This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft File: oNMhbMzIY-ygw90YmUGxueo3ys0.mft (raw, json) Hash identifier: 5xdkTVOMIGPeTK8h47BxbNeF6O1mEUwGJw7a93kPl+8= Subject key identifier: 26:09:2E:9E:DE:80:29:06:C1:54:25:2A:0D:B2:E5:9A:C6:CE:36:E5 Authority key identifier: A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD Certificate issuer: /CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd Certificate serial: 019BF72CC2A8E8CD70ABB64E6FFA1EDA4808 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft Manifest number: 1037 Signing time: Sun 25 Jan 2026 22:01:04 +0000 Manifest this update: Sun 25 Jan 2026 22:01:04 +0000 Manifest next update: Mon 26 Jan 2026 22:01:04 +0000 Files and hashes: 1: RvaTJRlt29ftCtqE0WpwZqGpE9g.roa (hash: StTKZA1GU7wGVFQWDEqlmDXT/zh0mjE1gXIOwpYnhZU=) 2: oNMhbMzIY-ygw90YmUGxueo3ys0.crl (hash: +eowthCOwBS+eNdik4UNkQVgLiOeRrjZjYVkq925uNo=) 3: oTJ_SiNI-sTWNycV04ya44fLP9Q.roa (hash: oQAMQxzLon76LhylB305yCYYWrb8zMDw4+N6NR6rHCY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2c:c2:a8:e8:cd:70:ab:b6:4e:6f:fa:1e:da:48:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd Validity Not Before: Jan 25 22:01:04 2026 GMT Not After : Jan 26 22:01:04 2026 GMT Subject: CN=26092e9ede802906c154252a0db2e59ac6ce36e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c5:d3:85:b1:d2:38:e3:e0:d5:3f:ee:8a:41: 45:db:e6:81:9a:bb:f9:84:8a:74:29:81:ca:e5:d7: d8:d3:35:01:25:bb:72:ab:ec:78:74:f2:66:98:59: 1d:e9:c3:d2:89:63:8e:48:97:14:9c:f9:79:8c:ec: 73:63:66:f0:6a:38:c7:a1:31:57:28:86:01:11:5f: d6:08:8e:11:9e:de:96:99:03:d5:99:61:66:ad:d6: ee:05:49:4f:a8:7d:ac:cc:62:c4:9a:c0:cc:84:65: 0b:7a:c7:9b:fe:4b:16:ed:3d:41:5d:89:ee:51:74: 6e:74:79:77:a5:18:b1:a9:d0:56:19:ee:19:db:37: ba:45:a5:0c:2f:57:64:34:a8:93:35:64:4a:ea:19: a9:68:5c:05:40:ff:24:0f:56:1c:29:7d:4e:b7:6a: d0:13:f6:f9:25:50:77:e4:ab:35:0a:8b:f4:10:27: 5f:fb:ec:0a:ae:0f:8c:c9:2d:e9:b5:aa:6a:7c:86: 3c:fe:d9:0e:d2:6b:a7:74:fc:6d:ca:fc:f1:4c:ff: 48:28:b7:8f:cc:1d:f7:d1:f7:fd:a4:8b:cf:37:e3: 7f:4a:30:10:52:ef:84:d4:22:fb:f4:ca:20:91:7f: 80:42:ce:bf:a5:09:fa:98:3b:51:8c:a2:3f:0e:5e: f2:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:09:2E:9E:DE:80:29:06:C1:54:25:2A:0D:B2:E5:9A:C6:CE:36:E5 X509v3 Authority Key Identifier: keyid:A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:4e:3c:35:69:db:9b:bd:77:86:b9:f9:69:49:61:fb:a5:f4: ef:6f:92:d7:a0:76:0b:df:11:a2:56:cd:d5:00:33:f9:83:cd: e7:da:eb:e9:ed:fc:77:b9:75:be:d4:7c:d5:b1:9d:0f:a4:e0: 8a:00:9a:5c:41:01:f6:33:19:8f:7c:23:93:e2:a6:b7:dd:13: f6:69:7b:6d:41:6d:9b:db:13:66:c6:b6:83:ab:02:0c:bb:b1: 47:96:25:aa:a0:7b:02:77:4f:4f:31:73:0e:a3:a9:ec:97:81: 49:f8:9d:b9:ee:b7:9b:ac:5a:de:f2:50:f1:cf:5d:f1:18:4c: 4d:57:1d:7f:a0:b0:58:08:8c:05:4a:81:aa:b6:2a:a2:97:ef: b4:ba:04:68:27:f8:68:78:55:6e:72:90:d5:34:cf:bd:90:94: 23:8d:04:59:1c:70:d3:c3:ef:8a:07:0b:53:64:53:59:74:55: df:dc:d1:88:1d:ab:db:97:86:39:96:fc:4f:01:c6:ec:2c:0a: 3c:a0:d8:da:9a:59:cd:d9:75:93:05:b3:9f:8c:0c:e4:13:0d: dd:08:30:15:17:1c:13:76:ba:cc:7d:26:ae:d5:b0:75:7b:94: 61:3a:f4:0b:34:f7:20:a4:ff:75:a2:d4:b4:30:77:09:44:80: a6:ab:5c:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LMKo6M1wq7ZOb/oe2kgIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwZDMyMTZjY2NjODYzZWNhMGMzZGQxODk5NDFiMWI5ZWEz N2NhY2QwHhcNMjYwMTI1MjIwMTA0WhcNMjYwMTI2MjIwMTA0WjAzMTEwLwYDVQQD EygyNjA5MmU5ZWRlODAyOTA2YzE1NDI1MmEwZGIyZTU5YWM2Y2UzNmU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAocXThbHSOOPg1T/uikFF2+aBmrv5 hIp0KYHK5dfY0zUBJbtyq+x4dPJmmFkd6cPSiWOOSJcUnPl5jOxzY2bwajjHoTFX KIYBEV/WCI4Rnt6WmQPVmWFmrdbuBUlPqH2szGLEmsDMhGULeseb/ksW7T1BXYnu UXRudHl3pRixqdBWGe4Z2ze6RaUML1dkNKiTNWRK6hmpaFwFQP8kD1YcKX1Ot2rQ E/b5JVB35Ks1Cov0ECdf++wKrg+MyS3ptapqfIY8/tkO0mundPxtyvzxTP9IKLeP zB330ff9pIvPN+N/SjAQUu+E1CL79MogkX+AQs6/pQn6mDtRjKI/Dl7ysQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCYJLp7egCkGwVQlKg2y5ZrGzjblMB8GA1UdIwQY MBaAFKDTIWzMyGPsoMPdGJlBsbnqN8rNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb05NaGJNeklZLXlndzkwWW1VR3h1ZW8zeXMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9hNWIyZDEtY2JhMC00YTU0LWI0Mzgt MGQ0NGMwNGE4NDQ4LzEvb05NaGJNeklZLXlndzkwWW1VR3h1ZW8zeXMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9hNWIyZDEtY2JhMC00YTU0LWI0MzgtMGQ0NGMwNGE4NDQ4 LzEvb05NaGJNeklZLXlndzkwWW1VR3h1ZW8zeXMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlk48NWnb m713hrn5aUlh+6X072+S16B2C98RolbN1QAz+YPN59rr6e38d7l1vtR81bGdD6Tg igCaXEEB9jMZj3wjk+Kmt90T9ml7bUFtm9sTZsa2g6sCDLuxR5YlqqB7AndPTzFz DqOp7JeBSfidue63m6xa3vJQ8c9d8RhMTVcdf6CwWAiMBUqBqrYqopfvtLoEaCf4 aHhVbnKQ1TTPvZCUI40EWRxw08PvigcLU2RTWXRV39zRiB2r25eGOZb8TwHG7CwK PKDY2ppZzdl1kwWzn4wM5BMN3QgwFRccE3a6zH0mrtWwdXuUYTr0CzT3IKT/daLU tDB3CUSApqtcYw== -----END CERTIFICATE-----Generated at Mon Jan 26 01:21:26 2026 by rpki-client