This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft File: lNmOj-xoB3WhVyZuDGt4sUGjT14.mft (raw, json) Hash identifier: ZgU+lmYJethtbNajoVaymqc6YalvdkWxKAPoPiX571Y= Subject key identifier: A8:AB:23:E2:5C:DF:03:E3:40:33:54:9E:09:E0:25:AB:48:55:ED:49 Authority key identifier: 94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E Certificate issuer: /CN=94d98e8fec680775a157266e0c6b78b141a34f5e Certificate serial: 019BF46345E4818996DC2F48A5D7A218FE4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft Manifest number: 10D0 Signing time: Sun 25 Jan 2026 09:01:45 +0000 Manifest this update: Sun 25 Jan 2026 09:01:45 +0000 Manifest next update: Mon 26 Jan 2026 09:01:45 +0000 Files and hashes: 1: 0DUJcdpv-70K2I2pApN-2y0bFD8.roa (hash: IK8mSj+BVFz2D1LxDiQjQX/83kI7ub1AwIT2Qy6hem4=) 2: 1MHACm3CK4K5v6slEGmHX_yIXgA.roa (hash: jyb5sPD8LD1eGThstTkyE234Q0o3Q3uPEdFki8TgD8g=) 3: 23BJoNFdDlJ_93-a2ClIHAl6nKA.roa (hash: DjII82sTDDN6cpbOsiwqWIzILpschG7hs7d+wN7zZZY=) 4: OiHi4XdG_nsVHJ-IGiDHCI1Ql8U.roa (hash: grLRhHnueZh7gzEQiA6eYsh+YGNS0SKjSwsxs5fjsw8=) 5: hofeGE10wLSzhspMEfttKnwUIKY.roa (hash: jPJmbLC2hvl/zc20INUHfXqO8ECxV9ktdK0LUMAhKIE=) 6: lNmOj-xoB3WhVyZuDGt4sUGjT14.crl (hash: SOODdOE5BhdvzR81gj/Ri1Jekb+pa+nRMaplWbpoNkY=) 7: oKA_xzTT--t6AooTQpuLKXGvlMA.roa (hash: JpkJhhRx9tSQJbuGKgPlHxTIHvwgtE+H98ySPhBdIGw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:63:45:e4:81:89:96:dc:2f:48:a5:d7:a2:18:fe:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94d98e8fec680775a157266e0c6b78b141a34f5e Validity Not Before: Jan 25 09:01:45 2026 GMT Not After : Jan 26 09:01:45 2026 GMT Subject: CN=a8ab23e25cdf03e34033549e09e025ab4855ed49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:b1:7a:95:c4:48:f1:66:7c:d7:5f:43:2e:a2: f0:fd:f5:b3:9b:bf:08:da:72:12:a3:8a:4e:24:b4: 6e:dd:a5:5a:0e:40:ee:fa:ef:36:ac:fb:c5:a8:d6: 3c:50:e6:11:cc:5b:e4:9c:e7:3f:58:3a:0e:0a:01: 4a:65:d4:a8:60:2c:3a:93:62:fb:40:b1:7e:6e:6e: ca:ee:c7:a9:ef:79:1a:a1:90:14:39:ed:35:c6:b2: 91:f7:9e:a7:16:54:4f:9c:2c:7e:8c:b8:40:a2:00: c6:22:ec:4f:ff:64:39:5b:f1:65:b9:6b:0d:b6:8d: 5b:73:41:97:0a:15:cd:1d:8b:32:66:08:2e:4c:95: 73:d9:07:9e:1b:6c:6d:d8:1d:fe:89:31:ec:0c:d7: 94:eb:9c:e2:7f:f8:98:78:e2:bb:a6:dd:1a:91:a0: bd:aa:36:9f:c0:f4:fa:e5:e2:30:91:e1:51:1b:42: 9f:da:13:b5:72:b2:dc:4e:ed:12:da:57:88:ac:74: 27:fc:e5:3e:9a:28:ea:64:ef:bb:d7:ab:1c:54:48: 53:f6:2c:a0:a8:fb:34:26:90:e1:1b:65:a7:80:f9: e7:f6:95:6d:5b:42:c4:22:03:17:4b:25:1f:d1:5b: 73:db:db:57:04:38:45:3a:7e:65:99:4d:1a:8f:42: 5b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:AB:23:E2:5C:DF:03:E3:40:33:54:9E:09:E0:25:AB:48:55:ED:49 X509v3 Authority Key Identifier: keyid:94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:09:18:52:12:17:c0:4a:55:de:27:3f:96:fd:00:83:d3:58: 76:18:7b:6b:f3:9d:29:98:19:bd:4a:df:6a:30:6b:f4:ca:f3: 3b:54:c1:a7:1f:ed:7c:e2:0b:04:87:f9:e5:01:57:7a:06:61: 66:44:63:ff:b6:3c:66:df:1a:db:49:ac:ae:86:42:9b:b4:bd: 5e:3f:c0:60:17:3f:08:b8:e9:c9:2f:6e:ec:09:7e:7a:c8:c7: 35:13:d7:21:03:5e:41:aa:68:a2:a4:1b:ec:92:b9:c9:2a:b1: 8f:b0:04:72:f1:eb:04:9b:cb:82:ba:98:fc:1b:a2:99:d9:d1: 1b:76:a9:ad:35:eb:7a:7c:83:23:de:0a:66:8e:d7:33:ab:49: 32:8a:38:46:a3:64:34:41:e8:91:fc:88:1f:51:14:7a:8f:cb: 94:79:7f:ac:85:7c:7e:a4:ea:eb:ce:6c:35:40:81:32:ee:68: 04:70:ea:d8:8c:26:1e:1f:89:9d:b2:f3:4d:92:11:8f:04:da: 19:40:3f:ac:ad:1b:05:b5:79:ee:4b:60:44:0b:66:d0:c7:0c: 82:8e:82:5a:c1:e0:b2:dd:ce:92:99:7e:f4:6e:f7:af:db:0e: e1:95:b9:ea:76:a2:45:3c:4f:14:bb:72:d8:ee:c5:5b:76:6e: 9c:f1:8e:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0Y0XkgYmW3C9IpdeiGP5LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0ZDk4ZThmZWM2ODA3NzVhMTU3MjY2ZTBjNmI3OGIxNDFh MzRmNWUwHhcNMjYwMTI1MDkwMTQ1WhcNMjYwMTI2MDkwMTQ1WjAzMTEwLwYDVQQD EyhhOGFiMjNlMjVjZGYwM2UzNDAzMzU0OWUwOWUwMjVhYjQ4NTVlZDQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7LF6lcRI8WZ8119DLqLw/fWzm78I 2nISo4pOJLRu3aVaDkDu+u82rPvFqNY8UOYRzFvknOc/WDoOCgFKZdSoYCw6k2L7 QLF+bm7K7sep73kaoZAUOe01xrKR956nFlRPnCx+jLhAogDGIuxP/2Q5W/FluWsN to1bc0GXChXNHYsyZgguTJVz2QeeG2xt2B3+iTHsDNeU65zif/iYeOK7pt0akaC9 qjafwPT65eIwkeFRG0Kf2hO1crLcTu0S2leIrHQn/OU+mijqZO+716scVEhT9iyg qPs0JpDhG2WngPnn9pVtW0LEIgMXSyUf0Vtz29tXBDhFOn5lmU0aj0JbhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKirI+Jc3wPjQDNUngngJatIVe1JMB8GA1UdIwQY MBaAFJTZjo/saAd1oVcmbgxreLFBo09eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbE5tT2oteG9CM1doVnladURHdDRzVUdqVDE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi83YWUzYzctNjdlNC00NGRlLWIxMzkt ODdkMTdkZjc0YzdlLzEvbE5tT2oteG9CM1doVnladURHdDRzVUdqVDE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi83YWUzYzctNjdlNC00NGRlLWIxMzktODdkMTdkZjc0Yzdl LzEvbE5tT2oteG9CM1doVnladURHdDRzVUdqVDE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVAkYUhIX wEpV3ic/lv0Ag9NYdhh7a/OdKZgZvUrfajBr9MrzO1TBpx/tfOILBIf55QFXegZh ZkRj/7Y8Zt8a20msroZCm7S9Xj/AYBc/CLjpyS9u7Al+esjHNRPXIQNeQapooqQb 7JK5ySqxj7AEcvHrBJvLgrqY/BuimdnRG3aprTXrenyDI94KZo7XM6tJMoo4RqNk NEHokfyIH1EUeo/LlHl/rIV8fqTq685sNUCBMu5oBHDq2IwmHh+JnbLzTZIRjwTa GUA/rK0bBbV57ktgRAtm0McMgo6CWsHgst3Okpl+9G73r9sO4ZW56naiRTxPFLty 2O7FW3ZunPGO0A== -----END CERTIFICATE-----Generated at Sun Jan 25 17:37:39 2026 by rpki-client