This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft File: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft (raw, json) Hash identifier: RZCDvaeckH1MnDWAcqKL+joFdyygnq7VCHiIz4PB5ZM= Subject key identifier: 8B:2A:A5:03:76:3A:3B:AD:C6:C6:C5:75:06:B1:E5:91:8D:E0:00:B8 Authority key identifier: A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE Certificate issuer: /CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de Certificate serial: 019B4BF1528270D4550E76B0942F425AA528 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft Manifest number: 10BE Signing time: Tue 23 Dec 2025 16:01:05 +0000 Manifest this update: Tue 23 Dec 2025 16:01:05 +0000 Manifest next update: Wed 24 Dec 2025 16:01:05 +0000 Files and hashes: 1: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl (hash: 98E3GGUqABDZL5vzV0PhZCFT0NZ8APZANG/VXvUzbaA=) 2: y54lwyg0yxWntbnoIO-4zit0Jno.roa (hash: H4sOyX+DnDSSZx2P69W1kPQ6mzjJ5+oKrKghYFIkZco=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 15:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4b:f1:52:82:70:d4:55:0e:76:b0:94:2f:42:5a:a5:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de Validity Not Before: Dec 23 16:01:05 2025 GMT Not After : Dec 24 16:01:05 2025 GMT Subject: CN=8b2aa503763a3badc6c6c57506b1e5918de000b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:4c:ea:84:ae:6e:cd:bb:ce:c3:f5:eb:6e:a4: 2b:35:57:3c:d3:ed:94:b2:1c:68:ef:c8:0f:f3:41: 3a:a9:9e:70:62:ad:41:b1:1d:f4:74:7f:8d:c9:ee: 9a:73:62:3e:85:d9:61:bc:a2:75:23:ed:7b:f9:c0: 5f:59:94:22:66:7c:05:0b:bb:4a:d4:b7:98:2e:3d: f7:ac:49:27:e8:1a:55:9c:c2:0e:18:f8:e1:12:8d: 33:ef:8f:97:88:d9:15:89:6c:32:b2:dc:4f:d4:30: b1:83:37:9e:b9:df:70:d8:e5:e9:58:6f:b6:ec:ab: 33:ab:71:d7:5b:a5:d4:41:7f:73:b6:f8:f3:72:b1: 79:d3:ad:ff:94:b9:f1:a8:1d:93:5a:a4:16:fd:d8: 9f:ea:c1:55:61:6c:42:36:9b:d2:35:df:6d:dc:6e: fe:f3:7d:32:1f:70:26:38:ee:5a:0a:e6:08:37:45: e5:ac:76:0b:73:e1:44:f3:3b:9c:c5:68:77:0e:6b: 05:6f:3e:a0:c1:02:d1:43:2c:3d:7a:6e:4f:93:ec: 76:be:70:34:3d:81:30:2c:d9:fb:9f:5f:5b:f3:99: 8b:ea:c3:dc:01:a5:5c:06:4d:c6:c0:6c:5a:07:5a: 9b:f3:ba:9d:1c:df:6d:fd:64:8e:3b:07:02:6b:45: f5:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:2A:A5:03:76:3A:3B:AD:C6:C6:C5:75:06:B1:E5:91:8D:E0:00:B8 X509v3 Authority Key Identifier: keyid:A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:7c:6d:85:99:d3:4d:92:8f:13:1e:08:71:11:47:8f:30:f1: 19:84:a5:f5:cf:92:5a:6e:e5:3d:ee:7f:20:c5:ea:f7:0e:6c: 3a:38:b4:f5:ed:a7:4e:c3:e7:f0:db:58:70:0d:f0:f1:14:73: d0:3b:cc:8b:2e:a0:04:bb:99:80:18:4b:5d:2c:1e:3a:e8:ff: 56:a2:82:38:b5:f1:87:36:13:68:09:a5:e8:bf:2f:81:f5:37: 9c:9b:3e:03:36:8d:79:3c:a9:4c:7a:0c:46:18:83:62:ba:51: 80:45:55:5d:84:8e:56:9e:61:54:4b:5f:d9:e2:79:d3:dd:7a: ed:06:a7:d6:e7:99:e2:c6:ff:3b:2e:80:3a:07:d1:ce:51:3b: 5a:88:0a:4a:16:b3:44:2c:74:9a:59:fa:9f:58:ad:9d:02:36: e4:69:d9:01:6c:c7:33:1e:7a:8b:4f:0a:b0:6a:7f:b4:64:a8: 12:39:3e:51:ed:de:be:5f:7f:95:c5:14:5c:e6:d9:81:79:c8: 0c:ee:d2:d7:84:ec:ae:71:32:49:d3:2f:ac:b3:6a:88:08:c9: 5c:78:23:95:c1:c6:36:dc:7c:54:09:58:cb:52:d4:56:ee:58: b6:ce:5b:c6:57:62:e7:ad:4a:d6:97:51:c4:0e:a3:87:ee:47: 24:98:e3:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtL8VKCcNRVDnawlC9CWqUoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwMDk5NWE4N2JmNjRkYzQ5NDliODE5ZGZlMDJmOGE1ODZh YWE0ZGUwHhcNMjUxMjIzMTYwMTA1WhcNMjUxMjI0MTYwMTA1WjAzMTEwLwYDVQQD Eyg4YjJhYTUwMzc2M2EzYmFkYzZjNmM1NzUwNmIxZTU5MThkZTAwMGI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkUzqhK5uzbvOw/XrbqQrNVc80+2U shxo78gP80E6qZ5wYq1BsR30dH+Nye6ac2I+hdlhvKJ1I+17+cBfWZQiZnwFC7tK 1LeYLj33rEkn6BpVnMIOGPjhEo0z74+XiNkViWwystxP1DCxgzeeud9w2OXpWG+2 7Kszq3HXW6XUQX9ztvjzcrF5063/lLnxqB2TWqQW/dif6sFVYWxCNpvSNd9t3G7+ 830yH3AmOO5aCuYIN0XlrHYLc+FE8zucxWh3DmsFbz6gwQLRQyw9em5Pk+x2vnA0 PYEwLNn7n19b85mL6sPcAaVcBk3GwGxaB1qb87qdHN9t/WSOOwcCa0X1AQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIsqpQN2OjutxsbFdQax5ZGN4AC4MB8GA1UdIwQY MBaAFKAJlah79k3ElJuBnf4C+KWGqqTeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0FtVnFIdjJUY1NVbTRHZF9nTDRwWWFxcE40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9mZWE1YzQtZGRlMS00NTQ4LWE1OGIt ODkzOGU5NTU2MzQyLzEvb0FtVnFIdjJUY1NVbTRHZF9nTDRwWWFxcE40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My9mZWE1YzQtZGRlMS00NTQ4LWE1OGItODkzOGU5NTU2MzQy LzEvb0FtVnFIdjJUY1NVbTRHZF9nTDRwWWFxcE40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvXxthZnT TZKPEx4IcRFHjzDxGYSl9c+SWm7lPe5/IMXq9w5sOji09e2nTsPn8NtYcA3w8RRz 0DvMiy6gBLuZgBhLXSweOuj/VqKCOLXxhzYTaAml6L8vgfU3nJs+AzaNeTypTHoM RhiDYrpRgEVVXYSOVp5hVEtf2eJ509167Qan1ueZ4sb/Oy6AOgfRzlE7WogKShaz RCx0mln6n1itnQI25GnZAWzHMx56i08KsGp/tGSoEjk+Ue3evl9/lcUUXObZgXnI DO7S14TsrnEySdMvrLNqiAjJXHgjlcHGNtx8VAlYy1LUVu5Yts5bxldi561K1pdR xA6jh+5HJJjjqA== -----END CERTIFICATE-----Generated at Tue Dec 23 22:15:22 2025 by rpki-client