This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft File: oKFURB35Yj7rWhlhONIb71gktEE.mft (raw, json) Hash identifier: GJDv1RwKaFAuQClx/dDUOeVqXAXR3MsotAYQZ32HDJI= Subject key identifier: A1:DB:27:E0:8F:04:CF:84:92:C5:E8:FC:93:FA:2E:E0:D9:DD:01:DB Authority key identifier: A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41 Certificate issuer: /CN=a0a154441df9623eeb5a196138d21bef5824b441 Certificate serial: 019BFCF80CFB09023F9906BA164925CEADAC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft Manifest number: 17F3 Signing time: Tue 27 Jan 2026 01:01:13 +0000 Manifest this update: Tue 27 Jan 2026 01:01:13 +0000 Manifest next update: Wed 28 Jan 2026 01:01:13 +0000 Files and hashes: 1: 1Ci6CgQlWtwRj4abWotGCgJ_WbE.roa (hash: 21FDHL6tsfpOVwV9wPtKykM8GJxDD9usWaIS/proET0=) 2: IOO3IGbg3gm00rI1vRsCU8sKWe8.roa (hash: 0AcGRGmbErLkr9vaJN/WU2nLbROdp3GeVVZZ5PGFvPU=) 3: OiGaIEub5jL1aTa5izfRirvLl84.roa (hash: 5MTw6kZy61jYtllFdul+j1TTHjK6hYnhm2x4TtMTz2Q=) 4: oKFURB35Yj7rWhlhONIb71gktEE.crl (hash: +D8s1ewF3wqcIyA83Pon/SFluwQHUL8uL8VRFw3m2MM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:f8:0c:fb:09:02:3f:99:06:ba:16:49:25:ce:ad:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0a154441df9623eeb5a196138d21bef5824b441 Validity Not Before: Jan 27 01:01:13 2026 GMT Not After : Jan 28 01:01:13 2026 GMT Subject: CN=a1db27e08f04cf8492c5e8fc93fa2ee0d9dd01db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:86:4b:00:35:23:d0:13:0e:02:1f:0a:a9:15: 60:78:9a:82:af:6b:96:2d:5f:e0:db:70:e4:80:26: b0:95:8c:f8:c9:de:31:7e:b1:a3:ac:cf:fb:cd:fb: 5d:5b:1f:68:8b:73:ab:e7:79:a1:da:c7:9f:a6:94: 9d:5e:c7:a2:af:32:c4:df:5e:bb:d5:6c:91:97:4a: 40:5f:22:33:5c:57:2c:f0:35:c9:a3:bc:a7:47:b5: d1:f8:7d:c7:38:6b:85:ed:a3:f6:d0:29:49:c0:39: f4:51:87:92:02:06:87:4e:dd:dc:3a:1a:9f:17:5b: e1:76:36:5b:d3:ed:d3:38:3b:56:24:77:c9:45:20: 53:76:51:cf:3c:30:64:20:b8:54:98:1d:a8:d7:0c: 1f:1a:24:b5:28:6b:54:b3:61:c9:23:42:97:a0:7e: a1:a7:b6:db:f5:5e:5b:a2:b3:3d:43:34:83:6b:95: 43:53:f3:66:3d:67:24:61:7e:bf:a6:c7:d7:7d:cd: a3:84:fa:1d:23:cb:7c:14:aa:5c:81:41:24:f6:50: 00:6b:27:fe:26:9c:86:98:db:47:8d:e9:05:1e:31: 8e:83:e9:0e:06:0d:ac:7c:5e:18:60:44:e0:1e:f1: a5:a1:7c:c0:26:eb:d6:9a:44:6a:11:ce:b7:2d:4c: bb:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:DB:27:E0:8F:04:CF:84:92:C5:E8:FC:93:FA:2E:E0:D9:DD:01:DB X509v3 Authority Key Identifier: keyid:A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:ef:bb:37:fe:0d:59:79:14:c4:53:56:04:5a:a6:ef:52:47: 1c:90:e1:0d:a1:f7:e8:33:73:5b:09:aa:06:d0:18:77:ad:9b: f8:4b:06:57:49:c8:73:c0:e5:74:93:8d:14:c5:79:f4:45:3f: 95:07:e0:c6:85:47:e8:92:98:2e:6e:17:e9:52:3c:77:bc:b9: 03:85:f9:57:9e:88:3c:2c:dc:bd:53:d1:67:05:7f:61:71:74: 37:02:40:a2:27:26:e0:9c:62:77:92:5e:ca:5c:19:ff:e0:c7: e5:27:86:1b:1d:a0:0a:b6:a7:5c:57:14:2b:f2:dc:4a:bc:6d: fb:2c:f8:a9:7a:02:3e:44:94:f6:26:23:38:b7:41:73:16:f4: 7f:8a:9f:42:76:64:8f:39:4c:9a:c0:28:d0:6a:94:23:a7:1b: 57:dd:97:5b:2f:10:f5:c2:78:5f:88:5d:e7:4e:fd:e8:08:9a: fa:68:64:c3:91:3e:7b:d1:af:f8:60:89:44:a3:11:1a:c5:35: 47:76:fc:ad:2b:83:e6:6b:0f:48:3b:25:c3:93:b4:ca:bb:eb: a0:0b:f8:98:15:48:70:a5:69:62:a5:3b:3e:a6:3b:f0:3f:26: e1:9e:1b:7b:95:32:b3:d1:be:8b:7f:29:50:db:35:04:62:7a: 65:de:10:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8+Az7CQI/mQa6Fkklzq2sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYTE1NDQ0MWRmOTYyM2VlYjVhMTk2MTM4ZDIxYmVmNTgy NGI0NDEwHhcNMjYwMTI3MDEwMTEzWhcNMjYwMTI4MDEwMTEzWjAzMTEwLwYDVQQD EyhhMWRiMjdlMDhmMDRjZjg0OTJjNWU4ZmM5M2ZhMmVlMGQ5ZGQwMWRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4ZLADUj0BMOAh8KqRVgeJqCr2uW LV/g23DkgCawlYz4yd4xfrGjrM/7zftdWx9oi3Or53mh2sefppSdXseirzLE3167 1WyRl0pAXyIzXFcs8DXJo7ynR7XR+H3HOGuF7aP20ClJwDn0UYeSAgaHTt3cOhqf F1vhdjZb0+3TODtWJHfJRSBTdlHPPDBkILhUmB2o1wwfGiS1KGtUs2HJI0KXoH6h p7bb9V5borM9QzSDa5VDU/NmPWckYX6/psfXfc2jhPodI8t8FKpcgUEk9lAAayf+ JpyGmNtHjekFHjGOg+kOBg2sfF4YYETgHvGloXzAJuvWmkRqEc63LUy7bwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKHbJ+CPBM+EksXo/JP6LuDZ3QHbMB8GA1UdIwQY MBaAFKChVEQd+WI+61oZYTjSG+9YJLRBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0tGVVJCMzVZajdyV2hsaE9OSWI3MWdrdEVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC81YjNkNmQtZTZmMS00N2FkLWI1MmIt OWQ5NDM2NzFhOGEzLzEvb0tGVVJCMzVZajdyV2hsaE9OSWI3MWdrdEVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC81YjNkNmQtZTZmMS00N2FkLWI1MmItOWQ5NDM2NzFhOGEz LzEvb0tGVVJCMzVZajdyV2hsaE9OSWI3MWdrdEVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAke+7N/4N WXkUxFNWBFqm71JHHJDhDaH36DNzWwmqBtAYd62b+EsGV0nIc8DldJONFMV59EU/ lQfgxoVH6JKYLm4X6VI8d7y5A4X5V56IPCzcvVPRZwV/YXF0NwJAoicm4Jxid5Je ylwZ/+DH5SeGGx2gCranXFcUK/LcSrxt+yz4qXoCPkSU9iYjOLdBcxb0f4qfQnZk jzlMmsAo0GqUI6cbV92XWy8Q9cJ4X4hd50796Aia+mhkw5E+e9Gv+GCJRKMRGsU1 R3b8rSuD5msPSDslw5O0yrvroAv4mBVIcKVpYqU7PqY78D8m4Z4be5Uys9G+i38p UNs1BGJ6Zd4Q5Q== -----END CERTIFICATE-----Generated at Tue Jan 27 03:55:19 2026 by rpki-client