This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft File: OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft (raw, json) Hash identifier: ftRFyFSaw3O0ZLfNJFJkvCyzcnYcAsguLZHkn3aPrm8= Subject key identifier: 80:00:29:4A:6A:F0:A8:4D:A3:41:3E:E1:2B:B1:D5:21:71:A4:7B:C1 Authority key identifier: 38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D Certificate issuer: /CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d Certificate serial: 019B6B7BFBF4EDB057EF55950F641BC5EE66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft Manifest number: 17B7 Signing time: Mon 29 Dec 2025 19:00:46 +0000 Manifest this update: Mon 29 Dec 2025 19:00:46 +0000 Manifest next update: Tue 30 Dec 2025 19:00:46 +0000 Files and hashes: 1: FL-63HYyWSOHaS0zatb3tBhA794.roa (hash: mLXwUnn3m8eIlstUhvReKOdJ0V5ZYWYpyzYXC0ze4xI=) 2: OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl (hash: 87cwB99ihdAV1AYENn40Y1q/9GWuNeEo8H+w7uKjjuo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 19:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6b:7b:fb:f4:ed:b0:57:ef:55:95:0f:64:1b:c5:ee:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d Validity Not Before: Dec 29 19:00:46 2025 GMT Not After : Dec 30 19:00:46 2025 GMT Subject: CN=8000294a6af0a84da3413ee12bb1d52171a47bc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:42:d9:52:b7:09:88:37:8a:35:f1:78:40:08: 5e:8a:cc:43:c6:dd:07:20:9d:ce:b6:39:12:98:59: 06:37:c2:96:d1:65:2e:76:ff:b0:db:0f:d8:3e:bf: 3a:6d:c8:c2:d8:5e:70:1b:40:4d:64:57:2b:17:dc: 0c:c3:e0:1e:8e:51:9c:3c:76:5d:df:4a:a1:c2:5c: 73:2c:8a:a2:66:c6:04:81:ce:5e:80:f5:6b:e6:52: f8:ee:36:7e:ad:38:66:67:76:6e:ad:58:88:ee:59: e0:17:44:bf:f4:cb:86:4f:9f:cf:9c:74:67:71:e0: 02:f1:c4:53:f8:62:a9:39:6e:8d:69:1b:07:61:07: 5d:0f:67:20:b0:3b:c5:79:e9:0f:f3:31:0e:b4:e7: 8f:aa:83:7f:eb:e0:4b:ed:76:0e:cf:33:0b:07:e7: 89:a5:e4:fb:cb:14:09:88:a9:a3:ce:9a:62:32:51: 38:b6:3d:31:44:12:ab:17:82:55:03:e1:e2:fc:25: ab:c8:de:90:c4:4f:5f:e7:98:74:fd:95:b3:c2:19: 33:39:0f:f8:bf:b2:5a:66:d8:59:d5:38:14:d7:1c: 20:5c:07:15:a2:a9:d2:fc:a5:1d:2c:cb:be:81:b4: 9d:ff:f1:d6:0b:e8:32:06:66:a9:2f:95:69:df:63: 45:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:00:29:4A:6A:F0:A8:4D:A3:41:3E:E1:2B:B1:D5:21:71:A4:7B:C1 X509v3 Authority Key Identifier: keyid:38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:d2:b4:6f:44:e0:cd:6d:35:93:d3:ef:e0:55:02:94:ae:af: c2:d1:77:47:1b:86:25:35:4b:37:d6:42:d1:6c:9b:6a:40:24: ec:c8:8f:b1:ed:2d:8b:f2:88:ea:56:08:d7:f4:be:e3:87:87: f3:55:71:cc:8b:fb:94:74:4e:13:a1:65:7c:62:16:5c:0d:4e: 05:16:a9:d8:9f:4d:e7:ec:db:5e:62:37:fb:03:91:b5:e6:be: 4b:e3:cb:27:39:7a:9d:bf:0b:10:4d:7f:41:89:78:cd:33:49: f2:36:b8:9b:80:e8:eb:4e:93:dc:52:d3:f9:b2:ad:2d:53:fa: de:e4:27:4d:63:84:ef:4a:69:17:26:c2:14:14:3e:85:ac:af: e3:ee:90:ff:05:7e:ae:3d:ff:4a:b6:33:44:e3:dc:b7:5d:5f: f4:d8:a6:aa:2c:07:af:5c:e7:79:39:a7:98:d6:c9:dc:dc:9e: 1b:d5:42:63:74:87:f8:13:a4:2b:cc:34:8b:3a:88:01:fb:d9: fa:52:a0:3d:b8:96:4f:34:c4:8d:2f:72:8f:5a:ee:43:a1:62: 29:39:6d:83:cd:45:9a:25:cb:e1:65:1c:05:0e:9e:98:ee:34: 56:64:e6:d7:f6:a2:70:58:3d:c3:0b:54:b9:31:9e:16:3a:77: 91:34:de:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtre/v07bBX71WVD2Qbxe5mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4Y2EzZjM4ZDhlNWEzMDFlYWY2OTI0YjkyNGZlOGY1N2Fh YzY5MGQwHhcNMjUxMjI5MTkwMDQ2WhcNMjUxMjMwMTkwMDQ2WjAzMTEwLwYDVQQD Eyg4MDAwMjk0YTZhZjBhODRkYTM0MTNlZTEyYmIxZDUyMTcxYTQ3YmMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnkLZUrcJiDeKNfF4QAheisxDxt0H IJ3OtjkSmFkGN8KW0WUudv+w2w/YPr86bcjC2F5wG0BNZFcrF9wMw+AejlGcPHZd 30qhwlxzLIqiZsYEgc5egPVr5lL47jZ+rThmZ3ZurViI7lngF0S/9MuGT5/PnHRn ceAC8cRT+GKpOW6NaRsHYQddD2cgsDvFeekP8zEOtOePqoN/6+BL7XYOzzMLB+eJ peT7yxQJiKmjzppiMlE4tj0xRBKrF4JVA+Hi/CWryN6QxE9f55h0/ZWzwhkzOQ/4 v7JaZthZ1TgU1xwgXAcVoqnS/KUdLMu+gbSd//HWC+gyBmapL5Vp32NFewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIAAKUpq8KhNo0E+4Sux1SFxpHvBMB8GA1UdIwQY MBaAFDjKPzjY5aMB6vaSS5JP6PV6rGkNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT01vX09Oamxvd0hxOXBKTGtrX285WHFzYVEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9iYTY3NTUtNDI3My00OGUxLTg1ODIt NzEyZmE2NWEyNWJhLzEvT01vX09Oamxvd0hxOXBKTGtrX285WHFzYVEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9iYTY3NTUtNDI3My00OGUxLTg1ODItNzEyZmE2NWEyNWJh LzEvT01vX09Oamxvd0hxOXBKTGtrX285WHFzYVEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABdK0b0Tg zW01k9Pv4FUClK6vwtF3RxuGJTVLN9ZC0WybakAk7MiPse0ti/KI6lYI1/S+44eH 81VxzIv7lHROE6FlfGIWXA1OBRap2J9N5+zbXmI3+wORtea+S+PLJzl6nb8LEE1/ QYl4zTNJ8ja4m4Do606T3FLT+bKtLVP63uQnTWOE70ppFybCFBQ+hayv4+6Q/wV+ rj3/SrYzROPct11f9NimqiwHr1zneTmnmNbJ3NyeG9VCY3SH+BOkK8w0izqIAfvZ +lKgPbiWTzTEjS9yj1ruQ6FiKTltg81FmiXL4WUcBQ6emO40VmTm1/aicFg9wwtU uTGeFjp3kTTevg== -----END CERTIFICATE-----Generated at Tue Dec 30 04:56:36 2025 by rpki-client