This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft File: pOpmDdthAOfTLl02aJp3fKnK-hk.mft (raw, json) Hash identifier: pegbE/uH2jLF/8EhWNobvHRrcf+lQx5GW/LNSTmhf+k= Subject key identifier: 81:23:E9:C0:06:12:10:69:63:AC:CC:7E:8D:DD:21:7C:FA:6D:09:FE Authority key identifier: A4:EA:66:0D:DB:61:00:E7:D3:2E:5D:36:68:9A:77:7C:A9:CA:FA:19 Certificate issuer: /CN=a4ea660ddb6100e7d32e5d36689a777ca9cafa19 Certificate serial: 019BF5E391AEBDFAB58CF4457BD9EDC0C2E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOpmDdthAOfTLl02aJp3fKnK-hk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft Manifest number: 015E Signing time: Sun 25 Jan 2026 16:01:30 +0000 Manifest this update: Sun 25 Jan 2026 16:01:30 +0000 Manifest next update: Mon 26 Jan 2026 16:01:30 +0000 Files and hashes: 1: Kuamlf0SJKI-PWFPoz3C6in1jGI.roa (hash: W1juLnVZXFxvmAjMn2DB1U04vvF55AkBRyl1Tp1+qak=) 2: W4rXs973I72wlBGGxrG6cyihd0g.roa (hash: PEZb6rsbaDfrboLCp/JrfG/sBCA684zKkgy1FgXQxTo=) 3: pOpmDdthAOfTLl02aJp3fKnK-hk.crl (hash: MRp4DtF852Mf593qJgIj2qGuloW3Qal2bJe5nqyKQ54=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.crl rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft rsync://rpki.ripe.net/repository/DEFAULT/pOpmDdthAOfTLl02aJp3fKnK-hk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e3:91:ae:bd:fa:b5:8c:f4:45:7b:d9:ed:c0:c2:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4ea660ddb6100e7d32e5d36689a777ca9cafa19 Validity Not Before: Jan 25 16:01:30 2026 GMT Not After : Jan 26 16:01:30 2026 GMT Subject: CN=8123e9c00612106963accc7e8ddd217cfa6d09fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a0:ab:48:9c:d5:92:20:82:9b:4d:a9:8d:9e: 39:ec:bb:3a:57:3f:79:43:7a:8d:b2:06:97:e1:a0: 62:e2:47:3f:9a:7c:dc:0e:02:33:2f:06:4a:98:10: 03:9d:a9:97:80:f3:54:ba:f8:b6:9a:d0:fe:a8:52: fd:18:23:ed:97:4e:5d:7a:5e:d8:ad:e5:22:63:39: a5:35:89:79:79:7c:30:34:14:d2:f3:3a:9c:0b:c1: c2:7f:5d:df:b7:b0:9a:cd:e0:52:1d:90:cb:44:b5: d5:f9:60:bf:2b:6d:e7:53:03:a5:8b:be:2d:76:4a: 5d:bd:5d:95:78:28:af:ac:7f:6f:d7:15:34:5b:bc: af:14:06:05:7d:08:d0:80:11:de:a0:b4:24:7a:59: 82:ff:1f:97:bf:6b:90:4f:08:f2:cb:0b:98:af:96: 7b:1c:79:da:8e:4f:05:4c:c0:8b:b8:10:73:4f:4c: f1:73:80:c0:cc:ee:57:3e:53:1a:03:77:9b:e7:5a: 03:c4:20:a2:91:ab:35:29:14:52:47:90:f5:f9:08: 64:70:b6:2b:20:b8:f0:51:da:5e:d5:ab:3b:08:92: 87:15:b9:6a:ae:12:3b:da:ec:a7:12:1c:29:46:9c: e1:8d:23:b4:a5:97:fe:44:e3:e1:50:b1:89:33:7a: 02:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:23:E9:C0:06:12:10:69:63:AC:CC:7E:8D:DD:21:7C:FA:6D:09:FE X509v3 Authority Key Identifier: keyid:A4:EA:66:0D:DB:61:00:E7:D3:2E:5D:36:68:9A:77:7C:A9:CA:FA:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOpmDdthAOfTLl02aJp3fKnK-hk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:e8:ab:29:22:75:7f:4d:f5:ac:c0:d7:a2:18:8b:61:5d:c8: 01:70:ab:85:80:ca:7c:96:73:38:43:7f:cb:7f:79:3c:8f:f5: 42:68:2b:6e:d3:a2:3c:af:a7:ae:bb:22:60:ce:20:eb:d1:3a: db:c1:96:16:49:fb:77:b8:9c:83:78:e3:d0:b8:ae:30:92:2c: 13:aa:6a:3a:72:55:f7:54:ef:50:34:8b:44:fe:eb:e1:ad:31: 07:25:aa:85:4f:94:13:df:04:ce:3c:88:b8:09:dc:8d:e3:14: f3:51:5b:98:c4:df:04:98:d8:0a:3f:0b:8d:c7:c8:05:f3:cc: 03:cd:e9:c8:3d:73:0a:fe:01:21:55:7b:96:9e:92:95:f5:19: 2d:3a:0f:1a:f2:62:e7:5d:e4:7e:e7:30:c3:ab:bf:33:8d:f1: 65:0c:09:ca:1b:75:07:d8:00:ab:47:f9:3c:1f:be:91:6e:b6: 8f:0f:32:4a:93:a7:d4:ab:a4:b6:69:b8:c0:ef:e7:ae:2a:7c: 43:55:2b:07:35:0e:27:b9:6a:b9:69:12:20:51:17:e1:4e:20: 92:52:7d:51:44:79:90:20:5c:6e:3a:3b:f5:7d:c9:37:35:65: 2c:68:ab:17:8b:e4:2a:c3:ab:de:e0:52:1d:d7:ac:3b:09:0a: 5b:2b:dc:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv145Guvfq1jPRFe9ntwMLgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0ZWE2NjBkZGI2MTAwZTdkMzJlNWQzNjY4OWE3NzdjYTlj YWZhMTkwHhcNMjYwMTI1MTYwMTMwWhcNMjYwMTI2MTYwMTMwWjAzMTEwLwYDVQQD Eyg4MTIzZTljMDA2MTIxMDY5NjNhY2NjN2U4ZGRkMjE3Y2ZhNmQwOWZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6CrSJzVkiCCm02pjZ457Ls6Vz95 Q3qNsgaX4aBi4kc/mnzcDgIzLwZKmBADnamXgPNUuvi2mtD+qFL9GCPtl05del7Y reUiYzmlNYl5eXwwNBTS8zqcC8HCf13ft7CazeBSHZDLRLXV+WC/K23nUwOli74t dkpdvV2VeCivrH9v1xU0W7yvFAYFfQjQgBHeoLQkelmC/x+Xv2uQTwjyywuYr5Z7 HHnajk8FTMCLuBBzT0zxc4DAzO5XPlMaA3eb51oDxCCikas1KRRSR5D1+QhkcLYr ILjwUdpe1as7CJKHFblqrhI72uynEhwpRpzhjSO0pZf+ROPhULGJM3oCyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIEj6cAGEhBpY6zMfo3dIXz6bQn+MB8GA1UdIwQY MBaAFKTqZg3bYQDn0y5dNmiad3ypyvoZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcE9wbURkdGhBT2ZUTGwwMmFKcDNmS25LLWhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9lMjBhYTAtMzM4ZS00ZjMzLTg2ZWEt NmY2MjJmZDE4ZDMwLzEvcE9wbURkdGhBT2ZUTGwwMmFKcDNmS25LLWhrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9lMjBhYTAtMzM4ZS00ZjMzLTg2ZWEtNmY2MjJmZDE4ZDMw LzEvcE9wbURkdGhBT2ZUTGwwMmFKcDNmS25LLWhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT+irKSJ1 f031rMDXohiLYV3IAXCrhYDKfJZzOEN/y395PI/1QmgrbtOiPK+nrrsiYM4g69E6 28GWFkn7d7icg3jj0LiuMJIsE6pqOnJV91TvUDSLRP7r4a0xByWqhU+UE98EzjyI uAncjeMU81FbmMTfBJjYCj8LjcfIBfPMA83pyD1zCv4BIVV7lp6SlfUZLToPGvJi 513kfucww6u/M43xZQwJyht1B9gAq0f5PB++kW62jw8ySpOn1Kuktmm4wO/nrip8 Q1UrBzUOJ7lquWkSIFEX4U4gklJ9UUR5kCBcbjo79X3JNzVlLGirF4vkKsOr3uBS HdesOwkKWyvc5g== -----END CERTIFICATE-----Generated at Sun Jan 25 19:06:19 2026 by rpki-client