This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft File: O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft (raw, json) Hash identifier: RH4OicRi461LJefCzEOFe2g5JLd3X4C3LyQBnxEI6uU= Subject key identifier: 8E:5B:2E:79:51:07:7B:E4:8B:3E:6D:7A:5F:71:A0:DF:06:08:39:2A Authority key identifier: 3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34 Certificate issuer: /CN=3b80edd425050865eafba8089db9da3f3519b334 Certificate serial: 019BF688251F25E7F7EF8EADCEB53A5F8818 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft Manifest number: 0C78 Signing time: Sun 25 Jan 2026 19:01:16 +0000 Manifest this update: Sun 25 Jan 2026 19:01:16 +0000 Manifest next update: Mon 26 Jan 2026 19:01:16 +0000 Files and hashes: 1: NAWLn2JmIDnFs18yJqr1oS3wGGI.roa (hash: U8Bdx9Br8Djn05pZrQuUuhdCEFzcfGoUftoSy+juomM=) 2: O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl (hash: y59V3Zw1y7dZQbFTpEM0IKm8+LJqxk1T96aoUjkIpGI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:88:25:1f:25:e7:f7:ef:8e:ad:ce:b5:3a:5f:88:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b80edd425050865eafba8089db9da3f3519b334 Validity Not Before: Jan 25 19:01:16 2026 GMT Not After : Jan 26 19:01:16 2026 GMT Subject: CN=8e5b2e7951077be48b3e6d7a5f71a0df0608392a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:47:a7:99:fb:9f:11:82:e3:96:88:48:83:fe: 5f:75:c2:02:52:d7:2e:6d:a2:1f:06:67:d3:9f:db: f2:40:07:ed:1e:b4:53:60:c6:ed:f3:9d:53:33:56: 87:e9:09:9a:34:87:66:bb:e1:8e:11:96:c0:c3:a4: 8a:ef:da:b1:0e:8a:69:60:a9:dc:98:15:a2:87:90: 4d:65:fa:8a:d8:db:b1:da:3e:e0:d0:97:a6:26:81: 4c:75:54:fd:55:10:57:de:db:34:3c:e7:df:27:58: 62:86:c4:3e:78:05:cb:b5:38:06:72:0c:41:4b:da: 79:64:35:ef:c5:9c:e0:2e:91:9a:54:0e:06:db:81: b2:59:3e:4c:94:dd:c9:7a:38:95:d7:91:d8:e2:81: 13:39:9f:c6:23:39:66:fb:6f:07:b5:e7:09:dd:64: 1c:bb:b8:4f:64:c0:25:27:5c:32:50:4c:05:1b:57: 9c:67:42:70:c1:ba:3e:d9:e9:94:ac:bd:e5:aa:a4: 11:54:50:dc:f1:2b:f5:f9:9d:2e:88:52:15:f8:04: 94:5a:21:3b:ff:f3:63:60:ee:7b:f2:ea:07:32:4f: 20:9a:3e:72:fb:47:ff:51:57:ee:f4:f5:e7:22:e2: f4:2a:ef:95:c4:1d:ae:2a:b4:ee:dd:b8:15:c2:7f: dd:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:5B:2E:79:51:07:7B:E4:8B:3E:6D:7A:5F:71:A0:DF:06:08:39:2A X509v3 Authority Key Identifier: keyid:3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:e3:35:71:5d:b3:05:66:d5:e4:c8:a6:46:b2:5a:62:bd:fe: d7:20:7e:64:60:6f:a7:4e:54:9c:75:f1:89:8a:b0:db:de:9f: 9a:0c:dd:2a:23:3e:68:98:1d:ec:0c:79:67:f1:5d:5e:e5:41: a9:bc:74:f8:28:09:3c:96:d7:d2:00:8b:64:6b:92:51:46:69: 02:14:e4:85:fe:8d:95:4c:8c:84:c9:d2:b7:fd:0c:ed:59:cb: a8:20:d4:20:28:d4:36:95:a7:1e:ff:d1:70:b6:c5:60:f2:f8: dc:17:38:94:b2:05:94:d9:e4:cb:6a:f1:91:ff:cd:23:63:25: a1:a1:3f:3d:ac:bb:a3:43:ac:c9:f0:ab:e0:16:2b:60:97:a6: cb:3e:97:75:f4:6f:a6:b4:e1:f3:1d:6d:ec:fb:2a:88:a4:d4: 6b:9e:6e:a4:79:0f:a5:3a:7b:5b:fa:b0:d9:15:7e:de:b8:45: 6e:0d:0b:57:60:0b:cb:ca:d8:60:ee:56:c0:a9:46:32:a3:8b: a4:14:81:92:d4:7b:bd:e3:d0:32:9e:18:d8:01:36:e7:08:ce: 90:97:78:e1:a7:4a:f9:84:44:6a:2b:54:89:6f:fa:9f:ca:25: 58:82:20:49:70:7f:aa:36:22:34:25:51:7d:d8:b6:e4:ac:59: 19:b0:00:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2iCUfJef3746tzrU6X4gYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiODBlZGQ0MjUwNTA4NjVlYWZiYTgwODlkYjlkYTNmMzUx OWIzMzQwHhcNMjYwMTI1MTkwMTE2WhcNMjYwMTI2MTkwMTE2WjAzMTEwLwYDVQQD Eyg4ZTViMmU3OTUxMDc3YmU0OGIzZTZkN2E1ZjcxYTBkZjA2MDgzOTJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlEenmfufEYLjlohIg/5fdcICUtcu baIfBmfTn9vyQAftHrRTYMbt851TM1aH6QmaNIdmu+GOEZbAw6SK79qxDoppYKnc mBWih5BNZfqK2Nux2j7g0JemJoFMdVT9VRBX3ts0POffJ1hihsQ+eAXLtTgGcgxB S9p5ZDXvxZzgLpGaVA4G24GyWT5MlN3JejiV15HY4oETOZ/GIzlm+28HtecJ3WQc u7hPZMAlJ1wyUEwFG1ecZ0Jwwbo+2emUrL3lqqQRVFDc8Sv1+Z0uiFIV+ASUWiE7 //NjYO578uoHMk8gmj5y+0f/UVfu9PXnIuL0Ku+VxB2uKrTu3bgVwn/d8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI5bLnlRB3vkiz5tel9xoN8GCDkqMB8GA1UdIwQY MBaAFDuA7dQlBQhl6vuoCJ252j81GbM0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzREdDFDVUZDR1hxLTZnSW5ibmFQelVac3pRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi83ZjEzYTktNzI4OS00ZTFlLWJiNDMt YzcxNjFkYzVjMDg3LzEvTzREdDFDVUZDR1hxLTZnSW5ibmFQelVac3pRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi83ZjEzYTktNzI4OS00ZTFlLWJiNDMtYzcxNjFkYzVjMDg3 LzEvTzREdDFDVUZDR1hxLTZnSW5ibmFQelVac3pRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj+M1cV2z BWbV5MimRrJaYr3+1yB+ZGBvp05UnHXxiYqw296fmgzdKiM+aJgd7Ax5Z/FdXuVB qbx0+CgJPJbX0gCLZGuSUUZpAhTkhf6NlUyMhMnSt/0M7VnLqCDUICjUNpWnHv/R cLbFYPL43Bc4lLIFlNnky2rxkf/NI2MloaE/Pay7o0OsyfCr4BYrYJemyz6XdfRv prTh8x1t7PsqiKTUa55upHkPpTp7W/qw2RV+3rhFbg0LV2ALy8rYYO5WwKlGMqOL pBSBktR7vePQMp4Y2AE25wjOkJd44adK+YREaitUiW/6n8olWIIgSXB/qjYiNCVR fdi25KxZGbAAYw== -----END CERTIFICATE-----Generated at Mon Jan 26 04:54:17 2026 by rpki-client