This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft File: onxkG1MKfGuiNAIuMyckYjI2cQA.mft (raw, json) Hash identifier: ewRPqXS1Xs/Gs7CYEm1AMR5iHJhBWeQ9wciSt3FCEc8= Subject key identifier: 18:3B:31:D3:4E:48:EA:D5:4C:5F:A3:D2:AD:F8:19:36:28:FC:39:66 Authority key identifier: A2:7C:64:1B:53:0A:7C:6B:A2:34:02:2E:33:27:24:62:32:36:71:00 Certificate issuer: /CN=a27c641b530a7c6ba234022e3327246232367100 Certificate serial: 019B4B15930B2830480DEA24FE0B7B0AF048 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/onxkG1MKfGuiNAIuMyckYjI2cQA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft Manifest number: 0CD6 Signing time: Tue 23 Dec 2025 12:01:03 +0000 Manifest this update: Tue 23 Dec 2025 12:01:03 +0000 Manifest next update: Wed 24 Dec 2025 12:01:03 +0000 Files and hashes: 1: QxhZicwGUVQxP9IW9_Bs3YT2TWA.roa (hash: BTcN4T7DZ6v6RQWA7fyITvrdQwjA1FWvrUllA9/iU9g=) 2: _CJ0ryZ88cYP589Qq2Z03nLVv7o.roa (hash: d5daN2lzwzk4YGoTznQDsoSXMlAa1gaQph+9wl7kXiM=) 3: onxkG1MKfGuiNAIuMyckYjI2cQA.crl (hash: trKCOPstdzHZc3o6I9uWvMbppqFYTZDBwf8t2AHQcIs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.crl rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft rsync://rpki.ripe.net/repository/DEFAULT/onxkG1MKfGuiNAIuMyckYjI2cQA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 12:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4b:15:93:0b:28:30:48:0d:ea:24:fe:0b:7b:0a:f0:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a27c641b530a7c6ba234022e3327246232367100 Validity Not Before: Dec 23 12:01:03 2025 GMT Not After : Dec 24 12:01:03 2025 GMT Subject: CN=183b31d34e48ead54c5fa3d2adf8193628fc3966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:77:c4:bd:54:00:42:52:fe:20:a6:23:22:ad: 2f:22:e0:92:b4:2d:b0:3d:9c:77:5d:da:b4:7d:8d: 44:1d:43:f8:7d:33:fb:68:ed:a2:5c:7a:54:a3:c7: 69:53:21:ed:1b:eb:70:b8:e2:ee:1f:65:cc:66:e3: 4c:ff:0d:c4:17:e0:3b:c1:16:3d:7a:43:c4:53:74: c7:fd:fa:46:2c:b5:cb:fd:55:e6:21:50:28:3a:22: 94:10:b0:08:12:42:59:dc:0d:50:8b:18:ea:04:2c: 0a:c5:39:de:c3:c8:9b:39:86:d4:1e:dd:f6:1f:fc: e1:7d:f9:88:55:1e:bc:b9:aa:f6:be:ee:df:14:08: 2e:3b:8e:e2:36:30:1d:b4:ae:02:c1:ef:49:15:e6: 90:b8:aa:2a:95:95:63:50:93:0c:3f:79:df:72:bb: 4c:44:36:05:35:e1:13:a5:da:59:42:08:95:18:c1: 40:6d:a3:47:5c:4d:8a:53:b0:68:d4:07:30:96:dd: 18:d1:6c:b2:b2:6b:16:e5:73:f9:94:c0:de:47:c9: fb:63:49:86:dd:4d:f3:77:69:c7:8f:b0:7b:fb:88: a6:49:c8:22:c3:db:c8:fb:99:a7:bd:ba:15:89:86: 44:0c:72:d6:21:98:48:3b:38:81:6c:3e:b9:a9:b2: cd:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:3B:31:D3:4E:48:EA:D5:4C:5F:A3:D2:AD:F8:19:36:28:FC:39:66 X509v3 Authority Key Identifier: keyid:A2:7C:64:1B:53:0A:7C:6B:A2:34:02:2E:33:27:24:62:32:36:71:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onxkG1MKfGuiNAIuMyckYjI2cQA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/006f56-1d8e-45cc-8694-1f188fcce855/1/onxkG1MKfGuiNAIuMyckYjI2cQA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:21:26:b1:b6:03:d9:30:0c:30:3a:cd:ad:25:cc:8a:22:8f: 5c:19:e3:91:1b:78:45:cf:73:48:bd:7a:2e:24:1a:e7:18:65: 2e:3b:e8:3c:29:35:e1:f4:21:2c:8e:b7:13:8f:70:5a:52:33: 96:f5:ee:3c:fb:77:b7:f6:01:9d:e1:1c:74:1f:65:b9:50:7f: a2:d4:3f:ba:9b:2f:cd:ac:df:e8:29:ea:bd:31:51:72:54:59: 36:3f:0c:6d:25:46:f4:c9:63:22:dc:3b:d7:5a:c5:db:8b:e5: 6f:05:b8:70:7a:55:00:db:16:08:5d:0e:d6:65:b1:fe:e8:65: c1:72:2a:ed:2a:dc:0e:2c:82:e7:43:dc:8e:5f:e2:e0:8e:5d: 15:38:4e:cb:81:54:e9:42:63:82:9e:38:5e:fd:a7:b2:f6:34: 83:0a:e4:88:05:d9:37:2a:37:74:1e:6f:1a:2a:a8:1c:2f:67: 00:d8:84:54:0a:ca:f3:54:da:96:2c:6b:f9:e7:85:d0:c2:39: f7:0e:db:00:f1:ea:d9:57:4c:b5:d9:e0:ac:f3:b0:c5:46:de: 10:5e:9b:3e:0f:4b:31:11:9f:c0:65:54:bd:df:38:47:5d:4d: ec:61:c1:61:6b:6d:e8:03:7b:3f:8a:c2:b9:ee:42:3c:c0:9a: 92:2e:16:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtLFZMLKDBIDeok/gt7CvBIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyN2M2NDFiNTMwYTdjNmJhMjM0MDIyZTMzMjcyNDYyMzIz NjcxMDAwHhcNMjUxMjIzMTIwMTAzWhcNMjUxMjI0MTIwMTAzWjAzMTEwLwYDVQQD EygxODNiMzFkMzRlNDhlYWQ1NGM1ZmEzZDJhZGY4MTkzNjI4ZmMzOTY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3nfEvVQAQlL+IKYjIq0vIuCStC2w PZx3Xdq0fY1EHUP4fTP7aO2iXHpUo8dpUyHtG+twuOLuH2XMZuNM/w3EF+A7wRY9 ekPEU3TH/fpGLLXL/VXmIVAoOiKUELAIEkJZ3A1QixjqBCwKxTnew8ibOYbUHt32 H/zhffmIVR68uar2vu7fFAguO47iNjAdtK4Cwe9JFeaQuKoqlZVjUJMMP3nfcrtM RDYFNeETpdpZQgiVGMFAbaNHXE2KU7Bo1Acwlt0Y0WyysmsW5XP5lMDeR8n7Y0mG 3U3zd2nHj7B7+4imScgiw9vI+5mnvboViYZEDHLWIZhIOziBbD65qbLNnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBg7MdNOSOrVTF+j0q34GTYo/DlmMB8GA1UdIwQY MBaAFKJ8ZBtTCnxrojQCLjMnJGIyNnEAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb254a0cxTUtmR3VpTkFJdU15Y2tZakkyY1FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8wMDZmNTYtMWQ4ZS00NWNjLTg2OTQt MWYxODhmY2NlODU1LzEvb254a0cxTUtmR3VpTkFJdU15Y2tZakkyY1FBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8wMDZmNTYtMWQ4ZS00NWNjLTg2OTQtMWYxODhmY2NlODU1 LzEvb254a0cxTUtmR3VpTkFJdU15Y2tZakkyY1FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAyEmsbYD 2TAMMDrNrSXMiiKPXBnjkRt4Rc9zSL16LiQa5xhlLjvoPCk14fQhLI63E49wWlIz lvXuPPt3t/YBneEcdB9luVB/otQ/upsvzazf6CnqvTFRclRZNj8MbSVG9MljItw7 11rF24vlbwW4cHpVANsWCF0O1mWx/uhlwXIq7SrcDiyC50Pcjl/i4I5dFThOy4FU 6UJjgp44Xv2nsvY0gwrkiAXZNyo3dB5vGiqoHC9nANiEVArK81Talixr+eeF0MI5 9w7bAPHq2VdMtdngrPOwxUbeEF6bPg9LMRGfwGVUvd84R11N7GHBYWtt6AN7P4rC ue5CPMCaki4WAQ== -----END CERTIFICATE-----Generated at Tue Dec 23 16:55:13 2025 by rpki-client