This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft File: 2O6Q00LYZepn8rDS-3TAOfg-Skg.mft (raw, json) Hash identifier: vvAMjuT3ERXOiHAIUgJtFWUHZjPYxLwBdVNflJbXayU= Subject key identifier: 9A:B6:BF:6B:46:3A:CC:F4:2B:6D:6C:7E:26:BF:A1:B5:2A:A8:D9:16 Authority key identifier: D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48 Certificate issuer: /CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48 Certificate serial: 019BF3F499978EED7B788FDA05E8F87CC5B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft Manifest number: 050A Signing time: Sun 25 Jan 2026 07:00:52 +0000 Manifest this update: Sun 25 Jan 2026 07:00:52 +0000 Manifest next update: Mon 26 Jan 2026 07:00:52 +0000 Files and hashes: 1: 2O6Q00LYZepn8rDS-3TAOfg-Skg.crl (hash: GBTEO9KCRHFs4WX8TVLglnpigmFPMn1TEStCpXsa72I=) 2: OExalT86I2jE92WcpxOz8v2EM5M.roa (hash: 4ql4+dXrno2rRd9rLsGdlFCa1N0RlG63lEsTRJIQb8w=) 3: jkJ-dpXyGf9S_poPiFsD4kU6mb4.roa (hash: cQtWmc7dZO030WCUTKzMCSngnAwQZjveS+i9Nuw4lVc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:f4:99:97:8e:ed:7b:78:8f:da:05:e8:f8:7c:c5:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48 Validity Not Before: Jan 25 07:00:52 2026 GMT Not After : Jan 26 07:00:52 2026 GMT Subject: CN=9ab6bf6b463accf42b6d6c7e26bfa1b52aa8d916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4c:52:c5:65:59:cd:e7:7f:c7:be:22:d8:79: 93:d5:45:64:1a:9d:90:10:e9:12:61:12:50:9e:3a: 54:be:12:9c:4b:83:d9:12:f3:6d:54:e3:7e:ec:da: 11:15:22:51:24:46:e6:f6:e2:a9:cf:a0:4f:2f:61: e0:e0:90:66:8c:4d:51:c8:e4:47:61:1c:f8:5a:e7: 8c:d3:c1:00:32:f7:29:5c:80:8d:7e:c4:25:cc:2d: f8:ae:71:8e:81:a3:0e:2b:f9:2b:20:a6:c4:9f:53: ce:ce:f8:88:e3:69:ce:19:14:75:68:e8:a5:e9:53: 83:22:f9:62:38:0b:c4:48:21:2d:af:c0:10:aa:1b: ad:d8:40:8a:33:f3:34:93:e6:e9:c8:ce:ad:75:5e: 7f:51:a7:9a:58:32:d4:e1:0b:31:6f:70:36:91:11: 29:a4:1c:1b:45:54:aa:2c:5b:e0:e0:88:d0:72:63: 52:1d:a1:4f:dc:80:a5:a7:2e:4c:53:f0:d9:8c:dd: e4:be:00:ad:00:7c:85:94:73:30:39:0d:27:cb:20: 8d:59:4e:51:c9:a1:29:6f:f8:a0:c1:18:21:18:04: 80:43:ff:bd:dc:4c:88:7b:3f:95:1f:dc:6b:27:41: 02:01:49:8e:26:60:7a:38:8d:ee:31:51:ed:42:67: 8d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B6:BF:6B:46:3A:CC:F4:2B:6D:6C:7E:26:BF:A1:B5:2A:A8:D9:16 X509v3 Authority Key Identifier: keyid:D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:b7:af:73:e6:a9:7d:28:14:99:f0:3f:41:dd:5b:73:14:01: bc:21:07:36:b9:ed:7e:67:71:26:bd:7c:30:53:d9:06:aa:1a: 1e:a6:d4:6b:aa:3d:3b:f6:be:88:a4:f8:9a:29:9e:0b:89:c5: a9:a5:76:ef:73:d7:44:e7:a1:27:0f:35:73:f2:aa:ba:1c:1b: b6:fa:b9:a6:42:4a:61:28:92:0d:d4:f2:5d:4f:97:ad:74:89: a2:bb:53:8d:ae:ec:5d:27:04:d7:f5:de:83:14:9d:55:40:0c: 14:1d:75:3e:6a:10:3e:27:86:4d:3a:49:c6:9b:a3:08:c1:2a: 54:50:dc:4d:35:b5:1d:48:ac:10:33:10:c2:cb:c2:2b:41:1c: 5e:7f:e5:d2:84:df:2c:dc:7e:a4:91:8e:82:6b:b8:be:76:6d: 0a:ec:0a:1c:69:ce:06:67:f1:86:21:9e:17:94:72:6c:78:c7: 65:a9:71:d8:c3:d0:08:f1:51:fb:2f:a9:34:3c:eb:cb:a3:67: 27:2a:af:cf:68:65:ac:c2:9d:83:19:69:d7:35:22:dc:80:ac: 7b:60:e3:16:bc:05:21:e1:de:62:c2:10:af:db:e9:0e:d0:e8: fb:f0:e4:bc:99:d5:e8:ba:2f:76:57:63:46:9f:7a:d1:9e:63: 07:ce:95:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvz9JmXju17eI/aBej4fMWxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ZWU5MGQzNDJkODY1ZWE2N2YyYjBkMmZiNzRjMDM5Zjgz ZTRhNDgwHhcNMjYwMTI1MDcwMDUyWhcNMjYwMTI2MDcwMDUyWjAzMTEwLwYDVQQD Eyg5YWI2YmY2YjQ2M2FjY2Y0MmI2ZDZjN2UyNmJmYTFiNTJhYThkOTE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0xSxWVZzed/x74i2HmT1UVkGp2Q EOkSYRJQnjpUvhKcS4PZEvNtVON+7NoRFSJRJEbm9uKpz6BPL2Hg4JBmjE1RyORH YRz4WueM08EAMvcpXICNfsQlzC34rnGOgaMOK/krIKbEn1POzviI42nOGRR1aOil 6VODIvliOAvESCEtr8AQqhut2ECKM/M0k+bpyM6tdV5/UaeaWDLU4Qsxb3A2kREp pBwbRVSqLFvg4IjQcmNSHaFP3IClpy5MU/DZjN3kvgCtAHyFlHMwOQ0nyyCNWU5R yaEpb/igwRghGASAQ/+93EyIez+VH9xrJ0ECAUmOJmB6OI3uMVHtQmeNnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJq2v2tGOsz0K21sfia/obUqqNkWMB8GA1UdIwQY MBaAFNjukNNC2GXqZ/Kw0vt0wDn4PkpIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMk82UTAwTFlaZXBuOHJEUy0zVEFPZmctU2tnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9jZjVjMTAtMjEzMS00MTE2LWI2Zjkt NTEwNTI1YzQ3NDRjLzEvMk82UTAwTFlaZXBuOHJEUy0zVEFPZmctU2tnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9jZjVjMTAtMjEzMS00MTE2LWI2ZjktNTEwNTI1YzQ3NDRj LzEvMk82UTAwTFlaZXBuOHJEUy0zVEFPZmctU2tnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd7evc+ap fSgUmfA/Qd1bcxQBvCEHNrntfmdxJr18MFPZBqoaHqbUa6o9O/a+iKT4mimeC4nF qaV273PXROehJw81c/Kquhwbtvq5pkJKYSiSDdTyXU+XrXSJortTja7sXScE1/Xe gxSdVUAMFB11PmoQPieGTTpJxpujCMEqVFDcTTW1HUisEDMQwsvCK0EcXn/l0oTf LNx+pJGOgmu4vnZtCuwKHGnOBmfxhiGeF5RybHjHZalx2MPQCPFR+y+pNDzry6Nn Jyqvz2hlrMKdgxlp1zUi3ICse2DjFrwFIeHeYsIQr9vpDtDo+/DkvJnV6Lovdldj Rp960Z5jB86Vng== -----END CERTIFICATE-----Generated at Sun Jan 25 15:27:13 2026 by rpki-client