This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json) Hash identifier: 2OlZTLpBUZH8AcWh14i+6nSN+dK882IUnzMC0fOLILQ= Subject key identifier: 12:32:05:CF:B3:9A:B3:08:BF:F6:23:6D:B9:1B:AE:CA:45:E3:21:75 Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4 Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4 Certificate serial: 019BF688409D7B649D96C4C95CAE113A3430 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft Manifest number: 02EE Signing time: Sun 25 Jan 2026 19:01:23 +0000 Manifest this update: Sun 25 Jan 2026 19:01:23 +0000 Manifest next update: Mon 26 Jan 2026 19:01:23 +0000 Files and hashes: 1: K8tuEs9t8pmrSDJuwwdt6IYJIik.roa (hash: ZshbzN4NQcUPnRU5jRSR+ix2vC7IlJPNo8C+FrStXqM=) 2: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: qUGQFWn22FzjSJP3ePfKdzB6etHoKbOSXZcMEYVg/8g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:88:40:9d:7b:64:9d:96:c4:c9:5c:ae:11:3a:34:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4 Validity Not Before: Jan 25 19:01:23 2026 GMT Not After : Jan 26 19:01:23 2026 GMT Subject: CN=123205cfb39ab308bff6236db91baeca45e32175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:1a:bc:74:d0:b1:53:79:35:ff:17:7c:4a:5c: 01:67:01:93:74:d0:12:be:83:8c:4b:fa:27:7b:74: a9:eb:13:a1:94:7b:5b:af:4c:f5:ce:6f:05:90:2d: f4:d8:13:dd:d3:0b:d0:e5:ba:7d:d5:ea:63:12:73: cd:ec:b5:cc:f2:e9:55:d8:e0:06:49:af:b9:2e:4a: 63:ae:8b:48:05:95:44:b8:f8:02:5c:c9:8e:5e:04: 1a:6c:9f:0d:62:46:08:89:4a:01:ea:f8:74:d4:1b: 30:a6:a2:e3:e8:81:5f:8e:bc:be:20:2a:f7:bd:66: f3:b5:80:04:a2:cf:85:c0:6f:4f:19:1a:55:b1:92: 96:08:d0:30:9b:f9:4e:f3:30:62:b7:95:a0:5b:2a: 8b:cb:e2:76:f6:36:2d:d5:2c:b2:55:db:3f:9a:7d: 2e:79:6f:5e:c1:8e:d2:13:3c:55:eb:5b:27:cd:e7: b0:e9:06:e0:da:4b:f8:72:c5:ee:c6:3b:d0:8b:c4: ab:ae:68:16:b9:72:36:c7:1d:f4:fe:74:cb:5c:b5: 89:00:75:f9:d5:5e:39:d5:d8:cf:82:98:a7:83:af: 3b:fb:50:9b:3e:f9:19:49:fb:6e:ee:97:f1:c4:c1: 17:13:0e:47:9f:99:da:85:2e:f6:c2:e3:df:ea:4b: f8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:32:05:CF:B3:9A:B3:08:BF:F6:23:6D:B9:1B:AE:CA:45:E3:21:75 X509v3 Authority Key Identifier: keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:08:fd:bc:49:13:64:3c:82:31:3c:49:57:4e:16:42:5f:1e: 7e:e7:2a:7e:bd:37:da:27:81:0a:76:a3:b1:8e:63:03:09:6d: 04:46:b0:aa:e4:55:f1:c1:22:23:e9:f5:a9:d6:2f:a1:52:01: 48:2f:92:ee:77:bc:ca:8c:66:98:40:0a:35:f7:a6:75:bb:04: f6:c8:98:3c:79:d0:95:6f:6d:37:ee:42:16:1f:74:d4:ce:de: d9:3a:3d:d4:9d:fb:66:13:0a:74:25:7d:c6:33:b3:c9:23:0b: 2b:9d:12:2e:16:23:7c:a4:89:c7:0c:02:81:8d:f4:b9:d2:b6: a2:4e:cc:23:b8:fc:e9:64:10:a4:29:7a:26:9c:73:c9:a8:6c: f2:3a:ba:1c:e4:a2:06:b4:95:1a:5a:d5:47:79:60:d9:20:5b: 6c:41:7d:3e:1a:f9:2d:49:db:b4:8c:0c:20:63:4e:6a:fa:4c: c2:e3:2d:57:3a:d1:44:04:07:e6:eb:d1:6f:20:f7:e2:e5:ec: f7:02:53:06:70:d8:4b:d6:45:5c:2d:9a:be:ac:59:83:a8:cb: 5d:08:13:a4:e5:d2:ab:5f:58:34:55:0d:93:bb:18:61:75:c5: fa:08:80:95:f3:93:93:8a:e4:c8:1f:b5:dd:13:2b:ca:92:00: 28:e2:24:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2iECde2SdlsTJXK4ROjQwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4NjZmNzM4NTAwNWQ1YmU2MTAxNzI3Mzg4ZTFiMzI3MWY2 NDRkZTQwHhcNMjYwMTI1MTkwMTIzWhcNMjYwMTI2MTkwMTIzWjAzMTEwLwYDVQQD EygxMjMyMDVjZmIzOWFiMzA4YmZmNjIzNmRiOTFiYWVjYTQ1ZTMyMTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmBq8dNCxU3k1/xd8SlwBZwGTdNAS voOMS/one3Sp6xOhlHtbr0z1zm8FkC302BPd0wvQ5bp91epjEnPN7LXM8ulV2OAG Sa+5LkpjrotIBZVEuPgCXMmOXgQabJ8NYkYIiUoB6vh01BswpqLj6IFfjry+ICr3 vWbztYAEos+FwG9PGRpVsZKWCNAwm/lO8zBit5WgWyqLy+J29jYt1SyyVds/mn0u eW9ewY7SEzxV61snzeew6Qbg2kv4csXuxjvQi8SrrmgWuXI2xx30/nTLXLWJAHX5 1V451djPgping687+1CbPvkZSftu7pfxxMEXEw5Hn5nahS72wuPf6kv4RwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBIyBc+zmrMIv/YjbbkbrspF4yF1MB8GA1UdIwQY MBaAFDhm9zhQBdW+YQFyc4jhsycfZE3kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9iMDYxOTctNjhkMi00MjllLWFjZTUt ZTAxNWJmM2YzM2Q3LzEvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My9iMDYxOTctNjhkMi00MjllLWFjZTUtZTAxNWJmM2YzM2Q3 LzEvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhAj9vEkT ZDyCMTxJV04WQl8efucqfr032ieBCnajsY5jAwltBEawquRV8cEiI+n1qdYvoVIB SC+S7ne8yoxmmEAKNfemdbsE9siYPHnQlW9tN+5CFh901M7e2To91J37ZhMKdCV9 xjOzySMLK50SLhYjfKSJxwwCgY30udK2ok7MI7j86WQQpCl6Jpxzyahs8jq6HOSi BrSVGlrVR3lg2SBbbEF9Phr5LUnbtIwMIGNOavpMwuMtVzrRRAQH5uvRbyD34uXs 9wJTBnDYS9ZFXC2avqxZg6jLXQgTpOXSq19YNFUNk7sYYXXF+giAlfOTk4rkyB+1 3RMrypIAKOIk4A== -----END CERTIFICATE-----Generated at Mon Jan 26 04:00:34 2026 by rpki-client