This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft File: oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft (raw, json) Hash identifier: gZ+AvHtigHXWsSyKnikUNGTGgusD/eQu5hjk4AGexQU= Subject key identifier: D2:50:72:C2:A3:6D:E5:57:39:AA:CF:5E:B1:AF:68:D8:21:0C:3E:AF Authority key identifier: A0:AF:E1:FE:D1:F2:B7:DB:24:A0:C2:D1:F6:10:10:68:4E:93:CB:D5 Certificate issuer: /CN=a0afe1fed1f2b7db24a0c2d1f61010684e93cbd5 Certificate serial: 019B3D59D4DB66B137A57D18E9D754F850CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft Manifest number: 1788 Signing time: Sat 20 Dec 2025 20:00:55 +0000 Manifest this update: Sat 20 Dec 2025 20:00:55 +0000 Manifest next update: Sun 21 Dec 2025 20:00:55 +0000 Files and hashes: 1: QkZZT0OmyPm1U7sUIDpJIndlAn4.roa (hash: 2DQZexpqRbr1zDWnxxG0byMVlPhiUoCIJC9UgWimgPI=) 2: T8KLOt6NPvQjdduRK2LFDHFk-Ow.roa (hash: dmD7G0wa7KStRC2oIGcFu5FuaJHoaquq+ceiOTM5mGE=) 3: oK_h_tHyt9skoMLR9hAQaE6Ty9U.crl (hash: s9Fara2R6udXhbUexqTci1vuXYLhNpGDO1SfJGc5CO0=) 4: uE6sCBGadbkdNjamuV9CVt7KEu0.roa (hash: 1QH+0Q+M4LSSW1D1mW+DBLCOYwkL6R7teXBJDnbRr5c=) 5: yQrnhCAAVRdNwjOPjF1ErzWjUdw.roa (hash: wlIPSP/dxpPek11XcClQXG8X5S1Ifs5kIcm9YTpY8Rk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.crl rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:59:d4:db:66:b1:37:a5:7d:18:e9:d7:54:f8:50:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0afe1fed1f2b7db24a0c2d1f61010684e93cbd5 Validity Not Before: Dec 20 20:00:55 2025 GMT Not After : Dec 21 20:00:55 2025 GMT Subject: CN=d25072c2a36de55739aacf5eb1af68d8210c3eaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:61:1c:11:71:a9:ee:18:93:c9:08:88:71:2a: 92:59:9f:33:15:af:fb:ae:1b:06:0d:13:c7:40:d6: 03:ee:37:b7:9d:8c:e6:77:6b:b1:7b:9c:5b:14:f3: 47:2f:68:b5:eb:de:fb:96:d7:95:8b:b8:8a:d9:dc: 96:cc:a1:0c:fa:75:94:fb:8c:ba:1d:7d:f3:3f:cd: 8e:db:8c:98:32:0e:c1:df:fe:14:ff:ba:a8:69:54: f6:17:13:48:66:a9:03:ac:0d:3b:2a:2d:5c:d3:06: 43:38:8e:2d:c8:2c:00:82:8e:b0:85:ed:7c:18:1c: c6:8d:f5:10:14:77:f7:0e:67:ce:26:98:4a:27:98: 0a:d6:16:4c:6a:79:d5:f7:d0:80:aa:0f:e6:a8:4d: 2b:b4:3a:86:58:db:30:7e:5a:d7:db:0f:db:17:6e: 35:a0:0b:f4:73:19:39:49:ec:1b:08:c5:6d:33:3f: 81:c4:cb:45:f6:78:89:08:71:8a:6f:2a:d3:f6:d6: a9:1c:04:2f:3f:14:ad:bc:11:53:b8:4c:d2:4c:4c: 49:3b:8a:46:5a:16:a1:2b:38:49:95:4a:f4:a1:e7: cb:f7:a8:a7:74:b0:1a:6a:ae:3a:ab:9c:6c:c1:1e: 84:f0:8d:a4:70:c5:51:0e:71:56:b6:0a:f0:3c:1e: f7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:50:72:C2:A3:6D:E5:57:39:AA:CF:5E:B1:AF:68:D8:21:0C:3E:AF X509v3 Authority Key Identifier: keyid:A0:AF:E1:FE:D1:F2:B7:DB:24:A0:C2:D1:F6:10:10:68:4E:93:CB:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:f9:87:d3:1e:d2:b6:9e:3d:8a:6e:c1:86:f2:a2:08:85:1f: dd:35:db:1f:68:4c:dc:5f:e1:f6:d6:d7:92:54:45:97:28:09: 85:3f:b9:ec:86:6c:ad:00:fc:7b:10:c6:c4:ab:ad:8c:b8:67: 12:5c:73:9e:eb:b5:57:05:00:e5:c0:fa:0b:97:6f:af:5c:83: 91:c9:49:c6:b5:c4:4b:c1:22:60:25:85:fa:73:86:5a:c1:b1: 88:14:e3:ed:82:80:00:92:45:0d:9d:ad:0f:40:bb:0d:f9:0a: 0c:ef:ae:9a:d0:fa:c6:13:20:87:d0:ff:47:be:e8:65:3a:ea: d9:8a:d5:f8:42:90:d4:c1:e7:a1:99:24:c7:bb:2a:83:e2:54: 75:9f:1d:61:62:b7:65:84:1d:74:79:78:d9:22:d4:2a:0e:87: bc:15:c2:e5:2f:0d:22:1c:f0:9d:2b:32:81:25:6e:c3:c9:fe: ce:21:2c:82:78:80:fd:a2:ac:be:fb:68:8f:d3:05:17:29:a7: 1b:85:67:5a:1b:58:dd:b5:7e:20:7c:6f:35:63:b4:11:88:c4: 78:7a:13:e5:72:42:2c:fc:fe:e6:1e:43:76:71:e0:95:96:e0: 27:b7:d0:81:75:61:9f:0f:fc:2b:99:4c:6f:da:41:77:81:c0: 99:ca:aa:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9WdTbZrE3pX0Y6ddU+FDLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYWZlMWZlZDFmMmI3ZGIyNGEwYzJkMWY2MTAxMDY4NGU5 M2NiZDUwHhcNMjUxMjIwMjAwMDU1WhcNMjUxMjIxMjAwMDU1WjAzMTEwLwYDVQQD EyhkMjUwNzJjMmEzNmRlNTU3MzlhYWNmNWViMWFmNjhkODIxMGMzZWFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAomEcEXGp7hiTyQiIcSqSWZ8zFa/7 rhsGDRPHQNYD7je3nYzmd2uxe5xbFPNHL2i16977lteVi7iK2dyWzKEM+nWU+4y6 HX3zP82O24yYMg7B3/4U/7qoaVT2FxNIZqkDrA07Ki1c0wZDOI4tyCwAgo6whe18 GBzGjfUQFHf3DmfOJphKJ5gK1hZMannV99CAqg/mqE0rtDqGWNswflrX2w/bF241 oAv0cxk5SewbCMVtMz+BxMtF9niJCHGKbyrT9tapHAQvPxStvBFTuEzSTExJO4pG WhahKzhJlUr0oefL96indLAaaq46q5xswR6E8I2kcMVRDnFWtgrwPB735QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNJQcsKjbeVXOarPXrGvaNghDD6vMB8GA1UdIwQY MBaAFKCv4f7R8rfbJKDC0fYQEGhOk8vVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0tfaF90SHl0OXNrb01MUjloQVFhRTZUeTlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8zMjAyYWQtN2I0Ni00MjJkLWE0ZDIt ZWNhNTNhN2Y3NzYyLzEvb0tfaF90SHl0OXNrb01MUjloQVFhRTZUeTlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC8zMjAyYWQtN2I0Ni00MjJkLWE0ZDItZWNhNTNhN2Y3NzYy LzEvb0tfaF90SHl0OXNrb01MUjloQVFhRTZUeTlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATvmH0x7S tp49im7BhvKiCIUf3TXbH2hM3F/h9tbXklRFlygJhT+57IZsrQD8exDGxKutjLhn Elxznuu1VwUA5cD6C5dvr1yDkclJxrXES8EiYCWF+nOGWsGxiBTj7YKAAJJFDZ2t D0C7DfkKDO+umtD6xhMgh9D/R77oZTrq2YrV+EKQ1MHnoZkkx7sqg+JUdZ8dYWK3 ZYQddHl42SLUKg6HvBXC5S8NIhzwnSsygSVuw8n+ziEsgniA/aKsvvtoj9MFFymn G4VnWhtY3bV+IHxvNWO0EYjEeHoT5XJCLPz+5h5DdnHglZbgJ7fQgXVhnw/8K5lM b9pBd4HAmcqqqQ== -----END CERTIFICATE-----Generated at Sun Dec 21 01:22:57 2025 by rpki-client