This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft File: oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft (raw, json) Hash identifier: 6MwJ25iuxsGKbakHoCryCtnthWAB9oxvCtUUB0Cse6s= Subject key identifier: AD:C7:91:65:E1:58:D7:E7:64:6E:39:5C:60:74:77:04:3E:E0:AF:72 Authority key identifier: A0:96:08:F1:5B:36:7A:EE:48:6B:85:6D:9E:40:4C:3D:1E:0A:5F:D4 Certificate issuer: /CN=a09608f15b367aee486b856d9e404c3d1e0a5fd4 Certificate serial: 019BF499DC753678DE09D6E164580E784D8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft Manifest number: 1522 Signing time: Sun 25 Jan 2026 10:01:22 +0000 Manifest this update: Sun 25 Jan 2026 10:01:22 +0000 Manifest next update: Mon 26 Jan 2026 10:01:22 +0000 Files and hashes: 1: lh0K5-Z5Aaz0j8wGnxp6HsFtPYk.roa (hash: JhDyY/3KKD4NQI4A4Yynp5xK7eSjDNrmxGYBJDA+6gE=) 2: oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl (hash: UppCl4lwGgj73u4bKe1wN0LwKMFQxeVt27IU8Bnsn0Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:99:dc:75:36:78:de:09:d6:e1:64:58:0e:78:4d:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a09608f15b367aee486b856d9e404c3d1e0a5fd4 Validity Not Before: Jan 25 10:01:22 2026 GMT Not After : Jan 26 10:01:22 2026 GMT Subject: CN=adc79165e158d7e7646e395c607477043ee0af72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:bd:f3:cc:ba:8d:0f:46:ab:82:62:fa:46:4d: 9e:92:b2:6c:6e:9d:39:b4:57:04:06:3e:1e:fb:b8: 70:91:aa:33:55:36:4c:09:fc:46:43:d2:7d:32:97: 5b:dc:b3:cf:62:6b:cb:ae:a4:d6:0a:bf:fe:d6:cc: 51:22:df:78:b2:c2:2e:2f:d5:7a:ce:5b:26:37:66: 47:a1:84:9a:6d:a9:27:54:f1:0f:16:ca:f2:8a:a9: d7:30:53:a3:96:87:84:f8:2d:fc:30:9a:a5:dc:db: 0f:d8:a4:10:67:bf:3e:df:4d:77:81:3a:29:a0:29: 6e:e8:78:3b:56:1a:1b:88:d5:42:0b:7e:c1:a6:bd: 23:1e:7c:4e:83:3a:18:b1:27:72:2c:62:f5:55:43: 47:4a:38:a4:7f:03:7f:73:37:f7:55:05:d4:a3:8b: fb:3e:3a:c9:0a:6a:33:ef:d3:fd:71:97:dd:de:a0: 49:ec:7b:b6:61:4e:61:3c:c1:39:50:33:23:0d:44: 49:da:9b:5f:0b:2c:6b:27:d7:e9:e4:41:f8:2c:c5: 02:2b:6b:e7:db:1c:8d:cc:e1:97:bd:7d:fb:1a:27: 47:72:f9:58:6b:06:6c:97:d9:f1:0e:8c:ec:63:f8: b6:30:40:17:c8:2a:8e:c4:de:ef:8d:cc:fc:9a:25: 4e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C7:91:65:E1:58:D7:E7:64:6E:39:5C:60:74:77:04:3E:E0:AF:72 X509v3 Authority Key Identifier: keyid:A0:96:08:F1:5B:36:7A:EE:48:6B:85:6D:9E:40:4C:3D:1E:0A:5F:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:27:c0:4a:4d:13:ec:bb:50:4f:ea:03:ab:c5:6c:dd:9d:1c: 2f:dc:a6:e0:ad:23:0e:73:e1:8f:a5:ca:d7:e1:ee:2a:1e:5b: c5:11:1d:72:be:9b:e5:94:37:4e:03:df:8e:39:dc:d8:62:87: 8d:04:43:b1:ef:aa:09:d6:da:c4:3c:bb:42:d1:f4:2c:ee:fb: 0a:6c:ae:53:23:e4:3a:0d:3f:91:98:58:e3:e4:e4:67:6d:a2: 1c:58:40:4d:0e:93:c0:42:65:c2:c3:92:d0:c7:4e:49:67:44: 21:ce:4c:f4:d5:0d:bc:ca:e8:58:60:5f:64:8b:05:ed:4a:60: ce:1b:9e:3b:c4:4a:ec:9a:51:92:51:aa:29:13:1d:7a:84:f5: 88:18:2c:e6:ab:54:ef:05:2c:d3:e9:26:fd:60:bf:aa:26:2b: 9a:c6:f9:93:30:59:35:34:7c:ad:c4:ea:3f:4f:e6:ba:42:2d: ff:77:27:0e:a4:53:b2:f7:2a:6c:c8:3c:37:d2:a1:51:7a:d3: 3e:fd:a0:54:d3:75:ff:7c:10:29:a7:6e:b0:49:95:43:27:7a: 89:a7:d0:95:56:ca:f8:54:07:96:00:e0:36:8d:b5:11:e4:fa: c5:9f:1f:08:1a:02:dd:e1:cd:aa:90:c4:bb:dd:75:6e:1a:e5: f5:a1:86:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0mdx1NnjeCdbhZFgOeE2MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwOTYwOGYxNWIzNjdhZWU0ODZiODU2ZDllNDA0YzNkMWUw YTVmZDQwHhcNMjYwMTI1MTAwMTIyWhcNMjYwMTI2MTAwMTIyWjAzMTEwLwYDVQQD EyhhZGM3OTE2NWUxNThkN2U3NjQ2ZTM5NWM2MDc0NzcwNDNlZTBhZjcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr73zzLqND0argmL6Rk2ekrJsbp05 tFcEBj4e+7hwkaozVTZMCfxGQ9J9Mpdb3LPPYmvLrqTWCr/+1sxRIt94ssIuL9V6 zlsmN2ZHoYSabaknVPEPFsryiqnXMFOjloeE+C38MJql3NsP2KQQZ78+3013gTop oClu6Hg7VhobiNVCC37Bpr0jHnxOgzoYsSdyLGL1VUNHSjikfwN/czf3VQXUo4v7 PjrJCmoz79P9cZfd3qBJ7Hu2YU5hPME5UDMjDURJ2ptfCyxrJ9fp5EH4LMUCK2vn 2xyNzOGXvX37GidHcvlYawZsl9nxDozsY/i2MEAXyCqOxN7vjcz8miVOgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK3HkWXhWNfnZG45XGB0dwQ+4K9yMB8GA1UdIwQY MBaAFKCWCPFbNnruSGuFbZ5ATD0eCl/UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0pZSThWczJldTVJYTRWdG5rQk1QUjRLWDlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi84MTA2NmQtMjEyMy00YjZkLThiY2Yt YjhlZDY2ZDQyNzgyLzEvb0pZSThWczJldTVJYTRWdG5rQk1QUjRLWDlRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi84MTA2NmQtMjEyMy00YjZkLThiY2YtYjhlZDY2ZDQyNzgy LzEvb0pZSThWczJldTVJYTRWdG5rQk1QUjRLWDlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMSfASk0T 7LtQT+oDq8Vs3Z0cL9ym4K0jDnPhj6XK1+HuKh5bxREdcr6b5ZQ3TgPfjjnc2GKH jQRDse+qCdbaxDy7QtH0LO77CmyuUyPkOg0/kZhY4+TkZ22iHFhATQ6TwEJlwsOS 0MdOSWdEIc5M9NUNvMroWGBfZIsF7UpgzhueO8RK7JpRklGqKRMdeoT1iBgs5qtU 7wUs0+km/WC/qiYrmsb5kzBZNTR8rcTqP0/mukIt/3cnDqRTsvcqbMg8N9KhUXrT Pv2gVNN1/3wQKadusEmVQyd6iafQlVbK+FQHlgDgNo21EeT6xZ8fCBoC3eHNqpDE u911bhrl9aGGHg== -----END CERTIFICATE-----Generated at Sun Jan 25 19:15:06 2026 by rpki-client