This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft File: jmOEMlhq5gL_Datn0JsZUVJOggU.mft (raw, json) Hash identifier: GkO4gxRUNp2oLxnR9TuZvrzdO6jS/virwEPdPbscBSw= Subject key identifier: E0:24:A3:3B:83:7F:09:1C:48:4B:A9:51:C1:24:76:A6:6B:80:43:35 Authority key identifier: 8E:63:84:32:58:6A:E6:02:FF:0D:AB:67:D0:9B:19:51:52:4E:82:05 Certificate issuer: /CN=8e638432586ae602ff0dab67d09b1951524e8205 Certificate serial: 019BF72CA5845B08E7D24563CA0B53FF1556 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmOEMlhq5gL_Datn0JsZUVJOggU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft Manifest number: 020C Signing time: Sun 25 Jan 2026 22:00:56 +0000 Manifest this update: Sun 25 Jan 2026 22:00:56 +0000 Manifest next update: Mon 26 Jan 2026 22:00:56 +0000 Files and hashes: 1: U6fyPIg5ovdf3i2qfPC2WuuXRmU.roa (hash: 51JfirD5ph0Mlaqz0ZFat9LDvr0NCB5fGDpKtCYppz0=) 2: jmOEMlhq5gL_Datn0JsZUVJOggU.crl (hash: QEVcCgat5pSJ9DGGHpIwip4LiaK6HT50HoTk+UaYhro=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.crl rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft rsync://rpki.ripe.net/repository/DEFAULT/jmOEMlhq5gL_Datn0JsZUVJOggU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2c:a5:84:5b:08:e7:d2:45:63:ca:0b:53:ff:15:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e638432586ae602ff0dab67d09b1951524e8205 Validity Not Before: Jan 25 22:00:56 2026 GMT Not After : Jan 26 22:00:56 2026 GMT Subject: CN=e024a33b837f091c484ba951c12476a66b804335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:61:34:47:42:2b:2b:8d:6e:25:e6:07:55:c8: c2:06:e2:cf:de:7d:4e:49:f7:4a:bc:80:5f:e0:32: 38:f2:00:2c:38:8c:f7:fd:d6:a5:a7:e7:2b:d7:e1: 9f:7d:6b:14:48:fd:2d:69:bc:67:2d:50:ba:aa:8d: d9:0b:c0:7f:ab:e6:32:ad:84:c9:93:91:0d:aa:db: 83:14:10:14:5f:d0:b4:d5:1b:cf:ce:f6:cb:95:d2: c1:a9:c8:f6:ab:b9:13:65:7b:40:1c:01:a2:93:62: d2:bc:56:7c:88:db:15:ae:cf:3d:c6:6b:c7:a1:8f: 8e:e7:27:a7:82:12:72:f8:dc:9f:14:ca:bf:8c:1e: 3b:b8:cb:db:50:2f:97:8a:f1:74:20:6f:df:8f:86: ce:a7:9e:03:6e:3e:dd:4a:92:3f:07:c7:b9:d2:4a: c4:e4:23:bf:28:d5:b3:20:60:27:a9:cb:af:cc:b1: ca:31:68:82:5f:b0:f7:2b:8c:ef:ec:90:44:e5:e8: db:03:bd:40:35:c9:55:ef:bc:10:43:a0:1f:bf:d5: 14:91:e8:ef:53:78:06:7e:3d:7e:6a:46:60:80:0b: c9:47:51:f6:6a:eb:46:91:fe:1b:1a:05:6e:dd:53: 70:ca:0e:15:62:df:a4:66:9e:53:5a:c5:56:97:3b: af:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:24:A3:3B:83:7F:09:1C:48:4B:A9:51:C1:24:76:A6:6B:80:43:35 X509v3 Authority Key Identifier: keyid:8E:63:84:32:58:6A:E6:02:FF:0D:AB:67:D0:9B:19:51:52:4E:82:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmOEMlhq5gL_Datn0JsZUVJOggU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:83:a6:d9:eb:fe:2c:bc:81:e9:c2:56:91:27:ca:2e:bf:c0: 8e:ae:40:99:82:25:c8:5e:ac:7f:03:60:27:fc:f5:79:c5:aa: 80:40:45:89:eb:37:45:64:8e:56:19:b1:a6:28:4e:19:30:61: 60:83:f8:7d:aa:48:69:e7:a6:86:f4:74:3f:4e:12:00:6f:49: d7:b5:55:59:c8:b6:38:ab:c7:4c:ce:44:d1:2b:18:56:36:82: bd:62:d5:e9:19:67:01:3c:c9:b6:29:bb:ee:7f:0b:0a:20:d0: 8e:ae:92:17:18:86:08:91:a4:b1:6f:11:1b:16:bf:f4:53:57: b9:1e:af:fe:86:75:61:b6:dd:45:3e:a0:83:e7:a6:39:ab:04: 84:19:75:b0:9c:1a:b1:1c:fc:d5:51:fd:cf:56:be:13:4d:8c: 05:e4:d4:c7:87:f2:74:03:51:20:4f:55:51:df:6b:f9:1a:c5: 0a:0b:4c:1e:5a:d9:94:67:7f:dd:48:a4:10:09:4b:1b:70:60: 91:46:ce:4a:ce:ce:2b:74:d3:fa:c9:07:f5:ec:bb:3e:bd:4b: 57:9c:c9:a9:ee:bf:71:d7:de:bc:d0:67:90:f6:e6:74:26:10: ab:79:b3:b4:6e:95:d5:1d:af:6c:12:d7:7a:81:82:23:30:7e: ac:3a:02:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LKWEWwjn0kVjygtT/xVWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlNjM4NDMyNTg2YWU2MDJmZjBkYWI2N2QwOWIxOTUxNTI0 ZTgyMDUwHhcNMjYwMTI1MjIwMDU2WhcNMjYwMTI2MjIwMDU2WjAzMTEwLwYDVQQD EyhlMDI0YTMzYjgzN2YwOTFjNDg0YmE5NTFjMTI0NzZhNjZiODA0MzM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWE0R0IrK41uJeYHVcjCBuLP3n1O SfdKvIBf4DI48gAsOIz3/dalp+cr1+GffWsUSP0tabxnLVC6qo3ZC8B/q+YyrYTJ k5ENqtuDFBAUX9C01RvPzvbLldLBqcj2q7kTZXtAHAGik2LSvFZ8iNsVrs89xmvH oY+O5yenghJy+NyfFMq/jB47uMvbUC+XivF0IG/fj4bOp54Dbj7dSpI/B8e50krE 5CO/KNWzIGAnqcuvzLHKMWiCX7D3K4zv7JBE5ejbA71ANclV77wQQ6Afv9UUkejv U3gGfj1+akZggAvJR1H2autGkf4bGgVu3VNwyg4VYt+kZp5TWsVWlzuv5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOAkozuDfwkcSEupUcEkdqZrgEM1MB8GA1UdIwQY MBaAFI5jhDJYauYC/w2rZ9CbGVFSToIFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvam1PRU1saHE1Z0xfRGF0bjBKc1pVVkpPZ2dVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8wM2M5OWQtOTNjNS00NTA4LWI1NGEt ZWQzOGM0N2ZiYWM2LzEvam1PRU1saHE1Z0xfRGF0bjBKc1pVVkpPZ2dVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC8wM2M5OWQtOTNjNS00NTA4LWI1NGEtZWQzOGM0N2ZiYWM2 LzEvam1PRU1saHE1Z0xfRGF0bjBKc1pVVkpPZ2dVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ4Om2ev+ LLyB6cJWkSfKLr/Ajq5AmYIlyF6sfwNgJ/z1ecWqgEBFies3RWSOVhmxpihOGTBh YIP4fapIaeemhvR0P04SAG9J17VVWci2OKvHTM5E0SsYVjaCvWLV6RlnATzJtim7 7n8LCiDQjq6SFxiGCJGksW8RGxa/9FNXuR6v/oZ1YbbdRT6gg+emOasEhBl1sJwa sRz81VH9z1a+E02MBeTUx4fydANRIE9VUd9r+RrFCgtMHlrZlGd/3UikEAlLG3Bg kUbOSs7OK3TT+skH9ey7Pr1LV5zJqe6/cdfevNBnkPbmdCYQq3mztG6V1R2vbBLX eoGCIzB+rDoCUQ== -----END CERTIFICATE-----Generated at Mon Jan 26 01:09:48 2026 by rpki-client