This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/91717c-eb77-4e83-8eaa-e123e4e303e1/1/Okj-BwTkrJXjpw6VvrhEJcMWua0.mft File: Okj-BwTkrJXjpw6VvrhEJcMWua0.mft (raw, json) Hash identifier: L3nT/xUuf9AYiOGczJmKXXroN8QASSPyXJR3RgHv6Vc= Subject key identifier: 32:D6:81:6F:08:08:13:11:99:69:15:5F:E8:6F:85:19:18:A9:F4:EB Authority key identifier: 3A:48:FE:07:04:E4:AC:95:E3:A7:0E:95:BE:B8:44:25:C3:16:B9:AD Certificate issuer: /CN=3a48fe0704e4ac95e3a70e95beb84425c316b9ad Certificate serial: 019BF2AB4CA0CA9BF8230D9FCB8EDE56298E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Okj-BwTkrJXjpw6VvrhEJcMWua0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/91717c-eb77-4e83-8eaa-e123e4e303e1/1/Okj-BwTkrJXjpw6VvrhEJcMWua0.mft Manifest number: 1301 Signing time: Sun 25 Jan 2026 01:01:11 +0000 Manifest this update: Sun 25 Jan 2026 01:01:11 +0000 Manifest next update: Mon 26 Jan 2026 01:01:11 +0000 Files and hashes: 1: Okj-BwTkrJXjpw6VvrhEJcMWua0.crl (hash: m9Q1i6tr06d48Lek0sr3aWTQgk64NVcDZ7obGNZ2lJY=) 2: juBkbpcYbHGu8X6oDqr6gXzg0p4.roa (hash: YpMOIRw0fnrQ2EWztcpAe2+2MvDjXytsu0Rk4/ssWiY=) 3: kBXYGbTxdPtMX8674-LRTUc3syU.roa (hash: iVyxpIKZTeWiXDctlyE3ADiEgnIUxFQhQQ9pjma1pGw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/91717c-eb77-4e83-8eaa-e123e4e303e1/1/Okj-BwTkrJXjpw6VvrhEJcMWua0.crl rsync://rpki.ripe.net/repository/DEFAULT/79/91717c-eb77-4e83-8eaa-e123e4e303e1/1/Okj-BwTkrJXjpw6VvrhEJcMWua0.mft rsync://rpki.ripe.net/repository/DEFAULT/Okj-BwTkrJXjpw6VvrhEJcMWua0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 01:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f2:ab:4c:a0:ca:9b:f8:23:0d:9f:cb:8e:de:56:29:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a48fe0704e4ac95e3a70e95beb84425c316b9ad Validity Not Before: Jan 25 01:01:11 2026 GMT Not After : Jan 26 01:01:11 2026 GMT Subject: CN=32d6816f080813119969155fe86f851918a9f4eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:28:42:9d:2f:49:6b:de:71:76:1e:92:77:5e: 05:7b:61:20:de:e1:52:42:02:08:4e:1b:9e:2d:5f: 48:fa:2b:7e:e2:83:32:4e:a5:16:49:c7:ed:d5:aa: 45:5e:e2:96:4a:4e:e1:66:b3:b3:71:0b:af:d5:1b: 32:11:b3:87:53:b8:ac:54:b6:76:62:6e:38:19:f7: 47:5f:ae:4a:d6:f2:4d:8a:ed:0a:19:60:7d:c6:6d: a3:61:ec:33:1b:56:bc:89:c2:52:17:5c:ce:6a:c9: 16:23:38:db:d0:dd:3b:5d:c6:11:9c:06:d4:8e:21: 39:3c:50:3c:48:17:9c:e7:68:ba:b3:3f:c1:18:fc: a5:99:17:7e:2b:ba:90:59:02:21:31:f6:a3:32:bd: 01:65:0a:57:f5:1d:a2:ed:3b:90:d4:82:04:20:e7: 36:e8:f8:d9:bd:a4:a4:14:65:da:39:97:e8:f3:76: 3b:60:ac:48:0a:cb:20:ac:f7:1e:f1:02:d4:b1:37: 44:44:01:9b:d5:da:b4:93:ed:36:05:a1:4a:0c:76: 3a:22:37:0a:55:0e:f1:1b:35:02:46:b8:46:59:55: 50:d1:c1:b1:6c:a1:00:d1:8a:e3:4e:22:03:d1:5e: d2:06:33:d7:cb:d4:4a:9e:ce:f1:ec:ea:cb:aa:7f: 06:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D6:81:6F:08:08:13:11:99:69:15:5F:E8:6F:85:19:18:A9:F4:EB X509v3 Authority Key Identifier: keyid:3A:48:FE:07:04:E4:AC:95:E3:A7:0E:95:BE:B8:44:25:C3:16:B9:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Okj-BwTkrJXjpw6VvrhEJcMWua0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/91717c-eb77-4e83-8eaa-e123e4e303e1/1/Okj-BwTkrJXjpw6VvrhEJcMWua0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/91717c-eb77-4e83-8eaa-e123e4e303e1/1/Okj-BwTkrJXjpw6VvrhEJcMWua0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:61:9e:81:86:8f:a2:b6:18:93:4a:4d:7e:05:2d:d2:36:8c: 38:95:be:10:3e:75:8a:33:fb:b3:80:bd:cf:7a:85:4a:18:29: 2f:c4:a0:85:6d:ce:ff:b4:b8:87:b3:6a:4c:8b:d0:e5:4c:a0: 30:7d:88:53:40:e6:80:25:03:b4:97:dd:b0:7e:ae:8b:f0:75: 06:68:05:58:41:ed:f8:e2:5d:d8:a2:9f:15:dc:a8:8c:85:8c: 84:20:39:dc:50:a9:87:88:e5:b7:58:28:d1:2a:19:22:3b:cb: 99:63:9a:c9:3a:9e:8f:35:6b:e3:52:66:22:8f:9a:70:09:5f: 1f:c3:65:d5:59:70:19:3a:b7:3d:33:0f:23:cd:9f:3f:c6:f1: b6:e1:1a:17:25:69:c7:d0:e3:a7:fb:ee:ba:fb:47:8f:55:78: 34:34:7c:18:c9:1d:ca:8e:09:e6:52:9c:51:92:93:d1:74:f3: af:96:f5:94:44:ee:21:ac:4b:65:cd:d8:db:0a:06:f6:ff:b1: 47:1b:21:a7:74:17:0f:fd:9a:10:72:a5:ce:4b:ca:3d:a9:05: 11:f7:a5:1e:1b:01:bd:d8:18:01:c0:2e:71:81:6b:f3:7e:4e: 76:59:fe:2e:f5:6b:37:d0:f5:04:a6:d0:43:32:8c:c8:6d:4e: 50:e8:68:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvyq0ygypv4Iw2fy47eVimOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNDhmZTA3MDRlNGFjOTVlM2E3MGU5NWJlYjg0NDI1YzMx NmI5YWQwHhcNMjYwMTI1MDEwMTExWhcNMjYwMTI2MDEwMTExWjAzMTEwLwYDVQQD EygzMmQ2ODE2ZjA4MDgxMzExOTk2OTE1NWZlODZmODUxOTE4YTlmNGViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5yhCnS9Ja95xdh6Sd14Fe2Eg3uFS QgIIThueLV9I+it+4oMyTqUWScft1apFXuKWSk7hZrOzcQuv1RsyEbOHU7isVLZ2 Ym44GfdHX65K1vJNiu0KGWB9xm2jYewzG1a8icJSF1zOaskWIzjb0N07XcYRnAbU jiE5PFA8SBec52i6sz/BGPylmRd+K7qQWQIhMfajMr0BZQpX9R2i7TuQ1IIEIOc2 6PjZvaSkFGXaOZfo83Y7YKxICssgrPce8QLUsTdERAGb1dq0k+02BaFKDHY6IjcK VQ7xGzUCRrhGWVVQ0cGxbKEA0YrjTiID0V7SBjPXy9RKns7x7OrLqn8GfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDLWgW8ICBMRmWkVX+hvhRkYqfTrMB8GA1UdIwQY MBaAFDpI/gcE5KyV46cOlb64RCXDFrmtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2tqLUJ3VGtySlhqcHc2VnZyaEVKY01XdWEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS85MTcxN2MtZWI3Ny00ZTgzLThlYWEt ZTEyM2U0ZTMwM2UxLzEvT2tqLUJ3VGtySlhqcHc2VnZyaEVKY01XdWEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS85MTcxN2MtZWI3Ny00ZTgzLThlYWEtZTEyM2U0ZTMwM2Ux LzEvT2tqLUJ3VGtySlhqcHc2VnZyaEVKY01XdWEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApWGegYaP orYYk0pNfgUt0jaMOJW+ED51ijP7s4C9z3qFShgpL8SghW3O/7S4h7NqTIvQ5Uyg MH2IU0DmgCUDtJfdsH6ui/B1BmgFWEHt+OJd2KKfFdyojIWMhCA53FCph4jlt1go 0SoZIjvLmWOayTqejzVr41JmIo+acAlfH8Nl1VlwGTq3PTMPI82fP8bxtuEaFyVp x9Djp/vuuvtHj1V4NDR8GMkdyo4J5lKcUZKT0XTzr5b1lETuIaxLZc3Y2woG9v+x Rxshp3QXD/2aEHKlzkvKPakFEfelHhsBvdgYAcAucYFr835Odln+LvVrN9D1BKbQ QzKMyG1OUOhoTA== -----END CERTIFICATE-----Generated at Sun Jan 25 12:10:00 2026 by rpki-client