This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json) Hash identifier: +2qoSbOrsGpuQOLEWHhYZB5TqRih4IohnIgr0+EdqxY= Subject key identifier: 69:BF:D8:3E:C6:3B:EC:77:7D:1B:2E:FF:8D:6C:67:D6:09:F3:FB:86 Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a Certificate serial: 019BF6508BBD069B7FDF0DA419A8CA7B69E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft Manifest number: 0F6B Signing time: Sun 25 Jan 2026 18:00:32 +0000 Manifest this update: Sun 25 Jan 2026 18:00:32 +0000 Manifest next update: Mon 26 Jan 2026 18:00:32 +0000 Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: lgHCJ/tAyCzSzhqU1WBkV0GqcRHlbJJsuQ1/G4w5yuA=) 2: qvZ-nKf7EFh0r3KXcsWmv_aLkqs.roa (hash: XaQIlBTlE+Jhvgae5CyaS1DgkFx27OpIcetptyKOkgg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:50:8b:bd:06:9b:7f:df:0d:a4:19:a8:ca:7b:69:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a Validity Not Before: Jan 25 18:00:32 2026 GMT Not After : Jan 26 18:00:32 2026 GMT Subject: CN=69bfd83ec63bec777d1b2eff8d6c67d609f3fb86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:c8:23:12:01:c7:dd:ca:79:4b:8f:09:cf:b9: ea:40:e3:39:7c:e8:d8:ef:e3:bd:d5:c0:a8:95:50: 0f:68:57:e5:22:8a:fa:ec:37:ae:0c:c7:e5:dc:25: 4c:90:fa:9a:a1:88:f8:52:56:37:0b:96:00:d8:94: 53:46:97:20:1d:ca:94:e3:cf:ec:7d:5a:24:e3:96: bb:83:e8:7f:8f:87:d8:dd:dd:e2:2c:8e:05:d4:10: 71:23:3f:ed:29:82:c7:0e:49:72:50:34:c5:22:7e: f2:27:50:8e:af:da:0e:1d:f7:bc:c7:51:27:e2:31: d0:c0:8d:bd:03:53:08:2a:8d:a9:81:99:45:9b:f7: db:ce:bb:40:f0:64:8c:40:04:05:a8:eb:42:82:87: dc:74:c9:10:f7:7c:8f:91:8b:9e:00:d3:0a:4a:26: d5:3e:55:8b:a7:11:05:17:c4:4d:4d:32:69:1a:35: 5b:f8:e4:7a:d4:a3:89:68:83:ed:db:3f:0c:af:19: 2a:10:41:90:a3:d5:a2:af:0b:2a:ae:fe:30:32:99: a9:70:94:64:ef:d5:14:7e:c4:f5:20:a1:47:e6:69: 24:5f:ed:f1:8f:92:c2:e9:69:8a:ab:c1:cd:8f:f8: 9e:8c:b8:d9:af:5f:1c:8b:e6:0f:c6:fd:87:bb:1e: 32:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:BF:D8:3E:C6:3B:EC:77:7D:1B:2E:FF:8D:6C:67:D6:09:F3:FB:86 X509v3 Authority Key Identifier: keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:e1:05:90:4b:03:b9:84:1d:ab:e5:59:03:ac:f0:b5:fa:d3: 77:b6:56:13:9c:9f:8b:80:c4:de:72:ff:bb:6c:24:1e:aa:7f: 0b:ac:27:3c:04:ef:2c:4b:b4:e6:8b:a0:4b:ef:f1:75:f3:77: c4:16:40:e3:08:2d:91:fb:07:22:13:e5:6b:c7:5f:2f:38:91: 13:0a:95:80:c3:03:16:2c:74:e9:fd:4d:07:ef:5a:1f:f4:92: a6:95:94:60:ff:d1:14:e9:ba:15:53:7d:0d:6d:b7:82:ee:9a: 69:e4:88:ed:40:3c:72:40:97:e2:5e:48:d4:f6:77:41:ce:34: f6:cb:f5:ae:e8:c8:47:09:75:65:77:28:40:89:e2:5d:7c:86: fe:d3:02:58:1b:62:5c:8f:1c:b7:1a:74:0b:b8:5d:17:76:31: ae:a7:e7:47:bf:1d:ab:89:17:73:48:07:bb:d8:f8:34:46:4d: 36:70:01:50:d9:b5:0d:4f:2b:93:0e:5f:d5:70:92:d6:1d:6b: e4:6e:93:dc:14:38:2d:85:dc:36:87:fa:9d:b2:7c:c8:8c:10: c6:fe:44:4b:d5:6d:9c:a0:75:ae:9c:86:cb:0e:99:48:10:e5: fa:99:34:0c:3d:c2:6c:74:0c:3a:9b:96:e4:d8:ba:ef:5d:7f: 4c:15:cd:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UIu9Bpt/3w2kGajKe2nnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5OWRjMTM2MTlhYWJhN2YyMjJjZWFjYjA1ZjFiYmFjNTli ZDNhOWEwHhcNMjYwMTI1MTgwMDMyWhcNMjYwMTI2MTgwMDMyWjAzMTEwLwYDVQQD Eyg2OWJmZDgzZWM2M2JlYzc3N2QxYjJlZmY4ZDZjNjdkNjA5ZjNmYjg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjMgjEgHH3cp5S48Jz7nqQOM5fOjY 7+O91cColVAPaFflIor67DeuDMfl3CVMkPqaoYj4UlY3C5YA2JRTRpcgHcqU48/s fVok45a7g+h/j4fY3d3iLI4F1BBxIz/tKYLHDklyUDTFIn7yJ1COr9oOHfe8x1En 4jHQwI29A1MIKo2pgZlFm/fbzrtA8GSMQAQFqOtCgofcdMkQ93yPkYueANMKSibV PlWLpxEFF8RNTTJpGjVb+OR61KOJaIPt2z8MrxkqEEGQo9Wirwsqrv4wMpmpcJRk 79UUfsT1IKFH5mkkX+3xj5LC6WmKq8HNj/iejLjZr18ci+YPxv2Hux4y4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGm/2D7GO+x3fRsu/41sZ9YJ8/uGMB8GA1UdIwQY MBaAFDmdwTYZqrp/IizqywXxu6xZvTqaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9lZmEyMjUtMTZkYy00ZjQzLWFhZTkt MDAzMmZkYzU0NTBiLzEvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC9lZmEyMjUtMTZkYy00ZjQzLWFhZTktMDAzMmZkYzU0NTBi LzEvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANuEFkEsD uYQdq+VZA6zwtfrTd7ZWE5yfi4DE3nL/u2wkHqp/C6wnPATvLEu05ougS+/xdfN3 xBZA4wgtkfsHIhPla8dfLziREwqVgMMDFix06f1NB+9aH/SSppWUYP/RFOm6FVN9 DW23gu6aaeSI7UA8ckCX4l5I1PZ3Qc409sv1rujIRwl1ZXcoQIniXXyG/tMCWBti XI8ctxp0C7hdF3YxrqfnR78dq4kXc0gHu9j4NEZNNnABUNm1DU8rkw5f1XCS1h1r 5G6T3BQ4LYXcNof6nbJ8yIwQxv5ES9VtnKB1rpyGyw6ZSBDl+pk0DD3CbHQMOpuW 5Ni6711/TBXNlA== -----END CERTIFICATE-----Generated at Mon Jan 26 00:19:29 2026 by rpki-client