This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft File: OZPVTmOQgKRsP-PViqh-MF22mtE.mft (raw, json) Hash identifier: 8sPg9zHgitnzv8s1gci8tqyaOcuuILHjBwMIRkuXQr4= Subject key identifier: F3:40:6C:99:25:37:88:BA:E2:C0:6E:EA:51:D8:87:B6:B1:EC:84:F0 Authority key identifier: 39:93:D5:4E:63:90:80:A4:6C:3F:E3:D5:8A:A8:7E:30:5D:B6:9A:D1 Certificate issuer: /CN=3993d54e639080a46c3fe3d58aa87e305db69ad1 Certificate serial: 019B6242B3A8085324DBFC8FC8D40E1A5407 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZPVTmOQgKRsP-PViqh-MF22mtE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft Manifest number: 145D Signing time: Sun 28 Dec 2025 00:01:37 +0000 Manifest this update: Sun 28 Dec 2025 00:01:37 +0000 Manifest next update: Mon 29 Dec 2025 00:01:37 +0000 Files and hashes: 1: LzOPFVwwlI3xLKXD4eUrmAY0yQU.roa (hash: FOOM9kMpwPkSzslFZMnKyIoaQBQCR3WyFVCTjxN9D/4=) 2: OZPVTmOQgKRsP-PViqh-MF22mtE.crl (hash: RhEek1UuA6P3jwiUmTkRD7C1RqWVzyCEB5QjneqXtX4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft rsync://rpki.ripe.net/repository/DEFAULT/OZPVTmOQgKRsP-PViqh-MF22mtE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:62:42:b3:a8:08:53:24:db:fc:8f:c8:d4:0e:1a:54:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3993d54e639080a46c3fe3d58aa87e305db69ad1 Validity Not Before: Dec 28 00:01:37 2025 GMT Not After : Dec 29 00:01:37 2025 GMT Subject: CN=f3406c99253788bae2c06eea51d887b6b1ec84f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:34:41:fc:fb:c0:f6:a8:d1:c3:13:97:95:fc: 8e:dd:9d:ce:56:2f:11:30:44:f0:5e:02:53:63:1e: 1c:a9:01:c2:83:29:a5:41:fb:e6:72:c7:4d:b3:2f: 48:dc:62:6c:56:c6:16:18:c2:3a:7b:99:4e:a9:13: 4c:a8:14:a4:9c:49:0b:f6:d2:ca:76:d7:35:49:35: f8:d8:65:6a:e4:f7:b9:02:12:b9:6a:43:c0:34:f4: a6:47:75:2b:b2:c8:c5:db:f2:86:2d:a9:4f:75:24: 3b:af:2a:ab:41:fd:f8:b9:0f:5c:13:eb:03:fc:63: d4:d3:92:af:47:47:c4:97:1e:fd:1a:b8:af:c0:85: 92:f7:3c:50:c3:aa:3f:62:d4:58:e9:27:72:87:83: 28:b2:2e:cb:65:11:a9:c1:76:a3:61:c8:8a:e9:07: 0f:16:52:73:e2:b6:07:67:25:aa:c6:22:45:0f:a5: 8f:69:2f:72:79:7d:ca:3a:f9:d0:8e:ae:b5:36:bf: fd:d3:8c:a1:4b:fe:69:c2:70:fb:a2:93:7f:2e:e9: 46:bb:81:26:59:c4:85:b5:56:8a:08:66:db:42:c5: 61:e1:48:09:d3:3f:f1:28:00:f7:55:83:79:99:83: 3e:26:f3:8e:6f:70:db:f1:dd:9b:54:e9:d0:97:12: 73:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:40:6C:99:25:37:88:BA:E2:C0:6E:EA:51:D8:87:B6:B1:EC:84:F0 X509v3 Authority Key Identifier: keyid:39:93:D5:4E:63:90:80:A4:6C:3F:E3:D5:8A:A8:7E:30:5D:B6:9A:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZPVTmOQgKRsP-PViqh-MF22mtE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:f8:e8:b5:28:9c:20:8f:29:12:ec:4a:6d:27:25:b1:df:78: 68:00:e9:7a:89:00:00:ec:72:ff:b9:2c:54:70:9c:e1:05:c9: da:10:b6:84:ed:0f:b2:8c:be:35:03:bf:6b:14:d8:70:9f:02: 15:28:cb:e7:65:9e:c2:f5:6f:a9:00:4c:1a:84:d8:b2:ba:b6: 36:9b:4c:95:bd:61:fc:5c:a0:a4:a2:68:44:a1:48:68:ff:cd: c5:af:f1:ca:44:2f:e3:8a:44:c0:69:a1:d9:56:36:79:3f:c9: c7:b8:86:d2:18:1b:69:8d:ce:b9:74:44:d4:9d:ed:3e:57:31: 5f:c2:1d:70:ed:73:82:3c:3d:63:2a:9d:58:02:7d:52:ce:7b: 72:b4:68:fd:c1:12:ff:5a:a2:db:27:e7:be:ae:03:c9:17:0c: c8:e3:73:dc:4e:04:4b:b5:e7:60:83:98:df:ae:a1:ef:62:47: 8c:90:12:f2:91:2f:80:0f:89:92:f6:60:f0:d7:fa:e5:bb:bc: 36:f2:b8:8c:19:73:0a:f6:5b:1c:b1:f6:76:2c:2d:2e:af:ec: 35:ad:a4:b9:8a:ef:cc:27:2c:53:b5:37:c6:13:b8:07:0a:57: b9:0c:aa:ed:a5:46:61:3a:3e:cb:72:69:e5:86:05:38:e5:0e: 37:8d:76:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtiQrOoCFMk2/yPyNQOGlQHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5OTNkNTRlNjM5MDgwYTQ2YzNmZTNkNThhYTg3ZTMwNWRi NjlhZDEwHhcNMjUxMjI4MDAwMTM3WhcNMjUxMjI5MDAwMTM3WjAzMTEwLwYDVQQD EyhmMzQwNmM5OTI1Mzc4OGJhZTJjMDZlZWE1MWQ4ODdiNmIxZWM4NGYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTRB/PvA9qjRwxOXlfyO3Z3OVi8R METwXgJTYx4cqQHCgymlQfvmcsdNsy9I3GJsVsYWGMI6e5lOqRNMqBSknEkL9tLK dtc1STX42GVq5Pe5AhK5akPANPSmR3UrssjF2/KGLalPdSQ7ryqrQf34uQ9cE+sD /GPU05KvR0fElx79GrivwIWS9zxQw6o/YtRY6Sdyh4Mosi7LZRGpwXajYciK6QcP FlJz4rYHZyWqxiJFD6WPaS9yeX3KOvnQjq61Nr/904yhS/5pwnD7opN/LulGu4Em WcSFtVaKCGbbQsVh4UgJ0z/xKAD3VYN5mYM+JvOOb3Db8d2bVOnQlxJz6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPNAbJklN4i64sBu6lHYh7ax7ITwMB8GA1UdIwQY MBaAFDmT1U5jkICkbD/j1YqofjBdtprRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1pQVlRtT1FnS1JzUC1QVmlxaC1NRjIybXRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS84MDk1OWQtZjVjNC00YWM5LWFkMTMt ZDQ4ZmJjMWEyNDNiLzEvT1pQVlRtT1FnS1JzUC1QVmlxaC1NRjIybXRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS84MDk1OWQtZjVjNC00YWM5LWFkMTMtZDQ4ZmJjMWEyNDNi LzEvT1pQVlRtT1FnS1JzUC1QVmlxaC1NRjIybXRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL/jotSic II8pEuxKbSclsd94aADpeokAAOxy/7ksVHCc4QXJ2hC2hO0Psoy+NQO/axTYcJ8C FSjL52WewvVvqQBMGoTYsrq2NptMlb1h/FygpKJoRKFIaP/Nxa/xykQv44pEwGmh 2VY2eT/Jx7iG0hgbaY3OuXRE1J3tPlcxX8IdcO1zgjw9YyqdWAJ9Us57crRo/cES /1qi2yfnvq4DyRcMyONz3E4ES7XnYIOY366h72JHjJAS8pEvgA+JkvZg8Nf65bu8 NvK4jBlzCvZbHLH2diwtLq/sNa2kuYrvzCcsU7U3xhO4BwpXuQyq7aVGYTo+y3Jp 5YYFOOUON412uQ== -----END CERTIFICATE-----Generated at Sun Dec 28 05:53:52 2025 by rpki-client