This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft File: Uo017K6KUozuxk3jvWO3P6QtX0o.mft (raw, json) Hash identifier: 5gC/w1/J2hfTTZy91X/FGIy+uM+UdPfIA4xQOPGeUAA= Subject key identifier: AB:22:A7:2A:AF:A9:36:18:52:AC:45:02:AC:3D:56:C7:C9:1E:75:AC Authority key identifier: 52:8D:35:EC:AE:8A:52:8C:EE:C6:4D:E3:BD:63:B7:3F:A4:2D:5F:4A Certificate issuer: /CN=528d35ecae8a528ceec64de3bd63b73fa42d5f4a Certificate serial: 019BF6BE9CDA1175615214A0E08D7C2718B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uo017K6KUozuxk3jvWO3P6QtX0o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft Manifest number: 0C15 Signing time: Sun 25 Jan 2026 20:00:45 +0000 Manifest this update: Sun 25 Jan 2026 20:00:45 +0000 Manifest next update: Mon 26 Jan 2026 20:00:45 +0000 Files and hashes: 1: Uo017K6KUozuxk3jvWO3P6QtX0o.crl (hash: B5Q6r9GYt7qxD7n8mkAMMO82q0CabDx1nBSTNwErQqo=) 2: jmmeH3G-Gl7O7CxO9eM1m6xDfME.roa (hash: Wq2XWQbDU1erZ3uKJEqO1ZrsNU8Z2zdZsF7YP6SoAlU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft rsync://rpki.ripe.net/repository/DEFAULT/Uo017K6KUozuxk3jvWO3P6QtX0o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:be:9c:da:11:75:61:52:14:a0:e0:8d:7c:27:18:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528d35ecae8a528ceec64de3bd63b73fa42d5f4a Validity Not Before: Jan 25 20:00:45 2026 GMT Not After : Jan 26 20:00:45 2026 GMT Subject: CN=ab22a72aafa9361852ac4502ac3d56c7c91e75ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:12:1b:3f:32:e9:b1:a0:cd:4e:78:e6:15:0e: de:53:d1:56:2f:11:7c:f1:b1:b7:4d:18:ac:83:b9: ad:bc:f0:19:30:eb:d2:57:c3:fa:9f:60:ef:7e:f7: 63:43:f3:a1:60:26:12:27:df:4d:b7:b4:28:fc:56: 8d:db:7e:24:b5:8a:9e:f7:02:32:3e:47:f3:4e:cd: 65:fd:f5:7a:74:4c:75:3e:c3:6a:b6:6c:89:21:d3: e1:94:6d:28:a8:86:1c:9b:b8:51:fa:13:75:a8:65: a5:c0:1f:d4:10:85:0e:76:86:09:d8:b2:e5:6d:d6: 89:db:5a:62:f7:cd:ba:ea:cd:6b:98:03:ab:e0:a6: a0:0f:a5:e9:30:ed:cc:2c:1f:8f:99:66:6c:99:07: 80:b0:39:b9:ac:b2:dd:f1:3a:78:10:c9:d5:de:e6: ca:5b:37:d2:6e:fe:51:40:cf:75:34:79:2d:12:df: 38:bb:74:b5:a7:9d:18:6d:5c:3b:cf:d4:79:e1:fa: aa:f1:48:a2:c0:93:e3:ed:2c:53:2f:3b:5b:61:76: d1:01:e9:57:10:df:b5:ad:78:8c:ca:50:a6:ee:50: 8d:05:76:7c:ee:36:ac:46:77:e4:99:89:aa:a2:00: 4b:c3:18:a3:40:c4:57:e1:3a:76:f7:37:96:36:71: 86:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:22:A7:2A:AF:A9:36:18:52:AC:45:02:AC:3D:56:C7:C9:1E:75:AC X509v3 Authority Key Identifier: keyid:52:8D:35:EC:AE:8A:52:8C:EE:C6:4D:E3:BD:63:B7:3F:A4:2D:5F:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uo017K6KUozuxk3jvWO3P6QtX0o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:ff:8f:e2:c4:39:d8:c8:23:1f:42:c8:3c:c3:d8:72:88:45: 2e:f7:3b:91:9e:63:a4:a1:cf:6f:9b:1d:9c:02:d7:cd:aa:f7: 26:1e:41:e7:13:07:07:b2:17:b4:33:52:d6:ac:e1:3f:1d:78: d8:b8:0c:0e:1f:77:8b:5d:b5:43:05:78:8c:68:30:8e:54:92: aa:e9:71:d8:76:3b:87:f8:d1:a4:20:f8:74:3e:ba:2d:bf:4a: 38:62:7a:aa:af:db:8b:19:2c:be:c2:99:72:b8:4f:41:cb:41: d6:ef:0a:86:e1:78:d3:8a:bd:d0:29:16:b2:76:60:64:c0:af: 92:80:9a:07:93:3d:53:92:f9:17:64:61:07:95:ca:45:d1:b1: 0c:2a:52:d2:d0:ba:42:69:77:9a:b5:12:0a:52:1e:42:ed:ec: 0d:d2:87:46:96:01:f9:0d:d4:61:5f:51:8f:a4:76:0a:41:1e: f5:88:b7:63:92:d6:8f:15:0e:f4:1d:4f:d5:ff:e2:4f:fb:0a: dc:3f:b3:ab:cd:c3:6f:be:66:33:4a:e5:7a:1f:15:d6:89:2d: 55:a6:a4:a1:aa:9e:33:bf:ca:91:f3:23:d6:fa:06:71:a8:7e: c1:07:e9:f5:f3:da:33:6d:fa:5d:58:4f:a4:0f:57:11:bc:89: d6:80:98:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2vpzaEXVhUhSg4I18JxiwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyOGQzNWVjYWU4YTUyOGNlZWM2NGRlM2JkNjNiNzNmYTQy ZDVmNGEwHhcNMjYwMTI1MjAwMDQ1WhcNMjYwMTI2MjAwMDQ1WjAzMTEwLwYDVQQD EyhhYjIyYTcyYWFmYTkzNjE4NTJhYzQ1MDJhYzNkNTZjN2M5MWU3NWFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxIbPzLpsaDNTnjmFQ7eU9FWLxF8 8bG3TRisg7mtvPAZMOvSV8P6n2DvfvdjQ/OhYCYSJ99Nt7Qo/FaN234ktYqe9wIy PkfzTs1l/fV6dEx1PsNqtmyJIdPhlG0oqIYcm7hR+hN1qGWlwB/UEIUOdoYJ2LLl bdaJ21pi98266s1rmAOr4KagD6XpMO3MLB+PmWZsmQeAsDm5rLLd8Tp4EMnV3ubK WzfSbv5RQM91NHktEt84u3S1p50YbVw7z9R54fqq8UiiwJPj7SxTLztbYXbRAelX EN+1rXiMylCm7lCNBXZ87jasRnfkmYmqogBLwxijQMRX4Tp29zeWNnGGYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKsipyqvqTYYUqxFAqw9VsfJHnWsMB8GA1UdIwQY MBaAFFKNNeyuilKM7sZN471jtz+kLV9KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVW8wMTdLNktVb3p1eGszanZXTzNQNlF0WDBvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8zMDNhNDMtYTE4NS00OTczLTg2YWIt N2EzNzIwZDNjZmZjLzEvVW8wMTdLNktVb3p1eGszanZXTzNQNlF0WDBvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC8zMDNhNDMtYTE4NS00OTczLTg2YWItN2EzNzIwZDNjZmZj LzEvVW8wMTdLNktVb3p1eGszanZXTzNQNlF0WDBvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArf+P4sQ5 2MgjH0LIPMPYcohFLvc7kZ5jpKHPb5sdnALXzar3Jh5B5xMHB7IXtDNS1qzhPx14 2LgMDh93i121QwV4jGgwjlSSqulx2HY7h/jRpCD4dD66Lb9KOGJ6qq/bixksvsKZ crhPQctB1u8KhuF404q90CkWsnZgZMCvkoCaB5M9U5L5F2RhB5XKRdGxDCpS0tC6 Qml3mrUSClIeQu3sDdKHRpYB+Q3UYV9Rj6R2CkEe9Yi3Y5LWjxUO9B1P1f/iT/sK 3D+zq83Db75mM0rleh8V1oktVaakoaqeM7/KkfMj1voGcah+wQfp9fPaM236XVhP pA9XEbyJ1oCY+A== -----END CERTIFICATE-----Generated at Mon Jan 26 05:38:45 2026 by rpki-client