This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft File: osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft (raw, json) Hash identifier: eO/S+CRa0Yq7UqCwQY5WU1pDgLlj/RU4DeCq3iOech4= Subject key identifier: D9:82:D6:97:40:1A:04:98:A1:C8:DD:9B:E9:52:6C:96:17:75:F6:9D Authority key identifier: A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35 Certificate issuer: /CN=a2c56441d83df94bbd0e60144a554639e40e0535 Certificate serial: 019B4B8325EE1D35A99E5B52B7F4E6017BCF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft Manifest number: 0F81 Signing time: Tue 23 Dec 2025 14:00:44 +0000 Manifest this update: Tue 23 Dec 2025 14:00:44 +0000 Manifest next update: Wed 24 Dec 2025 14:00:44 +0000 Files and hashes: 1: Om-V-EmCFMGXb43s9fZ-DXbAF08.roa (hash: S2SC8pR//ywuBG9ZV7ZWtalhcLPclQLz9j+fN0Z1bo4=) 2: osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl (hash: zZ0I6h3zJGO969mutiQnH5gkdWQtZsZPE9xVWvZjWXw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 14:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4b:83:25:ee:1d:35:a9:9e:5b:52:b7:f4:e6:01:7b:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2c56441d83df94bbd0e60144a554639e40e0535 Validity Not Before: Dec 23 14:00:44 2025 GMT Not After : Dec 24 14:00:44 2025 GMT Subject: CN=d982d697401a0498a1c8dd9be9526c961775f69d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:62:3f:f7:c3:b0:52:bd:af:61:52:b8:a1:8c: 26:5b:0e:a7:0c:6b:dc:ed:7b:63:54:d7:eb:65:b4: 17:fc:08:db:24:2e:be:d5:d2:f4:0e:19:7a:98:a8: 10:42:e6:87:a9:3d:56:c9:da:af:13:0c:6b:8e:bb: 36:54:43:15:e3:f0:c0:2f:19:b2:af:50:7e:e5:79: 6d:37:4a:a2:1d:49:00:67:ab:09:5a:31:e6:6b:39: 68:bb:a5:5c:db:6b:30:32:2a:d5:3e:3d:be:26:5c: f1:ff:14:e3:be:d6:36:2f:54:68:c8:34:46:74:dd: 56:41:70:08:ec:e8:92:ee:f8:d1:b5:ea:a1:c1:85: b0:59:b8:45:a9:a5:73:6f:06:f1:87:3b:2e:95:1b: 30:31:07:71:03:e4:1f:11:26:29:00:6c:b5:72:14: 1a:3d:df:3c:ef:1d:0c:2b:3c:eb:cb:e7:77:e9:8c: d5:6f:42:a2:8e:16:aa:22:36:a5:02:31:d5:61:58: e1:25:75:5e:8c:0d:c8:26:0b:94:77:1b:50:12:41: 0e:df:57:89:f9:d3:f0:bf:f5:ce:72:ff:46:48:77: 1a:79:60:97:df:e6:dd:3b:f2:c4:60:ae:88:94:bc: c7:b5:37:56:f7:25:a0:70:b6:e1:70:a6:a3:bb:46: b0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:82:D6:97:40:1A:04:98:A1:C8:DD:9B:E9:52:6C:96:17:75:F6:9D X509v3 Authority Key Identifier: keyid:A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:47:3d:43:03:7f:9d:d3:d3:a9:c2:3e:37:54:89:8f:ec:59: de:f3:35:9c:ab:63:52:1c:6a:59:ba:4d:75:c5:99:51:ec:82: c0:eb:e9:33:3c:8f:6b:cf:4e:c7:4a:56:7d:b9:fe:7a:17:a1: 36:a5:82:dc:9d:3b:f2:d4:a0:c9:c2:9c:da:4b:5d:d9:1f:b6: 98:cc:4a:b7:b6:4d:55:03:92:e7:49:7c:41:47:c5:a5:55:27: 5d:f8:55:bf:51:2b:8f:08:c6:af:0d:25:60:5f:78:13:07:12: 62:ee:82:32:8f:19:24:49:29:43:f5:89:f4:34:f0:e2:da:d2: 2a:16:1c:ef:9b:81:6b:7e:f5:d4:7b:70:37:e5:52:fe:24:63: 47:97:28:b9:1c:50:80:f2:55:54:29:8c:13:a5:50:75:78:8e: 58:bd:67:e2:fd:63:a0:9c:ba:bd:27:d0:42:9a:f5:53:68:fe: 16:c9:f0:f0:fe:47:18:08:9c:c4:b8:c3:dd:a7:f4:ab:83:e5: ef:24:31:48:bd:62:7a:4b:32:0f:38:b0:4b:10:7d:b3:f7:2a: 58:f2:9f:63:89:bc:89:88:1b:12:bc:ae:2a:87:57:0f:75:14: 76:39:90:9e:6b:60:e3:d9:65:cf:aa:33:f7:18:43:ad:8a:99: 10:53:e1:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtLgyXuHTWpnltSt/TmAXvPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyYzU2NDQxZDgzZGY5NGJiZDBlNjAxNDRhNTU0NjM5ZTQw ZTA1MzUwHhcNMjUxMjIzMTQwMDQ0WhcNMjUxMjI0MTQwMDQ0WjAzMTEwLwYDVQQD EyhkOTgyZDY5NzQwMWEwNDk4YTFjOGRkOWJlOTUyNmM5NjE3NzVmNjlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA22I/98OwUr2vYVK4oYwmWw6nDGvc 7XtjVNfrZbQX/AjbJC6+1dL0Dhl6mKgQQuaHqT1WydqvEwxrjrs2VEMV4/DALxmy r1B+5XltN0qiHUkAZ6sJWjHmazlou6Vc22swMirVPj2+Jlzx/xTjvtY2L1RoyDRG dN1WQXAI7OiS7vjRteqhwYWwWbhFqaVzbwbxhzsulRswMQdxA+QfESYpAGy1chQa Pd887x0MKzzry+d36YzVb0KijhaqIjalAjHVYVjhJXVejA3IJguUdxtQEkEO31eJ +dPwv/XOcv9GSHcaeWCX3+bdO/LEYK6IlLzHtTdW9yWgcLbhcKaju0awwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNmC1pdAGgSYocjdm+lSbJYXdfadMB8GA1UdIwQY MBaAFKLFZEHYPflLvQ5gFEpVRjnkDgU1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3NWa1FkZzktVXU5RG1BVVNsVkdPZVFPQlRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC82MjExYzQtNWE5Yy00NDFlLWI4MDAt ZjY1ZGRkZmEwZTFkLzEvb3NWa1FkZzktVXU5RG1BVVNsVkdPZVFPQlRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC82MjExYzQtNWE5Yy00NDFlLWI4MDAtZjY1ZGRkZmEwZTFk LzEvb3NWa1FkZzktVXU5RG1BVVNsVkdPZVFPQlRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaEc9QwN/ ndPTqcI+N1SJj+xZ3vM1nKtjUhxqWbpNdcWZUeyCwOvpMzyPa89Ox0pWfbn+eheh NqWC3J078tSgycKc2ktd2R+2mMxKt7ZNVQOS50l8QUfFpVUnXfhVv1ErjwjGrw0l YF94EwcSYu6CMo8ZJEkpQ/WJ9DTw4trSKhYc75uBa3711HtwN+VS/iRjR5couRxQ gPJVVCmME6VQdXiOWL1n4v1joJy6vSfQQpr1U2j+Fsnw8P5HGAicxLjD3af0q4Pl 7yQxSL1ieksyDziwSxB9s/cqWPKfY4m8iYgbEryuKodXD3UUdjmQnmtg49llz6oz 9xhDrYqZEFPhqQ== -----END CERTIFICATE-----Generated at Tue Dec 23 16:55:45 2025 by rpki-client