This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft File: 0f00NtehmnND-oANh6Aa8YPaMYs.mft (raw, json) Hash identifier: nCbuiXHLHfMyq5UarUN01vw2+yX7UkG5y6w6RPIGv8k= Subject key identifier: E3:49:98:D6:89:65:E3:24:B9:98:8D:B7:9E:8F:5F:C9:43:78:0E:F1 Authority key identifier: D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B Certificate issuer: /CN=d1fd3436d7a19a7343fa800d87a01af183da318b Certificate serial: 019BF499A1900F8AFE493BAA9C6BA01AAB19 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft Manifest number: 0DF4 Signing time: Sun 25 Jan 2026 10:01:07 +0000 Manifest this update: Sun 25 Jan 2026 10:01:07 +0000 Manifest next update: Mon 26 Jan 2026 10:01:07 +0000 Files and hashes: 1: 0f00NtehmnND-oANh6Aa8YPaMYs.crl (hash: /tOZLLzLBewr0abDn83ZjmV33baEbDAE01SFA19dnAU=) 2: IASwi9of8Nm06s2NEyZeclBiyks.roa (hash: wJHjHPTUMp7nASIGnsvw0Yq6r11NWYMurdnBadU/uWs=) 3: cJm02hXD31NI7pVQ-Zg6zC-hgq4.roa (hash: HsDfNZqhgWgKKit0y0ockf+XjyRYYtlEbZ6HrEVkmGs=) 4: d2D28pbUUy75o_ayovdj8OnlSSk.roa (hash: VCEc/3eMD6beAJR+mVre94XxkAsuGJ0/hx5+lBhoAGg=) 5: jwsbk3UxQHXyjEExXwNUXcrvx38.roa (hash: Glu31tXKVdAhpJSQOXApQod2ByFLYzTP23c7sIux+Ks=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:99:a1:90:0f:8a:fe:49:3b:aa:9c:6b:a0:1a:ab:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1fd3436d7a19a7343fa800d87a01af183da318b Validity Not Before: Jan 25 10:01:07 2026 GMT Not After : Jan 26 10:01:07 2026 GMT Subject: CN=e34998d68965e324b9988db79e8f5fc943780ef1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f5:c6:9f:a1:d3:cb:1a:83:d1:3c:0a:6d:e1: 9a:60:d8:fb:41:3f:fd:7f:c6:f4:f9:98:f5:03:9a: 41:73:4e:33:ff:08:a8:e7:0a:e1:62:44:18:08:a0: 82:b1:04:fc:4f:c8:54:e6:17:bb:48:99:d7:45:57: ff:ab:2e:f8:88:8d:74:54:f6:10:35:ac:30:28:94: 96:62:b9:39:3a:4e:95:fa:79:c9:a6:10:42:3e:3e: 96:01:ec:3d:e8:57:b8:08:4e:a0:34:4d:0d:35:13: ff:a7:62:3e:b2:7b:2c:1f:bd:d2:e9:3a:75:93:7b: 1b:e9:05:f7:b5:a1:64:ef:0d:95:6c:b3:78:ac:0d: 4e:d3:f3:5f:d4:85:81:43:46:34:5e:64:2c:b5:40: 69:2b:4b:29:56:3b:4f:72:1a:85:65:51:e3:fe:2e: cc:04:b7:39:d8:34:76:e5:d1:1a:8f:ad:30:6f:d5: b7:09:60:f9:aa:55:76:78:80:b9:46:4c:e5:f0:5e: c1:04:b2:07:25:f3:c6:cb:f9:f8:be:a4:bb:b7:19: 46:26:78:e3:35:ed:56:cc:f4:29:b4:31:9e:d2:eb: 7e:a4:aa:cd:ea:ec:30:48:27:d3:6f:8d:b1:16:d5: 67:1a:ba:c2:88:27:20:81:07:ed:cc:13:3c:fe:90: 60:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:49:98:D6:89:65:E3:24:B9:98:8D:B7:9E:8F:5F:C9:43:78:0E:F1 X509v3 Authority Key Identifier: keyid:D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:2c:26:63:31:26:ab:ec:99:08:ba:b4:fd:73:28:71:60:ad: d9:44:d6:0f:70:37:11:09:c9:ef:57:52:9c:11:9d:bc:00:3b: 67:54:43:51:4c:5a:6b:c1:cb:83:75:aa:e1:51:e9:57:33:9f: 0d:83:28:8c:7e:1c:5b:aa:34:14:90:a4:08:c5:38:88:ec:c8: 32:91:42:ba:f1:1e:dc:6a:ca:ef:d2:ad:dc:d4:ec:72:4c:43: 0d:c5:52:6d:94:5b:bc:f0:dc:10:da:9f:02:5e:06:d7:e3:31: ff:3a:5a:ce:83:d4:fd:c5:84:f0:09:4b:9b:09:47:83:a6:be: 15:fd:9e:cc:b0:02:9b:ff:2e:f5:bf:ba:74:e2:9b:70:8d:b3: 91:ab:c7:1c:0f:9b:a8:ba:dd:4f:c4:ff:67:75:ea:8c:7d:cf: 74:c7:a9:37:de:77:b2:d0:12:e0:a6:94:69:c9:5c:2c:97:d5: 07:70:b6:7b:97:6a:62:73:b9:4d:5b:fa:63:da:39:b9:b0:20: e7:23:8f:4e:0d:0e:c0:01:fc:4a:60:04:6a:fa:69:af:4d:1d: b4:e5:a9:82:84:01:c9:d4:3e:67:42:bb:10:13:8b:a4:bc:bc: 2c:43:f9:b8:5c:74:5d:71:f3:87:94:ee:2c:f4:57:b5:02:ef: 2d:8a:2f:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0maGQD4r+STuqnGugGqsZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxZmQzNDM2ZDdhMTlhNzM0M2ZhODAwZDg3YTAxYWYxODNk YTMxOGIwHhcNMjYwMTI1MTAwMTA3WhcNMjYwMTI2MTAwMTA3WjAzMTEwLwYDVQQD EyhlMzQ5OThkNjg5NjVlMzI0Yjk5ODhkYjc5ZThmNWZjOTQzNzgwZWYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/XGn6HTyxqD0TwKbeGaYNj7QT/9 f8b0+Zj1A5pBc04z/wio5wrhYkQYCKCCsQT8T8hU5he7SJnXRVf/qy74iI10VPYQ NawwKJSWYrk5Ok6V+nnJphBCPj6WAew96Fe4CE6gNE0NNRP/p2I+snssH73S6Tp1 k3sb6QX3taFk7w2VbLN4rA1O0/Nf1IWBQ0Y0XmQstUBpK0spVjtPchqFZVHj/i7M BLc52DR25dEaj60wb9W3CWD5qlV2eIC5Rkzl8F7BBLIHJfPGy/n4vqS7txlGJnjj Ne1WzPQptDGe0ut+pKrN6uwwSCfTb42xFtVnGrrCiCcggQftzBM8/pBg+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFONJmNaJZeMkuZiNt56PX8lDeA7xMB8GA1UdIwQY MBaAFNH9NDbXoZpzQ/qADYegGvGD2jGLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGYwME50ZWhtbk5ELW9BTmg2QWE4WVBhTVlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9iY2Q1ZTgtNWQxZi00NmIxLTk2YmMt MzlhNjZjYmUxZTRkLzEvMGYwME50ZWhtbk5ELW9BTmg2QWE4WVBhTVlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy9iY2Q1ZTgtNWQxZi00NmIxLTk2YmMtMzlhNjZjYmUxZTRk LzEvMGYwME50ZWhtbk5ELW9BTmg2QWE4WVBhTVlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjSwmYzEm q+yZCLq0/XMocWCt2UTWD3A3EQnJ71dSnBGdvAA7Z1RDUUxaa8HLg3Wq4VHpVzOf DYMojH4cW6o0FJCkCMU4iOzIMpFCuvEe3GrK79Kt3NTsckxDDcVSbZRbvPDcENqf Al4G1+Mx/zpazoPU/cWE8AlLmwlHg6a+Ff2ezLACm/8u9b+6dOKbcI2zkavHHA+b qLrdT8T/Z3XqjH3PdMepN953stAS4KaUaclcLJfVB3C2e5dqYnO5TVv6Y9o5ubAg 5yOPTg0OwAH8SmAEavppr00dtOWpgoQBydQ+Z0K7EBOLpLy8LEP5uFx0XXHzh5Tu LPRXtQLvLYovEA== -----END CERTIFICATE-----Generated at Sun Jan 25 19:24:25 2026 by rpki-client