This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json) Hash identifier: UF1utIn5J4FytpqvvNVMFlkdjqlEtdQlxAyaxNfpmdA= Subject key identifier: 2E:C9:37:29:AF:CD:EE:75:92:B7:89:CE:51:91:AC:83:6E:83:0E:0F Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9 Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9 Certificate serial: 019BDF92F21BC03758135CA63E5768A54B4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft Manifest number: 0997 Signing time: Wed 21 Jan 2026 08:01:47 +0000 Manifest this update: Wed 21 Jan 2026 08:01:47 +0000 Manifest next update: Thu 22 Jan 2026 08:01:47 +0000 Files and hashes: 1: HJsFBPXpRz5LLN-HWWaUWkvpuFg.roa (hash: A71A79ld0mpXJShPBVAxO/RGVR9i2ChYv5yAgG0mvoI=) 2: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: e4EKFzk23zdQSjQnIv2qYf7ynFv3V4lYuXFfIOuHAxk=) 3: P5pmTNWk9XRgV0EttCSJwOMoJ6g.roa (hash: XWgju5gwU7Y6s/I/aWdqxA0jbgqEAg9SCcCUa2FrFZM=) 4: eajsCfDVR3mS2bokl79SZG65uO0.roa (hash: C+6jNZ7CvadCwwwjGLPlq4B5cByCVplF5IFoLR8czpM=) 5: igrteN5vqIxxznlHOmqBmnoDCxM.roa (hash: jDhUs8e7Zg5Ub3aoKeq6iFWO9yxzvyDpjaqplQBFShI=) 6: x4b1kVJxAoo0cTXBS0d05Vjhxp0.roa (hash: Dr3HVuYGSpmgMr+JUBhbJNssYU4/n5sJRGF2b2MSqMM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 08:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:df:92:f2:1b:c0:37:58:13:5c:a6:3e:57:68:a5:4b:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9 Validity Not Before: Jan 21 08:01:47 2026 GMT Not After : Jan 22 08:01:47 2026 GMT Subject: CN=2ec93729afcdee7592b789ce5191ac836e830e0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d1:6b:9b:22:07:df:a5:4f:44:d8:0a:71:31: 86:15:a0:4f:cb:9c:3d:14:39:42:87:a7:f0:93:72: 27:56:96:fe:32:98:8d:5e:37:7f:c0:87:18:81:17: 4b:6a:04:03:5d:74:ab:06:3f:f0:40:d0:85:4f:f6: 0c:a1:ae:77:8d:1e:d9:bf:5f:ac:73:42:39:f6:c0: 62:0b:04:df:4d:bd:11:de:a7:ac:dd:57:e4:f6:8f: f4:80:66:9f:fe:57:ae:ea:c2:8f:fc:16:4c:10:1b: 0b:3e:fc:2e:e1:9d:86:ee:17:92:f4:52:0e:ec:4e: 21:09:0a:d9:44:19:41:e0:a9:ab:ef:47:6c:66:aa: c6:de:da:a6:d3:9f:f2:bd:dd:b5:e9:a9:ab:29:bc: 7c:91:3a:fa:b6:9f:a6:27:88:19:3e:35:d2:dc:18: 82:48:00:59:af:ff:c7:c4:15:ed:10:6b:3c:39:db: 4a:37:18:f7:d5:4e:d8:57:35:76:cb:cd:1a:6d:b8: db:ce:be:79:8d:a7:df:60:d1:c7:47:6b:62:49:4a: 98:89:e6:ab:3f:cc:28:d6:56:f5:43:f8:59:0c:58: 2b:f7:89:dc:6c:51:bd:68:8a:1c:63:ff:65:ce:28: aa:72:cb:4b:c2:d9:c1:f5:d2:6d:ff:1e:7b:95:05: ae:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:C9:37:29:AF:CD:EE:75:92:B7:89:CE:51:91:AC:83:6E:83:0E:0F X509v3 Authority Key Identifier: keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:d5:db:b4:3d:5f:24:46:45:8f:f0:25:ed:bc:2d:7a:11:f9: e5:0e:6e:a5:59:36:ea:fd:28:e8:bd:b2:45:95:e8:32:4b:f7: 19:81:83:4d:f7:b2:d9:2b:53:a0:a3:ad:a4:93:94:44:27:03: 4a:11:70:d6:5d:e4:90:d1:a7:9a:cb:ec:b4:eb:63:bf:ab:62: 35:33:70:5b:c7:92:f2:6c:b4:34:cd:ba:ad:38:12:b4:30:e4: 80:dc:ab:c0:e3:33:24:cd:ce:33:f3:8b:19:0a:04:e1:40:38: a0:62:7d:d4:45:d5:ea:0d:3c:26:a3:4b:b0:e7:72:b3:54:09: be:1a:23:0e:b3:aa:06:c3:57:23:10:68:66:a9:cb:7d:c6:a8: 32:db:df:d9:65:84:6c:f7:ca:bf:72:8a:c3:c7:2e:75:6e:d5: 7d:67:05:96:61:51:19:d5:7e:e0:06:c5:81:64:e5:a1:9b:ae: fe:40:eb:d2:7e:fb:d8:87:51:bd:1e:f7:e1:af:6a:73:cd:d8: 44:95:5c:4c:4b:80:f8:88:74:03:f1:03:cb:f7:db:20:53:6f: c0:48:ef:b2:a1:c9:b1:06:fe:c0:13:70:0f:1a:72:cd:d7:37: ed:c4:ee:82:36:99:ea:1a:f0:f8:5f:f9:be:96:66:57:fe:ab: 30:1a:11:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvfkvIbwDdYE1ymPldopUtNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5MzZkYWYwMzc1NmJhZjgzYmE0ZjM4ZGJlNWQ2OGNiOWJh Y2VmZjkwHhcNMjYwMTIxMDgwMTQ3WhcNMjYwMTIyMDgwMTQ3WjAzMTEwLwYDVQQD EygyZWM5MzcyOWFmY2RlZTc1OTJiNzg5Y2U1MTkxYWM4MzZlODMwZTBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNFrmyIH36VPRNgKcTGGFaBPy5w9 FDlCh6fwk3InVpb+MpiNXjd/wIcYgRdLagQDXXSrBj/wQNCFT/YMoa53jR7Zv1+s c0I59sBiCwTfTb0R3qes3Vfk9o/0gGaf/leu6sKP/BZMEBsLPvwu4Z2G7heS9FIO 7E4hCQrZRBlB4Kmr70dsZqrG3tqm05/yvd216amrKbx8kTr6tp+mJ4gZPjXS3BiC SABZr//HxBXtEGs8OdtKNxj31U7YVzV2y80abbjbzr55jaffYNHHR2tiSUqYiear P8wo1lb1Q/hZDFgr94ncbFG9aIocY/9lziiqcstLwtnB9dJt/x57lQWutwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC7JNymvze51kreJzlGRrINugw4PMB8GA1UdIwQY MBaAFDk22vA3Vrr4O6Tzjb5daMubrO/5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8wNGVhMzMtODNhYS00ZTU2LTk4Y2Mt Zjk1ZjY2ZDYwNTVjLzEvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy8wNGVhMzMtODNhYS00ZTU2LTk4Y2MtZjk1ZjY2ZDYwNTVj LzEvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANdXbtD1f JEZFj/Al7bwtehH55Q5upVk26v0o6L2yRZXoMkv3GYGDTfey2StToKOtpJOURCcD ShFw1l3kkNGnmsvstOtjv6tiNTNwW8eS8my0NM26rTgStDDkgNyrwOMzJM3OM/OL GQoE4UA4oGJ91EXV6g08JqNLsOdys1QJvhojDrOqBsNXIxBoZqnLfcaoMtvf2WWE bPfKv3KKw8cudW7VfWcFlmFRGdV+4AbFgWTloZuu/kDr0n772IdRvR734a9qc83Y RJVcTEuA+Ih0A/EDy/fbIFNvwEjvsqHJsQb+wBNwDxpyzdc37cTugjaZ6hrw+F/5 vpZmV/6rMBoR0Q== -----END CERTIFICATE-----Generated at Wed Jan 21 12:48:44 2026 by rpki-client