This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft File: oYanahiZ2_kCnhrv2QUXe7CdNo0.mft (raw, json) Hash identifier: Z1QvajTQPcXThECm1S5rPCP4YC9Rxq9McixcC3hyaeU= Subject key identifier: 84:E0:33:A3:C0:94:68:6E:55:08:16:4B:B7:17:06:C3:C6:80:3A:5C Authority key identifier: A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D Certificate issuer: /CN=a186a76a1899dbf9029e1aefd905177bb09d368d Certificate serial: 019BF72D0204F4651D16EB539781880164D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft Manifest number: 0C7A Signing time: Sun 25 Jan 2026 22:01:20 +0000 Manifest this update: Sun 25 Jan 2026 22:01:20 +0000 Manifest next update: Mon 26 Jan 2026 22:01:20 +0000 Files and hashes: 1: NN02RYdDSld5Y_Gaa2L7Y6KMwlg.roa (hash: kmXA/OCGhyiId8hIHYYzQ+3ut/BaLBRzEWv/qUUmjqo=) 2: oYanahiZ2_kCnhrv2QUXe7CdNo0.crl (hash: g9WU2FIWvU3sGzVNXQugxDVWWIAU9gCMr/OFnOu2hqI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:02:04:f4:65:1d:16:eb:53:97:81:88:01:64:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a186a76a1899dbf9029e1aefd905177bb09d368d Validity Not Before: Jan 25 22:01:20 2026 GMT Not After : Jan 26 22:01:20 2026 GMT Subject: CN=84e033a3c094686e5508164bb71706c3c6803a5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:82:ce:dd:d3:85:28:4a:a6:2c:09:0f:40:77: 73:1a:60:49:df:b2:85:2d:57:5a:57:9e:18:58:9c: dc:f3:7f:38:2d:67:ee:ac:19:d8:40:68:92:d6:bf: e2:17:7c:85:2e:d2:c4:93:99:b3:b2:f7:dd:d3:74: 65:f7:e5:c1:7b:d0:bf:62:3f:69:fe:c7:21:82:26: 57:53:dd:53:0b:85:5f:18:e5:84:16:0c:2c:17:8c: e5:26:d6:40:b2:ef:40:4e:4e:a6:82:ec:c7:80:ba: e5:f2:e8:b0:a7:27:82:97:c6:ac:f4:a5:7e:e5:9c: 53:4c:10:32:d4:28:c1:de:7e:3e:60:2c:2b:96:05: 6a:c9:26:1a:d0:93:da:80:de:2c:f9:80:94:9d:1e: f9:a1:4a:f6:05:a9:64:db:b2:ba:ea:e7:74:2c:02: 09:c3:f7:c5:c8:52:5e:3b:50:3a:6c:19:6f:14:b1: 21:a6:7a:24:5b:fb:38:81:75:77:5b:21:e3:ef:e6: 2f:16:32:55:7c:66:d9:ed:12:50:91:c0:1f:aa:36: ed:a7:e1:f7:00:34:3f:e7:2b:9f:21:7e:11:fd:f8: e3:2b:50:e1:e6:23:fc:86:dc:6f:ab:db:26:b6:31: 78:70:1f:5f:40:3a:73:82:94:bf:64:c6:7e:d9:4e: 25:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:E0:33:A3:C0:94:68:6E:55:08:16:4B:B7:17:06:C3:C6:80:3A:5C X509v3 Authority Key Identifier: keyid:A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:64:8c:4b:b3:b0:c9:e2:76:ec:3b:ad:d1:24:d2:6c:d6:54: 18:29:a8:eb:99:c9:d3:70:35:a4:84:00:ea:f5:46:ec:10:fc: 72:39:d1:06:85:7e:44:e4:2d:96:ba:f0:f7:7e:c4:d3:7e:1a: 9c:c1:01:8c:62:b3:83:6f:05:c8:af:70:2d:68:93:0b:9a:69: 99:4e:38:56:e5:14:63:de:c7:ce:71:72:f2:4f:5a:13:1c:c4: 36:3f:e5:ca:02:a4:78:b3:ed:28:93:a0:84:40:14:be:b7:32: 27:b1:67:90:62:20:1e:48:49:04:8b:ea:b1:b4:38:1b:1f:d5: f8:a4:3f:75:73:d2:ea:82:bc:44:a9:72:ad:9b:57:0c:51:31: e0:7c:f9:78:a5:d5:66:1f:a3:06:9d:c3:b7:fa:7a:c6:1b:b6: 88:0f:eb:6f:75:13:9f:d1:2a:16:99:ed:35:a6:ad:e4:6c:c1: 13:44:de:db:e6:a6:ed:9a:f2:63:ee:9c:41:df:06:e4:21:d0: be:ad:d7:54:93:0d:c3:1c:4c:3f:2e:d2:3e:83:0c:7f:d9:2b: 55:40:f0:43:c3:87:95:57:a8:db:63:2f:d2:0c:48:ab:e7:d8: 00:81:27:9d:15:d2:93:ef:cd:5c:75:81:ce:81:5a:ad:8c:1d: be:89:d2:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LQIE9GUdFutTl4GIAWTUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExODZhNzZhMTg5OWRiZjkwMjllMWFlZmQ5MDUxNzdiYjA5 ZDM2OGQwHhcNMjYwMTI1MjIwMTIwWhcNMjYwMTI2MjIwMTIwWjAzMTEwLwYDVQQD Eyg4NGUwMzNhM2MwOTQ2ODZlNTUwODE2NGJiNzE3MDZjM2M2ODAzYTVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9oLO3dOFKEqmLAkPQHdzGmBJ37KF LVdaV54YWJzc8384LWfurBnYQGiS1r/iF3yFLtLEk5mzsvfd03Rl9+XBe9C/Yj9p /schgiZXU91TC4VfGOWEFgwsF4zlJtZAsu9ATk6mguzHgLrl8uiwpyeCl8as9KV+ 5ZxTTBAy1CjB3n4+YCwrlgVqySYa0JPagN4s+YCUnR75oUr2Balk27K66ud0LAIJ w/fFyFJeO1A6bBlvFLEhpnokW/s4gXV3WyHj7+YvFjJVfGbZ7RJQkcAfqjbtp+H3 ADQ/5yufIX4R/fjjK1Dh5iP8htxvq9smtjF4cB9fQDpzgpS/ZMZ+2U4ljwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFITgM6PAlGhuVQgWS7cXBsPGgDpcMB8GA1UdIwQY MBaAFKGGp2oYmdv5Ap4a79kFF3uwnTaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEt MzEyZTViNDkxMTQ2LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEtMzEyZTViNDkxMTQ2 LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOGSMS7Ow yeJ27Dut0STSbNZUGCmo65nJ03A1pIQA6vVG7BD8cjnRBoV+ROQtlrrw937E034a nMEBjGKzg28FyK9wLWiTC5ppmU44VuUUY97HznFy8k9aExzENj/lygKkeLPtKJOg hEAUvrcyJ7FnkGIgHkhJBIvqsbQ4Gx/V+KQ/dXPS6oK8RKlyrZtXDFEx4Hz5eKXV Zh+jBp3Dt/p6xhu2iA/rb3UTn9EqFpntNaat5GzBE0Te2+am7ZryY+6cQd8G5CHQ vq3XVJMNwxxMPy7SPoMMf9krVUDwQ8OHlVeo22Mv0gxIq+fYAIEnnRXSk+/NXHWB zoFarYwdvonSww== -----END CERTIFICATE-----Generated at Mon Jan 26 05:08:55 2026 by rpki-client