This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft File: pOuetVR8f18ar8CtoUCAVBlhhyY.mft (raw, json) Hash identifier: P3NfQzDO+oi098FJSMMeu6ru6ImgrYWvKV7nuA7//B0= Subject key identifier: 69:EE:30:64:2A:28:CB:A2:94:FB:FD:F7:B5:05:23:34:60:55:79:6F Authority key identifier: A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26 Certificate issuer: /CN=a4eb9eb5547c7f5f1aafc0ada140805419618726 Certificate serial: 019BF651A082EDFFB2998C82322866AD7C0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft Manifest number: 0BD9 Signing time: Sun 25 Jan 2026 18:01:43 +0000 Manifest this update: Sun 25 Jan 2026 18:01:43 +0000 Manifest next update: Mon 26 Jan 2026 18:01:43 +0000 Files and hashes: 1: nNI8cWDrdupy6QxxnpymseWXDm8.roa (hash: /qGCtHyxtyMb0gDue0+bsmpvI9xz1vBM6ikbcYD+rGo=) 2: pOuetVR8f18ar8CtoUCAVBlhhyY.crl (hash: 6Tb8nZEgdd0fe2FVIDa9bIPsyyuCKaE8fgrQoXpSPHw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:51:a0:82:ed:ff:b2:99:8c:82:32:28:66:ad:7c:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4eb9eb5547c7f5f1aafc0ada140805419618726 Validity Not Before: Jan 25 18:01:43 2026 GMT Not After : Jan 26 18:01:43 2026 GMT Subject: CN=69ee30642a28cba294fbfdf7b50523346055796f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ad:2e:a2:65:66:b2:75:63:46:18:eb:78:2e: e8:91:e9:f6:82:64:8b:52:20:14:63:bf:78:40:7b: a4:bd:44:13:e5:b6:3c:df:28:b1:f2:4a:74:be:b6: bd:14:52:ac:f2:00:0e:78:c4:07:bc:08:fb:e6:09: 68:f6:c3:fc:81:9b:b8:6c:47:f4:9d:ad:65:67:3c: 55:ff:6e:75:0a:dc:57:ba:85:2e:5a:86:38:a7:22: ad:2d:87:df:b7:ee:e6:e2:ab:fc:cd:47:30:3e:1e: 9d:98:0a:53:60:d2:25:fc:de:66:20:75:bf:1d:33: ef:ac:74:0e:4d:0c:85:8f:d2:9e:ea:74:75:a7:5f: b3:2b:86:9f:0a:3c:f5:bb:af:58:69:69:39:00:51: 2c:00:16:f5:4b:eb:7b:21:74:3d:22:86:c4:43:a3: 00:99:f7:1e:c0:ae:78:47:6a:12:ee:e2:04:91:c9: 2b:c3:1e:41:c2:a6:f6:39:c6:2c:3d:b6:8a:f2:0d: 70:e5:a8:c8:38:1e:28:ed:28:70:35:94:26:01:fd: fa:96:54:17:ea:eb:0e:f9:59:c5:c9:d4:21:9f:9c: e8:07:ac:50:6d:66:e0:76:b0:d4:c6:b6:da:ac:39: b4:60:95:05:72:0c:4a:58:43:eb:ce:42:c8:98:21: 2d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:EE:30:64:2A:28:CB:A2:94:FB:FD:F7:B5:05:23:34:60:55:79:6F X509v3 Authority Key Identifier: keyid:A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption f3:e1:d9:59:b2:8f:0b:32:ed:83:b5:32:61:58:c3:5b:0e:b3: 6b:c1:a3:c9:62:f6:74:4b:f2:17:79:50:4e:0b:f1:ee:bc:a4: f9:b1:83:6b:c4:a3:df:b7:42:ce:dc:c2:74:47:51:55:96:ff: 90:b6:cb:ee:02:ee:99:8e:42:fd:a2:b6:7c:cc:9b:34:e6:67: e9:29:ef:9d:04:83:08:f9:75:fc:47:fe:64:e0:fe:10:09:e8: 16:74:07:cf:6a:73:d8:6a:75:77:e9:87:cb:5e:1e:e5:4c:95: 85:cd:52:73:a7:36:9c:52:d1:39:69:9b:4d:43:ee:59:2e:7f: 21:2b:e8:7c:fc:db:00:b3:b3:36:08:9f:04:ba:a0:df:02:40: 06:2c:82:ff:74:71:2f:43:74:54:1f:63:7b:2d:f0:0e:42:ef: 00:e9:fa:32:ef:53:41:b6:d1:39:3d:f4:b7:15:ed:4d:8b:c4: 5c:0e:26:53:f2:f9:d7:44:17:21:59:dc:df:37:59:af:04:d9: bc:8d:3a:5b:32:b8:66:48:db:d6:aa:de:f9:85:b6:25:97:82: 00:67:d3:49:a5:c5:20:de:1d:38:28:e9:4a:a4:52:30:80:92: 13:62:64:74:ae:39:3a:f2:27:16:d5:d1:30:dd:a9:c4:4e:15: 92:19:3a:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UaCC7f+ymYyCMihmrXwLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0ZWI5ZWI1NTQ3YzdmNWYxYWFmYzBhZGExNDA4MDU0MTk2 MTg3MjYwHhcNMjYwMTI1MTgwMTQzWhcNMjYwMTI2MTgwMTQzWjAzMTEwLwYDVQQD Eyg2OWVlMzA2NDJhMjhjYmEyOTRmYmZkZjdiNTA1MjMzNDYwNTU3OTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsa0uomVmsnVjRhjreC7oken2gmSL UiAUY794QHukvUQT5bY83yix8kp0vra9FFKs8gAOeMQHvAj75glo9sP8gZu4bEf0 na1lZzxV/251CtxXuoUuWoY4pyKtLYfft+7m4qv8zUcwPh6dmApTYNIl/N5mIHW/ HTPvrHQOTQyFj9Ke6nR1p1+zK4afCjz1u69YaWk5AFEsABb1S+t7IXQ9IobEQ6MA mfcewK54R2oS7uIEkckrwx5Bwqb2OcYsPbaK8g1w5ajIOB4o7ShwNZQmAf36llQX 6usO+VnFydQhn5zoB6xQbWbgdrDUxrbarDm0YJUFcgxKWEPrzkLImCEt/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGnuMGQqKMuilPv997UFIzRgVXlvMB8GA1UdIwQY MBaAFKTrnrVUfH9fGq/AraFAgFQZYYcmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi80Y2Q3MmQtZDhhNS00NmNlLTg2NzQt MGQyMjIzMmMzNGEwLzEvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi80Y2Q3MmQtZDhhNS00NmNlLTg2NzQtMGQyMjIzMmMzNGEw LzEvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA8+HZWbKP CzLtg7UyYVjDWw6za8GjyWL2dEvyF3lQTgvx7ryk+bGDa8Sj37dCztzCdEdRVZb/ kLbL7gLumY5C/aK2fMybNOZn6SnvnQSDCPl1/Ef+ZOD+EAnoFnQHz2pz2Gp1d+mH y14e5UyVhc1Sc6c2nFLROWmbTUPuWS5/ISvofPzbALOzNgifBLqg3wJABiyC/3Rx L0N0VB9jey3wDkLvAOn6Mu9TQbbROT30txXtTYvEXA4mU/L510QXIVnc3zdZrwTZ vI06WzK4Zkjb1qre+YW2JZeCAGfTSaXFIN4dOCjpSqRSMICSE2JkdK45OvInFtXR MN2pxE4Vkhk6mQ== -----END CERTIFICATE-----Generated at Mon Jan 26 01:20:18 2026 by rpki-client