This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft File: OcqgvSVNGof0uzDbO1E_25r2JfY.mft (raw, json) Hash identifier: Xixl0oFX+yT4sqTH1d+Eq9oVUvuMsxoyVD1w9g4nCcQ= Subject key identifier: 31:E3:D9:B6:78:E2:B4:C1:9F:BC:CA:70:FF:F3:AB:07:05:AF:94:21 Authority key identifier: 39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6 Certificate issuer: /CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6 Certificate serial: 019BF951B8905E1D371847776E636BC40276 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft Manifest number: 09FC Signing time: Mon 26 Jan 2026 08:00:41 +0000 Manifest this update: Mon 26 Jan 2026 08:00:41 +0000 Manifest next update: Tue 27 Jan 2026 08:00:41 +0000 Files and hashes: 1: OcqgvSVNGof0uzDbO1E_25r2JfY.crl (hash: yWlM5l8/k46SxyauUtXlv1LRYpz1CV0W+sFyCabX7mo=) 2: UlsTdR6iXILlELiEa_LKJSYv9dE.roa (hash: TsAC0FSS4xzyyilfdtL8K8wERh4UskS3qmNYtY3fKi8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 08:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:51:b8:90:5e:1d:37:18:47:77:6e:63:6b:c4:02:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6 Validity Not Before: Jan 26 08:00:41 2026 GMT Not After : Jan 27 08:00:41 2026 GMT Subject: CN=31e3d9b678e2b4c19fbcca70fff3ab0705af9421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:72:57:a6:c9:be:6e:83:a5:3a:4a:3b:c8:46: d1:f5:e3:03:f8:44:df:79:25:c7:e1:b3:e1:d6:17: e3:26:16:7e:ba:6a:3a:dc:68:ff:50:0d:61:a3:b1: b5:d7:2a:a8:04:82:d6:01:35:1f:bd:58:5c:42:89: 0a:27:f2:84:b7:d9:a1:80:54:b6:05:31:81:e3:c2: d2:66:72:09:20:e5:f1:80:09:f3:fb:4c:c8:d7:f8: 82:06:d1:38:d7:52:9d:63:28:18:b7:f4:d4:e6:d4: 70:03:1f:4f:a9:90:ba:b8:3d:cd:be:40:f8:a7:f9: 1a:a5:6a:2e:ec:0c:dc:b4:9d:80:c6:54:2b:2f:96: 6e:f7:36:a5:25:dc:47:db:0d:3d:51:50:93:13:e6: 2b:f4:4d:da:1a:d6:6e:90:8d:97:22:7e:14:2e:1b: e7:00:1e:84:60:77:7e:68:d4:d5:6e:16:7a:57:b9: 12:60:a0:31:c3:2e:39:f5:c2:8d:ee:7a:4d:aa:0a: d2:ef:e6:23:b0:7c:b6:26:ad:15:05:4c:ec:d8:cb: dc:58:72:43:e4:02:80:59:36:0d:98:be:00:54:62: fa:d5:09:86:5a:0d:84:49:eb:f8:49:36:a9:c3:19: 06:70:9d:ae:6e:76:dc:1b:9f:bd:a0:9b:68:1e:6e: 4a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:E3:D9:B6:78:E2:B4:C1:9F:BC:CA:70:FF:F3:AB:07:05:AF:94:21 X509v3 Authority Key Identifier: keyid:39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:66:90:28:40:89:19:e2:4f:23:a8:90:ee:f4:18:5e:1e:22: 0b:92:4e:8f:6a:05:19:ae:a4:66:54:31:74:35:98:eb:9e:9f: 11:60:8d:63:75:5e:fa:de:50:50:4e:d9:ca:e7:a0:59:3a:ab: 01:90:bb:61:31:82:d7:ac:33:8b:cb:2b:8e:59:fa:8f:61:3f: f8:e9:f4:f6:7b:52:16:1c:5e:c4:ed:09:ad:d0:44:de:92:50: 0c:41:e3:2b:26:b8:87:4c:a4:e9:80:bc:aa:d4:f0:92:af:d8: d2:d6:8d:07:a2:8c:9b:06:ff:03:61:4b:90:75:b9:0c:c3:27: e5:d3:87:6d:af:f5:c7:4b:1a:44:25:f0:96:a8:27:d8:90:90: 17:8b:e3:d7:80:98:06:8f:69:92:60:3a:58:93:b0:80:de:5e: 29:dd:41:42:08:0f:18:78:8f:1e:1a:a5:c8:e3:ad:17:7a:41: 04:d8:48:39:16:ed:d1:7c:46:88:cb:4d:5d:e6:21:e3:e3:76: 3d:83:e1:39:49:69:01:f8:2e:13:26:f5:d0:07:5f:81:9d:d1: 97:07:12:5c:6e:89:8d:e2:5e:f3:8c:2f:05:1e:63:40:25:e7: 8f:72:d8:87:30:0a:4a:b1:7e:ae:78:92:ca:8e:85:f0:4d:92: 48:c2:74:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5UbiQXh03GEd3bmNrxAJ2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5Y2FhMGJkMjU0ZDFhODdmNGJiMzBkYjNiNTEzZmRiOWFm NjI1ZjYwHhcNMjYwMTI2MDgwMDQxWhcNMjYwMTI3MDgwMDQxWjAzMTEwLwYDVQQD EygzMWUzZDliNjc4ZTJiNGMxOWZiY2NhNzBmZmYzYWIwNzA1YWY5NDIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHJXpsm+boOlOko7yEbR9eMD+ETf eSXH4bPh1hfjJhZ+umo63Gj/UA1ho7G11yqoBILWATUfvVhcQokKJ/KEt9mhgFS2 BTGB48LSZnIJIOXxgAnz+0zI1/iCBtE411KdYygYt/TU5tRwAx9PqZC6uD3NvkD4 p/kapWou7AzctJ2AxlQrL5Zu9zalJdxH2w09UVCTE+Yr9E3aGtZukI2XIn4ULhvn AB6EYHd+aNTVbhZ6V7kSYKAxwy459cKN7npNqgrS7+YjsHy2Jq0VBUzs2MvcWHJD 5AKAWTYNmL4AVGL61QmGWg2ESev4STapwxkGcJ2ubnbcG5+9oJtoHm5KfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDHj2bZ44rTBn7zKcP/zqwcFr5QhMB8GA1UdIwQY MBaAFDnKoL0lTRqH9Lsw2ztRP9ua9iX2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2NxZ3ZTVk5Hb2YwdXpEYk8xRV8yNXIySmZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8xZjA5NTUtNGQ2Mi00MzNiLWIxOGMt N2MzN2U2MzliZjBmLzEvT2NxZ3ZTVk5Hb2YwdXpEYk8xRV8yNXIySmZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi8xZjA5NTUtNGQ2Mi00MzNiLWIxOGMtN2MzN2U2MzliZjBm LzEvT2NxZ3ZTVk5Hb2YwdXpEYk8xRV8yNXIySmZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcWaQKECJ GeJPI6iQ7vQYXh4iC5JOj2oFGa6kZlQxdDWY656fEWCNY3Ve+t5QUE7ZyuegWTqr AZC7YTGC16wzi8srjln6j2E/+On09ntSFhxexO0JrdBE3pJQDEHjKya4h0yk6YC8 qtTwkq/Y0taNB6KMmwb/A2FLkHW5DMMn5dOHba/1x0saRCXwlqgn2JCQF4vj14CY Bo9pkmA6WJOwgN5eKd1BQggPGHiPHhqlyOOtF3pBBNhIORbt0XxGiMtNXeYh4+N2 PYPhOUlpAfguEyb10AdfgZ3RlwcSXG6JjeJe84wvBR5jQCXnj3LYhzAKSrF+rniS yo6F8E2SSMJ0AQ== -----END CERTIFICATE-----Generated at Mon Jan 26 11:47:50 2026 by rpki-client