This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft File: Oexx3D1ozej5B3069mdRwp_O6kw.mft (raw, json) Hash identifier: iRJriqM1RCen/qYB0QxIw9U9pcOGaG1uWZnah6WAp2w= Subject key identifier: E0:FD:8C:13:07:10:C1:12:A5:21:0C:19:13:F0:E8:ED:C3:86:66:95 Authority key identifier: 39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C Certificate issuer: /CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c Certificate serial: 019B292DFE1644F8E94A0658841D75E5A7B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft Manifest number: 0AD8 Signing time: Tue 16 Dec 2025 22:00:38 +0000 Manifest this update: Tue 16 Dec 2025 22:00:38 +0000 Manifest next update: Wed 17 Dec 2025 22:00:38 +0000 Files and hashes: 1: 5MBvIRiYFms3iGBeHF3RQe9ll34.roa (hash: ZOt4HY8JzWPIwKbCM0yXoS+siw4USQmatYhxT9gEU9M=) 2: Oexx3D1ozej5B3069mdRwp_O6kw.crl (hash: xNekBEzTXQaZINYNdijvLFapyQoa1LuNbERG+yQjdkA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:29:2d:fe:16:44:f8:e9:4a:06:58:84:1d:75:e5:a7:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c Validity Not Before: Dec 16 22:00:38 2025 GMT Not After : Dec 17 22:00:38 2025 GMT Subject: CN=e0fd8c130710c112a5210c1913f0e8edc3866695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:26:a6:d6:35:fa:95:03:3a:af:ba:98:07:af: e8:05:c4:1c:69:df:56:85:b5:fc:49:fa:34:51:dc: 58:66:e7:1c:0a:04:2a:47:fa:e6:95:00:74:76:2e: 10:e1:6c:d3:ea:9a:5d:a7:34:47:78:d7:ba:c5:6f: ed:63:9e:c6:b9:0e:9c:84:55:fe:b5:94:38:b8:a7: 18:5d:0a:20:6b:4d:16:d2:4b:9e:d1:9b:fd:b2:9a: c6:33:82:d4:51:0c:83:9b:81:11:2b:cd:dc:a4:59: 0e:17:70:f4:80:4f:0f:da:08:9f:b7:71:9f:f0:28: ff:42:08:d7:85:9e:1a:6d:03:a3:bb:6b:7f:7b:09: 0e:84:10:f3:07:48:fa:54:2d:28:07:40:b9:c9:4d: 5d:0c:04:8c:3f:8c:2f:8a:a2:08:c4:ad:6e:7b:00: 99:07:89:3b:8f:19:9a:eb:95:de:05:08:0d:39:75: 44:ca:1e:e5:b4:c4:1c:8c:68:d9:51:1b:5c:42:5c: 28:6c:7b:ae:f1:bc:a9:4e:34:99:24:4b:38:8f:e5: d8:54:19:88:b7:69:d9:6d:8b:4b:64:8f:36:99:a3: 0b:bb:15:c3:ff:f0:8d:59:ae:bf:cc:5f:57:6b:f2: d1:f4:82:b3:d2:58:cb:3a:cf:6a:34:d3:25:f5:b9: 81:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:FD:8C:13:07:10:C1:12:A5:21:0C:19:13:F0:E8:ED:C3:86:66:95 X509v3 Authority Key Identifier: keyid:39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:68:51:fc:e4:f3:9f:d0:48:c0:65:78:e1:99:90:88:93:df: 0b:f0:1d:53:15:97:7c:71:ae:ac:17:67:a2:2c:6d:15:a3:f4: 82:f9:03:09:f6:8b:13:69:f2:4a:a8:82:19:16:cb:72:1e:14: 37:ea:97:62:4f:54:ab:b0:b0:cb:14:85:51:ac:1d:81:3c:73: e7:bd:6b:8f:6a:d9:cf:ef:14:1d:a2:01:9c:09:b5:e8:cf:db: f4:6e:04:1a:ca:0f:63:47:d6:36:30:75:3c:24:f9:b8:6d:83: 56:4a:3e:3b:e6:1f:4e:45:d0:b3:87:34:87:bb:35:0b:8c:e2: 74:0c:50:45:4c:7e:f9:ce:40:4f:81:8f:99:a6:c0:35:d3:00: 8f:c3:65:96:4b:3a:75:51:25:d0:38:ba:6f:cc:84:7d:15:19: 0e:fd:68:de:05:e0:2c:a8:fe:cc:da:15:3c:fd:5a:55:30:82: cb:93:4d:ea:1d:c3:fb:ca:2a:b0:ec:82:ab:94:5d:68:c3:7a: 5f:53:0d:c3:1b:a4:09:9c:03:d7:37:6e:b2:3e:1a:c4:e3:c8: 14:75:68:91:e1:16:e0:8a:a3:3e:18:00:9e:89:67:39:42:e8: cb:02:e5:bc:d3:1e:bb:39:05:ab:cd:81:ce:d5:3d:ff:5a:3b: 82:87:bb:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZspLf4WRPjpSgZYhB115ae5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5ZWM3MWRjM2Q2OGNkZThmOTA3N2QzYWY2Njc1MWMyOWZj ZWVhNGMwHhcNMjUxMjE2MjIwMDM4WhcNMjUxMjE3MjIwMDM4WjAzMTEwLwYDVQQD EyhlMGZkOGMxMzA3MTBjMTEyYTUyMTBjMTkxM2YwZThlZGMzODY2Njk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnCam1jX6lQM6r7qYB6/oBcQcad9W hbX8Sfo0UdxYZuccCgQqR/rmlQB0di4Q4WzT6ppdpzRHeNe6xW/tY57GuQ6chFX+ tZQ4uKcYXQoga00W0kue0Zv9sprGM4LUUQyDm4ERK83cpFkOF3D0gE8P2gift3Gf 8Cj/QgjXhZ4abQOju2t/ewkOhBDzB0j6VC0oB0C5yU1dDASMP4wviqIIxK1uewCZ B4k7jxma65XeBQgNOXVEyh7ltMQcjGjZURtcQlwobHuu8bypTjSZJEs4j+XYVBmI t2nZbYtLZI82maMLuxXD//CNWa6/zF9Xa/LR9IKz0ljLOs9qNNMl9bmBDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOD9jBMHEMESpSEMGRPw6O3DhmaVMB8GA1UdIwQY MBaAFDnscdw9aM3o+Qd9OvZnUcKfzupMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2V4eDNEMW96ZWo1QjMwNjltZFJ3cF9PNmt3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8xYmZkZjctYTE5Zi00MThlLTg5Yzct ZGIzZjIyNzA1ZGQ2LzEvT2V4eDNEMW96ZWo1QjMwNjltZFJ3cF9PNmt3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy8xYmZkZjctYTE5Zi00MThlLTg5YzctZGIzZjIyNzA1ZGQ2 LzEvT2V4eDNEMW96ZWo1QjMwNjltZFJ3cF9PNmt3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY2hR/OTz n9BIwGV44ZmQiJPfC/AdUxWXfHGurBdnoixtFaP0gvkDCfaLE2nySqiCGRbLch4U N+qXYk9Uq7CwyxSFUawdgTxz571rj2rZz+8UHaIBnAm16M/b9G4EGsoPY0fWNjB1 PCT5uG2DVko+O+YfTkXQs4c0h7s1C4zidAxQRUx++c5AT4GPmabANdMAj8Nllks6 dVEl0Di6b8yEfRUZDv1o3gXgLKj+zNoVPP1aVTCCy5NN6h3D+8oqsOyCq5RdaMN6 X1MNwxukCZwD1zdusj4axOPIFHVokeEW4IqjPhgAnolnOULoywLlvNMeuzkFq82B ztU9/1o7goe7JA== -----END CERTIFICATE-----Generated at Wed Dec 17 00:15:42 2025 by rpki-client