This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft File: O2BOwM_ulmxBmzptXwgrVjwYaL0.mft (raw, json) Hash identifier: +xs3+MAkyBBBFUvrl6HuFi+skKUg9SJLAOwkXsi0PBk= Subject key identifier: C2:A5:BC:EA:27:26:40:42:8D:AB:4C:00:5A:85:24:00:82:C7:6A:36 Authority key identifier: 3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD Certificate issuer: /CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd Certificate serial: 019BF4D089CEA63B3759A93CC67774335287 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft Manifest number: 0B95 Signing time: Sun 25 Jan 2026 11:01:06 +0000 Manifest this update: Sun 25 Jan 2026 11:01:06 +0000 Manifest next update: Mon 26 Jan 2026 11:01:06 +0000 Files and hashes: 1: IQ3VIn1iC9RO_pLlQOak5neUqZY.roa (hash: IKGnOs4cAOZb712YaFJ/S+RpUStTEJE1H/K5bUrnGZo=) 2: O2BOwM_ulmxBmzptXwgrVjwYaL0.crl (hash: 5oJ+auhMIx84ZLpI+YIS3WKu49x12eN9ygparJ3SLdU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:89:ce:a6:3b:37:59:a9:3c:c6:77:74:33:52:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd Validity Not Before: Jan 25 11:01:06 2026 GMT Not After : Jan 26 11:01:06 2026 GMT Subject: CN=c2a5bcea272640428dab4c005a85240082c76a36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:80:a1:ec:cc:c4:76:22:23:c8:7b:15:4d:da: c2:b4:c4:af:cb:17:7f:54:ed:6b:75:51:f6:ae:a5: f3:a8:2b:26:db:df:38:43:c8:ab:6c:e0:30:ee:30: e2:6c:b5:e3:5b:9b:c2:ca:81:ca:fa:68:f1:82:b1: 4a:54:7a:d3:e0:ea:67:62:31:5d:1d:6d:21:f9:38: 8e:c7:9c:43:12:5e:2b:6c:68:ad:4f:bb:5c:e7:c7: d1:08:3c:88:7e:d0:67:42:f6:70:ec:15:96:b0:88: c0:eb:2b:b1:a7:1f:c1:1f:41:b6:41:89:dc:33:17: f6:55:56:e8:4a:0a:a6:39:3d:38:c2:e0:02:a5:51: d9:52:f3:da:67:2c:19:98:74:f8:f0:cb:ae:05:d3: b8:cb:2f:39:a5:95:44:b5:40:9a:16:fa:be:83:49: a4:33:d7:40:19:b7:0d:01:6d:e9:59:cd:45:93:1f: 2c:51:e0:fa:b2:7b:e1:ea:49:77:d0:c5:15:ba:28: 30:9a:07:14:65:eb:20:31:b1:f5:41:f2:fb:64:48: 49:45:30:d1:77:fd:aa:1f:69:70:53:4a:15:98:7c: 52:45:1c:96:61:17:45:64:a6:70:3f:96:66:e3:65: 85:39:85:67:c0:e9:1f:57:d6:5a:db:d0:93:bd:12: 13:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A5:BC:EA:27:26:40:42:8D:AB:4C:00:5A:85:24:00:82:C7:6A:36 X509v3 Authority Key Identifier: keyid:3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:58:9b:a6:0c:db:ae:d0:96:95:2f:2a:39:5c:e3:72:a1:f4: 18:cd:6d:c6:cc:6d:b1:0a:6e:52:1c:91:7e:85:9e:2f:08:9c: af:27:54:68:08:ab:42:5e:75:af:1d:72:e1:b5:27:63:da:cc: 7f:76:87:e0:2c:04:fb:bb:fd:30:55:72:3c:7a:59:52:69:de: a4:15:a0:f0:85:cb:1f:85:e8:49:65:77:e9:06:6b:17:18:99: 76:84:e8:b7:9a:b0:f0:e6:06:76:fe:71:d8:00:e9:ec:14:96: fb:7d:94:a2:38:16:aa:8e:8b:0c:eb:2d:c9:fa:e8:10:ae:5d: 0a:0d:86:44:2a:bb:7c:b3:84:c7:cd:1c:ea:cf:b6:77:96:3e: 72:41:a1:87:ce:0f:05:f7:c1:fd:9e:77:9d:a3:39:01:21:ca: 5e:9c:84:2c:f3:34:7e:8d:44:9f:86:3e:0b:a3:cf:dd:8e:d1: 72:f1:1e:69:5e:f5:ae:0a:9c:d4:6c:a1:a3:1a:de:97:9d:27: 23:e9:a4:37:95:2a:fe:f2:69:80:72:71:7d:7e:b8:9c:44:01: 64:34:a8:ba:32:d5:94:01:b7:8e:06:d0:a8:fc:22:e9:47:04: 7c:4c:d0:28:84:96:cc:a7:6c:16:c3:28:40:ea:7f:25:3f:30: f5:ae:7a:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00InOpjs3Wak8xnd0M1KHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiNjA0ZWMwY2ZlZTk2NmM0MTliM2E2ZDVmMDgyYjU2M2Mx ODY4YmQwHhcNMjYwMTI1MTEwMTA2WhcNMjYwMTI2MTEwMTA2WjAzMTEwLwYDVQQD EyhjMmE1YmNlYTI3MjY0MDQyOGRhYjRjMDA1YTg1MjQwMDgyYzc2YTM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnYCh7MzEdiIjyHsVTdrCtMSvyxd/ VO1rdVH2rqXzqCsm2984Q8irbOAw7jDibLXjW5vCyoHK+mjxgrFKVHrT4OpnYjFd HW0h+TiOx5xDEl4rbGitT7tc58fRCDyIftBnQvZw7BWWsIjA6yuxpx/BH0G2QYnc Mxf2VVboSgqmOT04wuACpVHZUvPaZywZmHT48MuuBdO4yy85pZVEtUCaFvq+g0mk M9dAGbcNAW3pWc1Fkx8sUeD6snvh6kl30MUVuigwmgcUZesgMbH1QfL7ZEhJRTDR d/2qH2lwU0oVmHxSRRyWYRdFZKZwP5Zm42WFOYVnwOkfV9Za29CTvRITZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMKlvOonJkBCjatMAFqFJACCx2o2MB8GA1UdIwQY MBaAFDtgTsDP7pZsQZs6bV8IK1Y8GGi9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzJCT3dNX3VsbXhCbXpwdFh3Z3JWandZYUwwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8zZjVlYTQtMTg2OC00YTBiLTkyMTgt ODdlOWYyMWI0MThiLzEvTzJCT3dNX3VsbXhCbXpwdFh3Z3JWandZYUwwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS8zZjVlYTQtMTg2OC00YTBiLTkyMTgtODdlOWYyMWI0MThi LzEvTzJCT3dNX3VsbXhCbXpwdFh3Z3JWandZYUwwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY1ibpgzb rtCWlS8qOVzjcqH0GM1txsxtsQpuUhyRfoWeLwicrydUaAirQl51rx1y4bUnY9rM f3aH4CwE+7v9MFVyPHpZUmnepBWg8IXLH4XoSWV36QZrFxiZdoTot5qw8OYGdv5x 2ADp7BSW+32UojgWqo6LDOstyfroEK5dCg2GRCq7fLOEx80c6s+2d5Y+ckGhh84P BffB/Z53naM5ASHKXpyELPM0fo1En4Y+C6PP3Y7RcvEeaV71rgqc1Gyhoxrel50n I+mkN5Uq/vJpgHJxfX64nEQBZDSoujLVlAG3jgbQqPwi6UcEfEzQKISWzKdsFsMo QOp/JT8w9a56HQ== -----END CERTIFICATE-----Generated at Sun Jan 25 17:44:15 2026 by rpki-client