This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft
File:                     dOPDNpcglLGowT1BgWhX0Zejquk.mft (raw, json)
Hash identifier:          jE1X/871SfFG2daCLLqg2NLbPkeQoE+GcJv73VHesfw=
Subject key identifier:   D5:0E:D0:6F:BE:D7:B0:65:67:90:63:17:F1:B2:EF:3B:27:7B:A4:AC
Authority key identifier: 74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9
Certificate issuer:       /CN=74e3c336972094b1a8c13d41816857d197a3aae9
Certificate serial:       019BF79AFD1AFD56BAF6B3BB632C4970FB16
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft
Manifest number:          150E
Signing time:             Mon 26 Jan 2026 00:01:28 +0000
Manifest this update:     Mon 26 Jan 2026 00:01:28 +0000
Manifest next update:     Tue 27 Jan 2026 00:01:28 +0000
Files and hashes:         1: 1vjKgLyMbmbnD9BN-ENq6mCvpdQ.roa (hash: j6oOw0mW9VGeX6HTh7Pt8Y8xHM75I2sfi2YWe7POauE=)
                          2: 65FnmspDUVJ9_6QxvLd4l0NA4FE.roa (hash: lgYYkTyMefTXhDS2aNN91oiVE93MHjvbMsoRpFVLAkk=)
                          3: 6USIsr77ojsfaUkK7p_9yPX50RE.roa (hash: bxePdusDHlOz01oH/vysD1HExvewxm7Ub84+S8jsj6E=)
                          4: Bh0VhXCtnVTu6NYuZ4a0xAtyxnA.roa (hash: HBYP5wsCK4dtPnx1EHAW2IQhQMnr5dUB/nJJqTK+1C4=)
                          5: EnU8KLDk0MRS40FVtDjms_Soitw.roa (hash: rcy33n4rwkCj0xCW3i6XJv7RosymyzbT1+UqsgkLw0Q=)
                          6: Fe1_O6lqpZ4wU51PSyJRl5pRxgs.roa (hash: 3NI8C19YgNRWzyzmt0xuFsZNQ7eEnAdbBiag8O0XRuA=)
                          7: LcVUnzg476sY0cRj19anqQVr9co.roa (hash: CgyZ8RxzuluDb45z3tYn/fize5wHrZwU9v+utbAlRwk=)
                          8: QtjndSCGblrfab-ioVOroaNfPN4.roa (hash: 4OpyhaYwVmjq3TRkCJRrHAwNHbosmRoeTn4+UUJfDU8=)
                          9: dOPDNpcglLGowT1BgWhX0Zejquk.crl (hash: tfUhGu0oqc41GU5honRLTH8heeQj7+pYxbg3ydOcoaY=)
                          10: lC8mVQtZgzYCvFwXFlGkBqCpw84.roa (hash: SarrKRsARvJpAVux4A8mAEIosBVax08KS/WsVU5r/mE=)
                          11: ooTDK5wBI-XJq8zfv_YSdFU-vlo.roa (hash: xJD4AS2qcydvJ4nIFIToFd7KJeX/bcKOS0Cq1Ky05fE=)
                          12: sOU9sf_TLtLowD_NZ2t2Nk3oMWk.roa (hash: A6LA4etDI922EmA77PSJlPQnzxugY9xfCjTlpLtEMx0=)
                          13: usyF6cqpiTZ36Hi-zUV3iBaL6mI.roa (hash: MwwYW4a1c7XEGwwS8SXJYUUEBBLKVu6KJRZWVoJlLQo=)
                          14: v4wBo_Qz0X5zJTIwb0QZQ9GFZms.roa (hash: IlvU1dySJCzAWqUq3ax3NvMIRPVQQDJqs9utM98mnVw=)
                          15: y8jNpNhJhN8HEtdIA-w7AJf_i5Q.roa (hash: 8sIOOrWgw4Q4JWzlfJJ/cqOkQmwBNx1SNCCheRpOVMM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 26 Jan 2026 22:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9b:f7:9a:fd:1a:fd:56:ba:f6:b3:bb:63:2c:49:70:fb:16
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74e3c336972094b1a8c13d41816857d197a3aae9
        Validity
            Not Before: Jan 26 00:01:28 2026 GMT
            Not After : Jan 27 00:01:28 2026 GMT
        Subject: CN=d50ed06fbed7b06567906317f1b2ef3b277ba4ac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:4a:0e:ab:12:3e:b6:5d:ea:7e:a3:bf:08:43:
                    b9:ac:db:4e:14:cd:b3:68:c8:37:c1:3c:65:f9:6c:
                    2d:3c:85:15:90:41:c5:11:6b:c1:dc:ae:c6:31:d1:
                    47:20:dc:e2:8d:8a:15:eb:17:76:1a:63:de:ed:55:
                    b4:ca:08:1e:30:4c:19:9f:11:7c:bc:da:bf:e1:96:
                    56:db:e6:7a:08:e5:43:97:30:88:0e:87:51:44:aa:
                    03:c4:20:44:49:e2:0c:25:cd:46:41:76:b6:25:11:
                    d6:e3:ba:20:80:63:7b:7b:23:0d:dc:24:0b:2e:42:
                    e2:7c:88:ba:af:0d:f8:75:f8:be:9b:0e:33:46:0b:
                    83:e9:54:90:12:c3:8b:92:13:b4:dc:1a:35:b9:ec:
                    bc:8b:c5:3b:82:37:72:ad:99:52:2b:38:b9:94:10:
                    2b:ab:4c:14:d3:9b:a6:0a:9e:f3:62:03:36:2d:3e:
                    f8:57:0e:4d:99:81:23:c3:b6:24:cc:b2:1c:7d:88:
                    28:7c:29:ba:b8:17:58:ea:fd:c4:b3:da:49:2a:8e:
                    3f:35:54:3f:3c:7b:17:91:ec:fc:32:18:d0:e0:b0:
                    18:f4:24:95:27:b2:a6:6f:ba:b4:fe:59:67:ba:6d:
                    96:41:b7:4b:81:24:6c:a3:0e:fa:ba:af:3a:bb:d8:
                    7b:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:0E:D0:6F:BE:D7:B0:65:67:90:63:17:F1:B2:EF:3B:27:7B:A4:AC
            X509v3 Authority Key Identifier:
                keyid:74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         82:61:90:25:6d:fe:b4:28:b4:fb:a4:ae:dc:2c:93:e9:00:81:
         ae:4e:fd:ee:12:11:54:b9:fb:18:de:a4:13:40:08:19:b0:fc:
         4c:ab:74:19:6f:4a:e0:2b:4d:f4:cd:9e:68:fd:0b:41:35:3e:
         7d:d3:e9:fc:28:92:58:a6:62:ba:47:a2:3a:06:9e:53:79:ce:
         05:ab:0f:0d:db:2b:9d:f3:49:94:ef:a7:1e:53:a8:f1:d5:35:
         e5:c8:b1:32:75:b8:a2:61:5b:a5:e7:d5:d2:7e:72:75:7b:28:
         16:d5:a4:02:80:16:f4:73:b5:f3:53:81:c3:27:c4:64:32:b4:
         5a:cc:1d:89:a9:d8:16:58:e3:88:6e:12:2f:85:34:fb:54:d8:
         65:a5:0b:38:d7:dd:ff:b5:60:9a:fd:22:b0:03:e1:e9:08:ca:
         72:a8:02:5e:36:c2:8c:ec:48:6c:5e:a5:ab:12:b5:a5:f4:91:
         51:72:b0:f6:32:79:ee:e2:54:41:8b:1e:c2:4a:77:79:75:83:
         2b:ca:e8:89:c5:ad:0a:b6:2e:08:49:31:b9:a0:c5:ff:3e:40:
         d0:a8:29:25:3b:c9:0a:c3:18:bf:d3:ff:3f:56:8c:46:a3:d1:
         df:03:5e:be:8f:89:23:6f:6a:c5:82:ab:9b:25:08:2e:57:f9:
         2e:3f:12:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----