This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft File: OACZqBs0b5q8ryYFb1t3CU0c8RM.mft (raw, json) Hash identifier: 9wUPgHsJJXyeWWuLqd+iVjNxLp0GNV+nHexfawa0kds= Subject key identifier: 05:09:D6:2F:69:2B:74:E5:B9:66:52:45:B1:99:3B:57:5C:59:6A:77 Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13 Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113 Certificate serial: 019BF5E2FF274BAB08BE45CB77D223C81415 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft Manifest number: 17F0 Signing time: Sun 25 Jan 2026 16:00:52 +0000 Manifest this update: Sun 25 Jan 2026 16:00:52 +0000 Manifest next update: Mon 26 Jan 2026 16:00:52 +0000 Files and hashes: 1: 5tf62tGZz7nxnApGHs0XPt8oyEo.roa (hash: eqObETU4MUet/YxGyvd+4bjlEhpIkWmlGdSy4IzjRT0=) 2: C4lzeE9s0JPh3LMFogAb2-unpfM.roa (hash: B/VA7Y5H146Nk4o0VlZHFllZAXs0gNzPmZMsk3LGaPk=) 3: GlGwuQ4tVBcVbzdxZ764xAH4ZKY.roa (hash: dAsL5YC+dtQ5UOuP3k5Dc/1X4NRNua75JEno17YoMPc=) 4: MhSY36OZkDXTKKOaDPZo_gxxyys.roa (hash: 2VWhIerfpwbk0gwrISpBPr4SWZ289fTqKRc3I0+Rsfg=) 5: OACZqBs0b5q8ryYFb1t3CU0c8RM.crl (hash: 6E8f4feSwBjcvJKsZ61rYmBRnQyOknDuoyODa9X7D2s=) 6: SV9q8qOenCpWfyZ_KmzmoZ8gOso.roa (hash: 316dq0EbdTMXN9J+sZt1LaGvCQCGOGhyEJsLNYpVENg=) 7: Un1O1eVRsl-RNFGZVC7Hh1zlUso.roa (hash: wb6n3U2bPJOBiqYHITV1Aqlnrh4S2E/QbN0YryOpk2o=) 8: h2NmHgEuIROZq_hEdlknexmBTGM.roa (hash: 7SwAGH9Cu/tcgfRdpv3e3i4Xnp328jS2BOR70XX2pq0=) 9: n6AwAFReNaZdbkfki7LETtgHQPk.roa (hash: 1R1A1mLyenvEeIw8x55MsxtBChYHFqi/CKG9tPv+lwk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e2:ff:27:4b:ab:08:be:45:cb:77:d2:23:c8:14:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113 Validity Not Before: Jan 25 16:00:52 2026 GMT Not After : Jan 26 16:00:52 2026 GMT Subject: CN=0509d62f692b74e5b9665245b1993b575c596a77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:71:65:7b:7b:ca:1c:f1:ab:5d:94:2d:2f:a9: f1:18:61:db:db:d8:6c:33:b0:94:20:92:15:5c:7a: c8:47:6f:d3:91:aa:e1:4c:74:83:c2:3c:69:96:18: 7e:ff:e8:50:bc:f7:38:78:dd:8e:ea:2c:cf:b2:3d: a8:fb:a0:fc:47:1a:80:e6:d6:f2:aa:f0:5f:8a:83: 32:92:70:20:2e:10:59:7e:45:ad:58:8c:6c:ce:e4: d2:24:64:7d:9d:3b:ba:11:ce:7a:8e:0f:98:88:5c: c7:11:21:19:35:06:88:ce:0d:cc:94:f5:f2:8e:de: 3e:e4:e1:11:1e:db:c2:23:58:fb:3a:3d:57:d4:15: ee:b7:ab:d0:c3:8a:61:32:17:bd:98:1d:db:0f:16: 53:34:39:e1:6e:fa:43:c3:da:24:5b:de:70:64:ae: 52:6c:8e:93:30:72:dc:40:a2:ae:92:79:08:b5:e1: 76:21:7f:70:e6:f2:63:a7:3b:ce:6f:8b:69:a6:9d: 03:eb:c6:fe:94:c8:da:38:d4:37:28:69:7c:6f:cb: 46:79:02:36:04:04:c5:c6:80:12:6d:eb:70:66:86: 82:da:4e:e0:c8:85:08:dd:12:bc:e1:01:24:7c:2a: cf:f5:d6:74:ef:a1:79:65:33:4b:45:4e:95:c6:e6: 44:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:09:D6:2F:69:2B:74:E5:B9:66:52:45:B1:99:3B:57:5C:59:6A:77 X509v3 Authority Key Identifier: keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:7a:2a:47:91:76:ce:60:d6:c4:1e:f8:48:bf:fa:39:b9:ca: a1:3d:22:b8:c5:6b:45:b0:ce:f9:65:29:e0:e2:30:58:ae:e3: c1:0c:31:8e:aa:9d:6c:08:c6:22:7f:12:3e:92:54:8c:79:14: 33:8b:fe:8f:59:67:7d:86:d6:9c:8a:0c:52:90:a6:1c:0e:84: ef:c3:69:30:df:34:ea:f1:3c:f5:f5:a8:2a:96:62:9e:d9:34: 01:d0:46:a1:b0:0f:cb:5c:2f:9b:ae:4f:a7:73:db:a7:f3:f5: 0f:30:8a:9c:70:8d:9a:31:43:dd:27:15:16:0d:a5:1f:4e:32: 9b:98:b8:80:4d:6d:a0:49:2e:a1:45:2a:2f:bc:42:ac:2d:57: 8a:40:e2:bc:64:b6:9b:4a:54:0f:d9:17:62:09:8f:d0:59:97: b2:72:6c:67:1a:46:a9:16:40:5d:00:5d:6f:e1:49:d8:da:c7: 3d:53:26:f4:d6:b1:45:2f:b7:90:c9:6c:9a:fd:f7:3d:18:c4: 99:cd:00:ea:97:0e:e8:fa:aa:e4:2b:6a:bd:08:60:f6:31:64: b3:95:72:2c:2b:e8:f6:e7:1c:83:9d:ea:71:46:8d:17:11:ca: 12:fb:44:8b:6f:bd:64:26:84:8d:dc:67:98:fb:65:9f:41:8f: 32:33:1c:1b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv14v8nS6sIvkXLd9IjyBQVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MDA5OWE4MWIzNDZmOWFiY2FmMjYwNTZmNWI3NzA5NGQx Y2YxMTMwHhcNMjYwMTI1MTYwMDUyWhcNMjYwMTI2MTYwMDUyWjAzMTEwLwYDVQQD EygwNTA5ZDYyZjY5MmI3NGU1Yjk2NjUyNDViMTk5M2I1NzVjNTk2YTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiXFle3vKHPGrXZQtL6nxGGHb29hs M7CUIJIVXHrIR2/TkarhTHSDwjxplhh+/+hQvPc4eN2O6izPsj2o+6D8RxqA5tby qvBfioMyknAgLhBZfkWtWIxszuTSJGR9nTu6Ec56jg+YiFzHESEZNQaIzg3MlPXy jt4+5OERHtvCI1j7Oj1X1BXut6vQw4phMhe9mB3bDxZTNDnhbvpDw9okW95wZK5S bI6TMHLcQKKuknkIteF2IX9w5vJjpzvOb4tppp0D68b+lMjaONQ3KGl8b8tGeQI2 BATFxoASbetwZoaC2k7gyIUI3RK84QEkfCrP9dZ076F5ZTNLRU6VxuZE/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAUJ1i9pK3TluWZSRbGZO1dcWWp3MB8GA1UdIwQY MBaAFDgAmagbNG+avK8mBW9bdwlNHPETMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0FDWnFCczBiNXE4cnlZRmIxdDNDVTBjOFJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My84ZTUwMWQtYzA4OC00ODk1LWFlZTMt NDUwZmUzMzU5NWQxLzEvT0FDWnFCczBiNXE4cnlZRmIxdDNDVTBjOFJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My84ZTUwMWQtYzA4OC00ODk1LWFlZTMtNDUwZmUzMzU5NWQx LzEvT0FDWnFCczBiNXE4cnlZRmIxdDNDVTBjOFJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbXoqR5F2 zmDWxB74SL/6ObnKoT0iuMVrRbDO+WUp4OIwWK7jwQwxjqqdbAjGIn8SPpJUjHkU M4v+j1lnfYbWnIoMUpCmHA6E78NpMN806vE89fWoKpZintk0AdBGobAPy1wvm65P p3Pbp/P1DzCKnHCNmjFD3ScVFg2lH04ym5i4gE1toEkuoUUqL7xCrC1XikDivGS2 m0pUD9kXYgmP0FmXsnJsZxpGqRZAXQBdb+FJ2NrHPVMm9NaxRS+3kMlsmv33PRjE mc0A6pcO6Pqq5CtqvQhg9jFks5VyLCvo9uccg53qcUaNFxHKEvtEi2+9ZCaEjdxn mPtln0GPMjMcGw== -----END CERTIFICATE-----Generated at Sun Jan 25 22:01:28 2026 by rpki-client