This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft File: O1RMoOK-GOn9dOKBMkowsOotHVI.mft (raw, json) Hash identifier: dDWf39yr99x0TVwHOq1dRWPFEjG6JrxBNE2gA6Funds= Subject key identifier: 34:4A:2A:F3:AE:5E:FF:B0:CC:23:F6:CB:06:66:29:6B:80:D5:E9:F3 Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52 Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52 Certificate serial: 019BA791E8ED84D1F7C8B5FCB6AF098EB70C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft Manifest number: 0E65 Signing time: Sat 10 Jan 2026 11:01:55 +0000 Manifest this update: Sat 10 Jan 2026 11:01:55 +0000 Manifest next update: Sun 11 Jan 2026 11:01:55 +0000 Files and hashes: 1: B6a5OYw5k1d8l_SU0IrVoypirkQ.roa (hash: mA56XAPAVTTgeQfOXIzVUUfW3nA6Kq9wMg60z/0S6sg=) 2: HoguhPYctq53_NeJpwMiGGaEYHE.roa (hash: 2Rg4I4psfcDKa015Nd8h+FBbuNVy5CBZXEFltS4HBbg=) 3: O1RMoOK-GOn9dOKBMkowsOotHVI.crl (hash: 9ghBTUQdMfvIfLSBfOmqmOAbM1++O8NCBb6Ykczrpek=) 4: jqg60u3udEXldRsO6lvjcjKURzE.roa (hash: kW26aKoDuoF4wJ1FRfJ1sSmndtvHSr/VmE5hX9cRIqU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 06:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a7:91:e8:ed:84:d1:f7:c8:b5:fc:b6:af:09:8e:b7:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52 Validity Not Before: Jan 10 11:01:55 2026 GMT Not After : Jan 11 11:01:55 2026 GMT Subject: CN=344a2af3ae5effb0cc23f6cb0666296b80d5e9f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:2e:bc:b8:f0:9b:72:cb:14:42:4c:96:e9:dd: 6c:c8:28:96:f2:ee:40:dc:5b:79:a9:f1:80:55:c4: 9a:9b:02:5c:3c:a6:3b:e4:f0:6d:3d:26:38:8f:01: 1a:c0:eb:03:c3:e4:13:19:ab:0b:10:cb:b4:f6:6d: ac:52:c4:42:9a:38:36:5c:98:50:62:9e:64:fb:ef: 6a:ad:6e:81:82:8d:f4:f3:74:c0:f3:2b:33:8f:1d: 55:2b:39:2f:97:ea:32:21:dd:e7:b9:97:04:92:ac: 7b:ad:e3:60:a7:3c:7b:19:19:0b:f2:e2:1e:8f:a0: d9:2e:4d:1d:b0:26:d1:99:ec:14:51:58:05:cd:1f: 83:70:cf:eb:26:81:15:a3:0b:0a:7a:17:b4:0a:4f: fe:4b:4a:bf:fc:7d:bf:0f:5f:2f:08:53:29:ca:c9: 8b:e7:8f:a1:21:41:06:a7:e9:8b:1f:02:67:74:7a: 3b:61:d0:a1:2b:0c:1d:a5:4d:f9:14:da:9c:fa:cf: a2:b6:6c:8e:bc:97:54:1c:ec:41:79:c8:ec:ff:4a: c8:18:06:6d:0c:ef:e3:60:e7:1b:c3:55:ee:81:d5: 27:26:28:a1:94:10:14:0a:20:5b:78:6b:ad:27:3b: 72:66:39:ae:44:00:d1:55:92:16:40:9c:22:7a:08: eb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:4A:2A:F3:AE:5E:FF:B0:CC:23:F6:CB:06:66:29:6B:80:D5:E9:F3 X509v3 Authority Key Identifier: keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:8d:e5:1c:f6:b6:2e:4f:8a:a5:a9:24:b8:33:39:1d:00:5c: c3:0b:04:4b:cf:31:61:6c:7e:08:c9:fe:da:d7:3c:cc:34:a7: 4e:ab:be:83:e0:db:97:02:09:72:cb:13:78:c1:81:fb:e6:c0: 32:07:f3:a3:fb:ec:32:74:5a:2c:dd:c6:c8:ad:7f:34:d1:5d: 86:80:91:b0:29:3a:5b:09:45:0b:c1:9d:99:d2:5a:a4:de:9c: 96:88:0c:b6:4a:92:67:fb:bc:ba:ce:4e:22:d2:ab:63:de:08: f1:7e:b6:76:12:c1:26:bf:f2:65:8d:48:f1:0d:cc:5f:49:84: 1b:5e:9a:f9:ff:fd:29:56:35:96:09:a0:9a:c8:d3:1e:5b:c8: de:49:db:45:07:06:c9:35:bd:d8:26:16:10:e1:85:44:09:69: 04:69:a6:b1:8e:61:4e:10:92:35:a1:42:43:6e:27:3b:61:fb: 91:06:b4:7a:3b:c2:23:81:75:d2:d3:b1:a7:39:4b:42:4c:81: 6e:24:9d:49:98:0d:e7:00:78:15:8c:54:19:c1:28:88:f8:ae: e9:24:86:1d:73:3c:9d:e6:fa:70:9c:06:19:ad:39:02:ca:61: 79:66:ee:09:bc:68:d0:82:c5:19:03:c2:49:cd:dd:62:75:19: 7d:8f:80:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZunkejthNH3yLX8tq8JjrcMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiNTQ0Y2EwZTJiZTE4ZTlmZDc0ZTI4MTMyNGEzMGIwZWEy ZDFkNTIwHhcNMjYwMTEwMTEwMTU1WhcNMjYwMTExMTEwMTU1WjAzMTEwLwYDVQQD EygzNDRhMmFmM2FlNWVmZmIwY2MyM2Y2Y2IwNjY2Mjk2YjgwZDVlOWYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmi68uPCbcssUQkyW6d1syCiW8u5A 3Ft5qfGAVcSamwJcPKY75PBtPSY4jwEawOsDw+QTGasLEMu09m2sUsRCmjg2XJhQ Yp5k++9qrW6Bgo3083TA8yszjx1VKzkvl+oyId3nuZcEkqx7reNgpzx7GRkL8uIe j6DZLk0dsCbRmewUUVgFzR+DcM/rJoEVowsKehe0Ck/+S0q//H2/D18vCFMpysmL 54+hIUEGp+mLHwJndHo7YdChKwwdpU35FNqc+s+itmyOvJdUHOxBecjs/0rIGAZt DO/jYOcbw1XugdUnJiihlBAUCiBbeGutJztyZjmuRADRVZIWQJwiegjr+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDRKKvOuXv+wzCP2ywZmKWuA1enzMB8GA1UdIwQY MBaAFDtUTKDivhjp/XTigTJKMLDqLR1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzFSTW9PSy1HT245ZE9LQk1rb3dzT290SFZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8zMDMwYmItNDJjMi00ZTNjLTg1OWEt ODc2YTlkNzYyOWY2LzEvTzFSTW9PSy1HT245ZE9LQk1rb3dzT290SFZJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8zMDMwYmItNDJjMi00ZTNjLTg1OWEtODc2YTlkNzYyOWY2 LzEvTzFSTW9PSy1HT245ZE9LQk1rb3dzT290SFZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASo3lHPa2 Lk+KpakkuDM5HQBcwwsES88xYWx+CMn+2tc8zDSnTqu+g+DblwIJcssTeMGB++bA Mgfzo/vsMnRaLN3GyK1/NNFdhoCRsCk6WwlFC8GdmdJapN6clogMtkqSZ/u8us5O ItKrY94I8X62dhLBJr/yZY1I8Q3MX0mEG16a+f/9KVY1lgmgmsjTHlvI3knbRQcG yTW92CYWEOGFRAlpBGmmsY5hThCSNaFCQ24nO2H7kQa0ejvCI4F10tOxpzlLQkyB biSdSZgN5wB4FYxUGcEoiPiu6SSGHXM8neb6cJwGGa05AspheWbuCbxo0ILFGQPC Sc3dYnUZfY+A7w== -----END CERTIFICATE-----Generated at Sat Jan 10 16:27:05 2026 by rpki-client