This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft File: OjSIklHnyxM-kGxwiRuhoEle2GA.mft (raw, json) Hash identifier: KVXtQRiCENRW1dTvNcVDY5yR01uU0CAb836+NyVde2Q= Subject key identifier: A6:56:63:93:80:11:43:8B:02:8C:98:3B:6D:AF:4D:18:07:76:DD:4E Authority key identifier: 3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60 Certificate issuer: /CN=3a34889251e7cb133e906c70891ba1a0495ed860 Certificate serial: 019B3AFE21A55552E113F497AD6FEB7FCBA0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft Manifest number: 0F23 Signing time: Sat 20 Dec 2025 09:01:31 +0000 Manifest this update: Sat 20 Dec 2025 09:01:31 +0000 Manifest next update: Sun 21 Dec 2025 09:01:31 +0000 Files and hashes: 1: E8pnZAwdco6rqZPYbTvktaE1H_E.roa (hash: mJU1Xr9YV7h0pCMVQKe6h9rLN6ylm3PlXlO/99QSzGM=) 2: OjSIklHnyxM-kGxwiRuhoEle2GA.crl (hash: UnzRKA0rE4VIto2tOSFamnUNic/HgePsci/LGd3WRF0=) 3: PosgbjBEN3JIZPm6yklNyzwEmB8.roa (hash: LxPaPYdBVWlHlKrzs8JwxQbkpaWJXSY0yo3gaOhFHFk=) 4: iYqIMSLhd13kAtHmsyVRJLCRELQ.roa (hash: Sy2brI825JIDwfnRYmv5+hBpQhClnbRKdRnTs+cKh/c=) 5: trRwMwj1TozbbVDdJBYsUBjss8A.roa (hash: R2jnNGJ/7Zo+ytylzMHKu/XH3p37UtlobvuFEWQLQHM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:fe:21:a5:55:52:e1:13:f4:97:ad:6f:eb:7f:cb:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a34889251e7cb133e906c70891ba1a0495ed860 Validity Not Before: Dec 20 09:01:31 2025 GMT Not After : Dec 21 09:01:31 2025 GMT Subject: CN=a65663938011438b028c983b6daf4d180776dd4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:76:40:bc:e1:47:dc:3e:69:50:bc:7a:32:67: 3b:b0:2a:04:bb:6c:00:b4:05:b1:63:93:b4:d7:37: f4:19:e4:6a:00:82:1f:cf:b8:8e:92:6d:cf:4f:19: 8c:e9:b9:58:87:4a:b7:d5:79:5f:1e:84:be:c6:12: 7d:2e:47:1e:6a:e6:80:3c:42:5a:90:b1:79:28:d6: 71:d5:d4:0a:ad:ff:c1:43:ac:46:e2:9b:49:43:f5: 7c:93:ea:61:76:4f:1e:53:d5:66:97:97:56:22:dc: e9:cf:af:bd:d4:c1:eb:17:0c:8e:93:d3:0e:7c:40: c7:92:e0:91:9a:c7:a4:20:1b:1f:d4:a7:3b:52:a6: 8f:04:b5:80:23:e6:09:71:9f:0d:5b:1b:8e:9c:b4: f7:9e:37:3d:5a:7d:f8:d4:b1:54:19:b7:ce:57:44: ce:cf:04:23:7a:a6:59:44:e3:9c:8d:91:ec:0b:fe: d4:44:74:c5:57:26:c0:6d:e6:24:ae:5c:80:ff:6c: ba:c2:2b:fe:c1:1c:f5:04:38:fc:bf:81:3e:a5:5f: 95:82:4d:e3:24:0f:78:c7:b4:25:53:66:18:91:16: e0:ca:80:1c:9d:66:e4:ef:ac:41:6f:c9:3f:96:5c: 93:00:a1:fe:b7:07:98:30:73:b1:15:9d:ef:cc:7f: 3c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:56:63:93:80:11:43:8B:02:8C:98:3B:6D:AF:4D:18:07:76:DD:4E X509v3 Authority Key Identifier: keyid:3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:50:b8:62:21:f3:8d:95:f9:72:65:5f:b0:30:67:8d:40:65: 38:4a:92:80:ce:af:6b:5e:dc:3b:07:90:5c:72:74:ef:89:50: f0:6c:cb:83:28:99:8b:3b:81:b0:5f:ce:99:6d:2d:50:d6:a3: 06:8d:6b:39:53:98:0e:42:cb:1a:d9:c7:5e:44:27:25:2a:6c: 45:20:30:ac:4b:b8:e7:07:5d:73:78:0b:a1:fd:3d:5d:79:fd: 2c:34:72:44:d3:63:c3:51:d9:da:0d:90:72:98:d4:cd:f4:70: 61:7c:6c:9b:79:f4:00:2d:e5:91:c6:9b:0b:8f:81:0b:a4:c4: 22:86:88:49:a3:cc:79:a8:70:a1:bb:e4:e7:b7:58:00:ef:a4: 10:b3:36:aa:82:7c:cd:3e:26:b7:b5:cd:3b:bd:f0:48:d3:14: f8:9f:ff:bb:f6:d6:40:42:f8:e5:f4:9d:66:d1:2b:f6:30:f0: 0f:59:54:c0:62:ad:fe:3b:a5:78:2f:98:3d:cc:82:70:6d:3a: ee:ab:73:6c:a1:72:0d:09:de:89:68:78:24:77:7a:7a:cf:01: 94:8a:40:96:84:48:a8:1f:4e:01:5f:53:48:5f:e7:4e:51:5f: 0c:f0:37:05:d0:88:78:14:2e:83:ef:4c:17:fd:13:67:f4:d3: b7:20:c0:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6/iGlVVLhE/SXrW/rf8ugMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhMzQ4ODkyNTFlN2NiMTMzZTkwNmM3MDg5MWJhMWEwNDk1 ZWQ4NjAwHhcNMjUxMjIwMDkwMTMxWhcNMjUxMjIxMDkwMTMxWjAzMTEwLwYDVQQD EyhhNjU2NjM5MzgwMTE0MzhiMDI4Yzk4M2I2ZGFmNGQxODA3NzZkZDRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3ZAvOFH3D5pULx6Mmc7sCoEu2wA tAWxY5O01zf0GeRqAIIfz7iOkm3PTxmM6blYh0q31XlfHoS+xhJ9LkceauaAPEJa kLF5KNZx1dQKrf/BQ6xG4ptJQ/V8k+phdk8eU9Vml5dWItzpz6+91MHrFwyOk9MO fEDHkuCRmsekIBsf1Kc7UqaPBLWAI+YJcZ8NWxuOnLT3njc9Wn341LFUGbfOV0TO zwQjeqZZROOcjZHsC/7URHTFVybAbeYkrlyA/2y6wiv+wRz1BDj8v4E+pV+Vgk3j JA94x7QlU2YYkRbgyoAcnWbk76xBb8k/llyTAKH+tweYMHOxFZ3vzH88jwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKZWY5OAEUOLAoyYO22vTRgHdt1OMB8GA1UdIwQY MBaAFDo0iJJR58sTPpBscIkboaBJXthgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2pTSWtsSG55eE0ta0d4d2lSdWhvRWxlMkdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS85MTE4MmEtZjM0Yi00YTE1LWIzNjMt ODRmOWVkODdhYzMxLzEvT2pTSWtsSG55eE0ta0d4d2lSdWhvRWxlMkdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS85MTE4MmEtZjM0Yi00YTE1LWIzNjMtODRmOWVkODdhYzMx LzEvT2pTSWtsSG55eE0ta0d4d2lSdWhvRWxlMkdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPFC4YiHz jZX5cmVfsDBnjUBlOEqSgM6va17cOweQXHJ074lQ8GzLgyiZizuBsF/OmW0tUNaj Bo1rOVOYDkLLGtnHXkQnJSpsRSAwrEu45wddc3gLof09XXn9LDRyRNNjw1HZ2g2Q cpjUzfRwYXxsm3n0AC3lkcabC4+BC6TEIoaISaPMeahwobvk57dYAO+kELM2qoJ8 zT4mt7XNO73wSNMU+J//u/bWQEL45fSdZtEr9jDwD1lUwGKt/juleC+YPcyCcG06 7qtzbKFyDQneiWh4JHd6es8BlIpAloRIqB9OAV9TSF/nTlFfDPA3BdCIeBQug+9M F/0TZ/TTtyDArQ== -----END CERTIFICATE-----Generated at Sat Dec 20 10:32:52 2025 by rpki-client