This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft File: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft (raw, json) Hash identifier: I7H8v0yGKsuXqKvVNvlgW7mur4Zh9LpAjxEZPeWWTSk= Subject key identifier: 05:51:E5:7C:46:CB:DF:15:A4:E8:F1:A5:66:83:3E:66:AF:9F:23:11 Authority key identifier: 38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2 Certificate issuer: /CN=38227a96fa64ad95240f0aee0bd374646c6bbee2 Certificate serial: 019BFDD41972E065E0D16512E89185CB476D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft Manifest number: 136A Signing time: Tue 27 Jan 2026 05:01:34 +0000 Manifest this update: Tue 27 Jan 2026 05:01:34 +0000 Manifest next update: Wed 28 Jan 2026 05:01:34 +0000 Files and hashes: 1: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl (hash: zkWIBKl7KEmYUtyOOZpyCbGDNI9YA8U0GdJXktjDe14=) 2: wHo6ZTM3-jzipse2lB9xc8s3uRA.roa (hash: 4oFkl4sS+vN5C2DeyY08mCPgjzjmSD8SNhBeGnmU75Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:d4:19:72:e0:65:e0:d1:65:12:e8:91:85:cb:47:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38227a96fa64ad95240f0aee0bd374646c6bbee2 Validity Not Before: Jan 27 05:01:34 2026 GMT Not After : Jan 28 05:01:34 2026 GMT Subject: CN=0551e57c46cbdf15a4e8f1a566833e66af9f2311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4a:98:6a:74:a1:04:3f:8b:d4:22:44:20:a6: d3:76:f8:95:a0:ec:05:08:ff:e8:55:77:c2:e8:9c: 27:7b:11:bf:11:ca:a6:81:b2:16:ed:e8:9e:ee:07: f9:f5:cf:6a:d6:42:a5:73:bf:3e:9a:ed:99:71:24: 46:ec:85:f2:d1:35:e5:51:2d:d2:9a:aa:90:b5:12: 91:1d:ab:84:10:7b:ca:4f:69:fb:7d:e6:92:4f:71: dc:0b:88:63:3b:f7:07:b0:08:1b:5f:5c:cc:43:77: 4b:b0:ef:98:a3:cd:86:5b:4d:04:6a:7e:5d:97:b0: 98:6e:2d:ca:01:02:c8:a0:d6:1c:a9:21:56:7c:f2: 63:6f:b5:19:23:75:b6:45:27:93:c2:12:7f:ea:90: 3f:a3:70:4d:64:d4:de:1e:58:4e:5c:52:3d:1a:a7: 80:4d:47:f8:5f:8f:42:ea:9c:53:3c:7e:00:53:71: f7:f6:0b:fa:e2:cd:df:1e:04:c7:35:78:37:60:21: 3e:f8:57:08:06:3f:89:86:6b:a5:d8:c3:07:af:1a: 70:90:d8:e8:08:fa:39:18:16:ca:84:7b:6c:1a:04: 7c:14:98:af:4c:b3:79:7c:c7:d1:d4:4b:22:63:08: 6e:7b:1e:63:ca:27:47:dc:ab:6b:a3:6c:66:3e:fa: 2f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:51:E5:7C:46:CB:DF:15:A4:E8:F1:A5:66:83:3E:66:AF:9F:23:11 X509v3 Authority Key Identifier: keyid:38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:16:39:24:7b:31:5d:8c:b3:f1:2a:19:85:22:a6:99:ec:4e: 67:bd:46:46:38:62:08:72:ef:a6:6a:5e:58:eb:13:42:5a:22: 5b:45:00:cc:a4:25:1d:3b:8e:79:d0:bb:88:ba:38:9f:c5:93: ff:2e:b2:25:db:ef:28:8a:b9:19:19:ad:33:7a:ca:18:2a:2e: c2:34:14:16:c2:7c:d0:47:3d:76:28:03:28:88:3d:41:2c:d3: 0e:48:8d:63:35:26:9a:7e:5d:f3:ff:40:66:59:24:74:c6:98: 50:2c:b1:78:82:5f:08:6f:03:e6:37:ca:b5:bb:ba:bb:3a:a1: 4d:23:d9:73:d6:83:49:55:20:0b:9d:aa:0c:96:50:5d:a5:4e: ca:a6:64:98:d0:f5:9d:01:ac:9b:22:ae:b7:20:5f:dd:bf:b9: c7:07:5c:a8:07:7e:96:20:93:ee:25:d8:b2:a9:ca:8e:cb:c3: 59:f7:3b:28:25:4b:89:ec:b1:02:42:94:09:5b:4d:e9:d8:fe: f3:9b:0d:b5:f3:22:65:4a:99:8b:7b:17:de:4e:8f:a4:30:50: 55:eb:d3:1d:49:8e:c1:30:be:5f:55:a4:cf:5c:08:b4:e6:87: 08:43:1f:49:bf:42:54:e1:47:76:15:c9:ca:0b:5f:7a:52:69: 86:1d:ce:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv91Bly4GXg0WUS6JGFy0dtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MjI3YTk2ZmE2NGFkOTUyNDBmMGFlZTBiZDM3NDY0NmM2 YmJlZTIwHhcNMjYwMTI3MDUwMTM0WhcNMjYwMTI4MDUwMTM0WjAzMTEwLwYDVQQD EygwNTUxZTU3YzQ2Y2JkZjE1YTRlOGYxYTU2NjgzM2U2NmFmOWYyMzExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkqYanShBD+L1CJEIKbTdviVoOwF CP/oVXfC6JwnexG/EcqmgbIW7eie7gf59c9q1kKlc78+mu2ZcSRG7IXy0TXlUS3S mqqQtRKRHauEEHvKT2n7feaST3HcC4hjO/cHsAgbX1zMQ3dLsO+Yo82GW00Ean5d l7CYbi3KAQLIoNYcqSFWfPJjb7UZI3W2RSeTwhJ/6pA/o3BNZNTeHlhOXFI9GqeA TUf4X49C6pxTPH4AU3H39gv64s3fHgTHNXg3YCE++FcIBj+Jhmul2MMHrxpwkNjo CPo5GBbKhHtsGgR8FJivTLN5fMfR1EsiYwhuex5jyidH3Ktro2xmPvovhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAVR5XxGy98VpOjxpWaDPmavnyMRMB8GA1UdIwQY MBaAFDgiepb6ZK2VJA8K7gvTdGRsa77iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8xY2Y5YWMtMTBkNC00YTVlLWE3MDYt ZDFjOWJhMDhmNTU5LzEvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC8xY2Y5YWMtMTBkNC00YTVlLWE3MDYtZDFjOWJhMDhmNTU5 LzEvT0NKNmx2cGtyWlVrRHdydUM5TjBaR3hydnVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJBY5JHsx XYyz8SoZhSKmmexOZ71GRjhiCHLvpmpeWOsTQloiW0UAzKQlHTuOedC7iLo4n8WT /y6yJdvvKIq5GRmtM3rKGCouwjQUFsJ80Ec9digDKIg9QSzTDkiNYzUmmn5d8/9A ZlkkdMaYUCyxeIJfCG8D5jfKtbu6uzqhTSPZc9aDSVUgC52qDJZQXaVOyqZkmND1 nQGsmyKutyBf3b+5xwdcqAd+liCT7iXYsqnKjsvDWfc7KCVLieyxAkKUCVtN6dj+ 85sNtfMiZUqZi3sX3k6PpDBQVevTHUmOwTC+X1Wkz1wItOaHCEMfSb9CVOFHdhXJ ygtfelJphh3OAA== -----END CERTIFICATE-----Generated at Tue Jan 27 08:02:39 2026 by rpki-client