This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft File: 4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft (raw, json) Hash identifier: 9xAIjGNCTe0T5bJdeY3bngSW3wUMZTZ1gOY3fzBenRY= Subject key identifier: 72:EC:24:55:AF:F1:DB:26:AE:CA:25:B1:18:BC:E9:4D:34:EB:21:2C Authority key identifier: E0:E3:97:6D:9E:CB:83:09:A8:18:1F:BD:02:5C:A5:2F:EF:16:19:99 Certificate issuer: /CN=e0e3976d9ecb8309a8181fbd025ca52fef161999 Certificate serial: 019BF5E3C05A32ED9916536BA201F9F0886A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft Manifest number: 0C05 Signing time: Sun 25 Jan 2026 16:01:42 +0000 Manifest this update: Sun 25 Jan 2026 16:01:42 +0000 Manifest next update: Mon 26 Jan 2026 16:01:42 +0000 Files and hashes: 1: 4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl (hash: VUfH2RVJmhGf/t3sLMnGB6Nb6Sk7aOc9ILtrkU/psB0=) 2: C5-n76GjDGgTo3St4TOPzsa8ErE.roa (hash: wL0KAphUIwIQECc1NQQKJ/DAF+DOTBb5tCVgPHb/KS0=) 3: dMiPF5hRDsmVGyczjp5h0yMXvNA.roa (hash: 3OGMUms6N3Q+YmbW4ivKKL6p/UH/QnXPY3TzgOYxtkk=) 4: yXUhi2vBjaa8ds8k-vv6CwFfTf0.roa (hash: qLNfF2ctfPtKdPk/SFwkzQElr0ANhZieliEEgaCLo18=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e3:c0:5a:32:ed:99:16:53:6b:a2:01:f9:f0:88:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e0e3976d9ecb8309a8181fbd025ca52fef161999 Validity Not Before: Jan 25 16:01:42 2026 GMT Not After : Jan 26 16:01:42 2026 GMT Subject: CN=72ec2455aff1db26aeca25b118bce94d34eb212c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:97:82:d8:0c:50:39:1b:e1:20:48:00:55:64: 04:51:e5:38:8a:a3:45:5e:89:80:18:88:30:aa:46: 1b:67:b8:d3:b2:35:a4:88:14:a3:20:d0:b8:af:17: 8f:24:cc:db:c7:24:df:9d:ef:17:fc:49:7a:1a:12: c2:cb:44:17:c1:6e:9e:8d:8a:58:59:59:f3:2a:ee: 4b:da:c7:de:04:cb:4a:15:23:0e:d3:20:f6:93:62: 42:fd:b4:18:ee:b3:e3:62:db:44:5a:20:aa:86:8c: 76:c2:40:9c:ec:e8:79:69:ca:97:9d:3e:b9:77:f0: b1:b9:81:e8:39:63:65:0a:6a:bf:77:39:62:2a:a4: cc:fa:cb:b4:89:95:7f:18:50:bb:cd:79:89:40:ff: da:a3:d4:88:73:3f:fd:fe:ba:8e:70:45:99:3f:af: a7:c9:b9:42:c9:92:0d:64:78:26:c6:0a:a8:46:3f: c6:bd:4a:4e:ce:8c:40:d2:72:9f:e1:b7:b8:9d:6a: 3a:3b:79:eb:b5:fe:fa:81:19:b5:aa:19:10:3e:ef: 33:0b:d7:30:ae:b9:f6:4c:0f:2a:9e:9a:1e:fc:94: ef:4d:25:62:21:ad:d0:ed:60:47:70:c3:99:7d:1f: 1e:ec:bf:17:54:c9:da:fd:60:3f:9b:5e:00:82:54: 6a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:EC:24:55:AF:F1:DB:26:AE:CA:25:B1:18:BC:E9:4D:34:EB:21:2C X509v3 Authority Key Identifier: keyid:E0:E3:97:6D:9E:CB:83:09:A8:18:1F:BD:02:5C:A5:2F:EF:16:19:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:af:9c:9f:78:aa:8c:c7:c1:c4:bd:b4:bd:2d:f1:73:c0:f5: bf:a2:74:68:bc:cd:42:18:0c:a9:60:bd:13:d7:66:da:80:9a: 98:b4:c5:16:a4:58:14:3a:8e:9e:c7:44:a9:0f:87:63:0c:f4: 07:4d:8b:8b:a1:b6:01:e8:e1:22:4d:d6:6b:87:5d:45:67:23: ca:17:1e:a5:21:69:0f:a1:c2:aa:92:ca:75:28:3a:54:70:76: a1:e4:90:df:50:e3:de:bf:a0:5a:ae:28:29:20:59:d6:ba:ab: d2:a2:75:57:a7:8c:9b:4c:2b:84:d2:66:cd:fa:12:2c:4f:d9: 58:96:0a:bc:df:d1:a2:68:5b:18:8f:15:17:cd:22:f4:da:8e: ae:20:a8:fd:52:f8:da:e8:1f:41:96:e8:25:4c:a1:ca:44:25: 27:94:f4:ea:57:1a:09:ac:8c:1d:bd:6f:aa:4c:33:7f:5c:3b: b9:90:29:58:d0:69:5f:21:c5:b7:97:2e:43:ff:68:b4:aa:fd: ad:27:ca:07:d9:ac:ce:df:87:31:88:0a:75:6e:34:0f:fa:d2: 4f:a1:19:0b:29:f9:28:ac:9e:6a:44:e9:8e:63:97:27:45:ca: 7f:99:29:6a:ad:67:82:fa:c8:50:34:b7:49:72:94:cd:59:39: 65:92:5e:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv148BaMu2ZFlNrogH58IhqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwZTM5NzZkOWVjYjgzMDlhODE4MWZiZDAyNWNhNTJmZWYx NjE5OTkwHhcNMjYwMTI1MTYwMTQyWhcNMjYwMTI2MTYwMTQyWjAzMTEwLwYDVQQD Eyg3MmVjMjQ1NWFmZjFkYjI2YWVjYTI1YjExOGJjZTk0ZDM0ZWIyMTJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiZeC2AxQORvhIEgAVWQEUeU4iqNF XomAGIgwqkYbZ7jTsjWkiBSjINC4rxePJMzbxyTfne8X/El6GhLCy0QXwW6ejYpY WVnzKu5L2sfeBMtKFSMO0yD2k2JC/bQY7rPjYttEWiCqhox2wkCc7Oh5acqXnT65 d/CxuYHoOWNlCmq/dzliKqTM+su0iZV/GFC7zXmJQP/ao9SIcz/9/rqOcEWZP6+n yblCyZINZHgmxgqoRj/GvUpOzoxA0nKf4be4nWo6O3nrtf76gRm1qhkQPu8zC9cw rrn2TA8qnpoe/JTvTSViIa3Q7WBHcMOZfR8e7L8XVMna/WA/m14AglRqgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHLsJFWv8dsmrsolsRi86U006yEsMB8GA1UdIwQY MBaAFODjl22ey4MJqBgfvQJcpS/vFhmZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNE9PWGJaN0xnd21vR0ItOUFseWxMLThXR1prLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9kNjEyYTMtNDYzMS00N2RlLTk0MGQt OGJlMGQ5NzY4MmFiLzEvNE9PWGJaN0xnd21vR0ItOUFseWxMLThXR1prLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC9kNjEyYTMtNDYzMS00N2RlLTk0MGQtOGJlMGQ5NzY4MmFi LzEvNE9PWGJaN0xnd21vR0ItOUFseWxMLThXR1prLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQK+cn3iq jMfBxL20vS3xc8D1v6J0aLzNQhgMqWC9E9dm2oCamLTFFqRYFDqOnsdEqQ+HYwz0 B02Li6G2AejhIk3Wa4ddRWcjyhcepSFpD6HCqpLKdSg6VHB2oeSQ31Dj3r+gWq4o KSBZ1rqr0qJ1V6eMm0wrhNJmzfoSLE/ZWJYKvN/RomhbGI8VF80i9NqOriCo/VL4 2ugfQZboJUyhykQlJ5T06lcaCayMHb1vqkwzf1w7uZApWNBpXyHFt5cuQ/9otKr9 rSfKB9mszt+HMYgKdW40D/rST6EZCyn5KKyeakTpjmOXJ0XKf5kpaq1ngvrIUDS3 SXKUzVk5ZZJevg== -----END CERTIFICATE-----Generated at Sun Jan 25 21:10:07 2026 by rpki-client