This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft File: OzdnJSANjYwAzw91FK8l_zYjEPA.mft (raw, json) Hash identifier: PLwO2wRPt/xze8zoEhT7xwauWl+UB+xb5P1T35msk00= Subject key identifier: 50:7C:3B:4A:5F:79:8B:4F:E2:F5:F4:FD:B7:C6:C9:0D:D4:32:E6:5A Authority key identifier: 3B:37:67:25:20:0D:8D:8C:00:CF:0F:75:14:AF:25:FF:36:23:10:F0 Certificate issuer: /CN=3b376725200d8d8c00cf0f7514af25ff362310f0 Certificate serial: 019B4249A9E8E5BADCC59807C22E5A0557D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft Manifest number: 178C Signing time: Sun 21 Dec 2025 19:01:22 +0000 Manifest this update: Sun 21 Dec 2025 19:01:22 +0000 Manifest next update: Mon 22 Dec 2025 19:01:22 +0000 Files and hashes: 1: OzdnJSANjYwAzw91FK8l_zYjEPA.crl (hash: alqsXhUe4JTouJJNBQEK6uKJKoxzkT4HvE4v+gOMxDc=) 2: mY9DqP6sBYRDAuWwviu5NNB6lIA.roa (hash: Jpwfq6zWzFUKhEKM7+C1EDuHC9fqQSYeca6cvS8lEYo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:49:a9:e8:e5:ba:dc:c5:98:07:c2:2e:5a:05:57:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b376725200d8d8c00cf0f7514af25ff362310f0 Validity Not Before: Dec 21 19:01:22 2025 GMT Not After : Dec 22 19:01:22 2025 GMT Subject: CN=507c3b4a5f798b4fe2f5f4fdb7c6c90dd432e65a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:02:dc:01:e8:c5:87:3b:2b:28:24:09:fa:80: 50:b9:3f:b7:81:81:78:e3:b5:c8:b4:52:31:aa:fb: 46:40:7f:39:55:e8:8e:8a:6a:45:8e:8a:96:7c:b0: af:eb:b1:25:0c:51:49:cc:41:b5:e8:ab:53:5b:d9: 00:81:72:c2:66:ec:7c:bd:b5:eb:6f:5f:dc:ad:e5: 9f:45:4b:61:f6:df:66:18:47:91:0f:2c:e9:fd:ee: a8:83:fb:1a:1c:30:03:48:ce:15:85:d4:88:f9:60: cb:7c:af:e6:9c:ae:ac:00:54:ac:55:91:de:15:4d: cb:6f:21:80:b0:12:70:29:b3:ac:bd:99:91:e5:b7: af:1a:4f:bd:2f:4d:52:dc:24:72:cc:c8:34:a0:ce: 98:25:db:0a:90:f4:a4:d5:2b:c3:7c:c5:3c:70:e9: 65:d9:f8:22:b1:e9:5d:ce:6f:c9:dd:17:d8:e8:66: 79:75:76:bb:ba:75:49:14:4b:d9:01:23:32:fd:09: 4e:92:c7:aa:2d:d0:cf:09:21:cf:f2:22:1c:ea:60: d6:05:3c:51:60:77:08:1b:3a:db:a3:20:28:f1:cd: 9d:44:88:45:4c:78:0b:87:25:94:0a:b0:49:0d:d6: dd:65:d0:e3:18:8b:e6:da:97:2b:cb:43:95:c7:dc: 61:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:7C:3B:4A:5F:79:8B:4F:E2:F5:F4:FD:B7:C6:C9:0D:D4:32:E6:5A X509v3 Authority Key Identifier: keyid:3B:37:67:25:20:0D:8D:8C:00:CF:0F:75:14:AF:25:FF:36:23:10:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:da:ae:7f:1c:9c:30:81:1e:63:58:c6:98:b1:c8:1b:fe:39: fb:20:f9:6a:6a:91:cb:0c:87:ba:e1:38:cf:76:7f:f9:7d:f6: 7d:d4:97:c0:40:58:b7:ba:35:fc:49:f4:f9:f5:69:f7:07:a8: 4d:d1:9f:80:c4:5c:5e:ad:d5:72:4d:48:de:22:b7:7b:72:26: e1:db:49:35:74:eb:0f:b6:83:45:8e:13:7b:c0:b8:35:ab:b3: eb:e0:ba:47:25:90:41:d9:97:2a:cc:2f:7a:59:ec:99:f6:23: 44:6e:62:67:de:98:24:79:75:1b:51:2a:63:f8:df:fb:d4:6d: 19:58:5e:85:fd:2a:8f:b8:4a:26:91:4c:f6:ec:e6:a9:6b:76: 8f:7a:78:35:ea:bb:ca:2e:18:2b:9b:47:32:fa:7c:0b:a4:83: 03:a2:45:05:6e:7d:b1:6f:3d:a7:67:1d:4e:15:3c:8f:cb:5c: d3:88:dc:24:a3:58:90:e0:1c:2b:b6:89:eb:7f:af:ee:7f:2e: 6b:bf:45:8c:7f:20:98:e7:63:55:f6:7b:4f:43:b5:90:71:69: a0:ee:26:f3:a9:4b:d5:47:0d:18:4d:03:2c:bf:10:0c:ff:fa: 9d:e7:4f:8d:d8:11:1e:c7:cb:35:44:c3:41:33:52:a8:04:41: 3a:bc:6f:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCSano5brcxZgHwi5aBVfYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiMzc2NzI1MjAwZDhkOGMwMGNmMGY3NTE0YWYyNWZmMzYy MzEwZjAwHhcNMjUxMjIxMTkwMTIyWhcNMjUxMjIyMTkwMTIyWjAzMTEwLwYDVQQD Eyg1MDdjM2I0YTVmNzk4YjRmZTJmNWY0ZmRiN2M2YzkwZGQ0MzJlNjVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6gLcAejFhzsrKCQJ+oBQuT+3gYF4 47XItFIxqvtGQH85VeiOimpFjoqWfLCv67ElDFFJzEG16KtTW9kAgXLCZux8vbXr b1/creWfRUth9t9mGEeRDyzp/e6og/saHDADSM4VhdSI+WDLfK/mnK6sAFSsVZHe FU3LbyGAsBJwKbOsvZmR5bevGk+9L01S3CRyzMg0oM6YJdsKkPSk1SvDfMU8cOll 2fgiseldzm/J3RfY6GZ5dXa7unVJFEvZASMy/QlOkseqLdDPCSHP8iIc6mDWBTxR YHcIGzrboyAo8c2dRIhFTHgLhyWUCrBJDdbdZdDjGIvm2pcry0OVx9xhfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFB8O0pfeYtP4vX0/bfGyQ3UMuZaMB8GA1UdIwQY MBaAFDs3ZyUgDY2MAM8PdRSvJf82IxDwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3pkbkpTQU5qWXdBenc5MUZLOGxfellqRVBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9lNTRhNjMtMzZiNC00Njg0LTkxNTkt MjkyMDk4ZGEyZTM5LzEvT3pkbkpTQU5qWXdBenc5MUZLOGxfellqRVBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy9lNTRhNjMtMzZiNC00Njg0LTkxNTktMjkyMDk4ZGEyZTM5 LzEvT3pkbkpTQU5qWXdBenc5MUZLOGxfellqRVBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqtqufxyc MIEeY1jGmLHIG/45+yD5amqRywyHuuE4z3Z/+X32fdSXwEBYt7o1/En0+fVp9weo TdGfgMRcXq3Vck1I3iK3e3Im4dtJNXTrD7aDRY4Te8C4Nauz6+C6RyWQQdmXKswv elnsmfYjRG5iZ96YJHl1G1EqY/jf+9RtGVhehf0qj7hKJpFM9uzmqWt2j3p4Neq7 yi4YK5tHMvp8C6SDA6JFBW59sW89p2cdThU8j8tc04jcJKNYkOAcK7aJ63+v7n8u a79FjH8gmOdjVfZ7T0O1kHFpoO4m86lL1UcNGE0DLL8QDP/6nedPjdgRHsfLNUTD QTNSqARBOrxvzA== -----END CERTIFICATE-----Generated at Sun Dec 21 20:32:58 2025 by rpki-client