This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft File: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft (raw, json) Hash identifier: aLYmj66vkjz4XNCSpJqP0TZIrDo1Tkc39iJGMIf0SYI= Subject key identifier: 4C:F4:FB:9D:93:AB:69:E7:F1:1D:16:E8:8A:25:59:41:77:B9:5C:9A Authority key identifier: 38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2 Certificate issuer: /CN=38227a96fa64ad95240f0aee0bd374646c6bbee2 Certificate serial: 019BF808464DB703951019336B258A824749 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft Manifest number: 1367 Signing time: Mon 26 Jan 2026 02:00:50 +0000 Manifest this update: Mon 26 Jan 2026 02:00:50 +0000 Manifest next update: Tue 27 Jan 2026 02:00:50 +0000 Files and hashes: 1: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl (hash: pd7rnEqPIfRF1odnE+HP5TPEZjuswKFD5E2LrDhiZig=) 2: wHo6ZTM3-jzipse2lB9xc8s3uRA.roa (hash: 4oFkl4sS+vN5C2DeyY08mCPgjzjmSD8SNhBeGnmU75Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:08:46:4d:b7:03:95:10:19:33:6b:25:8a:82:47:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38227a96fa64ad95240f0aee0bd374646c6bbee2 Validity Not Before: Jan 26 02:00:50 2026 GMT Not After : Jan 27 02:00:50 2026 GMT Subject: CN=4cf4fb9d93ab69e7f11d16e88a25594177b95c9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:90:2e:05:ce:c9:a0:5d:cd:9f:0c:e7:87:0d: 16:7b:2a:7b:05:0a:49:bd:61:70:22:10:fb:80:9c: 73:db:07:6b:0e:82:ed:24:a2:ca:d8:a6:3a:0f:68: 83:90:95:c9:bc:93:1a:7a:e7:67:94:00:07:78:01: 5c:2b:74:77:a2:70:1a:09:02:93:db:8c:5a:86:f8: 30:c1:41:1c:08:98:83:2b:0e:a8:6e:c4:9b:77:80: ac:59:ac:07:36:5a:6f:f4:ff:ce:e4:70:ce:1a:3c: ca:1a:70:f0:c1:2c:64:4c:8b:ab:8c:33:53:06:d7: e6:db:91:cd:c5:d0:31:b2:ad:ae:13:da:a7:65:5c: 71:fd:f7:f1:7f:8e:4d:25:08:4a:96:8f:77:96:f0: 10:a4:72:55:d0:e0:81:3f:05:27:df:79:81:e7:66: 51:d8:f3:6c:54:77:d6:54:b5:6d:98:7f:62:b8:4e: a7:74:f3:4f:5e:fb:0b:da:50:32:0d:2c:5f:c0:5e: f4:2e:d5:07:d4:91:fc:0c:e5:eb:77:68:0a:81:b0: 5c:ae:30:6c:37:c9:96:bd:db:d5:51:c0:9e:5e:a8: 16:70:a7:9c:7f:bc:de:12:e9:8d:ea:b6:bf:d1:69: 74:45:ab:f1:e7:4c:19:36:df:e0:63:c2:19:ef:b5: ba:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:F4:FB:9D:93:AB:69:E7:F1:1D:16:E8:8A:25:59:41:77:B9:5C:9A X509v3 Authority Key Identifier: keyid:38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:d1:a0:b1:17:e8:71:45:37:32:82:d5:b4:af:f3:d2:d9:20: 74:08:de:ab:c8:ff:df:2e:27:ba:7d:44:c1:45:9f:47:5c:bf: c1:de:cb:28:5f:e6:4a:46:ee:d1:10:ef:25:18:17:3a:8c:82: 03:5b:56:71:d0:f0:cf:cc:d1:b0:95:5a:b2:27:85:a1:1a:54: f2:4f:e2:7e:42:d3:c4:ee:22:d1:5f:8d:9a:92:be:ac:b4:d8: c5:d3:3f:55:cf:e1:f3:73:4a:8d:08:bf:b7:bb:eb:a2:9a:c6: 7d:ac:e0:f4:4f:5b:59:d9:c4:53:40:c8:4a:63:fd:21:28:6a: 99:11:bb:67:0f:76:06:7b:5b:3a:c5:bb:17:86:61:b5:df:bf: 62:d2:c6:2a:65:c4:f3:ea:69:9d:0e:06:e6:2b:08:85:12:57: 69:85:a1:d0:f7:14:a2:76:8e:6d:e5:36:f5:a6:9d:99:61:05: 42:ea:d6:b0:0a:17:f1:68:fd:d1:66:a0:88:c6:45:c6:8d:d3: e1:cb:a3:0e:dd:4f:fa:54:c3:66:e0:57:91:d5:29:e9:08:73: 22:0b:35:a5:48:e4:47:ae:25:ae:b6:f7:95:41:d8:1d:d3:b3: ea:1e:de:e4:65:1f:6d:ed:e9:2b:12:26:06:01:4a:4d:c9:67: 25:3d:91:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4CEZNtwOVEBkzayWKgkdJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MjI3YTk2ZmE2NGFkOTUyNDBmMGFlZTBiZDM3NDY0NmM2 YmJlZTIwHhcNMjYwMTI2MDIwMDUwWhcNMjYwMTI3MDIwMDUwWjAzMTEwLwYDVQQD Eyg0Y2Y0ZmI5ZDkzYWI2OWU3ZjExZDE2ZTg4YTI1NTk0MTc3Yjk1YzlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmpAuBc7JoF3Nnwznhw0Weyp7BQpJ vWFwIhD7gJxz2wdrDoLtJKLK2KY6D2iDkJXJvJMaeudnlAAHeAFcK3R3onAaCQKT 24xahvgwwUEcCJiDKw6obsSbd4CsWawHNlpv9P/O5HDOGjzKGnDwwSxkTIurjDNT Btfm25HNxdAxsq2uE9qnZVxx/ffxf45NJQhKlo93lvAQpHJV0OCBPwUn33mB52ZR 2PNsVHfWVLVtmH9iuE6ndPNPXvsL2lAyDSxfwF70LtUH1JH8DOXrd2gKgbBcrjBs N8mWvdvVUcCeXqgWcKecf7zeEumN6ra/0Wl0Ravx50wZNt/gY8IZ77W6owIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEz0+52Tq2nn8R0W6IolWUF3uVyaMB8GA1UdIwQY MBaAFDgiepb6ZK2VJA8K7gvTdGRsa77iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8xY2Y5YWMtMTBkNC00YTVlLWE3MDYt ZDFjOWJhMDhmNTU5LzEvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC8xY2Y5YWMtMTBkNC00YTVlLWE3MDYtZDFjOWJhMDhmNTU5 LzEvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADtGgsRfo cUU3MoLVtK/z0tkgdAjeq8j/3y4nun1EwUWfR1y/wd7LKF/mSkbu0RDvJRgXOoyC A1tWcdDwz8zRsJVasieFoRpU8k/ifkLTxO4i0V+NmpK+rLTYxdM/Vc/h83NKjQi/ t7vroprGfazg9E9bWdnEU0DISmP9IShqmRG7Zw92BntbOsW7F4Zhtd+/YtLGKmXE 8+ppnQ4G5isIhRJXaYWh0PcUonaObeU29aadmWEFQurWsAoX8Wj90WagiMZFxo3T 4cujDt1P+lTDZuBXkdUp6QhzIgs1pUjkR64lrrb3lUHYHdOz6h7e5GUfbe3pKxIm BgFKTclnJT2RoA== -----END CERTIFICATE-----Generated at Mon Jan 26 10:52:44 2026 by rpki-client