This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft File: uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft (raw, json) Hash identifier: QEM69oklvhnvrIwTWbLsfiT/CoeC0Q+8BlZkoVmYMls= Subject key identifier: A1:29:AA:5E:75:B3:64:07:2E:EC:1E:D5:02:62:93:0C:D4:82:27:A4 Authority key identifier: BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4 Certificate issuer: /CN=ba8861e17ebed57950ff32c7b377fc430413dbe4 Certificate serial: 019BA5D9A9D57A197B5FF979152C5840600C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft Manifest number: 0EE7 Signing time: Sat 10 Jan 2026 03:01:04 +0000 Manifest this update: Sat 10 Jan 2026 03:01:04 +0000 Manifest next update: Sun 11 Jan 2026 03:01:04 +0000 Files and hashes: 1: 3xkUgPDW1_nU5u-zQWPWFuXblOU.roa (hash: TwymWVxNW7YipwcwZomXLwsBqGn5JSf6tMGWjIIvIuA=) 2: biwapYjW-yR38S3KZARQ10moe30.roa (hash: 1QN2loKj68piSOW4bamGYfAlPoY1h07q4+Z8Ry6dkfo=) 3: isbgVHj3TmGYN0uwFkd2CdHyHMU.roa (hash: QwGaFwSh5hfuRjoHH0+UtDhSsDuuueUvGza6DS4Ifsg=) 4: uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl (hash: 80BXfcGSjkhcImXWNnkK+pNhT5f1kFFaW+f2A5ePP6c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a5:d9:a9:d5:7a:19:7b:5f:f9:79:15:2c:58:40:60:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba8861e17ebed57950ff32c7b377fc430413dbe4 Validity Not Before: Jan 10 03:01:04 2026 GMT Not After : Jan 11 03:01:04 2026 GMT Subject: CN=a129aa5e75b364072eec1ed50262930cd48227a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:37:46:7c:67:87:12:fc:8f:50:44:fe:34:81: 7d:3a:d8:27:67:1c:77:78:11:b3:2f:72:4c:50:5f: 50:c8:e5:30:f5:40:82:5a:ae:08:51:fe:64:2b:9b: e4:0a:c0:ea:ca:87:46:5f:87:ca:47:e8:0e:42:84: 88:b5:5b:59:fd:34:fb:11:58:31:1d:06:a1:96:af: 67:a2:e0:e3:78:cd:8c:e8:07:c7:63:b8:08:2f:0b: 8d:d6:c7:33:fc:7d:cc:b4:de:3e:52:fe:a0:56:27: 53:fc:c6:17:0e:50:b2:a7:d5:bf:84:78:c9:b9:9e: 49:13:ff:15:2b:10:74:78:af:da:f6:3f:59:4e:98: 92:ac:5a:45:70:ab:cf:22:2a:1e:56:c5:64:ca:23: 5a:fd:ad:9c:04:65:ca:22:15:b4:de:96:3d:53:a7: 74:0a:d4:8e:74:4b:d8:ff:f0:c6:3f:88:d0:af:83: f7:1f:29:9d:4f:85:aa:68:7b:54:4a:01:a2:5d:f5: 74:62:e6:23:61:54:9b:fd:57:58:89:73:76:c1:a8: 9c:db:9f:19:f5:13:f6:8f:39:21:7c:40:a5:70:24: 73:ec:52:44:8a:56:76:d0:75:b7:24:38:3b:b3:b4: 8b:3c:27:46:35:11:92:ef:fe:ef:64:ac:cc:72:d1: 56:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:29:AA:5E:75:B3:64:07:2E:EC:1E:D5:02:62:93:0C:D4:82:27:A4 X509v3 Authority Key Identifier: keyid:BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:13:78:a7:3d:35:d0:b0:45:ac:f3:65:3b:18:3a:52:ba:9f: 21:c5:65:66:a0:8c:99:ef:4b:a2:69:2e:0f:6c:d6:ff:40:a9: b4:a5:10:e9:62:cf:0c:14:26:ab:33:1c:9d:b2:a7:18:99:62: 6a:0b:07:d8:48:11:29:d6:f7:6f:5d:5e:44:73:4b:18:5b:b3: 2d:a5:da:1a:26:e5:f0:e2:09:5e:7a:be:cb:26:61:cf:f6:f1: 32:6c:db:d6:67:3e:04:d7:21:b9:c8:f9:f7:cb:4a:2b:10:df: ae:73:cd:e2:03:d1:20:73:9a:dc:6e:75:66:4e:31:62:e7:ee: 33:07:f6:8d:c3:74:34:d6:50:98:ca:bc:8f:c2:1c:90:f4:b0: 0b:c1:af:de:d5:87:bc:44:f8:6d:0d:f4:0b:a4:48:1a:b0:90: 6b:48:0f:3d:a2:5c:1b:66:81:1b:87:26:86:82:b6:5c:70:6d: 72:2a:43:52:b0:8d:e8:36:cd:c0:90:66:30:ea:33:5e:af:42: 22:3a:b0:c8:10:40:db:f6:ec:f2:8a:ed:ca:03:28:a6:ac:18: 02:54:ee:15:51:77:ea:0b:b0:3b:0f:8d:9f:40:bd:07:ef:65: 7c:3f:98:0e:bd:5a:48:ec:b1:2e:b3:dc:bf:49:26:e7:d5:4d: 1d:be:ba:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZul2anVehl7X/l5FSxYQGAMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhODg2MWUxN2ViZWQ1Nzk1MGZmMzJjN2IzNzdmYzQzMDQx M2RiZTQwHhcNMjYwMTEwMDMwMTA0WhcNMjYwMTExMDMwMTA0WjAzMTEwLwYDVQQD EyhhMTI5YWE1ZTc1YjM2NDA3MmVlYzFlZDUwMjYyOTMwY2Q0ODIyN2E0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArTdGfGeHEvyPUET+NIF9OtgnZxx3 eBGzL3JMUF9QyOUw9UCCWq4IUf5kK5vkCsDqyodGX4fKR+gOQoSItVtZ/TT7EVgx HQahlq9nouDjeM2M6AfHY7gILwuN1scz/H3MtN4+Uv6gVidT/MYXDlCyp9W/hHjJ uZ5JE/8VKxB0eK/a9j9ZTpiSrFpFcKvPIioeVsVkyiNa/a2cBGXKIhW03pY9U6d0 CtSOdEvY//DGP4jQr4P3HymdT4WqaHtUSgGiXfV0YuYjYVSb/VdYiXN2waic258Z 9RP2jzkhfEClcCRz7FJEilZ20HW3JDg7s7SLPCdGNRGS7/7vZKzMctFW1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKEpql51s2QHLuwe1QJikwzUgiekMB8GA1UdIwQY MBaAFLqIYeF+vtV5UP8yx7N3/EMEE9vkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW9oaDRYNi0xWGxRX3pMSHMzZjhRd1FUMi1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8xMGQxNTMtYzNjMy00MDExLTk3Y2Yt MTBmZGNhMzg1ZWE0LzEvdW9oaDRYNi0xWGxRX3pMSHMzZjhRd1FUMi1RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi8xMGQxNTMtYzNjMy00MDExLTk3Y2YtMTBmZGNhMzg1ZWE0 LzEvdW9oaDRYNi0xWGxRX3pMSHMzZjhRd1FUMi1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJBN4pz01 0LBFrPNlOxg6UrqfIcVlZqCMme9LomkuD2zW/0CptKUQ6WLPDBQmqzMcnbKnGJli agsH2EgRKdb3b11eRHNLGFuzLaXaGibl8OIJXnq+yyZhz/bxMmzb1mc+BNchucj5 98tKKxDfrnPN4gPRIHOa3G51Zk4xYufuMwf2jcN0NNZQmMq8j8IckPSwC8Gv3tWH vET4bQ30C6RIGrCQa0gPPaJcG2aBG4cmhoK2XHBtcipDUrCN6DbNwJBmMOozXq9C IjqwyBBA2/bs8ortygMopqwYAlTuFVF36guwOw+Nn0C9B+9lfD+YDr1aSOyxLrPc v0km59VNHb66nQ== -----END CERTIFICATE-----Generated at Sat Jan 10 07:03:12 2026 by rpki-client