This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft File: o8p7HBOn17MSMUErj7aUehdH250.mft (raw, json) Hash identifier: y5yJX4glWpMWkQbEcXSAOPJ4ybuOYHlyHL1jJZGXIbU= Subject key identifier: 69:FE:AE:45:48:58:6B:D6:8B:64:50:E1:37:B1:F8:36:D4:CB:E1:96 Authority key identifier: A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D Certificate issuer: /CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d Certificate serial: 019BDF246342B1CC588DF5B107A5F6C8F5B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft Manifest number: 05C9 Signing time: Wed 21 Jan 2026 06:01:02 +0000 Manifest this update: Wed 21 Jan 2026 06:01:02 +0000 Manifest next update: Thu 22 Jan 2026 06:01:02 +0000 Files and hashes: 1: HlrwIab2M9srn4RxDvYJgsLRgu0.roa (hash: 7RDUg5q6/CoL8hnKalD+rZmIPoU5JzkF0lqwqiGYim4=) 2: gAEobSYXeBTkpjhr1NGGBygqZvA.roa (hash: UAsheFQAdNFM95KSSftG0uZENkjtk9zrTcPB/F/4eEU=) 3: o8p7HBOn17MSMUErj7aUehdH250.crl (hash: XJ4lEUoPsVBuygRXtZ9F73UEKySFOnrprA5u4IO9r1g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:df:24:63:42:b1:cc:58:8d:f5:b1:07:a5:f6:c8:f5:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d Validity Not Before: Jan 21 06:01:02 2026 GMT Not After : Jan 22 06:01:02 2026 GMT Subject: CN=69feae4548586bd68b6450e137b1f836d4cbe196 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e8:07:92:00:32:d3:f5:a0:d9:fc:40:7f:ba: 41:51:0e:bb:73:ed:99:4b:93:23:69:b5:da:cf:3c: f4:5f:c0:3d:1d:ad:0f:ba:50:b2:5e:8b:6b:ae:c3: e2:8e:15:eb:79:81:c6:8f:14:ef:2f:ee:f5:b1:18: b8:a8:ae:59:dd:95:be:58:c9:95:f1:27:cc:76:61: 8d:95:ae:f2:51:65:f7:c4:49:f9:b0:48:4e:34:65: 69:37:f6:4d:9b:95:39:20:71:1c:7f:d9:b9:4c:ea: 73:b5:4a:4e:6c:c5:f2:1a:e3:c8:6e:ae:2e:5a:b3: 71:ea:db:25:4c:3f:6e:56:5a:88:0c:79:6b:28:58: ac:6b:3d:24:3f:3d:98:b6:02:e8:a0:8a:4a:34:a4: 5a:36:c7:83:6a:84:9a:97:86:93:13:44:9c:4e:95: ef:40:80:67:59:20:83:23:49:cf:8d:71:2d:84:13: 89:2a:7f:60:d0:2f:78:3e:53:51:d7:d9:44:a1:ae: ec:14:0f:39:69:1f:ad:53:ae:26:89:14:5b:cb:ea: 5b:24:91:00:75:40:6c:ed:90:2b:0a:e1:bf:5c:2e: 7a:be:76:b8:fb:67:3d:52:77:d9:2a:43:2a:89:ee: ca:48:91:12:65:1d:c6:67:6b:5c:b0:84:92:6a:9e: 20:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:FE:AE:45:48:58:6B:D6:8B:64:50:E1:37:B1:F8:36:D4:CB:E1:96 X509v3 Authority Key Identifier: keyid:A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:5a:7a:b5:7f:56:22:d7:62:eb:d2:98:80:f9:fb:97:11:ce: fa:9d:1f:ba:a8:0b:4e:f8:af:db:df:0a:00:b5:3c:e5:ae:be: 04:9e:7a:2c:77:ee:eb:63:2d:a0:81:91:16:7e:31:fb:6d:27: ef:78:bb:c5:04:76:01:67:27:f7:05:88:50:5e:4d:45:de:3e: 77:07:a7:98:40:c7:39:fa:87:2b:1b:5f:c6:20:77:f1:e6:12: 23:71:10:d4:96:4c:ff:e9:f5:cd:b5:ee:7b:d9:f7:99:fb:c1: cd:97:8b:be:72:0e:45:5b:76:a4:7b:d4:44:8e:4e:d6:4c:ef: 9b:f2:bb:59:4b:a2:89:1b:15:22:9b:6a:01:f5:9c:c5:d5:f6: 5c:c5:12:6a:59:5b:ee:df:04:26:10:75:bb:28:b6:da:1c:d5: 6d:24:69:54:df:98:da:d8:1f:e3:86:d4:da:b8:bc:1b:1b:5a: f6:14:9d:08:23:84:7e:b0:f5:53:c0:3a:a8:55:34:26:57:3f: 8d:33:e8:ba:c7:d3:02:8e:fb:6f:46:12:42:d9:c2:ad:eb:fd: 88:95:eb:0d:51:e1:cb:07:03:9a:13:cd:09:f7:34:de:81:9b: ff:09:09:b3:e9:76:86:67:24:fc:c3:c7:5a:00:7d:47:98:51: 05:e3:28:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvfJGNCscxYjfWxB6X2yPWxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzY2E3YjFjMTNhN2Q3YjMxMjMxNDEyYjhmYjY5NDdhMTc0 N2RiOWQwHhcNMjYwMTIxMDYwMTAyWhcNMjYwMTIyMDYwMTAyWjAzMTEwLwYDVQQD Eyg2OWZlYWU0NTQ4NTg2YmQ2OGI2NDUwZTEzN2IxZjgzNmQ0Y2JlMTk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmugHkgAy0/Wg2fxAf7pBUQ67c+2Z S5MjabXazzz0X8A9Ha0PulCyXotrrsPijhXreYHGjxTvL+71sRi4qK5Z3ZW+WMmV 8SfMdmGNla7yUWX3xEn5sEhONGVpN/ZNm5U5IHEcf9m5TOpztUpObMXyGuPIbq4u WrNx6tslTD9uVlqIDHlrKFisaz0kPz2YtgLooIpKNKRaNseDaoSal4aTE0ScTpXv QIBnWSCDI0nPjXEthBOJKn9g0C94PlNR19lEoa7sFA85aR+tU64miRRby+pbJJEA dUBs7ZArCuG/XC56vna4+2c9UnfZKkMqie7KSJESZR3GZ2tcsISSap4gLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGn+rkVIWGvWi2RQ4Tex+DbUy+GWMB8GA1UdIwQY MBaAFKPKexwTp9ezEjFBK4+2lHoXR9udMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzhwN0hCT24xN01TTVVFcmo3YVVlaGRIMjUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9iY2RjY2EtZjA2Yi00MGNmLThlMjEt MjE0NTIyMDk5NGNlLzEvbzhwN0hCT24xN01TTVVFcmo3YVVlaGRIMjUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy9iY2RjY2EtZjA2Yi00MGNmLThlMjEtMjE0NTIyMDk5NGNl LzEvbzhwN0hCT24xN01TTVVFcmo3YVVlaGRIMjUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl1p6tX9W Itdi69KYgPn7lxHO+p0fuqgLTviv298KALU85a6+BJ56LHfu62MtoIGRFn4x+20n 73i7xQR2AWcn9wWIUF5NRd4+dwenmEDHOfqHKxtfxiB38eYSI3EQ1JZM/+n1zbXu e9n3mfvBzZeLvnIORVt2pHvURI5O1kzvm/K7WUuiiRsVIptqAfWcxdX2XMUSallb 7t8EJhB1uyi22hzVbSRpVN+Y2tgf44bU2ri8Gxta9hSdCCOEfrD1U8A6qFU0Jlc/ jTPousfTAo77b0YSQtnCrev9iJXrDVHhywcDmhPNCfc03oGb/wkJs+l2hmck/MPH WgB9R5hRBeMojg== -----END CERTIFICATE-----Generated at Wed Jan 21 08:58:33 2026 by rpki-client