This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft File: oBZYi9HMst0iHG-Hg4VnR11-8ps.mft (raw, json) Hash identifier: Zht6YAdRpQrxSGbTr+SH/CFD2/q8TAiJLzNf1WJx1PE= Subject key identifier: 1D:F1:20:E4:38:56:02:50:F5:E5:31:D5:42:A0:FE:64:77:A7:51:7A Authority key identifier: A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B Certificate issuer: /CN=a016588bd1ccb2dd221c6f87838567475d7ef29b Certificate serial: 019BF687A528B01F3E09738897AA65996789 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft Manifest number: 17EA Signing time: Sun 25 Jan 2026 19:00:43 +0000 Manifest this update: Sun 25 Jan 2026 19:00:43 +0000 Manifest next update: Mon 26 Jan 2026 19:00:43 +0000 Files and hashes: 1: RLTHCNVsHHa59u_OLOD-BY98XIM.roa (hash: /4P5/TVl7dn9mtDrJhCSmSp/VCxhHR3xnDXrEVq8GTk=) 2: khLmo6pZaOrLwXMJOcUYOmIkZns.roa (hash: gi+g9993Zl2pUKqBDeYYkZSu9n9p5P8ycYJ+ziZGiaI=) 3: oBZYi9HMst0iHG-Hg4VnR11-8ps.crl (hash: vlQt4kQgVou5VWYKR9h/8u/nLK/dTU0oTF06B9DOl+Y=) 4: qFZ7lh8M_-7BVtcvqO7osX3FgC4.roa (hash: yh2XXW5ZPxb8ONMOAy9MOsAXO8sXA77efW4ZZFy3j/U=) 5: qYcaFh5k_WFgYNOOfWChkSb45-A.roa (hash: SGuMC52Sw1yR7jo31UVDgHPa5SFl4NAmO7Lfy91dnrg=) 6: to_9i5U3WEoW-TwQd4tU-j4O8dI.roa (hash: TimrXHXLyujQh5Wycw3AbO7giA3f+GFzcRdsqnTGqko=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:87:a5:28:b0:1f:3e:09:73:88:97:aa:65:99:67:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a016588bd1ccb2dd221c6f87838567475d7ef29b Validity Not Before: Jan 25 19:00:43 2026 GMT Not After : Jan 26 19:00:43 2026 GMT Subject: CN=1df120e438560250f5e531d542a0fe6477a7517a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:58:0d:65:36:ab:8d:f3:5d:64:89:ba:fd:1f: 63:5e:9c:34:d5:08:28:3a:1d:f0:e9:8e:32:0e:5e: 6a:3c:f9:01:3e:14:2f:55:a8:70:61:6f:65:31:8d: 88:d8:e5:e0:4e:b1:fc:1e:4d:71:62:66:f4:3e:bd: 09:cd:67:83:b2:bd:7f:2e:a0:6c:8f:16:cf:c2:c0: 46:77:eb:0c:9c:1f:ad:b7:0a:9a:01:c0:f9:7f:d5: 42:af:17:78:65:0c:f3:49:dc:e8:8d:bc:29:f0:ae: e2:bb:da:1a:2b:be:2c:2f:36:16:56:d2:77:cc:f2: a9:46:3d:45:b5:d7:bb:39:73:ca:23:98:a3:82:a9: f1:35:bd:51:2e:ed:2e:cd:56:08:79:82:b5:9f:d1: f2:d5:66:6b:15:41:ca:62:53:e4:28:63:e8:c1:5d: 06:d7:d6:f7:0f:53:a2:aa:de:39:b6:3f:bd:27:30: fc:4d:e7:d3:3a:b3:5e:8c:04:31:d9:dd:6a:8b:a9: 97:7b:5a:0c:0e:0a:53:99:5d:95:b2:d5:c4:a5:89: b8:c6:ce:bd:46:1d:31:79:04:8a:70:b8:8e:c5:45: 64:79:72:e1:f8:42:da:a3:2c:53:e6:ab:48:48:0b: d8:1c:27:16:62:ce:cc:ab:26:27:15:3c:40:75:82: f7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:F1:20:E4:38:56:02:50:F5:E5:31:D5:42:A0:FE:64:77:A7:51:7A X509v3 Authority Key Identifier: keyid:A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:48:f1:a7:11:3e:ff:ee:ab:91:ef:1b:41:9b:a0:99:91:7a: 55:d2:6e:7f:50:bb:3c:c9:ee:07:5d:de:a8:69:37:6a:87:e0: a9:ae:7d:a9:ca:9f:09:7f:56:f8:14:76:d2:13:62:3f:07:61: 7e:51:bb:1e:74:9a:49:cc:04:c3:91:39:d4:6e:4e:fc:9f:cd: 90:2d:ab:3b:e6:bf:f9:b3:f2:ea:eb:da:a4:d3:57:e4:f9:f8: 1f:74:0e:21:df:1d:1e:78:bf:e2:5f:47:99:db:de:24:b7:9b: e0:b5:b0:39:54:df:f8:c1:83:df:96:20:5d:ee:fd:96:79:c9: 23:3f:13:5c:cd:84:0f:54:8a:86:4c:fe:dd:9f:6d:1f:77:e3: 3c:49:d4:a1:65:c5:15:d8:20:7b:60:65:a0:42:f4:23:82:52: ee:e5:c3:6b:c5:60:ba:1e:3d:85:18:fe:ec:73:eb:87:de:cf: d4:ce:25:63:33:35:38:6f:92:dc:e2:90:04:fe:b8:13:f2:0e: fa:56:10:2f:ea:9b:1c:59:bb:e7:05:5d:52:c9:67:8e:5c:f9: 6a:9d:6b:94:61:86:55:9a:ea:e6:f9:c1:da:91:b0:70:09:41: 44:f7:1c:a5:26:b5:f3:7a:6f:20:9b:1e:5d:12:8f:a1:68:23: 3b:53:cb:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2h6UosB8+CXOIl6plmWeJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwMTY1ODhiZDFjY2IyZGQyMjFjNmY4NzgzODU2NzQ3NWQ3 ZWYyOWIwHhcNMjYwMTI1MTkwMDQzWhcNMjYwMTI2MTkwMDQzWjAzMTEwLwYDVQQD EygxZGYxMjBlNDM4NTYwMjUwZjVlNTMxZDU0MmEwZmU2NDc3YTc1MTdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAslgNZTarjfNdZIm6/R9jXpw01Qgo Oh3w6Y4yDl5qPPkBPhQvVahwYW9lMY2I2OXgTrH8Hk1xYmb0Pr0JzWeDsr1/LqBs jxbPwsBGd+sMnB+ttwqaAcD5f9VCrxd4ZQzzSdzojbwp8K7iu9oaK74sLzYWVtJ3 zPKpRj1Ftde7OXPKI5ijgqnxNb1RLu0uzVYIeYK1n9Hy1WZrFUHKYlPkKGPowV0G 19b3D1Oiqt45tj+9JzD8TefTOrNejAQx2d1qi6mXe1oMDgpTmV2VstXEpYm4xs69 Rh0xeQSKcLiOxUVkeXLh+ELaoyxT5qtISAvYHCcWYs7MqyYnFTxAdYL36wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB3xIOQ4VgJQ9eUx1UKg/mR3p1F6MB8GA1UdIwQY MBaAFKAWWIvRzLLdIhxvh4OFZ0ddfvKbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0JaWWk5SE1zdDBpSEctSGc0Vm5SMTEtOHBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi80ZWM1NjktOGNhZi00MTk4LWJhZTEt NzczMTIwZmY3YzBmLzEvb0JaWWk5SE1zdDBpSEctSGc0Vm5SMTEtOHBzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi80ZWM1NjktOGNhZi00MTk4LWJhZTEtNzczMTIwZmY3YzBm LzEvb0JaWWk5SE1zdDBpSEctSGc0Vm5SMTEtOHBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs0jxpxE+ /+6rke8bQZugmZF6VdJuf1C7PMnuB13eqGk3aofgqa59qcqfCX9W+BR20hNiPwdh flG7HnSaScwEw5E51G5O/J/NkC2rO+a/+bPy6uvapNNX5Pn4H3QOId8dHni/4l9H mdveJLeb4LWwOVTf+MGD35YgXe79lnnJIz8TXM2ED1SKhkz+3Z9tH3fjPEnUoWXF Fdgge2BloEL0I4JS7uXDa8Vguh49hRj+7HPrh97P1M4lYzM1OG+S3OKQBP64E/IO +lYQL+qbHFm75wVdUslnjlz5ap1rlGGGVZrq5vnB2pGwcAlBRPccpSa183pvIJse XRKPoWgjO1PLPA== -----END CERTIFICATE-----Generated at Sun Jan 25 23:55:31 2026 by rpki-client