This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft File: pOpmDdthAOfTLl02aJp3fKnK-hk.mft (raw, json) Hash identifier: uJNWZ1dTB0z28keTwyTCznPVxTVAX/k3yK/oPUBSaXs= Subject key identifier: 89:DC:72:68:7F:D8:62:77:44:E0:75:FE:4B:21:37:EA:E0:2A:F1:D2 Authority key identifier: A4:EA:66:0D:DB:61:00:E7:D3:2E:5D:36:68:9A:77:7C:A9:CA:FA:19 Certificate issuer: /CN=a4ea660ddb6100e7d32e5d36689a777ca9cafa19 Certificate serial: 019BF3F5735B69DBC9DD04DE2BCDFADC35E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOpmDdthAOfTLl02aJp3fKnK-hk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft Manifest number: 015D Signing time: Sun 25 Jan 2026 07:01:47 +0000 Manifest this update: Sun 25 Jan 2026 07:01:47 +0000 Manifest next update: Mon 26 Jan 2026 07:01:47 +0000 Files and hashes: 1: Kuamlf0SJKI-PWFPoz3C6in1jGI.roa (hash: W1juLnVZXFxvmAjMn2DB1U04vvF55AkBRyl1Tp1+qak=) 2: W4rXs973I72wlBGGxrG6cyihd0g.roa (hash: PEZb6rsbaDfrboLCp/JrfG/sBCA684zKkgy1FgXQxTo=) 3: pOpmDdthAOfTLl02aJp3fKnK-hk.crl (hash: /4ziVHkSK6nplCqaLBQFdeNSqW7yzWfg8gNUiSkDRwI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.crl rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft rsync://rpki.ripe.net/repository/DEFAULT/pOpmDdthAOfTLl02aJp3fKnK-hk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:f5:73:5b:69:db:c9:dd:04:de:2b:cd:fa:dc:35:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4ea660ddb6100e7d32e5d36689a777ca9cafa19 Validity Not Before: Jan 25 07:01:47 2026 GMT Not After : Jan 26 07:01:47 2026 GMT Subject: CN=89dc72687fd8627744e075fe4b2137eae02af1d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ee:1b:6c:06:38:c4:78:7d:27:d2:ea:f1:04: 97:0e:47:28:e6:33:2c:d2:c0:4d:e5:cc:36:28:53: bd:b2:09:73:a9:4e:7f:6c:d6:19:58:70:d7:ba:2d: 07:ce:21:4c:5b:c1:35:e2:3d:6a:52:6d:35:a6:d2: be:88:8f:c6:ba:94:43:a4:a6:dd:55:4f:93:87:1f: ba:ba:1e:a1:4b:59:17:22:70:8e:60:87:6d:b9:cd: d7:4f:6d:4f:a8:a5:f5:00:49:37:4a:bf:1b:7e:87: 6b:ac:4f:d9:9e:98:d1:de:4f:36:38:d8:4b:e6:6e: b4:76:27:eb:82:5e:62:28:c8:d2:98:5e:1a:d6:2f: 0b:c7:24:8f:f5:ef:49:52:90:89:b1:84:66:52:40: f1:bd:ce:77:03:8c:15:c7:2c:bf:ce:fe:3f:ce:b9: 19:9e:5a:8a:51:47:00:b7:19:ae:de:2f:48:e1:fb: 06:59:0a:cf:c1:37:93:fa:1c:d8:30:1f:db:f5:7f: d6:17:6e:08:f5:8f:15:19:5d:9d:db:67:5c:fc:3b: ba:c1:12:a8:6d:9e:79:9d:44:b0:59:ee:d6:a4:81: e2:6f:2b:b6:8f:54:42:6b:66:4b:7b:0d:84:61:ae: 8f:d3:07:06:bb:a4:f9:73:fd:55:33:3a:45:47:33: e3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:DC:72:68:7F:D8:62:77:44:E0:75:FE:4B:21:37:EA:E0:2A:F1:D2 X509v3 Authority Key Identifier: keyid:A4:EA:66:0D:DB:61:00:E7:D3:2E:5D:36:68:9A:77:7C:A9:CA:FA:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOpmDdthAOfTLl02aJp3fKnK-hk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:0a:77:51:b6:5d:5f:cd:7a:c3:c0:4b:db:56:cc:01:a4:30: 4f:62:67:a9:95:5b:47:b2:7d:ed:c2:b8:e1:d2:bc:39:d4:d7: 2f:46:39:de:95:69:59:3b:85:d9:0d:fc:34:90:26:ad:13:07: 67:74:e5:be:35:e9:f0:60:5e:94:df:47:5e:b9:b0:3b:4e:93: 23:f3:65:87:30:72:e7:85:80:4f:d3:4f:4d:9b:81:cc:1d:11: 67:83:f3:fd:ff:58:79:ff:b7:dc:3e:0a:22:9c:a1:39:1f:d5: 4c:16:46:99:4c:58:b3:c9:fd:17:88:59:df:b5:c4:e3:f1:5f: 99:e1:ec:9e:c1:89:40:f1:ad:39:7c:14:6d:b4:ab:c9:2c:fc: 77:41:ef:34:f4:ef:3a:56:ee:f9:04:f7:86:2d:39:16:01:8d: 3f:92:42:06:b3:31:af:eb:36:6e:80:5b:33:02:74:04:31:15: a1:3e:99:b2:01:82:26:91:89:fb:69:ee:72:52:f8:7e:75:bf: 0b:05:0c:ab:2a:0a:b8:ca:fb:14:05:00:9f:47:4e:be:1f:ab: 9e:72:19:33:81:f8:05:03:4f:0c:79:7c:1d:0d:65:24:65:2f: 09:19:f6:fe:6c:bd:a0:f9:ea:32:00:e9:47:b6:6d:a7:be:73: 63:a0:df:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvz9XNbadvJ3QTeK8363DXpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0ZWE2NjBkZGI2MTAwZTdkMzJlNWQzNjY4OWE3NzdjYTlj YWZhMTkwHhcNMjYwMTI1MDcwMTQ3WhcNMjYwMTI2MDcwMTQ3WjAzMTEwLwYDVQQD Eyg4OWRjNzI2ODdmZDg2Mjc3NDRlMDc1ZmU0YjIxMzdlYWUwMmFmMWQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0O4bbAY4xHh9J9Lq8QSXDkco5jMs 0sBN5cw2KFO9sglzqU5/bNYZWHDXui0HziFMW8E14j1qUm01ptK+iI/GupRDpKbd VU+Thx+6uh6hS1kXInCOYIdtuc3XT21PqKX1AEk3Sr8bfodrrE/ZnpjR3k82ONhL 5m60difrgl5iKMjSmF4a1i8LxySP9e9JUpCJsYRmUkDxvc53A4wVxyy/zv4/zrkZ nlqKUUcAtxmu3i9I4fsGWQrPwTeT+hzYMB/b9X/WF24I9Y8VGV2d22dc/Du6wRKo bZ55nUSwWe7WpIHibyu2j1RCa2ZLew2EYa6P0wcGu6T5c/1VMzpFRzPjVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFInccmh/2GJ3ROB1/kshN+rgKvHSMB8GA1UdIwQY MBaAFKTqZg3bYQDn0y5dNmiad3ypyvoZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcE9wbURkdGhBT2ZUTGwwMmFKcDNmS25LLWhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9lMjBhYTAtMzM4ZS00ZjMzLTg2ZWEt NmY2MjJmZDE4ZDMwLzEvcE9wbURkdGhBT2ZUTGwwMmFKcDNmS25LLWhrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9lMjBhYTAtMzM4ZS00ZjMzLTg2ZWEtNmY2MjJmZDE4ZDMw LzEvcE9wbURkdGhBT2ZUTGwwMmFKcDNmS25LLWhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnwp3UbZd X816w8BL21bMAaQwT2JnqZVbR7J97cK44dK8OdTXL0Y53pVpWTuF2Q38NJAmrRMH Z3TlvjXp8GBelN9HXrmwO06TI/NlhzBy54WAT9NPTZuBzB0RZ4Pz/f9Yef+33D4K IpyhOR/VTBZGmUxYs8n9F4hZ37XE4/FfmeHsnsGJQPGtOXwUbbSrySz8d0HvNPTv Olbu+QT3hi05FgGNP5JCBrMxr+s2boBbMwJ0BDEVoT6ZsgGCJpGJ+2nuclL4fnW/ CwUMqyoKuMr7FAUAn0dOvh+rnnIZM4H4BQNPDHl8HQ1lJGUvCRn2/my9oPnqMgDp R7Ztp75zY6Dfeg== -----END CERTIFICATE-----Generated at Sun Jan 25 17:44:13 2026 by rpki-client