This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/90e923-2f2d-4086-819c-4e655b5b6427/1/OfhzzTk5IDx3io6q8Wg-lGSsNAA.mft File: OfhzzTk5IDx3io6q8Wg-lGSsNAA.mft (raw, json) Hash identifier: Ab62HkIsGsLXrhWMjzd40sB1bDW8FqPOlhLceReI7oU= Subject key identifier: 87:8F:11:58:A3:4B:6B:09:6F:08:A0:BE:AD:2D:D6:51:28:B0:9D:F5 Authority key identifier: 39:F8:73:CD:39:39:20:3C:77:8A:8E:AA:F1:68:3E:94:64:AC:34:00 Certificate issuer: /CN=39f873cd3939203c778a8eaaf1683e9464ac3400 Certificate serial: 019BF61A3D8001E6D7E6F1F10708EACB2A4F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OfhzzTk5IDx3io6q8Wg-lGSsNAA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/90e923-2f2d-4086-819c-4e655b5b6427/1/OfhzzTk5IDx3io6q8Wg-lGSsNAA.mft Manifest number: 0364 Signing time: Sun 25 Jan 2026 17:01:13 +0000 Manifest this update: Sun 25 Jan 2026 17:01:13 +0000 Manifest next update: Mon 26 Jan 2026 17:01:13 +0000 Files and hashes: 1: OfhzzTk5IDx3io6q8Wg-lGSsNAA.crl (hash: qdHe5ThMX1nTHPBFxf5jjxDV0osbpRR2u9nkT/17XCY=) 2: aiiRtiYyMK2pR69dLCHHrDF9gJE.roa (hash: GHDYFSzrpoLIOpX6iS/EkCdY5TaFBOcxhHWzm9AoCPo=) 3: eXXm1Ulp8umzvbta5fLxp-PY-MY.roa (hash: crFjalMvsl9i/+rOJNU/pdcqz+sZdkcxyLZdz71JwLM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/90e923-2f2d-4086-819c-4e655b5b6427/1/OfhzzTk5IDx3io6q8Wg-lGSsNAA.crl rsync://rpki.ripe.net/repository/DEFAULT/32/90e923-2f2d-4086-819c-4e655b5b6427/1/OfhzzTk5IDx3io6q8Wg-lGSsNAA.mft rsync://rpki.ripe.net/repository/DEFAULT/OfhzzTk5IDx3io6q8Wg-lGSsNAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:1a:3d:80:01:e6:d7:e6:f1:f1:07:08:ea:cb:2a:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39f873cd3939203c778a8eaaf1683e9464ac3400 Validity Not Before: Jan 25 17:01:13 2026 GMT Not After : Jan 26 17:01:13 2026 GMT Subject: CN=878f1158a34b6b096f08a0bead2dd65128b09df5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:0a:1b:6f:3e:f3:4a:a9:c0:52:57:e6:d2:3a: 79:e4:d0:6e:b7:03:28:70:69:d4:de:85:e7:cb:d6: 3a:0a:3a:33:54:1e:0f:5a:9f:f2:77:08:e9:28:f3: 4f:e7:69:55:e2:a7:4f:78:56:3b:83:42:c9:51:12: d5:41:dd:5d:17:0b:e4:2e:e1:ab:6d:e4:8f:e2:9d: b1:ce:4f:b0:5a:b3:8c:62:49:e1:7d:91:db:9d:8d: f5:9d:6d:b4:1f:6f:6c:52:c1:69:a2:72:87:6d:d3: 1a:da:35:fb:ee:0b:02:0d:7d:ac:fd:39:04:fc:de: 76:56:e7:0f:f4:43:7e:16:15:d0:a3:04:c0:38:be: eb:c3:c9:59:9f:ac:79:2b:e0:04:b4:c6:98:a9:87: 9d:18:33:ff:11:f5:06:44:a3:63:7d:71:62:2e:65: 63:9c:a0:66:54:af:18:48:72:f6:2d:d4:65:97:d7: 76:ad:09:5e:c3:97:a3:97:58:fc:cc:9b:22:c8:e6: 58:28:f2:9e:90:01:e1:6f:74:43:f3:22:4d:29:3a: c9:fc:fc:35:dd:65:21:19:63:e9:a8:e3:e5:4b:aa: e2:28:0f:a9:05:88:97:0b:d6:40:29:bd:cf:4c:f0: 38:25:6d:5f:7c:48:f5:bc:1a:db:6d:a2:ca:5c:c8: 59:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:8F:11:58:A3:4B:6B:09:6F:08:A0:BE:AD:2D:D6:51:28:B0:9D:F5 X509v3 Authority Key Identifier: keyid:39:F8:73:CD:39:39:20:3C:77:8A:8E:AA:F1:68:3E:94:64:AC:34:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OfhzzTk5IDx3io6q8Wg-lGSsNAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/90e923-2f2d-4086-819c-4e655b5b6427/1/OfhzzTk5IDx3io6q8Wg-lGSsNAA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/90e923-2f2d-4086-819c-4e655b5b6427/1/OfhzzTk5IDx3io6q8Wg-lGSsNAA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:73:6c:44:18:87:3e:8f:1b:94:99:bc:32:7b:41:49:e2:2b: 60:e1:50:3d:27:f7:ee:f2:38:48:f0:85:d7:0d:e9:66:fd:dd: c7:0b:a3:0e:62:9f:75:51:af:ba:92:93:92:92:fa:59:3e:e6: e2:8f:a9:4d:ab:cc:db:f0:d3:d3:69:d4:9a:06:14:a7:95:86: 54:18:ad:6b:e1:6b:3d:a3:f1:45:d9:38:71:4b:ff:b7:00:f8: 31:b4:6a:1a:58:2b:1d:d8:a9:b8:82:81:15:61:b5:3e:67:c7: 4c:95:77:ec:51:9a:6c:0b:1b:47:5e:d0:81:5f:0d:43:d1:ea: c1:80:9b:b8:71:d3:71:c3:82:47:00:e0:07:07:19:6d:72:7c: 9a:5a:13:db:07:d9:2a:63:4d:7c:fa:2a:f5:ca:9c:ca:ee:6b: 40:39:6a:c8:2c:44:22:83:34:58:fb:ec:9c:92:33:3b:40:50: a9:5c:52:79:89:b0:34:2a:0e:f4:e4:a6:26:ba:c6:0e:9d:1d: 59:78:b2:a4:af:88:e7:67:03:ca:55:4f:fa:55:0e:b1:cc:94: 98:81:95:b5:ea:f9:2d:d6:d7:d5:3f:d1:82:6e:58:9c:f2:77: c6:41:37:9c:44:22:93:69:85:3c:92:5d:3a:2f:63:c6:41:52: 97:66:ad:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2Gj2AAebX5vHxBwjqyypPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5Zjg3M2NkMzkzOTIwM2M3NzhhOGVhYWYxNjgzZTk0NjRh YzM0MDAwHhcNMjYwMTI1MTcwMTEzWhcNMjYwMTI2MTcwMTEzWjAzMTEwLwYDVQQD Eyg4NzhmMTE1OGEzNGI2YjA5NmYwOGEwYmVhZDJkZDY1MTI4YjA5ZGY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQobbz7zSqnAUlfm0jp55NButwMo cGnU3oXny9Y6CjozVB4PWp/ydwjpKPNP52lV4qdPeFY7g0LJURLVQd1dFwvkLuGr beSP4p2xzk+wWrOMYknhfZHbnY31nW20H29sUsFponKHbdMa2jX77gsCDX2s/TkE /N52VucP9EN+FhXQowTAOL7rw8lZn6x5K+AEtMaYqYedGDP/EfUGRKNjfXFiLmVj nKBmVK8YSHL2LdRll9d2rQlew5ejl1j8zJsiyOZYKPKekAHhb3RD8yJNKTrJ/Pw1 3WUhGWPpqOPlS6riKA+pBYiXC9ZAKb3PTPA4JW1ffEj1vBrbbaLKXMhZbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIePEVijS2sJbwigvq0t1lEosJ31MB8GA1UdIwQY MBaAFDn4c805OSA8d4qOqvFoPpRkrDQAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2ZoenpUazVJRHgzaW82cThXZy1sR1NzTkFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi85MGU5MjMtMmYyZC00MDg2LTgxOWMt NGU2NTViNWI2NDI3LzEvT2ZoenpUazVJRHgzaW82cThXZy1sR1NzTkFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi85MGU5MjMtMmYyZC00MDg2LTgxOWMtNGU2NTViNWI2NDI3 LzEvT2ZoenpUazVJRHgzaW82cThXZy1sR1NzTkFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcHNsRBiH Po8blJm8MntBSeIrYOFQPSf37vI4SPCF1w3pZv3dxwujDmKfdVGvupKTkpL6WT7m 4o+pTavM2/DT02nUmgYUp5WGVBita+FrPaPxRdk4cUv/twD4MbRqGlgrHdipuIKB FWG1PmfHTJV37FGabAsbR17QgV8NQ9HqwYCbuHHTccOCRwDgBwcZbXJ8mloT2wfZ KmNNfPoq9cqcyu5rQDlqyCxEIoM0WPvsnJIzO0BQqVxSeYmwNCoO9OSmJrrGDp0d WXiypK+I52cDylVP+lUOscyUmIGVter5LdbX1T/Rgm5YnPJ3xkE3nEQik2mFPJJd Oi9jxkFSl2at+Q== -----END CERTIFICATE-----Generated at Sun Jan 25 21:10:53 2026 by rpki-client