This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft File: 3g2da2l8ochlcMJWhi5oWLR5nIU.mft (raw, json) Hash identifier: 7pOKmpmECka4KRBndqfwEJbsiKkywT/ADPaOXzghIAo= Subject key identifier: E8:3C:7F:F4:76:C6:F0:2F:AE:7A:B9:26:A6:57:BE:CC:BF:EF:1A:17 Authority key identifier: DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85 Certificate issuer: /CN=de0d9d6b697ca1c86570c256862e6858b4799c85 Certificate serial: 019BF386E4405CDCAC5387379B6B2025BBE0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft Manifest number: 17EE Signing time: Sun 25 Jan 2026 05:01:02 +0000 Manifest this update: Sun 25 Jan 2026 05:01:02 +0000 Manifest next update: Mon 26 Jan 2026 05:01:02 +0000 Files and hashes: 1: 3g2da2l8ochlcMJWhi5oWLR5nIU.crl (hash: bU+Os+Ntc7U4/cl2GKZVdWv8TX2GpGW6PP4XtWRz8us=) 2: E_7lG7f5ZU0hPBZXeO9KiDguzXQ.roa (hash: uU7vlve0LCQA4yv+Ab2N5h2lLHcGh/mEnZNylo4rqpM=) 3: XKNodyTpVE_edu5x6d6F6Y2O2tk.roa (hash: bwj5H0svZvvLnoA8x9sKQziSKp08OjMhTh7PRO1SLcQ=) 4: ZDpRY_KWNL6AZ9OnIDN7BtGPipc.roa (hash: 1DrZ+2ptHaqoBHGtimSHqvMKa2JLNNgAJEEeUlCf64I=) 5: d9A4hlEmKbDPdLh-NP6SoKhEXtQ.roa (hash: 2KXDsx5G7CA7gUyYoSSGzL5b/e8kc/9Eqvs4mB1p5uE=) 6: hneKOL6xKV3cr3gP56n-PmBtpXI.roa (hash: GxqGClH9UHGqcmyTREy95vx88t5aKLbmXG/YE4t9Tqg=) 7: i97cNeb8oKq1iXS4wbPlLnkqnXM.roa (hash: tnxwmRHEGHKiP3jVd9g9eR9Y1YnQOfRk5Mq17tUDcaY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.crl rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:86:e4:40:5c:dc:ac:53:87:37:9b:6b:20:25:bb:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de0d9d6b697ca1c86570c256862e6858b4799c85 Validity Not Before: Jan 25 05:01:02 2026 GMT Not After : Jan 26 05:01:02 2026 GMT Subject: CN=e83c7ff476c6f02fae7ab926a657beccbfef1a17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4f:2b:18:ce:4b:58:2e:bb:90:6a:80:fb:77: a7:5a:83:c8:f7:3a:42:50:bc:66:59:bf:56:8f:05: 98:4c:5c:49:64:fa:b4:28:3b:ba:6a:f8:7a:26:f3: 24:c4:74:a1:ed:c8:dc:e3:09:a4:98:de:18:ac:c1: 9b:bf:15:b7:26:dd:71:63:bc:70:0f:b4:aa:36:ac: 41:ab:f8:02:4a:ba:90:0b:81:95:33:7a:b8:2a:49: f3:d0:5d:d2:e0:7e:61:1a:30:8a:b3:fb:fb:29:c7: 9e:e5:ba:9e:79:4d:ab:aa:7f:17:5b:b3:ca:2f:4b: c9:76:39:9f:7a:84:5a:2c:5a:28:f9:65:fa:c3:e4: c1:80:3c:6e:80:a2:a6:b1:7d:74:8e:db:3b:e0:bb: c9:c5:2a:30:3a:92:44:83:86:17:51:a7:1f:89:7c: 94:1e:fe:b1:d5:1f:22:14:6d:bb:5a:c6:84:16:c6: 99:2c:74:0d:7c:f3:91:f3:8d:77:65:3f:86:0d:e5: 85:7a:0d:35:5f:93:b2:3a:27:9d:6d:03:5a:ba:62: 87:fc:6b:11:58:39:79:cc:ee:75:bb:ce:4a:30:c2: f1:7a:6e:e1:72:a6:75:7b:cb:b6:65:25:19:fd:ca: 46:6a:dd:28:43:d0:b5:9f:66:15:e5:d0:5e:6d:99: 3b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:3C:7F:F4:76:C6:F0:2F:AE:7A:B9:26:A6:57:BE:CC:BF:EF:1A:17 X509v3 Authority Key Identifier: keyid:DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:af:f5:49:d1:b4:b6:0b:86:26:1b:9d:42:13:e9:9b:4f:f1: 97:77:a0:49:8b:b1:cf:6f:ed:24:8d:14:ce:ff:30:d3:7f:22: 37:2c:80:55:1e:6e:1b:2b:1b:93:18:55:6a:e5:99:e8:f0:e1: 77:76:17:58:82:9a:8f:13:3c:90:4f:63:95:ad:90:f4:97:3d: bb:4e:07:d6:4e:60:91:ea:54:4b:32:58:56:a8:f6:fc:35:21: 19:a1:e7:67:e1:01:de:39:d3:76:e6:18:d3:f6:77:c9:62:ce: f5:4c:a1:04:a2:62:b0:5e:1d:a6:f2:cb:6f:d8:02:2c:db:df: 86:71:d7:95:72:95:e2:1d:70:34:13:26:34:01:ee:29:a4:94: 82:89:2b:a4:f6:a4:59:fc:5d:c6:17:3e:59:65:bf:0c:f5:ec: 0f:1a:fa:0b:c2:32:61:a2:71:cb:17:f3:3f:6d:c3:48:06:ad: 86:6a:97:d3:24:56:f9:0d:f0:6d:30:74:b1:4d:58:ff:26:6f: e0:9f:e5:db:7d:b4:a3:d4:6a:4e:07:6e:35:52:c6:1a:19:d7: 24:20:d7:03:85:88:0e:9c:8b:1b:97:67:d8:b6:09:2b:9d:cb: a1:4c:e2:1f:4c:aa:83:f9:ec:7c:59:e8:10:ee:5f:61:37:dd: 51:4f:c8:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzhuRAXNysU4c3m2sgJbvgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlMGQ5ZDZiNjk3Y2ExYzg2NTcwYzI1Njg2MmU2ODU4YjQ3 OTljODUwHhcNMjYwMTI1MDUwMTAyWhcNMjYwMTI2MDUwMTAyWjAzMTEwLwYDVQQD EyhlODNjN2ZmNDc2YzZmMDJmYWU3YWI5MjZhNjU3YmVjY2JmZWYxYTE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5E8rGM5LWC67kGqA+3enWoPI9zpC ULxmWb9WjwWYTFxJZPq0KDu6avh6JvMkxHSh7cjc4wmkmN4YrMGbvxW3Jt1xY7xw D7SqNqxBq/gCSrqQC4GVM3q4Kknz0F3S4H5hGjCKs/v7Kcee5bqeeU2rqn8XW7PK L0vJdjmfeoRaLFoo+WX6w+TBgDxugKKmsX10jts74LvJxSowOpJEg4YXUacfiXyU Hv6x1R8iFG27WsaEFsaZLHQNfPOR8413ZT+GDeWFeg01X5OyOiedbQNaumKH/GsR WDl5zO51u85KMMLxem7hcqZ1e8u2ZSUZ/cpGat0oQ9C1n2YV5dBebZk7GwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOg8f/R2xvAvrnq5JqZXvsy/7xoXMB8GA1UdIwQY MBaAFN4NnWtpfKHIZXDCVoYuaFi0eZyFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2cyZGEybDhvY2hsY01KV2hpNW9XTFI1bklVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy82OGRjM2MtZGYyZS00NDYxLWI3YTYt MDFjYmZjMGU5NGU3LzEvM2cyZGEybDhvY2hsY01KV2hpNW9XTFI1bklVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy82OGRjM2MtZGYyZS00NDYxLWI3YTYtMDFjYmZjMGU5NGU3 LzEvM2cyZGEybDhvY2hsY01KV2hpNW9XTFI1bklVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFa/1SdG0 tguGJhudQhPpm0/xl3egSYuxz2/tJI0Uzv8w038iNyyAVR5uGysbkxhVauWZ6PDh d3YXWIKajxM8kE9jla2Q9Jc9u04H1k5gkepUSzJYVqj2/DUhGaHnZ+EB3jnTduYY 0/Z3yWLO9UyhBKJisF4dpvLLb9gCLNvfhnHXlXKV4h1wNBMmNAHuKaSUgokrpPak Wfxdxhc+WWW/DPXsDxr6C8IyYaJxyxfzP23DSAathmqX0yRW+Q3wbTB0sU1Y/yZv 4J/l2320o9RqTgduNVLGGhnXJCDXA4WIDpyLG5dn2LYJK53LoUziH0yqg/nsfFno EO5fYTfdUU/Ikg== -----END CERTIFICATE-----Generated at Sun Jan 25 13:53:24 2026 by rpki-client