This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft File: OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft (raw, json) Hash identifier: XFf03Bo8yE5n6uIWP6huWW4GQBtqsBahOdMTV22QA5g= Subject key identifier: 1D:96:86:86:D1:8A:19:44:F8:F2:C4:2F:FD:61:24:C6:08:A9:50:49 Authority key identifier: 38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B Certificate issuer: /CN=38a8550659bb68e770d8b0126b7261fb87d8240b Certificate serial: 019BF8AD7E0897C7093461BF60FC4CADD591 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft Manifest number: 17EE Signing time: Mon 26 Jan 2026 05:01:18 +0000 Manifest this update: Mon 26 Jan 2026 05:01:18 +0000 Manifest next update: Tue 27 Jan 2026 05:01:18 +0000 Files and hashes: 1: GS12T19X33XYAhf098NVhyXx3j4.roa (hash: 2sPtA3M8U954wEjtNrs6ONRJ78QRH5zWAILMakv6ILg=) 2: OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl (hash: ZkjBQgLR084UdZrQFziv2ssLdzRo5GZTml7joQ9esLM=) 3: Ys4PogIAyq6Z-1e6V87HwtKW-Jw.roa (hash: 9OEorLPT8PEnhbBuzCTUI3Vb5lQD/nIA0b2dhSxkYk4=) 4: ckGyseiXClHPKvZc0nmqY19ttos.roa (hash: Yi/gbRZzD3hzlnLpg0sfEHwVq1nYLL7ZQtIyu02d0kc=) 5: flQssGcGnPHhqNGkKwTNsJejaeQ.roa (hash: 7MK/e6VIAjwZyf2enbWUdzme5SKLDGdFufR5UtJ+Iyo=) 6: tI1eWKq17tDG9hQWcAP-FozruWU.roa (hash: yszzGKzH2Y3utLHy31Xungt79IkdPWx2rbVckLVltxM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:ad:7e:08:97:c7:09:34:61:bf:60:fc:4c:ad:d5:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38a8550659bb68e770d8b0126b7261fb87d8240b Validity Not Before: Jan 26 05:01:18 2026 GMT Not After : Jan 27 05:01:18 2026 GMT Subject: CN=1d968686d18a1944f8f2c42ffd6124c608a95049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d5:84:5e:d2:00:ca:98:93:73:c5:32:68:97: 8c:d5:6c:69:b5:55:d5:ea:19:c5:98:59:4d:39:71: d4:96:d8:98:f3:f6:8b:c7:ce:de:68:0e:f4:12:3b: 62:b7:ee:0f:c1:ff:97:46:60:a9:8f:d5:e4:0e:4b: 04:39:92:1e:c3:52:56:9a:f4:96:37:26:f6:ba:1a: 23:e3:6d:60:26:d8:01:02:90:ed:8e:35:80:2f:8a: aa:0b:64:20:fd:d7:75:1d:17:d1:d6:dc:15:ae:66: a8:8d:ca:56:80:00:ad:3d:a7:e9:b2:56:44:63:a6: 14:2b:26:6c:a1:99:4c:a5:dc:a7:ca:ba:c2:b2:69: 64:d4:19:16:41:1b:27:2d:33:51:46:8f:ac:7e:21: 76:5c:38:e1:ba:ef:46:c2:0b:f5:4b:a3:a0:b8:bd: 46:7d:fb:69:58:bc:35:3a:6a:41:1b:4a:3c:9b:4a: e8:68:ad:1a:8f:98:da:85:32:48:14:85:ab:5e:d8: 6f:2e:d3:9f:3a:31:c3:b7:48:da:82:98:c2:70:2d: 40:17:a9:57:15:55:58:e5:24:fe:99:c3:04:e4:73: 2d:39:7e:fc:d2:38:ab:c1:19:49:09:56:a8:6d:6b: c8:83:4a:fe:30:f0:a8:70:91:ca:c7:87:7d:f5:46: f1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:96:86:86:D1:8A:19:44:F8:F2:C4:2F:FD:61:24:C6:08:A9:50:49 X509v3 Authority Key Identifier: keyid:38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:ac:74:b5:44:c5:fa:cc:22:6b:0a:fe:75:ef:5a:c8:cd:f9: f9:a2:1a:ad:8f:61:84:39:26:d4:65:42:7d:76:b4:75:67:38: f1:85:65:81:a1:1c:1e:3b:5e:cd:64:95:ce:08:4b:8e:ed:06: cd:98:47:f7:7e:3e:89:82:56:20:71:03:bb:a3:c8:9d:dc:18: 18:18:56:2b:48:ba:ba:dc:91:ad:1f:8a:ab:fa:1c:52:c1:f2: 8a:b0:68:8c:1e:17:1a:3e:b3:d6:c5:dd:75:11:d4:90:63:0f: c5:63:39:c7:99:2d:22:30:60:59:4b:76:84:dd:22:6b:8a:ca: 4f:0a:fd:22:13:1a:8d:00:dc:dc:85:8b:c1:82:fb:a0:c5:77: 63:28:48:c0:27:13:cd:33:c0:16:5a:32:cc:f9:b0:1b:c6:b2: 0a:a1:80:83:1d:59:04:27:6f:5c:ef:e7:96:37:e7:c7:56:7f: 6a:73:2c:61:88:42:d0:e9:5a:5b:a8:01:7d:65:4f:4b:06:63: 1b:4b:d9:13:6e:0b:18:44:58:cc:fe:38:0d:c4:e5:1c:32:e6: 35:85:0f:24:bb:5f:4e:16:92:a3:d5:5e:44:d8:f5:4c:73:a2: e9:a9:46:92:a3:28:ab:14:74:91:ab:72:b3:f3:eb:b4:e9:75: 4d:84:24:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4rX4Il8cJNGG/YPxMrdWRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4YTg1NTA2NTliYjY4ZTc3MGQ4YjAxMjZiNzI2MWZiODdk ODI0MGIwHhcNMjYwMTI2MDUwMTE4WhcNMjYwMTI3MDUwMTE4WjAzMTEwLwYDVQQD EygxZDk2ODY4NmQxOGExOTQ0ZjhmMmM0MmZmZDYxMjRjNjA4YTk1MDQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNWEXtIAypiTc8UyaJeM1WxptVXV 6hnFmFlNOXHUltiY8/aLx87eaA70Ejtit+4Pwf+XRmCpj9XkDksEOZIew1JWmvSW Nyb2uhoj421gJtgBApDtjjWAL4qqC2Qg/dd1HRfR1twVrmaojcpWgACtPafpslZE Y6YUKyZsoZlMpdynyrrCsmlk1BkWQRsnLTNRRo+sfiF2XDjhuu9Gwgv1S6OguL1G fftpWLw1OmpBG0o8m0roaK0aj5jahTJIFIWrXthvLtOfOjHDt0jagpjCcC1AF6lX FVVY5ST+mcME5HMtOX780jirwRlJCVaobWvIg0r+MPCocJHKx4d99UbxswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB2WhobRihlE+PLEL/1hJMYIqVBJMB8GA1UdIwQY MBaAFDioVQZZu2jncNiwEmtyYfuH2CQLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0toVkJsbTdhT2R3MkxBU2EzSmgtNGZZSkFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi83ZGNlNzMtYzRkZi00MzMzLThlODEt MWQ3MDNiNDk2NjM0LzEvT0toVkJsbTdhT2R3MkxBU2EzSmgtNGZZSkFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi83ZGNlNzMtYzRkZi00MzMzLThlODEtMWQ3MDNiNDk2NjM0 LzEvT0toVkJsbTdhT2R3MkxBU2EzSmgtNGZZSkFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYax0tUTF +swiawr+de9ayM35+aIarY9hhDkm1GVCfXa0dWc48YVlgaEcHjtezWSVzghLju0G zZhH934+iYJWIHEDu6PIndwYGBhWK0i6utyRrR+Kq/ocUsHyirBojB4XGj6z1sXd dRHUkGMPxWM5x5ktIjBgWUt2hN0ia4rKTwr9IhMajQDc3IWLwYL7oMV3YyhIwCcT zTPAFloyzPmwG8ayCqGAgx1ZBCdvXO/nljfnx1Z/anMsYYhC0OlaW6gBfWVPSwZj G0vZE24LGERYzP44DcTlHDLmNYUPJLtfThaSo9VeRNj1THOi6alGkqMoqxR0katy s/PrtOl1TYQkQQ== -----END CERTIFICATE-----Generated at Mon Jan 26 07:46:24 2026 by rpki-client