This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft File: OklF5GdkAp0lgdggwzc_pEWFVTk.mft (raw, json) Hash identifier: d/zz85Xe/ZJyn/0O9kMcXD8lzHanmMKVHa46Ap2CVpE= Subject key identifier: F0:F8:66:C5:1C:E2:55:A3:01:BC:5A:EE:0F:A0:AF:39:F2:5A:4B:64 Authority key identifier: 3A:49:45:E4:67:64:02:9D:25:81:D8:20:C3:37:3F:A4:45:85:55:39 Certificate issuer: /CN=3a4945e46764029d2581d820c3373fa445855539 Certificate serial: 019BF34F7FB1F9E2D05236FC15CD7865AC0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft Manifest number: 17F6 Signing time: Sun 25 Jan 2026 04:00:32 +0000 Manifest this update: Sun 25 Jan 2026 04:00:32 +0000 Manifest next update: Mon 26 Jan 2026 04:00:32 +0000 Files and hashes: 1: 0273NJ6iQvZTgyuMash3xOhPLj8.roa (hash: 4bykyvzdYlZRg3u7BKzjHELAB3KL3rC2juBQve+S7UU=) 2: 78Cs8FmR3BIH_U5LsGqewvTlDV8.roa (hash: Z1dE+G16ehwR1QYJ/Luwdk+orufuAf1qVWJAWByx1UU=) 3: 9ieasZqKBlr3lokENCedNiqsCIM.roa (hash: TDVoR875fUbuSNWGAFsbE/WCEgXPy5Nn5pq79JskxQQ=) 4: 9xohe0WrdtI7HVhoFYevFGaGlbc.roa (hash: JlRzOAenO4QPVaHIwuTlBW/1CKfl7RhsHIL/eBfeU2g=) 5: OklF5GdkAp0lgdggwzc_pEWFVTk.crl (hash: 01jt+deegmkJc9Y6gWiyXBVCzNigQ3tsDbrsoymG34Y=) 6: PrbXCFhVtFkWUcwdTHxrF95uYDo.roa (hash: qYxwfpMga93RAf62Cr8sXnqP6qDnonu8QcpFUw5HhJ8=) 7: aa9c3i_QmzIlTyi0XFZwJXrmq48.roa (hash: HcRPfUnw0rt8gf5+bGCJq0Ra7n/YA9e5E/2HwqC6qHA=) 8: pdrRYgteZLUMBCQJIc10YC36u-o.roa (hash: fx4ol1jSVjOBVf92RkrVydBgXb8sh/pU0bwRASzDz2U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:4f:7f:b1:f9:e2:d0:52:36:fc:15:cd:78:65:ac:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a4945e46764029d2581d820c3373fa445855539 Validity Not Before: Jan 25 04:00:32 2026 GMT Not After : Jan 26 04:00:32 2026 GMT Subject: CN=f0f866c51ce255a301bc5aee0fa0af39f25a4b64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:50:64:c0:ac:6f:53:2d:66:43:e3:36:89:30: 13:19:6c:6b:8a:93:85:af:d0:e5:f1:c8:ad:d3:3a: 5b:34:38:a6:57:f0:48:4d:f8:ed:47:c4:b3:41:16: be:4b:da:65:0c:b1:01:0d:22:fc:9a:b9:91:5c:68: c1:dc:19:98:62:c4:22:74:ad:77:39:d9:e5:06:f9: 62:81:0d:97:71:9c:e7:de:4e:bd:3b:e6:ee:68:19: 96:76:c1:40:8a:ee:c3:5f:b1:91:a0:aa:36:03:4b: 34:07:5b:41:94:41:33:81:50:02:d2:c1:40:ad:ae: 5a:7b:2e:97:78:a5:74:2c:1c:8e:5c:b5:57:ef:c2: 6c:d2:25:74:9f:10:17:48:84:fa:07:cc:74:c3:4b: 99:43:a3:f4:cd:33:39:3b:2d:31:73:59:8d:09:40: 4e:60:0b:50:2d:8b:22:39:5b:3f:77:5b:ac:3d:fb: 26:28:23:07:d4:eb:5f:b5:e7:54:5d:22:74:e6:d8: a5:af:69:96:04:c6:8e:6e:3b:e7:4a:b6:db:8d:e9: 19:77:e3:a6:cf:86:f4:f3:7a:8c:c7:37:6c:ba:b6: c2:ef:45:d1:86:b4:5c:7a:14:09:58:d7:f0:94:ad: cb:c7:e8:fa:3b:b1:45:56:8f:eb:f6:a4:17:fa:da: 21:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F8:66:C5:1C:E2:55:A3:01:BC:5A:EE:0F:A0:AF:39:F2:5A:4B:64 X509v3 Authority Key Identifier: keyid:3A:49:45:E4:67:64:02:9D:25:81:D8:20:C3:37:3F:A4:45:85:55:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:d8:ac:6a:cf:e3:52:2a:68:7b:99:7b:88:83:b2:a2:e5:ff: 7f:43:6f:31:1b:40:84:55:2a:5f:4c:36:b9:db:30:d6:31:a2: 7e:bf:10:73:82:4a:6c:b9:cf:06:56:38:90:c6:4c:2c:d9:a7: c6:61:dd:58:c6:54:71:26:20:ef:82:60:38:fe:b8:b1:48:3c: ca:bf:fd:c5:99:a4:3c:c6:56:23:e9:85:cd:bc:21:0c:4a:97: 4f:2d:d6:8c:34:a4:86:dc:9f:31:ac:21:21:63:6b:91:f1:2b: a3:ad:93:ff:47:cc:5b:6f:64:95:d6:4b:c7:81:5c:4c:98:27: a9:d3:94:72:d9:a4:7d:bb:cf:98:53:2b:c5:db:c5:ff:a8:ae: 04:e0:25:e2:ca:0f:fd:5a:7a:0c:5e:d0:40:77:0e:58:4f:9f: 6e:46:2c:53:81:3b:28:9b:32:ce:53:3d:6b:e0:83:f5:27:91: 4f:3f:b5:d3:e3:18:0b:7d:07:4d:bf:28:c3:19:01:66:34:01: bd:d4:85:a3:74:c1:99:28:4a:f2:1b:cd:10:d9:6a:6c:11:6a: cc:c5:b9:0a:ec:78:cd:15:33:fb:3f:5f:53:89:90:fb:12:1d: 95:0c:d9:75:93:1a:07:66:c9:d7:76:85:83:ec:19:ef:79:17: 6e:c3:2f:88 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzT3+x+eLQUjb8Fc14ZawKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNDk0NWU0Njc2NDAyOWQyNTgxZDgyMGMzMzczZmE0NDU4 NTU1MzkwHhcNMjYwMTI1MDQwMDMyWhcNMjYwMTI2MDQwMDMyWjAzMTEwLwYDVQQD EyhmMGY4NjZjNTFjZTI1NWEzMDFiYzVhZWUwZmEwYWYzOWYyNWE0YjY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyVBkwKxvUy1mQ+M2iTATGWxripOF r9Dl8cit0zpbNDimV/BITfjtR8SzQRa+S9plDLEBDSL8mrmRXGjB3BmYYsQidK13 OdnlBvligQ2XcZzn3k69O+buaBmWdsFAiu7DX7GRoKo2A0s0B1tBlEEzgVAC0sFA ra5aey6XeKV0LByOXLVX78Js0iV0nxAXSIT6B8x0w0uZQ6P0zTM5Oy0xc1mNCUBO YAtQLYsiOVs/d1usPfsmKCMH1OtftedUXSJ05tilr2mWBMaObjvnSrbbjekZd+Om z4b083qMxzdsurbC70XRhrRcehQJWNfwlK3Lx+j6O7FFVo/r9qQX+tohCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPD4ZsUc4lWjAbxa7g+grznyWktkMB8GA1UdIwQY MBaAFDpJReRnZAKdJYHYIMM3P6RFhVU5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS80ZWY2ODAtN2M1NS00YTViLTg1Njgt MzM2YWM5NDU2NDY0LzEvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS80ZWY2ODAtN2M1NS00YTViLTg1NjgtMzM2YWM5NDU2NDY0 LzEvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhdisas/j Uipoe5l7iIOyouX/f0NvMRtAhFUqX0w2udsw1jGifr8Qc4JKbLnPBlY4kMZMLNmn xmHdWMZUcSYg74JgOP64sUg8yr/9xZmkPMZWI+mFzbwhDEqXTy3WjDSkhtyfMawh IWNrkfEro62T/0fMW29kldZLx4FcTJgnqdOUctmkfbvPmFMrxdvF/6iuBOAl4soP /Vp6DF7QQHcOWE+fbkYsU4E7KJsyzlM9a+CD9SeRTz+10+MYC30HTb8owxkBZjQB vdSFo3TBmShK8hvNENlqbBFqzMW5Cux4zRUz+z9fU4mQ+xIdlQzZdZMaB2bJ13aF g+wZ73kXbsMviA== -----END CERTIFICATE-----Generated at Sun Jan 25 11:06:29 2026 by rpki-client