This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft File: OZPVTmOQgKRsP-PViqh-MF22mtE.mft (raw, json) Hash identifier: CMS5xlHiO7iVh+BT6aM1no6vD1EmVZUuP73hv2ZaDQ0= Subject key identifier: 41:05:66:82:CC:47:D0:A7:B6:AE:6D:CD:EC:A8:86:3E:16:6B:5D:10 Authority key identifier: 39:93:D5:4E:63:90:80:A4:6C:3F:E3:D5:8A:A8:7E:30:5D:B6:9A:D1 Certificate issuer: /CN=3993d54e639080a46c3fe3d58aa87e305db69ad1 Certificate serial: 019B3BA236FDD05BE3D65B2F55CAC05A53C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZPVTmOQgKRsP-PViqh-MF22mtE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft Manifest number: 1449 Signing time: Sat 20 Dec 2025 12:00:45 +0000 Manifest this update: Sat 20 Dec 2025 12:00:45 +0000 Manifest next update: Sun 21 Dec 2025 12:00:45 +0000 Files and hashes: 1: LzOPFVwwlI3xLKXD4eUrmAY0yQU.roa (hash: FOOM9kMpwPkSzslFZMnKyIoaQBQCR3WyFVCTjxN9D/4=) 2: OZPVTmOQgKRsP-PViqh-MF22mtE.crl (hash: OCIl2TIJhDYyQoX1g4kTFtvG/vz5p62IB41dBYaglMg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft rsync://rpki.ripe.net/repository/DEFAULT/OZPVTmOQgKRsP-PViqh-MF22mtE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:a2:36:fd:d0:5b:e3:d6:5b:2f:55:ca:c0:5a:53:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3993d54e639080a46c3fe3d58aa87e305db69ad1 Validity Not Before: Dec 20 12:00:45 2025 GMT Not After : Dec 21 12:00:45 2025 GMT Subject: CN=41056682cc47d0a7b6ae6dcdeca8863e166b5d10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d3:fa:6b:f0:37:e4:26:c4:d0:46:3d:c8:94: a9:52:d2:b9:97:08:d0:8f:21:47:30:f0:a3:dd:fe: 46:3c:a7:dd:30:ef:44:e8:ea:58:5e:eb:94:6f:61: f3:d9:c8:6b:15:f4:8f:15:ad:a5:af:c3:6a:df:07: e7:5a:bd:10:a5:77:1e:02:d8:d8:39:ac:cf:85:00: 16:8e:e2:1a:2b:7e:1d:96:2f:4b:d6:b2:1a:ec:67: 9f:b6:5b:a8:f3:46:4a:cb:3d:7e:a9:40:97:a6:e6: f7:0b:f2:89:52:d5:d8:c2:e3:05:db:97:83:1d:ff: e2:43:b8:a5:ae:ca:ae:87:37:ae:e0:8a:2e:15:2d: 2e:17:ba:d2:d5:58:cd:0a:cd:32:b1:09:2b:05:64: 18:e4:dd:b2:13:20:be:52:b2:86:5a:4c:c4:9b:64: e3:20:66:31:0b:d7:62:44:68:1c:f3:35:1e:ac:c5: ef:1b:18:76:7e:9e:d1:4b:68:15:5d:8f:97:b5:90: ca:d4:76:82:e6:ec:70:59:b5:2a:50:4d:5d:71:0a: 3c:ed:19:04:30:85:80:ce:05:bc:ff:39:24:71:40: 1f:e0:2e:6b:eb:83:27:6c:1b:41:80:79:38:ca:fa: 4c:85:6b:96:f0:a1:1f:e2:cb:3f:ef:08:1d:0e:5f: 53:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:05:66:82:CC:47:D0:A7:B6:AE:6D:CD:EC:A8:86:3E:16:6B:5D:10 X509v3 Authority Key Identifier: keyid:39:93:D5:4E:63:90:80:A4:6C:3F:E3:D5:8A:A8:7E:30:5D:B6:9A:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZPVTmOQgKRsP-PViqh-MF22mtE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:34:56:4e:fd:74:cf:a4:04:d3:f8:46:46:3d:27:7f:b2:85: 6e:97:a7:81:c8:a0:87:c2:08:56:53:b6:28:7e:8f:c6:b1:59: a6:6b:3a:e3:9e:0b:e4:23:16:16:61:df:80:4a:ee:92:d1:2e: 51:e1:ce:24:d3:a3:ef:c4:38:56:3a:0f:a8:95:09:16:e4:0a: 81:e0:fb:49:ca:14:c9:4d:e3:a8:70:18:14:2c:fd:fd:33:e2: c3:24:07:e0:1b:10:1b:30:4f:8a:cf:12:75:ac:fc:5a:ed:f5: 60:58:72:f8:70:75:89:1e:5c:ec:ec:e0:cc:bb:2a:49:5b:0c: 2d:47:fb:ed:73:6e:f4:0c:7a:bf:29:65:cd:a4:ee:85:bc:af: 25:df:91:f9:ec:0d:dd:ae:e3:b2:48:d7:d9:81:72:98:22:3f: 7f:c7:75:7c:3c:e7:e7:c3:59:13:70:87:82:dc:e4:ba:91:c1: 1a:a8:c3:e4:0a:2c:36:00:9d:fe:d3:b8:67:91:31:ba:9f:59: 2c:76:7e:e8:7c:cf:7c:19:af:66:17:25:25:5b:97:d4:42:f3: 23:9f:a9:8f:15:40:da:3a:c8:0a:2f:72:e5:21:3b:bb:3e:fc: 22:b8:cf:a2:7f:2d:84:8c:b5:a4:ae:32:65:73:84:33:57:12: 9b:2a:0e:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7ojb90Fvj1lsvVcrAWlPDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5OTNkNTRlNjM5MDgwYTQ2YzNmZTNkNThhYTg3ZTMwNWRi NjlhZDEwHhcNMjUxMjIwMTIwMDQ1WhcNMjUxMjIxMTIwMDQ1WjAzMTEwLwYDVQQD Eyg0MTA1NjY4MmNjNDdkMGE3YjZhZTZkY2RlY2E4ODYzZTE2NmI1ZDEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5NP6a/A35CbE0EY9yJSpUtK5lwjQ jyFHMPCj3f5GPKfdMO9E6OpYXuuUb2Hz2chrFfSPFa2lr8Nq3wfnWr0QpXceAtjY OazPhQAWjuIaK34dli9L1rIa7Geftluo80ZKyz1+qUCXpub3C/KJUtXYwuMF25eD Hf/iQ7ilrsquhzeu4IouFS0uF7rS1VjNCs0ysQkrBWQY5N2yEyC+UrKGWkzEm2Tj IGYxC9diRGgc8zUerMXvGxh2fp7RS2gVXY+XtZDK1HaC5uxwWbUqUE1dcQo87RkE MIWAzgW8/zkkcUAf4C5r64MnbBtBgHk4yvpMhWuW8KEf4ss/7wgdDl9TCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEEFZoLMR9Cntq5tzeyohj4Wa10QMB8GA1UdIwQY MBaAFDmT1U5jkICkbD/j1YqofjBdtprRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1pQVlRtT1FnS1JzUC1QVmlxaC1NRjIybXRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS84MDk1OWQtZjVjNC00YWM5LWFkMTMt ZDQ4ZmJjMWEyNDNiLzEvT1pQVlRtT1FnS1JzUC1QVmlxaC1NRjIybXRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS84MDk1OWQtZjVjNC00YWM5LWFkMTMtZDQ4ZmJjMWEyNDNi LzEvT1pQVlRtT1FnS1JzUC1QVmlxaC1NRjIybXRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHDRWTv10 z6QE0/hGRj0nf7KFbpengcigh8IIVlO2KH6PxrFZpms6454L5CMWFmHfgEruktEu UeHOJNOj78Q4VjoPqJUJFuQKgeD7ScoUyU3jqHAYFCz9/TPiwyQH4BsQGzBPis8S daz8Wu31YFhy+HB1iR5c7OzgzLsqSVsMLUf77XNu9Ax6vyllzaTuhbyvJd+R+ewN 3a7jskjX2YFymCI/f8d1fDzn58NZE3CHgtzkupHBGqjD5AosNgCd/tO4Z5Exup9Z LHZ+6HzPfBmvZhclJVuX1ELzI5+pjxVA2jrICi9y5SE7uz78IrjPon8thIy1pK4y ZXOEM1cSmyoOaA== -----END CERTIFICATE-----Generated at Sat Dec 20 19:02:37 2025 by rpki-client