This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft File: O3vGRy6lJXXOlb3KeCbppR-qzkk.mft (raw, json) Hash identifier: pjzKmVLRzceNqbsAEIKqYtXQWPSrHs42yZA5/HTZweo= Subject key identifier: 48:81:65:0F:5B:FA:68:8D:D7:97:60:00:92:39:90:C4:D5:BE:26:08 Authority key identifier: 3B:7B:C6:47:2E:A5:25:75:CE:95:BD:CA:78:26:E9:A5:1F:AA:CE:49 Certificate issuer: /CN=3b7bc6472ea52575ce95bdca7826e9a51faace49 Certificate serial: 019BE06DC0AB74FF6396971DE13EAE4078CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O3vGRy6lJXXOlb3KeCbppR-qzkk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft Manifest number: 02CE Signing time: Wed 21 Jan 2026 12:00:47 +0000 Manifest this update: Wed 21 Jan 2026 12:00:47 +0000 Manifest next update: Thu 22 Jan 2026 12:00:47 +0000 Files and hashes: 1: O3vGRy6lJXXOlb3KeCbppR-qzkk.crl (hash: SY5pFvFSwCp9hUeXihT+9uScW5VqMGbMUdMBHYPU58s=) 2: xZvTVsgAgTHbHn_16cZuYXn4mck.roa (hash: +oE3yDmB7hi9Ypi3E2o3IvseUAbSMG6NeT9277jObu8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.crl rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft rsync://rpki.ripe.net/repository/DEFAULT/O3vGRy6lJXXOlb3KeCbppR-qzkk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e0:6d:c0:ab:74:ff:63:96:97:1d:e1:3e:ae:40:78:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b7bc6472ea52575ce95bdca7826e9a51faace49 Validity Not Before: Jan 21 12:00:47 2026 GMT Not After : Jan 22 12:00:47 2026 GMT Subject: CN=4881650f5bfa688dd7976000923990c4d5be2608 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ed:4c:fa:2a:7d:47:38:7e:34:6b:6c:e1:57: c4:61:02:27:25:83:c4:9d:ee:b0:83:99:94:26:f3: b2:df:6d:ab:7f:cd:08:1c:d2:9d:69:b2:32:8e:e7: 0e:08:7b:cd:26:02:40:db:93:8a:bb:54:d4:1f:e8: 16:6c:41:83:9d:3b:52:51:b2:69:25:c6:ed:75:ad: 2a:e8:2a:27:ee:13:0b:43:53:b6:f8:32:27:34:bd: fa:65:da:5e:fa:e5:fd:03:69:09:3a:de:8c:70:ed: e7:38:b4:fb:82:b3:33:dc:cf:c6:44:eb:c0:93:d0: 8e:14:d5:b2:28:16:4a:ba:e5:b7:16:e0:48:cb:4f: 38:a1:59:ab:18:15:04:2e:4a:3a:9b:40:39:8e:5e: 74:1f:7c:3c:e5:b9:bb:91:78:fb:f9:35:ba:3f:f4: 50:0b:b5:20:44:d3:7e:cf:79:97:1c:71:04:c3:a1: 64:ba:0e:19:ac:39:87:77:2f:e3:ce:50:42:ee:62: e7:67:3a:da:49:5d:ba:6f:18:7e:d5:e8:e8:7e:b2: ff:36:3b:27:77:42:bf:16:b0:d7:5b:37:94:14:b4: af:c7:22:3e:76:1c:71:e9:80:f8:fb:96:7f:58:cc: 54:dc:32:0b:d8:4f:af:e3:91:66:d3:72:ee:bd:56: d4:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:81:65:0F:5B:FA:68:8D:D7:97:60:00:92:39:90:C4:D5:BE:26:08 X509v3 Authority Key Identifier: keyid:3B:7B:C6:47:2E:A5:25:75:CE:95:BD:CA:78:26:E9:A5:1F:AA:CE:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O3vGRy6lJXXOlb3KeCbppR-qzkk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:91:c6:54:38:93:6f:aa:c2:db:a1:ec:6e:c6:cb:7d:2f:2f: 41:5b:56:3d:bc:26:21:fd:99:16:55:b3:9c:26:96:8c:4a:64: 56:03:9f:00:8b:ea:3f:f8:c2:90:6a:01:57:f4:85:f3:48:7d: f8:93:07:e0:04:81:a9:9b:e2:30:0c:67:e2:62:f4:4f:e7:60: 6a:5e:65:7b:e5:a2:d8:0c:ff:b6:bc:bc:0a:43:9c:5b:83:86: 26:78:8e:4d:98:45:a0:ed:6f:7b:e6:a2:61:97:60:d6:f6:17: 51:07:ea:0f:7e:98:17:ae:d0:06:46:6f:2b:ee:be:0a:11:16: 4e:8a:a0:bb:c3:f3:e5:72:d0:eb:85:28:40:61:d6:ed:4e:50: de:34:86:bb:57:c2:80:4d:2e:ec:25:0e:06:9d:64:93:17:04: ed:64:df:b8:62:a7:ce:aa:f9:48:0f:ba:e1:81:e6:57:ba:a1: c7:7a:40:97:38:8a:65:09:a5:e1:00:80:cf:15:23:17:6c:98: 6d:18:32:42:4f:ca:b3:2f:0a:2f:cd:e7:f8:a8:a4:2b:27:de: 25:90:5b:6e:4a:93:b9:87:a1:6c:30:90:47:62:52:c6:4c:00: 1c:f9:03:25:b3:6b:33:be:c4:54:c0:51:a1:e8:f9:af:63:4a: ed:29:e1:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvgbcCrdP9jlpcd4T6uQHjOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiN2JjNjQ3MmVhNTI1NzVjZTk1YmRjYTc4MjZlOWE1MWZh YWNlNDkwHhcNMjYwMTIxMTIwMDQ3WhcNMjYwMTIyMTIwMDQ3WjAzMTEwLwYDVQQD Eyg0ODgxNjUwZjViZmE2ODhkZDc5NzYwMDA5MjM5OTBjNGQ1YmUyNjA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApO1M+ip9Rzh+NGts4VfEYQInJYPE ne6wg5mUJvOy322rf80IHNKdabIyjucOCHvNJgJA25OKu1TUH+gWbEGDnTtSUbJp Jcbtda0q6Con7hMLQ1O2+DInNL36Zdpe+uX9A2kJOt6McO3nOLT7grMz3M/GROvA k9COFNWyKBZKuuW3FuBIy084oVmrGBUELko6m0A5jl50H3w85bm7kXj7+TW6P/RQ C7UgRNN+z3mXHHEEw6Fkug4ZrDmHdy/jzlBC7mLnZzraSV26bxh+1ejofrL/Njsn d0K/FrDXWzeUFLSvxyI+dhxx6YD4+5Z/WMxU3DIL2E+v45Fm03LuvVbU+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEiBZQ9b+miN15dgAJI5kMTVviYIMB8GA1UdIwQY MBaAFDt7xkcupSV1zpW9yngm6aUfqs5JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzN2R1J5NmxKWFhPbGIzS2VDYnBwUi1xemtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS80OTNkMjktNDdhOS00OWViLTgwODAt OTIyNmIzYWM0ZTlkLzEvTzN2R1J5NmxKWFhPbGIzS2VDYnBwUi1xemtrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS80OTNkMjktNDdhOS00OWViLTgwODAtOTIyNmIzYWM0ZTlk LzEvTzN2R1J5NmxKWFhPbGIzS2VDYnBwUi1xemtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArJHGVDiT b6rC26HsbsbLfS8vQVtWPbwmIf2ZFlWznCaWjEpkVgOfAIvqP/jCkGoBV/SF80h9 +JMH4ASBqZviMAxn4mL0T+dgal5le+Wi2Az/try8CkOcW4OGJniOTZhFoO1ve+ai YZdg1vYXUQfqD36YF67QBkZvK+6+ChEWToqgu8Pz5XLQ64UoQGHW7U5Q3jSGu1fC gE0u7CUOBp1kkxcE7WTfuGKnzqr5SA+64YHmV7qhx3pAlziKZQml4QCAzxUjF2yY bRgyQk/Ksy8KL83n+KikKyfeJZBbbkqTuYehbDCQR2JSxkwAHPkDJbNrM77EVMBR oej5r2NK7SnhkA== -----END CERTIFICATE-----Generated at Wed Jan 21 14:45:35 2026 by rpki-client