This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft File: oJfWos9CiA2-v0KjJRkHohyRpKU.mft (raw, json) Hash identifier: g1s5taXuDqeiR6qe6A4n7kyfIX2TEOIkGpz2tkSLyTY= Subject key identifier: DB:A1:E4:43:8F:D9:34:EB:A3:CC:46:C4:65:B7:6C:73:EE:0A:BB:B6 Authority key identifier: A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5 Certificate issuer: /CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5 Certificate serial: 019BF46357B651A6C6FCBD3F72FF219C75D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft Manifest number: 17E6 Signing time: Sun 25 Jan 2026 09:01:49 +0000 Manifest this update: Sun 25 Jan 2026 09:01:49 +0000 Manifest next update: Mon 26 Jan 2026 09:01:49 +0000 Files and hashes: 1: dqDFD25-lBr1H4kU-f-eIMyH1ao.roa (hash: aZMJNfpwSLS2DvVJl8WR74MQgSeC0Vd4cP1ssZtEpxQ=) 2: oJfWos9CiA2-v0KjJRkHohyRpKU.crl (hash: kMFkxfTlqelmQrU+zYUz5xntiCvNOooslc2541j+vjI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:63:57:b6:51:a6:c6:fc:bd:3f:72:ff:21:9c:75:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5 Validity Not Before: Jan 25 09:01:49 2026 GMT Not After : Jan 26 09:01:49 2026 GMT Subject: CN=dba1e4438fd934eba3cc46c465b76c73ee0abbb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e6:37:8e:7c:85:52:a6:e8:52:14:64:a3:07: ae:36:21:a4:7a:38:19:20:41:2a:5c:31:b3:0f:d2: 99:15:df:1c:5f:3e:40:f6:59:30:67:ee:9b:50:63: f6:3c:50:3f:b8:f2:99:a2:f4:80:89:63:6f:b7:2d: 21:32:1c:d8:16:89:00:a1:b5:9b:13:01:be:16:66: 7e:20:2e:3f:42:82:1e:49:fb:dd:86:bb:18:a5:cd: 1a:87:b3:bf:8c:31:bf:73:b6:eb:05:e1:80:cf:da: 52:0c:f2:03:f8:bb:0f:80:af:dc:b0:a8:f9:41:71: 1c:09:05:69:d3:f2:2b:e6:28:41:b2:54:d2:4e:be: 60:f4:36:c5:be:7a:3e:da:2f:1a:4a:91:d9:b5:3b: 21:42:f2:7f:71:44:98:d9:ab:08:29:a6:be:6e:f1: 66:8f:ba:68:0e:e1:23:4d:a3:76:7b:c5:f9:1d:60: f1:7d:dd:9e:48:b0:81:cc:4d:cc:f1:f9:ce:4a:75: db:ec:a7:23:86:f2:22:89:26:5a:9d:d8:70:11:49: 24:8f:fd:30:1c:73:df:31:68:3b:88:d5:81:77:44: 0a:9c:f5:89:4e:54:1d:89:36:65:81:09:c2:67:94: b1:2f:a3:c0:75:68:6b:e0:56:99:cf:e9:d6:9e:5f: 89:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A1:E4:43:8F:D9:34:EB:A3:CC:46:C4:65:B7:6C:73:EE:0A:BB:B6 X509v3 Authority Key Identifier: keyid:A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:a6:df:8c:5b:77:3e:b6:e6:aa:04:ea:28:c0:39:68:98:bd: 0f:95:3e:30:d5:e3:b8:c2:3a:3f:d1:4c:6f:67:a2:0a:a2:df: 9e:57:c4:e3:c2:35:7e:11:92:2b:53:ce:d3:07:e8:44:f2:8c: ef:b4:c0:21:fd:ad:05:07:cc:a7:63:29:88:d2:61:64:2f:3c: a7:84:6c:61:3d:f1:ec:d6:b3:7b:c1:79:a1:b3:6b:66:86:c9: 60:10:b8:09:46:a9:07:cd:60:31:8c:0a:a8:49:b4:19:b0:6c: c1:73:63:21:d9:8a:72:13:3d:ac:11:33:d4:f2:03:60:7c:64: dd:03:29:16:9e:05:7c:a0:67:10:cf:ce:1f:c9:b3:99:eb:af: 6e:6a:de:76:44:d1:45:d8:64:dc:10:82:76:24:44:fa:15:d3: 9d:07:2b:2c:51:bb:6b:48:c4:b6:73:3a:e4:a3:b2:8a:ab:87: 34:44:3e:6a:d8:93:8d:26:09:e8:32:cf:c1:f6:c2:e3:4c:20: 64:f6:5a:05:fa:7c:33:70:03:d9:91:6f:26:ed:4b:c1:c5:07: 92:bc:c5:7b:87:93:6f:ad:27:38:c3:5a:36:1e:e3:08:aa:a7: 54:37:77:0a:fc:17:87:fb:62:b6:cd:e9:ba:f2:c5:f2:1a:d0: d4:d0:8a:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0Y1e2UabG/L0/cv8hnHXTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwOTdkNmEyY2Y0Mjg4MGRiZWJmNDJhMzI1MTkwN2EyMWM5 MWE0YTUwHhcNMjYwMTI1MDkwMTQ5WhcNMjYwMTI2MDkwMTQ5WjAzMTEwLwYDVQQD EyhkYmExZTQ0MzhmZDkzNGViYTNjYzQ2YzQ2NWI3NmM3M2VlMGFiYmI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsuY3jnyFUqboUhRkoweuNiGkejgZ IEEqXDGzD9KZFd8cXz5A9lkwZ+6bUGP2PFA/uPKZovSAiWNvty0hMhzYFokAobWb EwG+FmZ+IC4/QoIeSfvdhrsYpc0ah7O/jDG/c7brBeGAz9pSDPID+LsPgK/csKj5 QXEcCQVp0/Ir5ihBslTSTr5g9DbFvno+2i8aSpHZtTshQvJ/cUSY2asIKaa+bvFm j7poDuEjTaN2e8X5HWDxfd2eSLCBzE3M8fnOSnXb7KcjhvIiiSZandhwEUkkj/0w HHPfMWg7iNWBd0QKnPWJTlQdiTZlgQnCZ5SxL6PAdWhr4FaZz+nWnl+JXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNuh5EOP2TTro8xGxGW3bHPuCru2MB8GA1UdIwQY MBaAFKCX1qLPQogNvr9CoyUZB6IckaSlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0pmV29zOUNpQTItdjBLakpSa0hvaHlScEtVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS80YzJiNjgtODE4Yi00OTAyLWI0MmYt NmZjYWYyNzI5YmU1LzEvb0pmV29zOUNpQTItdjBLakpSa0hvaHlScEtVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS80YzJiNjgtODE4Yi00OTAyLWI0MmYtNmZjYWYyNzI5YmU1 LzEvb0pmV29zOUNpQTItdjBLakpSa0hvaHlScEtVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM6bfjFt3 PrbmqgTqKMA5aJi9D5U+MNXjuMI6P9FMb2eiCqLfnlfE48I1fhGSK1PO0wfoRPKM 77TAIf2tBQfMp2MpiNJhZC88p4RsYT3x7Naze8F5obNrZobJYBC4CUapB81gMYwK qEm0GbBswXNjIdmKchM9rBEz1PIDYHxk3QMpFp4FfKBnEM/OH8mzmeuvbmredkTR Rdhk3BCCdiRE+hXTnQcrLFG7a0jEtnM65KOyiquHNEQ+atiTjSYJ6DLPwfbC40wg ZPZaBfp8M3AD2ZFvJu1LwcUHkrzFe4eTb60nOMNaNh7jCKqnVDd3CvwXh/tits3p uvLF8hrQ1NCK/A== -----END CERTIFICATE-----Generated at Sun Jan 25 20:33:03 2026 by rpki-client