This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft File: rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft (raw, json) Hash identifier: gAuASeMDbM/x+qdqog+Tcn63BBV4QFykS0pBADyiNFY= Subject key identifier: 8E:95:1D:8F:1C:07:C0:5E:A5:A3:24:90:53:27:62:64:15:3C:E6:7E Authority key identifier: AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C Certificate issuer: /CN=acebf396c9adf94f84dc901656e255ce6d50660c Certificate serial: 019BF4D0D1A63E16719C055CE37BCC8C54A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft Manifest number: 045E Signing time: Sun 25 Jan 2026 11:01:24 +0000 Manifest this update: Sun 25 Jan 2026 11:01:24 +0000 Manifest next update: Mon 26 Jan 2026 11:01:24 +0000 Files and hashes: 1: Rr66ufKb1MLh9Wv3Z89vKrKFJI0.roa (hash: Yiy6bWp1Un5UwdmVbAZxKqnd38OQfcX3Y4LJySknw8Y=) 2: rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl (hash: dE63ZJ87t22qaazM51xZ25BxyJpWTPB79lFVF8OxsSM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:d1:a6:3e:16:71:9c:05:5c:e3:7b:cc:8c:54:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=acebf396c9adf94f84dc901656e255ce6d50660c Validity Not Before: Jan 25 11:01:24 2026 GMT Not After : Jan 26 11:01:24 2026 GMT Subject: CN=8e951d8f1c07c05ea5a3249053276264153ce67e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:13:5f:0b:63:2e:af:b1:75:61:6d:d2:4d:fd: 39:69:4d:d0:cc:26:2c:db:7f:24:42:ff:23:d3:b5: 85:62:4a:89:67:41:68:33:5b:d2:f9:7d:30:5f:f8: d6:58:31:66:28:f4:36:c3:b0:86:2f:ef:96:e7:ca: c7:13:86:85:e1:d4:48:4d:42:17:a5:19:56:f6:7c: bd:ae:52:7e:99:29:c8:1e:18:40:af:61:0f:02:d8: 9d:48:4a:34:e4:d8:d6:03:cb:44:e8:90:84:16:bf: 41:f1:a2:bf:6c:02:31:52:cc:bc:e6:3b:bb:f1:8b: 3b:fe:44:7a:71:c4:c6:56:91:7b:b6:88:da:a6:65: d0:b4:df:47:50:fa:f7:37:55:e8:6e:45:c3:b4:03: 41:a3:b9:74:4d:6c:d9:99:8d:0d:84:bd:88:49:e7: 03:37:f1:fc:bf:08:c1:24:0a:bf:78:e2:c1:73:36: e4:4f:3a:16:1b:c4:bc:29:95:d6:26:fb:05:27:3f: 2f:79:17:e3:99:54:95:5f:50:c8:af:12:c5:f2:83: 88:72:86:2f:77:b4:fa:9b:51:bf:93:46:de:af:87: 7a:9f:93:ce:58:61:6a:55:29:85:70:4b:27:1e:c9: 33:d9:dd:60:a0:85:85:6f:57:04:31:3b:6f:90:04: 51:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:95:1D:8F:1C:07:C0:5E:A5:A3:24:90:53:27:62:64:15:3C:E6:7E X509v3 Authority Key Identifier: keyid:AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:8b:41:5f:d9:71:8b:b4:45:bc:69:3e:17:21:87:35:35:e7: 92:48:00:cb:eb:b4:ea:ae:9b:17:99:7a:5a:78:44:e5:9c:d3: d9:8d:0e:a7:bf:a9:12:68:6e:04:5b:84:c1:3e:c1:9d:27:94: 18:d4:9a:ca:63:d5:1e:bf:22:a4:33:ec:61:aa:5d:11:18:66: 4d:86:8d:dd:c4:84:f8:a9:f8:9d:f6:fa:eb:bb:12:ba:7a:31: fa:de:3a:4f:53:40:ef:5c:e2:fa:d4:3d:09:e8:e3:62:9a:26: 3e:0d:48:8e:be:bd:6d:b8:91:6a:94:40:5d:c4:e3:10:04:ea: cb:a6:71:c0:ad:32:d2:d6:a0:9a:0a:7d:7b:9c:52:fd:9f:03: 20:a3:b6:f7:6b:86:3b:55:31:f1:48:22:15:c2:64:ed:37:c2: f5:88:f6:d4:5f:97:4c:3c:8f:c6:2d:d7:d6:3a:a8:34:18:3b: 74:de:05:69:cf:d8:5d:ec:fb:6c:9f:6c:d7:1b:d6:c6:41:ee: b7:12:3a:6b:bb:79:2c:e6:e8:7e:92:43:88:c9:46:56:26:13: b0:72:83:5a:27:b8:cc:a7:da:bb:c1:c2:69:02:35:bb:82:6c: d5:ea:f7:34:ca:a6:bd:f1:dc:b9:da:94:03:df:82:08:c3:bc: f4:89:4a:fa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00NGmPhZxnAVc43vMjFSjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjZWJmMzk2YzlhZGY5NGY4NGRjOTAxNjU2ZTI1NWNlNmQ1 MDY2MGMwHhcNMjYwMTI1MTEwMTI0WhcNMjYwMTI2MTEwMTI0WjAzMTEwLwYDVQQD Eyg4ZTk1MWQ4ZjFjMDdjMDVlYTVhMzI0OTA1MzI3NjI2NDE1M2NlNjdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7hNfC2Mur7F1YW3STf05aU3QzCYs 238kQv8j07WFYkqJZ0FoM1vS+X0wX/jWWDFmKPQ2w7CGL++W58rHE4aF4dRITUIX pRlW9ny9rlJ+mSnIHhhAr2EPAtidSEo05NjWA8tE6JCEFr9B8aK/bAIxUsy85ju7 8Ys7/kR6ccTGVpF7tojapmXQtN9HUPr3N1XobkXDtANBo7l0TWzZmY0NhL2ISecD N/H8vwjBJAq/eOLBczbkTzoWG8S8KZXWJvsFJz8veRfjmVSVX1DIrxLF8oOIcoYv d7T6m1G/k0ber4d6n5POWGFqVSmFcEsnHskz2d1goIWFb1cEMTtvkARR7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI6VHY8cB8BepaMkkFMnYmQVPOZ+MB8GA1UdIwQY MBaAFKzr85bJrflPhNyQFlbiVc5tUGYMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvck92emxzbXQtVS1FM0pBV1Z1SlZ6bTFRWmd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS85NzFkYzUtMTRmMy00ZDk1LWIwYmQt NDg0N2QzOTNhYjU1LzEvck92emxzbXQtVS1FM0pBV1Z1SlZ6bTFRWmd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS85NzFkYzUtMTRmMy00ZDk1LWIwYmQtNDg0N2QzOTNhYjU1 LzEvck92emxzbXQtVS1FM0pBV1Z1SlZ6bTFRWmd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkYtBX9lx i7RFvGk+FyGHNTXnkkgAy+u06q6bF5l6WnhE5ZzT2Y0Op7+pEmhuBFuEwT7BnSeU GNSaymPVHr8ipDPsYapdERhmTYaN3cSE+Kn4nfb667sSunox+t46T1NA71zi+tQ9 CejjYpomPg1Ijr69bbiRapRAXcTjEATqy6ZxwK0y0tagmgp9e5xS/Z8DIKO292uG O1Ux8UgiFcJk7TfC9Yj21F+XTDyPxi3X1jqoNBg7dN4Fac/YXez7bJ9s1xvWxkHu txI6a7t5LObofpJDiMlGViYTsHKDWie4zKfau8HCaQI1u4Js1er3NMqmvfHcudqU A9+CCMO89IlK+g== -----END CERTIFICATE-----Generated at Sun Jan 25 19:44:44 2026 by rpki-client