This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json) Hash identifier: 9H6HoByLKq6WLcCI5f85aJRm8yttwbcoionG1/J7Gxk= Subject key identifier: 0B:EF:90:CE:72:9E:4D:3E:CE:8E:53:7C:E8:D9:85:88:94:BA:C2:88 Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f Certificate serial: 019BF6BEB3B4F59E48DC01D59ABF0B5116E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft Manifest number: 0A74 Signing time: Sun 25 Jan 2026 20:00:51 +0000 Manifest this update: Sun 25 Jan 2026 20:00:51 +0000 Manifest next update: Mon 26 Jan 2026 20:00:51 +0000 Files and hashes: 1: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: 4sTv3jVW5rSfWRciuPDUJGiY1UIDE9cdFgOlm7oJQ/k=) 2: d4Z8dyEwWVlK-z1Mt82VdRZaIcY.roa (hash: pNguw2qBCLAYUuPZ0wVkI6YbP099kM2Xh8UMvqT4t9o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:be:b3:b4:f5:9e:48:dc:01:d5:9a:bf:0b:51:16:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f Validity Not Before: Jan 25 20:00:51 2026 GMT Not After : Jan 26 20:00:51 2026 GMT Subject: CN=0bef90ce729e4d3ece8e537ce8d9858894bac288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d6:52:af:e0:59:08:85:da:84:a1:bf:ec:6f: cf:03:a5:dc:a1:b2:88:6d:ef:88:c7:ba:2a:1c:42: 10:a8:4d:3c:ac:67:3e:bf:db:62:51:f0:ab:ce:b0: f3:cf:49:26:85:d8:6b:fa:4a:4f:bd:2e:5c:2d:6c: b2:06:be:b0:b7:17:03:e2:35:e8:3b:72:03:7e:ba: b7:9b:99:1a:bd:e9:04:1f:a2:d4:16:e2:5d:22:aa: 23:6a:82:20:e1:aa:9b:7b:64:03:a2:69:30:59:eb: 04:09:dd:c6:fc:15:df:ff:cb:9b:b6:3c:5d:7f:ea: a1:f8:70:cd:78:3e:97:f1:98:0c:cb:56:5d:15:02: 41:a0:2d:d7:f8:eb:5b:3f:37:87:fa:ee:83:c2:c8: 99:df:ce:42:53:4f:f5:b7:bf:49:68:38:46:ba:8d: cf:92:4f:d6:90:df:13:04:1e:12:1b:e5:53:1f:08: 60:36:6e:dd:6a:89:7a:ef:dc:4f:85:37:a1:c8:a4: 2e:bc:4c:dd:43:f6:ac:5e:88:71:c6:38:69:99:df: 80:1c:bb:f3:35:ff:26:92:30:af:53:44:a0:15:82: 06:5b:78:86:b8:7d:9d:dc:3d:d6:9c:5d:90:c8:ef: b2:d1:ef:26:c1:b8:26:e1:2a:02:e7:ed:74:56:01: 14:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:EF:90:CE:72:9E:4D:3E:CE:8E:53:7C:E8:D9:85:88:94:BA:C2:88 X509v3 Authority Key Identifier: keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:d0:94:c8:3d:e8:c3:a3:41:fa:b2:51:bb:29:b5:e4:de:27: 92:30:a2:16:e3:27:43:10:87:dc:14:eb:7c:6d:15:7d:c5:6b: 71:a0:e6:b7:c4:5c:d5:45:5c:f3:08:ed:37:d2:d4:f6:5d:28: 9a:0d:e1:c9:b0:fa:e4:c7:d8:c6:35:d4:f2:fb:c1:19:96:de: 8e:ce:20:0f:e6:d3:57:36:a5:b2:0a:4e:01:a0:f3:58:42:39: e2:06:dc:56:da:87:d1:8f:5b:f8:48:bb:45:f1:d5:45:3d:4e: 7e:80:41:a5:7e:97:20:b9:1e:da:4e:c1:ae:57:1b:22:ac:ff: 91:17:4b:7e:2e:5b:c8:44:0c:63:79:9c:a2:01:4e:ac:34:52: 62:08:23:05:25:41:b9:53:e7:e2:42:58:d9:48:2f:7d:74:91: 6b:b0:27:45:57:e5:24:86:91:27:23:68:be:c1:f0:ee:f2:48: 01:ff:a7:18:8e:d9:16:ca:40:0f:77:50:dc:4f:37:c5:f6:13: 6c:d8:58:69:00:ea:4c:ec:ac:28:92:55:15:1f:33:78:57:c2: ed:e7:61:b9:c0:40:0e:39:da:79:0d:c9:2b:21:e0:e3:45:6c: 55:e8:e7:02:c1:fc:5b:4f:7a:f7:64:31:c2:a0:74:a5:7c:85: e5:bc:0d:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2vrO09Z5I3AHVmr8LURbkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzZTNhZWRkOTFiZTgyNDUxMzQyZGNkMWM5ODI4MzQ1ZGI2 NjFhNWYwHhcNMjYwMTI1MjAwMDUxWhcNMjYwMTI2MjAwMDUxWjAzMTEwLwYDVQQD EygwYmVmOTBjZTcyOWU0ZDNlY2U4ZTUzN2NlOGQ5ODU4ODk0YmFjMjg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1tZSr+BZCIXahKG/7G/PA6XcobKI be+Ix7oqHEIQqE08rGc+v9tiUfCrzrDzz0kmhdhr+kpPvS5cLWyyBr6wtxcD4jXo O3IDfrq3m5kavekEH6LUFuJdIqojaoIg4aqbe2QDomkwWesECd3G/BXf/8ubtjxd f+qh+HDNeD6X8ZgMy1ZdFQJBoC3X+OtbPzeH+u6DwsiZ385CU0/1t79JaDhGuo3P kk/WkN8TBB4SG+VTHwhgNm7daol679xPhTehyKQuvEzdQ/asXohxxjhpmd+AHLvz Nf8mkjCvU0SgFYIGW3iGuH2d3D3WnF2QyO+y0e8mwbgm4SoC5+10VgEUlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAvvkM5ynk0+zo5TfOjZhYiUusKIMB8GA1UdIwQY MBaAFFPjrt2RvoJFE0Lc0cmCg0XbZhpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQt YTdkOTQ1YWYxNGU1LzEvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQtYTdkOTQ1YWYxNGU1 LzEvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALtCUyD3o w6NB+rJRuym15N4nkjCiFuMnQxCH3BTrfG0VfcVrcaDmt8Rc1UVc8wjtN9LU9l0o mg3hybD65MfYxjXU8vvBGZbejs4gD+bTVzalsgpOAaDzWEI54gbcVtqH0Y9b+Ei7 RfHVRT1OfoBBpX6XILke2k7BrlcbIqz/kRdLfi5byEQMY3mcogFOrDRSYggjBSVB uVPn4kJY2UgvfXSRa7AnRVflJIaRJyNovsHw7vJIAf+nGI7ZFspAD3dQ3E83xfYT bNhYaQDqTOysKJJVFR8zeFfC7edhucBADjnaeQ3JKyHg40VsVejnAsH8W09692Qx wqB0pXyF5bwNoQ== -----END CERTIFICATE-----Generated at Mon Jan 26 06:06:47 2026 by rpki-client