This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft File: OzoF27nHf6Fu0QRpdHpcbm6riN4.mft (raw, json) Hash identifier: Gzbl50Wme+v+fQYqOnF0xSWe0pijxliZnysUE3LZUck= Subject key identifier: 68:ED:F5:2A:D5:B4:7B:01:AC:AE:FE:65:1E:F8:41:35:51:5A:21:80 Authority key identifier: 3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE Certificate issuer: /CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de Certificate serial: 019BFBADED5D6460E1DD31982500A6728C89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft Manifest number: 07CC Signing time: Mon 26 Jan 2026 19:00:38 +0000 Manifest this update: Mon 26 Jan 2026 19:00:38 +0000 Manifest next update: Tue 27 Jan 2026 19:00:38 +0000 Files and hashes: 1: 8StX0WxvVxL5fDtFqnpRuPragb8.roa (hash: KTc11CLRkDoDh2bPnpdqQKRTLCJiEbLK9vVpkNsL14o=) 2: OzoF27nHf6Fu0QRpdHpcbm6riN4.crl (hash: q9kB9To3UhoGJpzkPVTaYMzbVn+gxUtQioWMZFk3p3k=) 3: bb_iJ1U1Lf6VC6Ovl038VnEkd0c.roa (hash: x4RJFA42s0Y6MhAsHNXRTYoSOIZLJ8yZ/qGJdWD8hcc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:ad:ed:5d:64:60:e1:dd:31:98:25:00:a6:72:8c:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de Validity Not Before: Jan 26 19:00:38 2026 GMT Not After : Jan 27 19:00:38 2026 GMT Subject: CN=68edf52ad5b47b01acaefe651ef84135515a2180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7b:f3:d4:a5:b4:e6:bd:27:a0:2e:03:6c:48: 46:ec:e0:3a:d7:41:b8:19:0a:e3:cf:98:9b:a4:53: 08:29:65:0d:8b:d6:cb:4e:d4:b6:3e:a9:0a:29:d2: 8c:a3:24:7e:f1:39:56:84:12:26:8a:33:22:68:52: 38:10:ed:57:6a:a6:04:48:65:38:24:a5:0a:9a:d3: 97:04:56:f4:43:c0:77:f3:79:b4:ed:08:dc:14:c7: 4e:73:15:b6:d4:58:f0:5a:30:53:e2:de:5f:7a:5a: 5d:ec:e8:36:25:86:0a:75:69:76:a7:07:6b:e9:17: 6d:b7:19:88:c7:c5:17:6a:82:f4:32:98:30:1a:44: fa:d1:60:67:70:9a:fd:fe:c3:32:1c:cb:8e:6f:6d: 78:69:c3:7e:46:d4:1a:93:18:24:a6:c7:04:f7:fb: a1:a6:a7:13:3f:da:36:2b:6c:46:3d:dc:26:af:9f: 8f:a2:e6:3d:ad:50:3b:75:2f:d6:7a:21:0d:19:f8: 3b:71:6a:c5:6e:78:49:b6:93:31:e7:f1:73:98:f5: ce:a3:18:48:4d:9f:dc:cd:36:da:b4:80:0e:c4:a7: 6c:77:35:29:11:8e:4d:98:68:d4:77:2c:ab:1c:93: 60:f1:12:ef:99:26:15:be:27:a9:a0:6c:c8:35:4c: a7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:ED:F5:2A:D5:B4:7B:01:AC:AE:FE:65:1E:F8:41:35:51:5A:21:80 X509v3 Authority Key Identifier: keyid:3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:c9:9a:1a:ab:6b:0d:a6:63:c9:6c:4c:25:c0:84:e6:ff:5e: d4:32:2c:44:be:ed:f2:02:00:40:22:a2:6e:92:d2:3c:af:72: 71:3b:05:1a:0b:f6:7d:ed:d8:2e:50:fd:05:25:fd:b1:b9:03: 87:fb:8e:d5:6f:26:78:5c:3c:d9:fb:b0:60:7b:b3:56:2b:34: 8a:7d:66:ac:ab:6d:35:85:cd:af:21:7c:83:31:15:8e:68:ee: 58:35:9b:8a:b5:81:9e:e5:97:c7:9c:d7:1b:82:9d:bf:09:ce: ad:b6:06:d5:42:03:95:15:20:51:55:10:b8:c1:21:d8:b3:cb: 73:fb:92:9b:7a:67:ea:e5:e5:93:44:30:61:da:47:de:5c:51: 6f:22:05:1f:87:46:9b:c9:2f:d7:c0:1c:45:88:ae:7b:6c:ba: 1f:25:f6:44:ef:dd:9f:96:cb:fb:55:67:61:34:1d:78:77:4d: b3:d1:1d:46:80:95:25:87:52:e4:a4:8a:a4:07:cd:95:da:06: bc:70:85:6a:2d:ae:0e:75:67:f8:19:ff:f7:7a:82:d5:6c:34: 12:79:c9:a3:d7:51:83:6f:13:b4:69:58:91:ec:8a:39:02:5d: 2e:3d:6d:0f:b1:b5:2f:1a:3c:0d:e1:46:6c:28:3b:92:8f:bc: cd:a3:be:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7re1dZGDh3TGYJQCmcoyJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiM2EwNWRiYjljNzdmYTE2ZWQxMDQ2OTc0N2E1YzZlNmVh Yjg4ZGUwHhcNMjYwMTI2MTkwMDM4WhcNMjYwMTI3MTkwMDM4WjAzMTEwLwYDVQQD Eyg2OGVkZjUyYWQ1YjQ3YjAxYWNhZWZlNjUxZWY4NDEzNTUxNWEyMTgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwnvz1KW05r0noC4DbEhG7OA610G4 GQrjz5ibpFMIKWUNi9bLTtS2PqkKKdKMoyR+8TlWhBImijMiaFI4EO1XaqYESGU4 JKUKmtOXBFb0Q8B383m07QjcFMdOcxW21FjwWjBT4t5felpd7Og2JYYKdWl2pwdr 6RdttxmIx8UXaoL0MpgwGkT60WBncJr9/sMyHMuOb214acN+RtQakxgkpscE9/uh pqcTP9o2K2xGPdwmr5+PouY9rVA7dS/WeiENGfg7cWrFbnhJtpMx5/FzmPXOoxhI TZ/czTbatIAOxKdsdzUpEY5NmGjUdyyrHJNg8RLvmSYVviepoGzINUynvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGjt9SrVtHsBrK7+ZR74QTVRWiGAMB8GA1UdIwQY MBaAFDs6Bdu5x3+hbtEEaXR6XG5uq4jeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3pvRjI3bkhmNkZ1MFFScGRIcGNibTZyaU40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS81YWEwNWEtNzIwZS00ZDU2LWEzYTgt YTAxYzM3Yjg4NzI4LzEvT3pvRjI3bkhmNkZ1MFFScGRIcGNibTZyaU40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS81YWEwNWEtNzIwZS00ZDU2LWEzYTgtYTAxYzM3Yjg4NzI4 LzEvT3pvRjI3bkhmNkZ1MFFScGRIcGNibTZyaU40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkMmaGqtr DaZjyWxMJcCE5v9e1DIsRL7t8gIAQCKibpLSPK9ycTsFGgv2fe3YLlD9BSX9sbkD h/uO1W8meFw82fuwYHuzVis0in1mrKttNYXNryF8gzEVjmjuWDWbirWBnuWXx5zX G4KdvwnOrbYG1UIDlRUgUVUQuMEh2LPLc/uSm3pn6uXlk0QwYdpH3lxRbyIFH4dG m8kv18AcRYiue2y6HyX2RO/dn5bL+1VnYTQdeHdNs9EdRoCVJYdS5KSKpAfNldoG vHCFai2uDnVn+Bn/93qC1Ww0EnnJo9dRg28TtGlYkeyKOQJdLj1tD7G1Lxo8DeFG bCg7ko+8zaO+5w== -----END CERTIFICATE-----Generated at Tue Jan 27 01:19:22 2026 by rpki-client