This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft File: OklF5GdkAp0lgdggwzc_pEWFVTk.mft (raw, json) Hash identifier: g96m0jfi2Vjm68G/KzL3hWxbjbUos73rnC5b08JHGDU= Subject key identifier: 03:00:24:3C:64:C6:0A:C0:68:49:83:67:37:C0:63:41:A3:27:D5:1B Authority key identifier: 3A:49:45:E4:67:64:02:9D:25:81:D8:20:C3:37:3F:A4:45:85:55:39 Certificate issuer: /CN=3a4945e46764029d2581d820c3373fa445855539 Certificate serial: 019BF53DE0210518CEEA1F2383DF56F72E31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft Manifest number: 17F7 Signing time: Sun 25 Jan 2026 13:00:31 +0000 Manifest this update: Sun 25 Jan 2026 13:00:31 +0000 Manifest next update: Mon 26 Jan 2026 13:00:31 +0000 Files and hashes: 1: 0273NJ6iQvZTgyuMash3xOhPLj8.roa (hash: 4bykyvzdYlZRg3u7BKzjHELAB3KL3rC2juBQve+S7UU=) 2: 78Cs8FmR3BIH_U5LsGqewvTlDV8.roa (hash: Z1dE+G16ehwR1QYJ/Luwdk+orufuAf1qVWJAWByx1UU=) 3: 9ieasZqKBlr3lokENCedNiqsCIM.roa (hash: TDVoR875fUbuSNWGAFsbE/WCEgXPy5Nn5pq79JskxQQ=) 4: 9xohe0WrdtI7HVhoFYevFGaGlbc.roa (hash: JlRzOAenO4QPVaHIwuTlBW/1CKfl7RhsHIL/eBfeU2g=) 5: OklF5GdkAp0lgdggwzc_pEWFVTk.crl (hash: qRMv7ERabS71KIz3L5K1BXSlV8QnOipgsipU4Wr98Rs=) 6: PrbXCFhVtFkWUcwdTHxrF95uYDo.roa (hash: qYxwfpMga93RAf62Cr8sXnqP6qDnonu8QcpFUw5HhJ8=) 7: aa9c3i_QmzIlTyi0XFZwJXrmq48.roa (hash: HcRPfUnw0rt8gf5+bGCJq0Ra7n/YA9e5E/2HwqC6qHA=) 8: pdrRYgteZLUMBCQJIc10YC36u-o.roa (hash: fx4ol1jSVjOBVf92RkrVydBgXb8sh/pU0bwRASzDz2U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:3d:e0:21:05:18:ce:ea:1f:23:83:df:56:f7:2e:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a4945e46764029d2581d820c3373fa445855539 Validity Not Before: Jan 25 13:00:31 2026 GMT Not After : Jan 26 13:00:31 2026 GMT Subject: CN=0300243c64c60ac06849836737c06341a327d51b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:87:ed:5c:d9:5b:02:d4:b5:79:45:00:49:60: e7:ea:a7:db:97:8a:c4:2d:a0:5e:74:41:c0:36:d1: 58:ab:06:07:be:8f:03:e2:1a:c5:a7:5e:95:ea:e3: 39:0e:ed:68:a4:39:c2:97:0c:07:6d:62:6b:45:48: 12:bc:7b:21:1d:84:cc:ce:60:5d:4e:fe:81:1a:3c: 30:2f:56:ed:93:8d:bc:59:38:0a:4c:5a:1c:8b:2e: 4a:c8:dc:94:c0:6e:af:e9:a7:c3:04:22:17:3f:a8: 71:89:69:fb:1e:b6:8b:9a:4f:eb:32:39:c8:be:34: 20:cf:d2:5e:ea:ea:fe:ea:da:53:67:7d:60:ac:98: c3:5b:cf:7f:d2:ee:6e:1a:22:51:d6:3e:73:e8:ec: 21:f6:85:2a:5e:d3:9f:50:8d:56:4d:42:b4:1d:e7: 2b:44:92:f5:48:de:47:5f:03:5d:9e:dc:15:1e:28: aa:03:4f:7d:69:9f:7a:6a:81:26:26:d4:61:7e:ff: 36:62:f2:f5:6b:27:80:2f:da:ab:32:8a:67:75:ec: 15:36:02:1b:2f:9c:98:38:0e:7c:82:9a:5e:ee:bc: 90:ea:cc:33:16:39:4e:e6:9e:ea:61:2a:f3:ce:b1: 4c:4c:a0:56:42:f0:36:eb:5c:3e:99:8d:5f:c2:1d: c8:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:00:24:3C:64:C6:0A:C0:68:49:83:67:37:C0:63:41:A3:27:D5:1B X509v3 Authority Key Identifier: keyid:3A:49:45:E4:67:64:02:9D:25:81:D8:20:C3:37:3F:A4:45:85:55:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:bd:31:c3:95:ca:ca:6d:c2:1d:87:7d:3f:d4:b6:c1:c4:4c: e0:39:95:45:7c:14:c7:0d:a7:89:5d:e6:f3:9c:7d:54:d6:b8: 7b:9f:e0:9c:0a:13:ba:ba:25:0f:72:95:c9:fe:ee:43:d9:d5: b8:98:d2:37:6d:db:d2:b4:5d:34:90:3c:37:3b:c2:75:70:68: 3d:79:62:1b:34:df:28:6d:84:fa:35:4f:3d:44:27:88:ff:1b: 78:2c:68:56:c5:d9:c4:a1:56:1b:43:b5:05:4d:49:40:21:1f: 9b:e8:8d:7e:ee:e2:c5:13:6a:cb:28:6b:13:a5:b2:e3:11:e7: 26:f3:4f:4c:b3:59:e5:0a:ee:e5:8b:eb:3b:6a:d2:f7:6e:93: 07:72:e5:4d:de:fd:7a:72:79:cb:a7:58:d9:f8:be:c8:42:18: 60:23:d0:51:08:e8:e1:44:1c:7f:3e:b1:b9:12:f3:d0:3b:6e: 38:2e:2b:70:b5:8c:ee:20:13:5d:9b:4f:32:6c:a7:37:da:92: a1:fb:69:6a:2a:14:16:0f:96:4c:41:23:12:00:a0:a1:6c:e6: e1:07:17:55:0d:28:bf:40:2c:6d:fc:77:e7:9e:b8:d8:c0:cb: 71:1b:9b:b3:0a:90:35:9e:39:fa:26:ea:ff:8a:57:67:ed:78: 4d:05:c6:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1PeAhBRjO6h8jg99W9y4xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNDk0NWU0Njc2NDAyOWQyNTgxZDgyMGMzMzczZmE0NDU4 NTU1MzkwHhcNMjYwMTI1MTMwMDMxWhcNMjYwMTI2MTMwMDMxWjAzMTEwLwYDVQQD EygwMzAwMjQzYzY0YzYwYWMwNjg0OTgzNjczN2MwNjM0MWEzMjdkNTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4ftXNlbAtS1eUUASWDn6qfbl4rE LaBedEHANtFYqwYHvo8D4hrFp16V6uM5Du1opDnClwwHbWJrRUgSvHshHYTMzmBd Tv6BGjwwL1btk428WTgKTFociy5KyNyUwG6v6afDBCIXP6hxiWn7HraLmk/rMjnI vjQgz9Je6ur+6tpTZ31grJjDW89/0u5uGiJR1j5z6Owh9oUqXtOfUI1WTUK0Hecr RJL1SN5HXwNdntwVHiiqA099aZ96aoEmJtRhfv82YvL1ayeAL9qrMopndewVNgIb L5yYOA58gppe7ryQ6swzFjlO5p7qYSrzzrFMTKBWQvA261w+mY1fwh3IYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAMAJDxkxgrAaEmDZzfAY0GjJ9UbMB8GA1UdIwQY MBaAFDpJReRnZAKdJYHYIMM3P6RFhVU5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS80ZWY2ODAtN2M1NS00YTViLTg1Njgt MzM2YWM5NDU2NDY0LzEvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS80ZWY2ODAtN2M1NS00YTViLTg1NjgtMzM2YWM5NDU2NDY0 LzEvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACb0xw5XK ym3CHYd9P9S2wcRM4DmVRXwUxw2niV3m85x9VNa4e5/gnAoTurolD3KVyf7uQ9nV uJjSN23b0rRdNJA8NzvCdXBoPXliGzTfKG2E+jVPPUQniP8beCxoVsXZxKFWG0O1 BU1JQCEfm+iNfu7ixRNqyyhrE6Wy4xHnJvNPTLNZ5Qru5YvrO2rS926TB3LlTd79 enJ5y6dY2fi+yEIYYCPQUQjo4UQcfz6xuRLz0DtuOC4rcLWM7iATXZtPMmynN9qS oftpaioUFg+WTEEjEgCgoWzm4QcXVQ0ov0Asbfx355642MDLcRubswqQNZ45+ibq /4pXZ+14TQXGWQ== -----END CERTIFICATE-----Generated at Sun Jan 25 20:07:52 2026 by rpki-client