This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft File: O2BOwM_ulmxBmzptXwgrVjwYaL0.mft (raw, json) Hash identifier: 22sGXDDDVxJU/zBVZ2/FfjSwT2aIdixNgzIfpfzh6YE= Subject key identifier: 11:56:1C:FD:79:D4:78:8B:3A:A4:77:3D:9B:8A:BA:E5:DE:8D:7F:24 Authority key identifier: 3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD Certificate issuer: /CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd Certificate serial: 019BAB6E2DC9F39C80869250F43D256D83BD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft Manifest number: 0B6F Signing time: Sun 11 Jan 2026 05:01:23 +0000 Manifest this update: Sun 11 Jan 2026 05:01:23 +0000 Manifest next update: Mon 12 Jan 2026 05:01:23 +0000 Files and hashes: 1: IQ3VIn1iC9RO_pLlQOak5neUqZY.roa (hash: IKGnOs4cAOZb712YaFJ/S+RpUStTEJE1H/K5bUrnGZo=) 2: O2BOwM_ulmxBmzptXwgrVjwYaL0.crl (hash: PNPv7YorIkQ5iiW5SZAY0HosQwYmxRZj9DMZEHimrHU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 00:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ab:6e:2d:c9:f3:9c:80:86:92:50:f4:3d:25:6d:83:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd Validity Not Before: Jan 11 05:01:23 2026 GMT Not After : Jan 12 05:01:23 2026 GMT Subject: CN=11561cfd79d4788b3aa4773d9b8abae5de8d7f24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:6b:7e:8f:b5:be:4f:60:d6:02:0f:82:4b:01: 58:a5:9c:e9:00:43:37:7e:06:67:ff:75:d7:84:7d: f4:20:8d:40:1e:43:04:69:6b:e0:02:88:b4:7c:27: a3:99:fe:72:d3:e3:f2:dd:f1:dd:f3:df:da:80:78: 36:0b:3b:fc:b4:06:d4:c0:9c:89:36:c3:0d:bd:36: e9:52:d1:88:6c:5a:b9:e6:a7:c4:88:f1:c6:79:71: 3a:e9:d6:25:54:fd:56:66:63:d5:3f:1e:79:cd:e2: 74:4f:7b:de:ad:08:2e:04:98:0e:49:a9:45:92:32: b6:62:0a:d5:52:5d:b8:ae:b1:55:8d:b1:2c:76:31: 72:d0:f8:e4:4c:a2:af:fa:32:b5:f5:6e:29:fe:64: 5d:72:6c:43:3b:4e:f9:e9:d6:ba:80:4c:a9:b2:5f: e8:5f:2e:55:bd:1b:87:f5:17:f1:80:36:54:55:dd: b8:e1:ad:e2:0b:51:b9:26:d5:98:03:39:e7:44:a1: 93:ad:3b:94:b0:a6:ab:c5:ea:91:b3:f9:12:a5:52: 1f:16:58:e4:0b:38:da:bb:c9:e4:b8:10:55:98:38: 22:ba:3d:87:10:03:0a:39:d6:4c:36:3e:2b:50:06: cc:0d:ab:97:d7:1d:f0:08:ff:42:ac:0b:99:9d:e9: bf:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:56:1C:FD:79:D4:78:8B:3A:A4:77:3D:9B:8A:BA:E5:DE:8D:7F:24 X509v3 Authority Key Identifier: keyid:3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:9d:92:c0:10:f2:6d:f3:c9:0e:3b:10:14:5d:03:64:6a:61: bf:d8:d8:94:32:de:29:20:88:c5:13:af:82:e3:eb:99:72:cd: 73:a1:df:ff:b4:cb:7d:bb:99:ab:30:2e:3b:e3:f5:15:f1:10: 2a:f3:50:03:e7:a6:89:c5:31:6f:fa:2b:3c:1f:03:03:73:7f: a0:84:c2:18:af:8a:64:4e:59:30:86:16:2b:0b:81:73:98:47: 57:cc:f8:c6:72:f3:1c:00:e5:a5:35:a9:44:2e:09:c7:fd:86: 53:3f:be:77:4e:db:54:cf:41:6d:aa:ea:ee:6e:6b:8a:91:bc: 6e:1e:38:e5:05:68:52:0e:23:a8:3a:82:6b:8a:9a:c9:95:ca: 22:bd:92:30:af:a7:49:0e:2b:0a:c3:1f:f9:d3:3d:61:ae:28: 18:20:15:88:fa:17:d7:cf:a8:6c:1c:d5:1c:92:03:42:7e:3d: 00:34:9a:e5:d7:bc:d9:b4:a9:db:8b:3e:e3:41:d1:c4:54:3d: a6:3b:e9:a8:a4:ef:76:7d:ff:e6:e2:06:69:dd:3f:01:a7:0d: 77:2b:b6:e6:5d:3b:6c:93:00:e5:cd:17:eb:58:76:93:5f:4f: 22:56:64:71:29:db:a2:05:ea:a3:c3:e0:84:6b:f8:fd:8d:52: fa:69:d5:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZurbi3J85yAhpJQ9D0lbYO9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiNjA0ZWMwY2ZlZTk2NmM0MTliM2E2ZDVmMDgyYjU2M2Mx ODY4YmQwHhcNMjYwMTExMDUwMTIzWhcNMjYwMTEyMDUwMTIzWjAzMTEwLwYDVQQD EygxMTU2MWNmZDc5ZDQ3ODhiM2FhNDc3M2Q5YjhhYmFlNWRlOGQ3ZjI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWt+j7W+T2DWAg+CSwFYpZzpAEM3 fgZn/3XXhH30II1AHkMEaWvgAoi0fCejmf5y0+Py3fHd89/agHg2Czv8tAbUwJyJ NsMNvTbpUtGIbFq55qfEiPHGeXE66dYlVP1WZmPVPx55zeJ0T3verQguBJgOSalF kjK2YgrVUl24rrFVjbEsdjFy0PjkTKKv+jK19W4p/mRdcmxDO0756da6gEypsl/o Xy5VvRuH9RfxgDZUVd244a3iC1G5JtWYAznnRKGTrTuUsKarxeqRs/kSpVIfFljk Czjau8nkuBBVmDgiuj2HEAMKOdZMNj4rUAbMDauX1x3wCP9CrAuZnem/twIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBFWHP151HiLOqR3PZuKuuXejX8kMB8GA1UdIwQY MBaAFDtgTsDP7pZsQZs6bV8IK1Y8GGi9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzJCT3dNX3VsbXhCbXpwdFh3Z3JWandZYUwwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8zZjVlYTQtMTg2OC00YTBiLTkyMTgt ODdlOWYyMWI0MThiLzEvTzJCT3dNX3VsbXhCbXpwdFh3Z3JWandZYUwwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS8zZjVlYTQtMTg2OC00YTBiLTkyMTgtODdlOWYyMWI0MThi LzEvTzJCT3dNX3VsbXhCbXpwdFh3Z3JWandZYUwwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARJ2SwBDy bfPJDjsQFF0DZGphv9jYlDLeKSCIxROvguPrmXLNc6Hf/7TLfbuZqzAuO+P1FfEQ KvNQA+emicUxb/orPB8DA3N/oITCGK+KZE5ZMIYWKwuBc5hHV8z4xnLzHADlpTWp RC4Jx/2GUz++d07bVM9Bbarq7m5ripG8bh445QVoUg4jqDqCa4qayZXKIr2SMK+n SQ4rCsMf+dM9Ya4oGCAViPoX18+obBzVHJIDQn49ADSa5de82bSp24s+40HRxFQ9 pjvpqKTvdn3/5uIGad0/AacNdyu25l07bJMA5c0X61h2k19PIlZkcSnbogXqo8Pg hGv4/Y1S+mnV2g== -----END CERTIFICATE-----Generated at Sun Jan 11 08:26:38 2026 by rpki-client