This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json) Hash identifier: StK8tQGsWFS/a+RZVXSBbAHOpZ61buSh0LzevTOEBAU= Subject key identifier: 32:0B:29:56:AE:8D:F4:AC:6F:B1:94:8F:1B:7A:AC:9E:2B:16:75:25 Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Certificate serial: 019BF8AD0BD2D7ECFD74AD03741A775FF54A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft Manifest number: 0777 Signing time: Mon 26 Jan 2026 05:00:48 +0000 Manifest this update: Mon 26 Jan 2026 05:00:48 +0000 Manifest next update: Tue 27 Jan 2026 05:00:48 +0000 Files and hashes: 1: 1-EbrvxNY7jUJJte1JMBcOC69EBk.roa (hash: /M4gkvV/7tnw4BlBdpuc1viYnL0XhtHAFXwLDGq3QCg=) 2: NjOJ8tUpqLJAAfHhfTTwUysAm7s.roa (hash: 3a42jEcgSU6c6ZDozj7GhmcER8SN0dScIEdBDzntTP4=) 3: OA81K4GFXKVrjD-M584jTyFYST8.roa (hash: C4S9fMtXlXuIFqggmB3QlimOTqdUpyywlGKQgdOtY5w=) 4: YpbC5jk8lzSJpred_IHkkCVUCKE.roa (hash: Zo4+zcIWbT83bhve20wlbO77GzQpKYPsD28KLD9jN8Y=) 5: YxQb53gzYd0iTmUe7A41D-2rnY8.roa (hash: q+Z1iMu62RV5K/wK7fU9JbtFm1jSO7NLnuxYy0Ettbk=) 6: h_aNMTHSod3zvEv_zlqSsdV20TQ.roa (hash: GccHbmvEFlhiHjnJ+i3nG2pD81e9dD/oLrnSrArj6ig=) 7: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: wkqNlkAPnUBd/4derMR6Q1aUXRIE+YCyAYxAkT7N4XM=) 8: oh53IB-aUH2plypNUq8_qw59tUU.roa (hash: k/rLC3QFD8nEmci+tQAmE7NOGPMxS4KDVOpLNqgFsg4=) 9: vyjCA1W9-6KFsgjaGvfzXuiMYLQ.roa (hash: 7JV7egLgY4Bzr/UvgYj0RPwIqhuXjEo3YWECD7QdwW0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:ad:0b:d2:d7:ec:fd:74:ad:03:74:1a:77:5f:f5:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Validity Not Before: Jan 26 05:00:48 2026 GMT Not After : Jan 27 05:00:48 2026 GMT Subject: CN=320b2956ae8df4ac6fb1948f1b7aac9e2b167525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:35:a2:be:0e:99:37:78:fe:98:1f:53:49:98: 3f:63:ac:28:b9:4b:84:b6:95:51:4a:6b:4e:f3:96: a8:5b:58:80:fc:51:55:f6:86:ee:f2:ee:16:ce:d7: 8f:73:db:d1:1d:54:9c:75:fc:40:5a:59:39:2d:d9: d9:fb:7a:5b:4a:d9:87:4d:cd:2f:ad:84:3c:fc:3a: 19:98:b2:87:c9:98:7b:4a:04:c6:f9:dd:f2:f5:c9: a8:39:55:d6:47:ca:8d:5a:03:f7:30:f2:47:00:b3: 3f:ee:14:22:42:d1:eb:a9:cf:21:66:9e:77:cf:fa: a8:6e:76:b6:8c:fc:d4:13:65:19:e2:d0:27:2d:ca: 68:24:cf:c8:36:79:94:89:44:7a:38:1b:ae:98:5e: 2c:b5:23:f2:e4:d9:98:0b:f2:4d:e1:34:dc:9b:4f: e6:6d:7e:6b:13:75:82:b2:b3:d7:bd:b9:24:2b:01: 44:0a:ee:4a:ec:f9:dd:e3:1f:a7:b6:d9:ac:e3:64: 37:b0:b7:d8:c1:1a:88:89:6f:15:bb:67:41:46:90: c2:de:a1:f3:22:d9:3a:21:5b:0b:fa:78:09:de:2a: b5:d5:e6:ad:58:9e:de:0e:8f:e1:6b:58:c1:fb:1c: 2d:d5:01:28:93:3c:47:50:9f:d2:66:fb:19:7b:8a: 0d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:0B:29:56:AE:8D:F4:AC:6F:B1:94:8F:1B:7A:AC:9E:2B:16:75:25 X509v3 Authority Key Identifier: keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:6e:e4:6e:ae:7c:bb:4f:2f:47:9c:21:d6:8d:3f:b4:43:0b: e8:e0:26:40:c8:f6:b4:cb:cb:a9:cd:5f:84:02:53:a0:56:c1: da:d6:d0:32:d4:03:20:e6:91:de:8e:db:f7:45:16:be:14:93: 0f:01:93:3b:08:42:9f:de:f1:ea:77:d0:d1:04:bd:db:23:c5: f7:89:06:8e:1a:c5:99:61:20:e6:12:2a:5b:76:38:34:1c:cb: 1c:c9:08:8e:7b:21:0d:a6:8a:8c:80:af:1b:76:02:2c:b1:bf: 31:85:73:e2:da:25:44:46:ec:05:07:37:2e:df:79:f9:8c:eb: 8a:cc:80:ed:80:bf:65:c5:d2:ae:32:ea:a2:01:37:92:8c:a9: c5:34:e5:15:a0:25:56:c7:43:31:8f:6c:8c:26:f1:4d:e1:d2: e2:4a:22:56:a7:23:53:4b:54:71:4b:50:64:2f:79:2b:cd:6d: 5d:f8:2a:8c:92:b6:46:c4:b0:eb:70:a0:09:9b:2d:98:3c:a8: ba:1c:ad:f9:61:31:18:8c:4d:d3:63:9e:ee:0c:24:84:de:5e: b8:db:2c:2b:0e:57:6d:f0:2c:c5:7a:dd:e2:8e:91:f4:91:96: cf:51:1f:e3:ab:9a:38:b3:9c:95:fe:db:b0:72:03:47:57:98: de:40:fb:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4rQvS1+z9dK0DdBp3X/VKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMjRjY2RkNzBmM2VjNzYyY2JkNjVlMDRkZDZmNzZiZTIz NmE4YTcwHhcNMjYwMTI2MDUwMDQ4WhcNMjYwMTI3MDUwMDQ4WjAzMTEwLwYDVQQD EygzMjBiMjk1NmFlOGRmNGFjNmZiMTk0OGYxYjdhYWM5ZTJiMTY3NTI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnjWivg6ZN3j+mB9TSZg/Y6wouUuE tpVRSmtO85aoW1iA/FFV9obu8u4WztePc9vRHVScdfxAWlk5LdnZ+3pbStmHTc0v rYQ8/DoZmLKHyZh7SgTG+d3y9cmoOVXWR8qNWgP3MPJHALM/7hQiQtHrqc8hZp53 z/qobna2jPzUE2UZ4tAnLcpoJM/INnmUiUR6OBuumF4stSPy5NmYC/JN4TTcm0/m bX5rE3WCsrPXvbkkKwFECu5K7Pnd4x+nttms42Q3sLfYwRqIiW8Vu2dBRpDC3qHz Itk6IVsL+ngJ3iq11eatWJ7eDo/ha1jB+xwt1QEokzxHUJ/SZvsZe4oNDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDILKVaujfSsb7GUjxt6rJ4rFnUlMB8GA1UdIwQY MBaAFKEkzN1w8+x2LL1l4E3W92viNqinMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEt N2IzNTM5N2FmMmY3LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEtN2IzNTM5N2FmMmY3 LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI27kbq58 u08vR5wh1o0/tEML6OAmQMj2tMvLqc1fhAJToFbB2tbQMtQDIOaR3o7b90UWvhST DwGTOwhCn97x6nfQ0QS92yPF94kGjhrFmWEg5hIqW3Y4NBzLHMkIjnshDaaKjICv G3YCLLG/MYVz4tolREbsBQc3Lt95+YzrisyA7YC/ZcXSrjLqogE3koypxTTlFaAl VsdDMY9sjCbxTeHS4koiVqcjU0tUcUtQZC95K81tXfgqjJK2RsSw63CgCZstmDyo uhyt+WExGIxN02Oe7gwkhN5euNssKw5XbfAsxXrd4o6R9JGWz1Ef46uaOLOclf7b sHIDR1eY3kD7KQ== -----END CERTIFICATE-----Generated at Mon Jan 26 09:45:56 2026 by rpki-client