This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft File: oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft (raw, json) Hash identifier: VK52Ye7SULa6RaYTxE5jSNC6NkMec14hwf6+ITvCPZg= Subject key identifier: E6:BB:F3:1A:A1:77:3F:D0:B0:34:64:10:D5:72:21:AB:67:9E:D1:47 Authority key identifier: A3:23:E0:41:DD:45:96:53:33:E2:B1:47:4F:C5:0B:E2:F0:FA:95:0E Certificate issuer: /CN=a323e041dd45965333e2b1474fc50be2f0fa950e Certificate serial: 019B6C20F5CF62E32D12F8625BA0D2ED0D1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oyPgQd1FllMz4rFHT8UL4vD6lQ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft Manifest number: 0BB1 Signing time: Mon 29 Dec 2025 22:00:57 +0000 Manifest this update: Mon 29 Dec 2025 22:00:57 +0000 Manifest next update: Tue 30 Dec 2025 22:00:57 +0000 Files and hashes: 1: oyPgQd1FllMz4rFHT8UL4vD6lQ4.crl (hash: cWhI2ZC6wVu0nf6ZQthAC93g9ljH2UkcU3PJDLuYlHc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.crl rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft rsync://rpki.ripe.net/repository/DEFAULT/oyPgQd1FllMz4rFHT8UL4vD6lQ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 22:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6c:20:f5:cf:62:e3:2d:12:f8:62:5b:a0:d2:ed:0d:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a323e041dd45965333e2b1474fc50be2f0fa950e Validity Not Before: Dec 29 22:00:57 2025 GMT Not After : Dec 30 22:00:57 2025 GMT Subject: CN=e6bbf31aa1773fd0b0346410d57221ab679ed147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4f:31:b7:7d:bf:0a:58:a5:dd:d4:29:26:0f: 24:c7:ec:f2:39:b0:5f:e7:f6:01:40:99:d3:bd:85: c2:4b:d3:ca:17:3b:70:4c:7f:72:62:31:34:51:89: 6e:9d:6c:9e:15:e5:14:1d:b8:82:94:82:40:08:24: 55:91:91:13:85:50:67:d3:a1:27:82:b9:68:b9:d5: 0b:1c:38:a7:31:13:4e:c1:7a:5f:19:ee:73:76:85: 55:36:d9:9e:74:21:07:d6:d5:96:26:1f:e4:12:b1: ba:87:0c:3d:b1:eb:61:9f:bf:8a:11:b9:6b:08:b6: 8b:61:fe:30:e4:54:5d:00:cd:56:2c:b2:7e:02:f3: b5:f6:80:b4:50:8c:4e:ec:03:18:10:c4:b2:03:2f: 62:53:cd:cc:43:8c:7e:a0:37:75:a5:40:ff:e8:ce: 45:b9:72:d9:f4:73:1d:15:8d:5c:b1:26:aa:04:0e: 00:36:c7:05:a7:b8:e4:16:56:41:58:81:ce:52:ee: 66:b3:fb:86:01:13:35:4f:12:40:c5:69:1f:77:47: a1:cb:20:cb:18:42:91:9e:f4:0a:9e:70:b4:0e:7b: 97:e6:c2:32:b5:b3:5c:a5:45:84:4a:05:b4:fa:72: 73:f8:a9:b4:78:5d:f6:2a:e4:a8:f6:fa:f9:92:dc: e3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:BB:F3:1A:A1:77:3F:D0:B0:34:64:10:D5:72:21:AB:67:9E:D1:47 X509v3 Authority Key Identifier: keyid:A3:23:E0:41:DD:45:96:53:33:E2:B1:47:4F:C5:0B:E2:F0:FA:95:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oyPgQd1FllMz4rFHT8UL4vD6lQ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:d0:d1:a8:50:cd:44:22:39:f7:9f:c9:67:b3:ef:a5:e6:12: 06:9c:88:9f:bc:ff:18:c5:88:9d:03:3a:9d:fb:8a:36:95:1a: 9e:36:44:27:72:ff:41:63:5b:4c:bd:20:c4:c8:0b:ed:de:41: 0a:f2:53:2d:82:65:5b:51:c5:ae:e9:8a:5d:16:1a:c1:b7:3c: ed:b9:2f:4a:41:1f:e6:3f:e1:f9:f4:57:a3:53:dd:0e:05:df: ca:bc:f2:d4:2c:05:28:1a:c1:30:d5:33:6b:fc:d9:19:e8:df: 1d:43:5d:27:e5:3c:56:79:e4:fa:43:1a:cb:3d:05:0e:47:31: e3:0f:11:03:8a:52:fb:1a:fd:9c:6d:95:c6:a1:0f:c8:d3:16: da:f3:63:9f:59:bd:ef:ff:55:fc:8f:fe:a4:1c:13:eb:d3:00: 64:ef:fc:18:13:18:89:f7:de:33:8d:a6:84:bb:9c:15:e4:e2: 83:a7:67:12:f5:ee:26:9d:c8:f9:9a:5e:01:b5:ac:ef:17:3e: a9:43:e3:db:99:1f:80:ab:77:68:4d:cb:0e:ad:7d:78:7a:1c: 19:b2:48:b9:1c:08:d8:87:19:06:90:db:51:32:ea:9e:8e:53: 84:99:d0:31:64:92:bc:6a:5f:82:67:b9:17:3d:67:58:76:2f: 3e:37:ce:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtsIPXPYuMtEvhiW6DS7Q0aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzMjNlMDQxZGQ0NTk2NTMzM2UyYjE0NzRmYzUwYmUyZjBm YTk1MGUwHhcNMjUxMjI5MjIwMDU3WhcNMjUxMjMwMjIwMDU3WjAzMTEwLwYDVQQD EyhlNmJiZjMxYWExNzczZmQwYjAzNDY0MTBkNTcyMjFhYjY3OWVkMTQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs08xt32/Clil3dQpJg8kx+zyObBf 5/YBQJnTvYXCS9PKFztwTH9yYjE0UYlunWyeFeUUHbiClIJACCRVkZEThVBn06En grloudULHDinMRNOwXpfGe5zdoVVNtmedCEH1tWWJh/kErG6hww9sethn7+KEblr CLaLYf4w5FRdAM1WLLJ+AvO19oC0UIxO7AMYEMSyAy9iU83MQ4x+oDd1pUD/6M5F uXLZ9HMdFY1csSaqBA4ANscFp7jkFlZBWIHOUu5ms/uGARM1TxJAxWkfd0ehyyDL GEKRnvQKnnC0DnuX5sIytbNcpUWESgW0+nJz+Km0eF32KuSo9vr5ktzjvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOa78xqhdz/QsDRkENVyIatnntFHMB8GA1UdIwQY MBaAFKMj4EHdRZZTM+KxR0/FC+Lw+pUOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3lQZ1FkMUZsbE16NHJGSFQ4VUw0dkQ2bFE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9lODMzOWUtZmQ2ZC00MDRkLWE2NGMt Y2FkYzUxNGFjZTcyLzEvb3lQZ1FkMUZsbE16NHJGSFQ4VUw0dkQ2bFE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9lODMzOWUtZmQ2ZC00MDRkLWE2NGMtY2FkYzUxNGFjZTcy LzEvb3lQZ1FkMUZsbE16NHJGSFQ4VUw0dkQ2bFE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARtDRqFDN RCI595/JZ7PvpeYSBpyIn7z/GMWInQM6nfuKNpUanjZEJ3L/QWNbTL0gxMgL7d5B CvJTLYJlW1HFrumKXRYawbc87bkvSkEf5j/h+fRXo1PdDgXfyrzy1CwFKBrBMNUz a/zZGejfHUNdJ+U8Vnnk+kMayz0FDkcx4w8RA4pS+xr9nG2VxqEPyNMW2vNjn1m9 7/9V/I/+pBwT69MAZO/8GBMYiffeM42mhLucFeTig6dnEvXuJp3I+ZpeAbWs7xc+ qUPj25kfgKt3aE3LDq19eHocGbJIuRwI2IcZBpDbUTLqno5ThJnQMWSSvGpfgme5 Fz1nWHYvPjfOqQ== -----END CERTIFICATE-----Generated at Tue Dec 30 04:53:51 2025 by rpki-client