This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft File: o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft (raw, json) Hash identifier: iF15SnFu93dUGJd3qgktnS9qYaYyDzkuJd6iyfCSa8Y= Subject key identifier: 9C:68:58:D2:F3:A8:88:B0:E2:65:34:1C:35:5E:83:BD:F5:79:86:CD Authority key identifier: A3:66:19:42:7C:28:3F:A3:B2:BB:7B:45:CC:35:A5:12:86:39:89:61 Certificate issuer: /CN=a36619427c283fa3b2bb7b45cc35a51286398961 Certificate serial: 019BFA2D4BFD69CDAF030FB209F1A7166DC8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft Manifest number: 9E Signing time: Mon 26 Jan 2026 12:00:31 +0000 Manifest this update: Mon 26 Jan 2026 12:00:31 +0000 Manifest next update: Tue 27 Jan 2026 12:00:31 +0000 Files and hashes: 1: kFGche0sUMJjtQYWtRrXVgbIroM.roa (hash: 34UZsa7v3vzkYl287UK/ejNXOYJMH9D9QG1MuCDxpCg=) 2: o2YZQnwoP6Oyu3tFzDWlEoY5iWE.crl (hash: dhQvOhJJAbDpQ2fg7m65VPmN7ZgCu5ii/S+BM3ow32Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft rsync://rpki.ripe.net/repository/DEFAULT/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:2d:4b:fd:69:cd:af:03:0f:b2:09:f1:a7:16:6d:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a36619427c283fa3b2bb7b45cc35a51286398961 Validity Not Before: Jan 26 12:00:31 2026 GMT Not After : Jan 27 12:00:31 2026 GMT Subject: CN=9c6858d2f3a888b0e265341c355e83bdf57986cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:2a:9d:f3:87:23:91:e6:7a:17:29:c1:8a:47: ee:b8:02:52:fe:cb:69:0e:bf:8f:1a:5d:84:a0:5e: fc:94:57:dc:32:64:d8:cf:2a:54:97:d9:a8:c9:96: 30:26:2e:19:d7:ae:df:81:9d:8f:77:a1:e5:dd:0c: 6e:14:8e:9e:f7:c3:a3:93:a7:91:70:c0:8c:c1:14: db:09:8e:73:67:2d:99:80:70:0d:5b:4c:e2:52:37: b8:be:c9:2a:5f:d4:fd:bc:1f:b3:b5:57:22:e1:0d: c5:0e:94:18:a7:35:0a:19:71:47:8c:9d:14:ae:b7: 52:f4:5a:09:31:b7:d5:ff:ae:0a:ea:1b:c8:bf:bf: 54:03:6b:89:f3:44:83:5a:59:4a:fb:3a:df:e2:ee: 66:a7:3f:0d:82:31:eb:e2:c7:a2:53:2d:79:55:c1: 9d:6d:11:0c:ab:88:be:82:64:5c:ec:f7:4d:52:4d: ea:95:4d:7d:cd:89:5e:c0:e7:4f:78:69:18:c5:1f: a3:cb:40:08:d4:ad:38:83:0b:18:bb:db:23:33:ec: e0:7b:2b:31:5b:56:94:bd:d1:52:c7:62:07:f3:30: 16:54:da:a4:52:27:34:5b:ee:0b:a0:2f:7c:00:ff: fe:c4:25:68:b7:6f:48:e3:63:e9:31:b7:78:1b:ac: 98:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:68:58:D2:F3:A8:88:B0:E2:65:34:1C:35:5E:83:BD:F5:79:86:CD X509v3 Authority Key Identifier: keyid:A3:66:19:42:7C:28:3F:A3:B2:BB:7B:45:CC:35:A5:12:86:39:89:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/0fa280-02dd-4517-89a7-3b8178dbb94c/1/o2YZQnwoP6Oyu3tFzDWlEoY5iWE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:48:62:44:fc:46:6d:13:8f:b4:d1:61:54:28:83:7f:ed:7b: 2a:a3:da:0a:23:64:39:10:58:85:54:0e:af:aa:78:c8:8b:43: f4:8f:e7:0e:f9:dc:d3:51:8e:f2:e0:55:3a:5c:00:af:7a:93: cb:3c:c1:8f:00:65:6d:02:91:b2:35:72:5d:ba:03:58:dd:1d: f6:49:92:3b:fc:ad:30:42:31:1f:5f:38:6a:52:12:58:66:70: ff:8c:94:10:91:4e:f7:a9:71:ae:f7:cb:25:f5:16:cd:06:ad: 7d:84:6e:59:74:f4:a8:fd:92:a0:40:d0:b6:94:bd:a7:f7:6f: ba:83:c7:99:b2:1d:1e:5a:86:3d:f2:c1:5d:2a:da:8d:d3:60: 77:bf:9a:38:7b:7e:77:ca:6d:2b:df:b0:c4:38:bf:ca:4f:20: 82:79:26:4c:3e:e5:c8:e3:5b:c2:b5:d5:f6:96:e9:79:d5:07: 0a:1c:42:55:d3:32:2b:e0:1f:b5:7b:4c:ed:81:74:15:f4:00: d9:7d:b1:eb:73:0d:bb:c4:47:b1:bc:1f:a6:5d:5f:6e:5c:bb: f2:f5:ac:72:37:8a:44:8d:ed:51:4a:5f:1e:ab:45:4d:75:9b: 15:70:21:dc:20:26:af:bd:12:f6:71:23:3e:e4:e8:db:ec:54: c9:b7:9e:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6LUv9ac2vAw+yCfGnFm3IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzNjYxOTQyN2MyODNmYTNiMmJiN2I0NWNjMzVhNTEyODYz OTg5NjEwHhcNMjYwMTI2MTIwMDMxWhcNMjYwMTI3MTIwMDMxWjAzMTEwLwYDVQQD Eyg5YzY4NThkMmYzYTg4OGIwZTI2NTM0MWMzNTVlODNiZGY1Nzk4NmNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmCqd84cjkeZ6FynBikfuuAJS/stp Dr+PGl2EoF78lFfcMmTYzypUl9moyZYwJi4Z167fgZ2Pd6Hl3QxuFI6e98Ojk6eR cMCMwRTbCY5zZy2ZgHANW0ziUje4vskqX9T9vB+ztVci4Q3FDpQYpzUKGXFHjJ0U rrdS9FoJMbfV/64K6hvIv79UA2uJ80SDWllK+zrf4u5mpz8NgjHr4seiUy15VcGd bREMq4i+gmRc7PdNUk3qlU19zYlewOdPeGkYxR+jy0AI1K04gwsYu9sjM+zgeysx W1aUvdFSx2IH8zAWVNqkUic0W+4LoC98AP/+xCVot29I42PpMbd4G6yYswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJxoWNLzqIiw4mU0HDVeg731eYbNMB8GA1UdIwQY MBaAFKNmGUJ8KD+jsrt7Rcw1pRKGOYlhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzJZWlFud29QNk95dTN0RnpEV2xFb1k1aVdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8wZmEyODAtMDJkZC00NTE3LTg5YTct M2I4MTc4ZGJiOTRjLzEvbzJZWlFud29QNk95dTN0RnpEV2xFb1k1aVdFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS8wZmEyODAtMDJkZC00NTE3LTg5YTctM2I4MTc4ZGJiOTRj LzEvbzJZWlFud29QNk95dTN0RnpEV2xFb1k1aVdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOUhiRPxG bROPtNFhVCiDf+17KqPaCiNkORBYhVQOr6p4yItD9I/nDvnc01GO8uBVOlwAr3qT yzzBjwBlbQKRsjVyXboDWN0d9kmSO/ytMEIxH184alISWGZw/4yUEJFO96lxrvfL JfUWzQatfYRuWXT0qP2SoEDQtpS9p/dvuoPHmbIdHlqGPfLBXSrajdNgd7+aOHt+ d8ptK9+wxDi/yk8ggnkmTD7lyONbwrXV9pbpedUHChxCVdMyK+AftXtM7YF0FfQA 2X2x63MNu8RHsbwfpl1fbly78vWscjeKRI3tUUpfHqtFTXWbFXAh3CAmr70S9nEj PuTo2+xUybeeiQ== -----END CERTIFICATE-----Generated at Mon Jan 26 22:27:39 2026 by rpki-client