This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft File: OzoF27nHf6Fu0QRpdHpcbm6riN4.mft (raw, json) Hash identifier: H7TimVkc7wTrfa/3pZcbSVtBnNP+ZWu1px6hfYrgUMM= Subject key identifier: B3:B8:66:24:C8:23:43:AA:4D:AE:41:AD:2F:DA:A2:6F:09:22:A4:17 Authority key identifier: 3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE Certificate issuer: /CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de Certificate serial: 019BF7D15367342C0E284E75FBDF346917F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft Manifest number: 07CA Signing time: Mon 26 Jan 2026 01:00:49 +0000 Manifest this update: Mon 26 Jan 2026 01:00:49 +0000 Manifest next update: Tue 27 Jan 2026 01:00:49 +0000 Files and hashes: 1: 8StX0WxvVxL5fDtFqnpRuPragb8.roa (hash: KTc11CLRkDoDh2bPnpdqQKRTLCJiEbLK9vVpkNsL14o=) 2: OzoF27nHf6Fu0QRpdHpcbm6riN4.crl (hash: KSQwjVzIY0RqUUV2ONQ+gsfkua6ezQ6eJxfTntSoVW8=) 3: bb_iJ1U1Lf6VC6Ovl038VnEkd0c.roa (hash: x4RJFA42s0Y6MhAsHNXRTYoSOIZLJ8yZ/qGJdWD8hcc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:d1:53:67:34:2c:0e:28:4e:75:fb:df:34:69:17:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de Validity Not Before: Jan 26 01:00:49 2026 GMT Not After : Jan 27 01:00:49 2026 GMT Subject: CN=b3b86624c82343aa4dae41ad2fdaa26f0922a417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:4c:02:07:1b:07:4c:3c:9d:4d:21:1c:47:af: 60:1e:b0:cd:33:8a:f8:fe:61:ba:74:67:30:93:21: 23:b7:8c:06:b7:11:cd:5a:92:b1:e6:8d:b5:5e:cb: 41:3d:56:8c:2d:a9:d8:d3:9e:5b:1e:02:f2:b4:f7: 49:7d:ce:5d:86:79:c8:9b:d2:56:80:9c:29:09:a1: 7f:27:8c:8b:0e:6a:24:4b:5c:c7:4e:30:e5:ef:8e: 49:e8:e8:fd:5b:f2:b2:a8:91:9a:5b:ff:1e:18:5e: f1:52:87:fe:02:8e:a4:3c:3f:cf:a5:62:cf:79:53: 85:8f:87:a6:a1:6a:45:81:4b:48:97:72:db:89:75: 10:2d:a2:15:ff:b2:1c:9c:f3:4a:75:e2:9f:94:a5: 83:2d:f2:a1:16:5e:2b:ef:3d:25:db:f8:fc:2e:52: 5d:dd:c2:c2:b4:a6:09:d1:c8:81:2e:f7:3b:02:13: d9:7c:78:c9:c5:24:d0:b9:c9:f3:03:e5:6f:be:f2: 4b:5c:32:c3:31:7a:c7:08:e1:37:24:1c:e3:d3:43: a2:98:c2:b4:f6:14:15:16:3a:3c:8f:bd:01:a8:a5: 7d:bd:f3:44:e5:22:77:04:ef:b3:11:37:ed:70:7c: ad:92:33:a2:81:3e:73:cf:5b:8e:8d:e0:8f:c4:b7: 09:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:B8:66:24:C8:23:43:AA:4D:AE:41:AD:2F:DA:A2:6F:09:22:A4:17 X509v3 Authority Key Identifier: keyid:3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:88:5e:5f:36:dd:9c:89:ef:6a:36:98:dd:57:ee:bd:21:6e: 6f:8d:5a:03:79:98:eb:0c:90:d0:3a:a2:2d:e3:db:85:f9:db: 74:2c:41:c0:e9:79:8e:fe:2e:90:f5:0e:bc:85:9d:e0:77:45: 1b:b8:de:77:ed:07:0d:4d:79:5a:3f:f5:35:61:6c:cc:60:2a: 26:3a:1a:5c:5f:4d:e0:f6:d0:ed:64:e2:a4:85:1a:25:c9:de: 8e:20:21:32:9f:e5:5a:8c:94:aa:c5:d9:a0:88:a2:14:b7:da: 8d:32:4b:54:41:40:d2:c0:b2:88:8b:58:4f:18:98:fd:9c:9b: 7d:fc:ba:1a:3e:17:e5:bf:32:17:fc:18:d1:f5:05:d9:3f:42: e0:16:42:91:85:bd:17:04:00:b6:a2:8f:b9:fc:03:91:c5:75: df:b7:02:21:4e:f7:df:0a:9e:46:f0:69:26:c1:ff:99:c8:06: 5c:18:c0:62:97:0d:68:43:9f:d7:47:f6:2c:f6:85:74:f2:ba: 72:32:46:51:1e:8e:a7:6a:e1:69:a3:03:ce:54:a4:38:74:e4: 81:c2:51:3e:70:7f:11:4a:44:ad:e3:8b:2f:8d:ac:28:4f:c0: f6:72:e4:dd:40:fd:aa:9a:04:8c:9b:89:62:af:c3:cb:36:fb: 40:5b:19:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv30VNnNCwOKE51+980aRf2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiM2EwNWRiYjljNzdmYTE2ZWQxMDQ2OTc0N2E1YzZlNmVh Yjg4ZGUwHhcNMjYwMTI2MDEwMDQ5WhcNMjYwMTI3MDEwMDQ5WjAzMTEwLwYDVQQD EyhiM2I4NjYyNGM4MjM0M2FhNGRhZTQxYWQyZmRhYTI2ZjA5MjJhNDE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjEwCBxsHTDydTSEcR69gHrDNM4r4 /mG6dGcwkyEjt4wGtxHNWpKx5o21XstBPVaMLanY055bHgLytPdJfc5dhnnIm9JW gJwpCaF/J4yLDmokS1zHTjDl745J6Oj9W/KyqJGaW/8eGF7xUof+Ao6kPD/PpWLP eVOFj4emoWpFgUtIl3LbiXUQLaIV/7IcnPNKdeKflKWDLfKhFl4r7z0l2/j8LlJd 3cLCtKYJ0ciBLvc7AhPZfHjJxSTQucnzA+VvvvJLXDLDMXrHCOE3JBzj00OimMK0 9hQVFjo8j70BqKV9vfNE5SJ3BO+zETftcHytkjOigT5zz1uOjeCPxLcJBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLO4ZiTII0OqTa5BrS/aom8JIqQXMB8GA1UdIwQY MBaAFDs6Bdu5x3+hbtEEaXR6XG5uq4jeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3pvRjI3bkhmNkZ1MFFScGRIcGNibTZyaU40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS81YWEwNWEtNzIwZS00ZDU2LWEzYTgt YTAxYzM3Yjg4NzI4LzEvT3pvRjI3bkhmNkZ1MFFScGRIcGNibTZyaU40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS81YWEwNWEtNzIwZS00ZDU2LWEzYTgtYTAxYzM3Yjg4NzI4 LzEvT3pvRjI3bkhmNkZ1MFFScGRIcGNibTZyaU40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWoheXzbd nInvajaY3VfuvSFub41aA3mY6wyQ0DqiLePbhfnbdCxBwOl5jv4ukPUOvIWd4HdF G7jed+0HDU15Wj/1NWFszGAqJjoaXF9N4PbQ7WTipIUaJcnejiAhMp/lWoyUqsXZ oIiiFLfajTJLVEFA0sCyiItYTxiY/Zybffy6Gj4X5b8yF/wY0fUF2T9C4BZCkYW9 FwQAtqKPufwDkcV137cCIU733wqeRvBpJsH/mcgGXBjAYpcNaEOf10f2LPaFdPK6 cjJGUR6Op2rhaaMDzlSkOHTkgcJRPnB/EUpEreOLL42sKE/A9nLk3UD9qpoEjJuJ Yq/Dyzb7QFsZaQ== -----END CERTIFICATE-----Generated at Mon Jan 26 05:36:53 2026 by rpki-client