This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft File: oFa0I4Othizmo3StLKbTbCVNx7E.mft (raw, json) Hash identifier: 90xPCwW3GQsQaTkyD3QKEUIkR4cFKnFUweKqRR5kosU= Subject key identifier: 0E:A7:37:AB:B7:48:DD:87:59:6A:64:5F:26:DA:2C:7A:76:66:1D:DD Authority key identifier: A0:56:B4:23:83:AD:86:2C:E6:A3:74:AD:2C:A6:D3:6C:25:4D:C7:B1 Certificate issuer: /CN=a056b42383ad862ce6a374ad2ca6d36c254dc7b1 Certificate serial: 019BF4D0E91D5AD14D488F8C998D423B1DC4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft Manifest number: 170C Signing time: Sun 25 Jan 2026 11:01:30 +0000 Manifest this update: Sun 25 Jan 2026 11:01:30 +0000 Manifest next update: Mon 26 Jan 2026 11:01:30 +0000 Files and hashes: 1: PGTd-Arp7Vz3rSSs0l8FiGHSz58.roa (hash: ClKyMhw4ls8O+22d3zwyr4Of9HO2Cqaa8e0NaPqWqxo=) 2: oFa0I4Othizmo3StLKbTbCVNx7E.crl (hash: SN7VSG5TmHlZkk2wAN7qbXi+/sruKrLQHcRpC0wyV3I=) 3: pteb03Zrz-92mfGhlVuUAxWiO1c.roa (hash: Tlsfv5MPyjgb+Ws3wZ+t04Extj+nRQ2rvjb3jvw/n0Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:e9:1d:5a:d1:4d:48:8f:8c:99:8d:42:3b:1d:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a056b42383ad862ce6a374ad2ca6d36c254dc7b1 Validity Not Before: Jan 25 11:01:30 2026 GMT Not After : Jan 26 11:01:30 2026 GMT Subject: CN=0ea737abb748dd87596a645f26da2c7a76661ddd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5b:8e:a5:7a:c5:f2:e3:d5:a8:8c:f7:26:0b: 7a:f4:f7:2c:8a:aa:15:ed:da:99:99:e7:ce:be:ed: 27:22:42:b2:56:b6:c4:68:d4:be:4f:19:26:c6:0f: 78:fd:3b:3c:f4:07:74:52:13:78:e5:02:b1:b5:ba: 80:5f:81:be:a7:a7:eb:ba:13:2c:86:ca:8e:0d:d7: 4c:d9:1f:95:28:34:14:91:a1:8b:91:41:ba:7b:bb: af:26:e9:9a:cf:38:77:a1:94:70:8e:16:b3:d2:a7: 4e:75:f7:e4:c2:b8:4d:2e:ce:e4:fd:a9:18:e1:5e: 2d:33:e9:dd:71:ce:80:c1:ff:d7:29:31:1d:46:88: 8e:58:61:bd:46:48:94:32:fa:fc:22:b8:fc:72:8e: 52:32:1b:24:c7:ea:df:8a:10:84:21:06:50:96:89: d9:28:6a:22:4d:d4:25:27:4f:af:62:c4:ea:a1:17: 95:12:f0:a3:a4:9a:6d:5c:6f:a3:c4:9b:85:7a:bc: 85:41:7f:61:b9:80:0b:91:9c:b1:9a:cc:c4:e7:10: 72:29:96:01:3c:b8:fc:25:cc:a1:05:56:9d:b1:7c: e6:b8:93:35:8a:4a:12:bb:5b:c1:cf:db:9c:25:c5: cd:57:25:28:66:ac:00:3b:bc:e7:fa:9c:24:9d:f6: 2b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:A7:37:AB:B7:48:DD:87:59:6A:64:5F:26:DA:2C:7A:76:66:1D:DD X509v3 Authority Key Identifier: keyid:A0:56:B4:23:83:AD:86:2C:E6:A3:74:AD:2C:A6:D3:6C:25:4D:C7:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:70:22:04:c3:44:5d:4e:26:0c:81:72:e0:93:9a:07:c8:06: 9d:68:11:46:dd:b8:57:0a:62:e4:ae:f3:85:10:3a:21:24:eb: cb:60:e8:a4:d8:6d:d9:ce:a7:73:27:15:8d:75:94:3c:32:28: 20:bc:e8:6e:18:f5:5d:c0:39:e6:41:0e:d2:3c:5b:dd:04:f3: 06:49:b7:13:34:ca:b2:aa:de:88:6b:f2:fa:19:29:49:18:1f: 3c:21:3c:bc:0b:ee:bc:fc:22:ec:3a:09:03:2b:cf:6e:88:cb: 04:67:34:30:14:2e:93:11:f9:38:86:03:0f:fc:3a:93:71:21: e6:6d:cd:e0:1d:e7:06:8c:fb:36:7b:c6:c8:db:c5:bb:e1:1b: 6b:8c:f6:9a:ff:92:28:99:c6:f0:6e:41:49:91:c2:dc:f5:53: 0a:44:40:89:27:4f:0c:b7:55:5c:6c:09:de:b0:02:33:21:66: d1:0d:71:e9:d7:be:25:a8:97:07:e1:4b:8f:06:81:cb:55:78: 21:5f:97:d9:8e:f5:6d:a8:22:91:7e:fc:d3:35:51:c2:4f:a4: 2a:14:aa:29:34:d8:67:d9:63:6b:c2:a2:7f:51:61:7b:fd:c1: 00:22:bd:3c:42:ad:86:78:af:3e:92:2f:b8:e3:c1:ea:ff:06: be:71:f9:91 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00OkdWtFNSI+MmY1COx3EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwNTZiNDIzODNhZDg2MmNlNmEzNzRhZDJjYTZkMzZjMjU0 ZGM3YjEwHhcNMjYwMTI1MTEwMTMwWhcNMjYwMTI2MTEwMTMwWjAzMTEwLwYDVQQD EygwZWE3MzdhYmI3NDhkZDg3NTk2YTY0NWYyNmRhMmM3YTc2NjYxZGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFuOpXrF8uPVqIz3Jgt69PcsiqoV 7dqZmefOvu0nIkKyVrbEaNS+Txkmxg94/Ts89Ad0UhN45QKxtbqAX4G+p6fruhMs hsqODddM2R+VKDQUkaGLkUG6e7uvJumazzh3oZRwjhaz0qdOdffkwrhNLs7k/akY 4V4tM+ndcc6Awf/XKTEdRoiOWGG9RkiUMvr8Irj8co5SMhskx+rfihCEIQZQlonZ KGoiTdQlJ0+vYsTqoReVEvCjpJptXG+jxJuFeryFQX9huYALkZyxmszE5xByKZYB PLj8JcyhBVadsXzmuJM1ikoSu1vBz9ucJcXNVyUoZqwAO7zn+pwknfYrLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA6nN6u3SN2HWWpkXybaLHp2Zh3dMB8GA1UdIwQY MBaAFKBWtCODrYYs5qN0rSym02wlTcexMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0ZhMEk0T3RoaXptbzNTdExLYlRiQ1ZOeDdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC8zZThkY2MtYTc2NC00NGJlLWI1MDct OWIzZGQ0MTdjMzA4LzEvb0ZhMEk0T3RoaXptbzNTdExLYlRiQ1ZOeDdFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC8zZThkY2MtYTc2NC00NGJlLWI1MDctOWIzZGQ0MTdjMzA4 LzEvb0ZhMEk0T3RoaXptbzNTdExLYlRiQ1ZOeDdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJnAiBMNE XU4mDIFy4JOaB8gGnWgRRt24Vwpi5K7zhRA6ISTry2DopNht2c6ncycVjXWUPDIo ILzobhj1XcA55kEO0jxb3QTzBkm3EzTKsqreiGvy+hkpSRgfPCE8vAvuvPwi7DoJ AyvPbojLBGc0MBQukxH5OIYDD/w6k3Eh5m3N4B3nBoz7NnvGyNvFu+Eba4z2mv+S KJnG8G5BSZHC3PVTCkRAiSdPDLdVXGwJ3rACMyFm0Q1x6de+JaiXB+FLjwaBy1V4 IV+X2Y71bagikX780zVRwk+kKhSqKTTYZ9lja8Kif1Fhe/3BACK9PEKthnivPpIv uOPB6v8GvnH5kQ== -----END CERTIFICATE-----Generated at Sun Jan 25 16:46:41 2026 by rpki-client