This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft File: oWldVVgkHgSoctwTRomPLOpw3-c.mft (raw, json) Hash identifier: sPstaxy5HOgdkRGCkEnvJBw3V8KN7xRzjRAh0yS1qsw= Subject key identifier: 78:18:49:1F:3B:F5:90:58:F4:04:AA:B8:25:05:13:A7:27:4E:6D:1B Authority key identifier: A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7 Certificate issuer: /CN=a1695d5558241e04a872dc1346898f2cea70dfe7 Certificate serial: 019B3FECFEA12EA4892CA57CE387AEA63F9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft Manifest number: 074D Signing time: Sun 21 Dec 2025 08:00:54 +0000 Manifest this update: Sun 21 Dec 2025 08:00:54 +0000 Manifest next update: Mon 22 Dec 2025 08:00:54 +0000 Files and hashes: 1: GgU4V3exF_KMsbXxFhlxd1M5pl8.roa (hash: l8v1ZDd4kP5GR80G/4+UL0QS/Pev1eqpTKkPGhrjSW4=) 2: oWldVVgkHgSoctwTRomPLOpw3-c.crl (hash: RhCm9BLwS+yk+Nrv/o3p11HCIdpkfkp5gCbzX55VpT8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.crl rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:ec:fe:a1:2e:a4:89:2c:a5:7c:e3:87:ae:a6:3f:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1695d5558241e04a872dc1346898f2cea70dfe7 Validity Not Before: Dec 21 08:00:54 2025 GMT Not After : Dec 22 08:00:54 2025 GMT Subject: CN=7818491f3bf59058f404aab8250513a7274e6d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:72:53:58:7e:bd:98:ba:ca:02:0d:7c:06:6c: 0b:f7:71:8b:90:da:dd:bb:65:45:e7:d7:e9:ae:ae: cb:ef:50:81:21:0d:d3:90:ed:6d:09:49:05:cd:f4: 6b:8d:ce:7d:09:e2:cd:04:59:03:91:c8:bb:f4:b4: 4f:5f:be:d1:73:a6:60:81:53:2d:1a:d4:0e:b7:c9: a6:a6:67:78:09:76:a5:f5:40:2c:a6:05:61:ae:1a: 76:e9:e4:32:60:91:0f:41:10:75:98:cd:cd:69:80: 20:e1:4d:ee:f0:9a:ff:55:ea:78:bf:9d:aa:37:23: 0a:24:23:9a:03:83:83:9d:8b:3a:59:d5:e9:08:be: 7b:e6:64:ae:e2:91:ce:c1:56:37:8f:e3:46:96:dd: f3:0f:74:ce:e3:0f:1f:7d:b3:d8:cd:b6:79:d3:d4: ec:9d:da:47:80:a3:43:51:2c:51:45:44:86:a7:fc: bb:9d:f0:39:ea:ca:0e:10:d4:8d:36:92:6a:7c:4e: 12:1e:c5:66:59:70:4c:20:c7:6a:ee:5d:5f:ab:5e: 4c:20:e6:ef:2f:a6:7c:a9:8e:e7:c8:19:91:64:e1: 8b:64:8e:71:48:75:9d:95:2e:ef:03:a5:97:2a:e6: cb:78:85:67:33:6b:7f:3b:9c:8b:44:c4:c1:88:50: e3:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:18:49:1F:3B:F5:90:58:F4:04:AA:B8:25:05:13:A7:27:4E:6D:1B X509v3 Authority Key Identifier: keyid:A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:e1:20:82:bb:27:39:99:df:9a:19:90:d0:33:c1:bc:63:f6: 7e:f2:39:36:47:d6:5a:c5:03:e0:41:08:6b:24:bf:b5:0c:f5: 78:f4:65:ad:ac:4c:3e:6a:c3:02:2f:42:ba:5f:b5:e7:6e:9d: 05:bb:e7:fb:bc:4c:80:bf:5d:7e:96:35:6d:a8:9f:ad:3a:70: a2:37:ad:f0:df:66:fc:80:f6:7f:5d:64:87:44:a8:cf:56:40: 89:36:80:02:81:56:8b:39:64:bd:00:21:9d:39:7c:a1:89:34: 72:9b:19:d4:c1:4e:61:10:fd:ec:18:86:f5:00:6c:c2:d0:83: 8f:f7:85:ab:e8:85:36:f9:57:7e:3e:e5:ff:03:c0:cd:65:1b: 6e:d2:44:d6:ac:2a:f7:5e:78:3c:f2:ce:f7:aa:02:e8:ef:f6: d7:a7:23:8f:d1:47:57:40:0e:67:2d:a3:ab:c2:5f:f6:72:9b: 0d:b6:08:c2:c9:db:80:02:fc:68:9b:4e:24:f6:96:b9:ff:33: 94:fd:10:4c:cd:1d:6e:f7:79:b7:d5:69:2c:77:1f:7e:be:ed: 5c:4c:5f:0a:93:17:80:84:df:66:dd:4a:ed:a9:3c:5e:bd:cc: 47:19:e5:80:00:a5:3f:a1:54:75:ce:a9:39:1b:d0:84:c9:3f: 65:d3:ef:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/7P6hLqSJLKV844eupj+bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExNjk1ZDU1NTgyNDFlMDRhODcyZGMxMzQ2ODk4ZjJjZWE3 MGRmZTcwHhcNMjUxMjIxMDgwMDU0WhcNMjUxMjIyMDgwMDU0WjAzMTEwLwYDVQQD Eyg3ODE4NDkxZjNiZjU5MDU4ZjQwNGFhYjgyNTA1MTNhNzI3NGU2ZDFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk3JTWH69mLrKAg18BmwL93GLkNrd u2VF59fprq7L71CBIQ3TkO1tCUkFzfRrjc59CeLNBFkDkci79LRPX77Rc6ZggVMt GtQOt8mmpmd4CXal9UAspgVhrhp26eQyYJEPQRB1mM3NaYAg4U3u8Jr/Vep4v52q NyMKJCOaA4ODnYs6WdXpCL575mSu4pHOwVY3j+NGlt3zD3TO4w8ffbPYzbZ509Ts ndpHgKNDUSxRRUSGp/y7nfA56soOENSNNpJqfE4SHsVmWXBMIMdq7l1fq15MIObv L6Z8qY7nyBmRZOGLZI5xSHWdlS7vA6WXKubLeIVnM2t/O5yLRMTBiFDjPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHgYSR879ZBY9ASquCUFE6cnTm0bMB8GA1UdIwQY MBaAFKFpXVVYJB4EqHLcE0aJjyzqcN/nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1dsZFZWZ2tIZ1NvY3R3VFJvbVBMT3B3My1jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC8yN2NhN2YtNjZiNC00YmIxLTlmNWYt ZjViYTRmZTJiZjU0LzEvb1dsZFZWZ2tIZ1NvY3R3VFJvbVBMT3B3My1jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC8yN2NhN2YtNjZiNC00YmIxLTlmNWYtZjViYTRmZTJiZjU0 LzEvb1dsZFZWZ2tIZ1NvY3R3VFJvbVBMT3B3My1jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD+Eggrsn OZnfmhmQ0DPBvGP2fvI5NkfWWsUD4EEIayS/tQz1ePRlraxMPmrDAi9Cul+1526d Bbvn+7xMgL9dfpY1baifrTpwojet8N9m/ID2f11kh0Soz1ZAiTaAAoFWizlkvQAh nTl8oYk0cpsZ1MFOYRD97BiG9QBswtCDj/eFq+iFNvlXfj7l/wPAzWUbbtJE1qwq 9154PPLO96oC6O/216cjj9FHV0AOZy2jq8Jf9nKbDbYIwsnbgAL8aJtOJPaWuf8z lP0QTM0dbvd5t9VpLHcffr7tXExfCpMXgITfZt1K7ak8Xr3MRxnlgAClP6FUdc6p ORvQhMk/ZdPvPg== -----END CERTIFICATE-----Generated at Sun Dec 21 10:44:41 2025 by rpki-client