCK/5p+9Y7fnh2ff5L/f1wsfakeWE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:2b:74:da:34:94:63:2a:38:62:ed:f1:c1:48:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a375369b2d4bb2e2dede668645313e344e6f1cc0 Validity Not Before: Jan 25 22:01:31 2026 GMT Not After : Jan 26 22:01:31 2026 GMT Subject: CN=f345d828cf377565554a1c0a365cefa972ed56bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7d:4c:fb:2d:b3:56:7b:9f:bf:f9:c1:72:d7: bc:de:6b:1f:5c:c1:8e:f1:ee:d0:9a:c9:ca:8f:43: 29:48:29:ea:d5:8b:c7:03:0d:44:ae:92:4a:e0:7d: 05:50:4d:1e:5b:b6:d1:3e:1a:52:1b:39:1a:da:df: 02:b5:e2:b2:8c:0c:fd:d2:cd:a4:5f:45:f4:87:31: ee:63:52:72:fd:c1:c4:06:0d:0c:2e:c6:4c:f8:97: 49:21:81:af:6f:5e:84:51:6b:9e:48:b4:8a:0b:21: f6:fd:86:de:04:8d:73:12:12:e2:b6:fd:05:35:a6: 92:13:c7:d2:43:44:0e:c8:80:7a:0e:a3:bf:8f:8c: 48:34:71:60:70:53:35:08:7c:3f:24:1f:55:88:1d: 86:1c:6c:d1:13:f5:a1:bd:56:bc:ff:96:5f:05:70: 6d:01:4c:15:da:43:95:ff:fc:e5:dc:ad:55:0b:12: d5:7c:16:7b:57:1a:f1:54:99:dc:bf:fa:af:41:1c: 5e:60:58:36:8f:d0:73:e3:74:00:3f:b5:67:82:cf: df:da:24:7d:b7:9a:33:f2:58:8c:e7:d1:47:f4:aa: b7:7e:6e:e3:b9:70:0e:b1:d6:28:73:cd:4f:f9:83: 61:67:83:66:15:51:41:a5:94:ad:f1:37:77:8a:32: 0d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:45:D8:28:CF:37:75:65:55:4A:1C:0A:36:5C:EF:A9:72:ED:56:BF X509v3 Authority Key Identifier: keyid:A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:20:ca:3e:16:10:ac:9a:da:92:0c:4f:d8:57:c6:24:32:2e: 55:b1:b5:32:c2:7b:47:71:34:1c:8d:1b:3f:2e:67:62:ba:39: 83:03:48:1b:b5:08:dd:12:2b:14:ba:17:aa:3d:71:e8:e9:4f: 48:39:70:b5:32:b4:ec:48:9c:e3:ce:5a:10:83:c9:b1:7d:0b: ab:9d:78:13:3f:bd:9f:43:ca:a9:86:7f:2f:6b:db:ef:e0:71: f2:93:5f:e4:88:48:c3:b4:e5:f6:ac:3b:5d:28:df:fa:8c:78: 58:10:72:96:23:5f:81:89:8a:9d:2d:f6:c4:61:71:b8:df:8b: 3a:61:e9:2b:5a:3b:95:e0:c4:eb:b2:98:63:ee:cc:86:97:18: e1:5d:b5:7f:f9:36:47:9d:1a:4e:fc:db:e8:56:31:41:e6:6f: 5d:2f:5d:6f:0f:3b:34:80:9a:74:fa:fc:cb:ec:f2:1d:0f:f9: 5b:4b:ad:63:bd:5b:cb:a3:ee:ec:5d:75:23:d4:c0:d8:18:e4: 85:54:d0:12:98:fc:0d:aa:fb:39:33:72:b1:84:e1:cc:e4:17: f4:ce:a9:2c:6f:fe:e3:e6:1a:52:e3:22:7a:c8:af:74:92:f7: a5:3b:30:2d:8b:c6:be:c4:89:07:48:13:5c:38:92:a2:98:83: ea:06:60:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LSt02jSUYyo4Yu3xwUjkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzNzUzNjliMmQ0YmIyZTJkZWRlNjY4NjQ1MzEzZTM0NGU2 ZjFjYzAwHhcNMjYwMTI1MjIwMTMxWhcNMjYwMTI2MjIwMTMxWjAzMTEwLwYDVQQD EyhmMzQ1ZDgyOGNmMzc3NTY1NTU0YTFjMGEzNjVjZWZhOTcyZWQ1NmJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt31M+y2zVnufv/nBcte83msfXMGO 8e7QmsnKj0MpSCnq1YvHAw1ErpJK4H0FUE0eW7bRPhpSGzka2t8CteKyjAz90s2k X0X0hzHuY1Jy/cHEBg0MLsZM+JdJIYGvb16EUWueSLSKCyH2/YbeBI1zEhLitv0F NaaSE8fSQ0QOyIB6DqO/j4xINHFgcFM1CHw/JB9ViB2GHGzRE/WhvVa8/5ZfBXBt AUwV2kOV//zl3K1VCxLVfBZ7VxrxVJncv/qvQRxeYFg2j9Bz43QAP7Vngs/f2iR9 t5oz8liM59FH9Kq3fm7juXAOsdYoc81P+YNhZ4NmFVFBpZSt8Td3ijINtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPNF2CjPN3VlVUocCjZc76ly7Va/MB8GA1UdIwQY MBaAFKN1NpstS7Li3t5mhkUxPjRObxzAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzNVMm15MUxzdUxlM21hR1JURS1ORTV2SE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lYzY5MDUtYjBmNy00MjRmLThhODQt MjhiZWM3Yjk5OTI5LzEvbzNVMm15MUxzdUxlM21hR1JURS1ORTV2SE1BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9lYzY5MDUtYjBmNy00MjRmLThhODQtMjhiZWM3Yjk5OTI5 LzEvbzNVMm15MUxzdUxlM21hR1JURS1ORTV2SE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAyDKPhYQ rJrakgxP2FfGJDIuVbG1MsJ7R3E0HI0bPy5nYro5gwNIG7UI3RIrFLoXqj1x6OlP SDlwtTK07Eic485aEIPJsX0Lq514Ez+9n0PKqYZ/L2vb7+Bx8pNf5IhIw7Tl9qw7 XSjf+ox4WBByliNfgYmKnS32xGFxuN+LOmHpK1o7leDE67KYY+7MhpcY4V21f/k2 R50aTvzb6FYxQeZvXS9dbw87NICadPr8y+zyHQ/5W0utY71by6Pu7F11I9TA2Bjk hVTQEpj8Dar7OTNysYThzOQX9M6pLG/+4+YaUuMiesivdJL3pTswLYvGvsSJB0gT XDiSopiD6gZgwQ== -----END CERTIFICATE-----Generated at Mon Jan 26 02:09:26 2026 by rpki-client