This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft File: OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft (raw, json) Hash identifier: 9rclOz6na0nR+THQAaraxBhJ3ZgFA2K0mgjERy/zgw4= Subject key identifier: 18:D3:77:31:B2:3D:8D:C2:5C:8A:C9:4C:03:2D:78:FD:E6:1F:D9:98 Authority key identifier: 38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7 Certificate issuer: /CN=38728e9bd37399df9ffae587bd06884b350a65b7 Certificate serial: 019BFBE4E20EF0F072BCC865FB3BC8330D6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft Manifest number: 16D6 Signing time: Mon 26 Jan 2026 20:00:39 +0000 Manifest this update: Mon 26 Jan 2026 20:00:39 +0000 Manifest next update: Tue 27 Jan 2026 20:00:39 +0000 Files and hashes: 1: AfDUmyK_-yRdfu3oY0w-ZmuI_n8.roa (hash: LsPuKpZEctSg8i+4uevFKA+sYuA+iu39H7g8hC66rsA=) 2: OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl (hash: vRj0FXk39PQfCLusHWi9CjENqiQJfDXhVQeVIeHU+qM=) 3: REMby4Ya31OA35rY4teZSHIa0ew.roa (hash: XyeGvAoenWA3MJIYVq931n9fMFmepWjFnS5c3uEtCFE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:e4:e2:0e:f0:f0:72:bc:c8:65:fb:3b:c8:33:0d:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38728e9bd37399df9ffae587bd06884b350a65b7 Validity Not Before: Jan 26 20:00:39 2026 GMT Not After : Jan 27 20:00:39 2026 GMT Subject: CN=18d37731b23d8dc25c8ac94c032d78fde61fd998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:87:99:ed:53:88:1a:6f:f2:3d:c6:d8:fb:a8: 1f:e4:08:4b:13:42:93:88:8f:25:44:67:55:2a:46: 56:f5:06:32:7c:1e:cc:a8:4e:e3:d6:5e:d8:97:d7: cb:71:5e:4f:3c:63:a0:08:03:7d:83:37:cb:39:0d: 76:e9:3a:23:a6:95:03:db:22:30:07:cf:3f:08:63: 5e:82:3f:6d:ce:e5:a0:0c:9c:41:f1:9b:9f:bc:95: f0:b4:c2:05:86:62:a1:b3:16:7c:4f:8b:52:31:41: 2b:14:70:c0:ae:19:b9:f5:1d:e3:92:aa:ff:41:51: 73:3f:08:2a:e0:b1:f1:e2:d6:1f:25:2d:b5:26:4e: a2:7b:fd:aa:75:48:f8:ed:8f:f6:c4:06:d0:72:83: d4:27:c0:f8:8a:e5:12:c7:e9:07:0c:9a:b0:a0:c2: 44:a0:2f:4d:01:f9:bf:98:89:b4:04:9b:0a:25:0f: a9:1b:66:1b:b3:15:e5:8e:b1:83:fe:b0:65:6d:18: 56:91:b3:a1:f2:a9:f5:ef:79:3a:ab:3f:ac:2b:0d: 79:fb:d2:e1:85:e3:ab:ee:31:40:7d:86:6c:c7:e5: 01:42:94:ca:e2:c5:42:a1:df:0f:90:9d:58:d8:d9: ab:85:0e:15:9d:0c:53:fc:05:2e:08:59:bd:50:05: 84:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D3:77:31:B2:3D:8D:C2:5C:8A:C9:4C:03:2D:78:FD:E6:1F:D9:98 X509v3 Authority Key Identifier: keyid:38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:7d:78:5a:4c:f2:62:8c:80:2a:3a:dc:49:d2:39:02:3c:af: 52:39:ef:b1:7c:f9:09:20:e4:ea:ad:8e:67:92:43:0b:89:b6: 41:b0:3e:67:65:d8:97:fa:d8:80:ee:91:e5:8a:a5:d2:d1:c3: 9a:19:d9:de:c0:98:4d:ce:0c:8a:07:19:5a:54:22:5e:5e:93: 12:fa:36:34:f7:11:45:94:4c:40:64:e3:75:33:3d:8d:51:9d: a7:88:cb:a2:36:06:81:ec:c6:23:a8:8c:26:b2:38:19:7d:67: 21:50:db:ba:33:4f:a0:5f:88:48:f7:34:3c:f2:d7:fb:34:19: 36:2e:39:fc:81:15:49:ca:a6:b7:f1:eb:1a:dc:a2:f7:e9:aa: 78:23:b5:07:4f:56:9f:2c:85:0c:c1:5f:27:1d:51:b5:6e:85: 62:f7:aa:ea:45:7c:1b:bb:68:77:30:86:16:5f:0c:b7:1c:89: 5d:9c:24:21:8b:67:a2:63:5b:50:a9:a7:a1:c9:93:3f:c5:7f: 31:53:2b:47:b4:92:5e:ff:63:8d:9d:9d:fa:50:57:1d:a9:91: 8f:0a:9b:57:63:dd:e7:5e:d2:99:bb:a7:88:70:b8:b4:0f:20: 79:65:9a:9c:25:7c:97:da:55:57:b2:a5:65:bc:b0:cc:19:d5: 03:a2:57:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv75OIO8PByvMhl+zvIMw1qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4NzI4ZTliZDM3Mzk5ZGY5ZmZhZTU4N2JkMDY4ODRiMzUw YTY1YjcwHhcNMjYwMTI2MjAwMDM5WhcNMjYwMTI3MjAwMDM5WjAzMTEwLwYDVQQD EygxOGQzNzczMWIyM2Q4ZGMyNWM4YWM5NGMwMzJkNzhmZGU2MWZkOTk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4eZ7VOIGm/yPcbY+6gf5AhLE0KT iI8lRGdVKkZW9QYyfB7MqE7j1l7Yl9fLcV5PPGOgCAN9gzfLOQ126TojppUD2yIw B88/CGNegj9tzuWgDJxB8ZufvJXwtMIFhmKhsxZ8T4tSMUErFHDArhm59R3jkqr/ QVFzPwgq4LHx4tYfJS21Jk6ie/2qdUj47Y/2xAbQcoPUJ8D4iuUSx+kHDJqwoMJE oC9NAfm/mIm0BJsKJQ+pG2YbsxXljrGD/rBlbRhWkbOh8qn173k6qz+sKw15+9Lh heOr7jFAfYZsx+UBQpTK4sVCod8PkJ1Y2NmrhQ4VnQxT/AUuCFm9UAWEzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBjTdzGyPY3CXIrJTAMteP3mH9mYMB8GA1UdIwQY MBaAFDhyjpvTc5nfn/rlh70GiEs1CmW3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0hLT205TnptZC1mLXVXSHZRYUlTelVLWmJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9iZTNlMjUtODgxYy00YWVjLWE5MzIt ZjhjZmEzM2Q2ODRlLzEvT0hLT205TnptZC1mLXVXSHZRYUlTelVLWmJjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy9iZTNlMjUtODgxYy00YWVjLWE5MzItZjhjZmEzM2Q2ODRl LzEvT0hLT205TnptZC1mLXVXSHZRYUlTelVLWmJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAH14Wkzy YoyAKjrcSdI5AjyvUjnvsXz5CSDk6q2OZ5JDC4m2QbA+Z2XYl/rYgO6R5Yql0tHD mhnZ3sCYTc4MigcZWlQiXl6TEvo2NPcRRZRMQGTjdTM9jVGdp4jLojYGgezGI6iM JrI4GX1nIVDbujNPoF+ISPc0PPLX+zQZNi45/IEVScqmt/HrGtyi9+mqeCO1B09W nyyFDMFfJx1RtW6FYveq6kV8G7todzCGFl8MtxyJXZwkIYtnomNbUKmnocmTP8V/ MVMrR7SSXv9jjZ2d+lBXHamRjwqbV2Pd517SmbuniHC4tA8geWWanCV8l9pVV7Kl ZbywzBnVA6JXxA== -----END CERTIFICATE-----Generated at Tue Jan 27 04:46:22 2026 by rpki-client