This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft File: OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft (raw, json) Hash identifier: YSFW7dnrNcs03oCwKUgbbTRgglPHrrIM128Bnw64jSs= Subject key identifier: B2:51:EA:75:AC:69:19:FD:1B:34:02:5A:49:4B:BD:F3:BA:43:4D:F6 Authority key identifier: 3A:07:31:8A:13:14:23:3F:56:23:C0:F8:35:FA:E1:8F:91:26:41:2F Certificate issuer: /CN=3a07318a1314233f5623c0f835fae18f9126412f Certificate serial: 019B3A9048CF22444E1E4FAA2B632136A9BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgcxihMUIz9WI8D4Nfrhj5EmQS8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft Manifest number: 0158 Signing time: Sat 20 Dec 2025 07:01:32 +0000 Manifest this update: Sat 20 Dec 2025 07:01:32 +0000 Manifest next update: Sun 21 Dec 2025 07:01:32 +0000 Files and hashes: 1: OgcxihMUIz9WI8D4Nfrhj5EmQS8.crl (hash: JNW4pJ/jBO5qbkzepwnBedc0H8Kot/otG7Scc9ZiL44=) 2: d_S_LiTn-5JZ6QbYkJGNQlQwd5g.roa (hash: wiJdaTKeLOoOD2ZMe+ZN1Wuh3uVVfGMcp7ArG5upMbk=) 3: qBjHDY2sXPfYcFMAdrqZb0wk3qo.roa (hash: YJdVl/jAdNP388MpdOeTC60bm9oxrdjXPgN1Q6k8CnU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.crl rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft rsync://rpki.ripe.net/repository/DEFAULT/OgcxihMUIz9WI8D4Nfrhj5EmQS8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 07:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:90:48:cf:22:44:4e:1e:4f:aa:2b:63:21:36:a9:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a07318a1314233f5623c0f835fae18f9126412f Validity Not Before: Dec 20 07:01:32 2025 GMT Not After : Dec 21 07:01:32 2025 GMT Subject: CN=b251ea75ac6919fd1b34025a494bbdf3ba434df6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:09:a8:3e:22:20:9e:4e:71:4d:ee:50:ac:c2: 23:9c:f5:2a:9b:d8:ca:e4:4e:df:96:79:03:cf:3c: 90:9b:4e:8d:71:dd:87:67:ea:cd:e4:ba:ef:9d:06: a2:d7:a4:57:ac:c9:56:4f:d9:33:10:b8:f1:5a:5c: 8a:3c:9a:7a:37:c3:86:cd:0d:30:0b:d5:9f:76:e7: e6:5f:b2:ef:53:10:af:f2:09:ff:a8:fa:1a:d3:52: e6:32:98:ff:49:f9:ed:d9:ff:c7:b8:d4:bd:29:2d: b4:44:fc:b1:5e:48:aa:5c:cf:35:26:92:ab:88:2e: 66:78:7e:b5:2a:5a:40:2c:0a:f7:96:89:d6:b8:a8: df:79:8b:67:d8:d5:8f:1a:65:80:7e:8f:4e:65:ed: 3b:92:fb:94:f5:9d:67:07:09:d3:a8:5e:59:a9:fe: f8:b0:45:2f:4e:b9:1c:16:77:3d:24:af:e0:87:f9: 38:7b:3f:e0:f0:dc:84:4b:97:14:83:38:96:7d:0c: cc:c4:02:52:96:7f:d4:e5:27:5b:87:4f:d1:97:70: 7e:cc:5a:1c:19:aa:09:40:49:f3:3f:b0:13:12:13: c8:34:3b:62:a9:21:9b:e7:91:f7:79:35:77:fa:1d: ec:fb:67:6a:a6:2a:c1:c9:0e:d0:94:38:38:fb:f0: 23:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:51:EA:75:AC:69:19:FD:1B:34:02:5A:49:4B:BD:F3:BA:43:4D:F6 X509v3 Authority Key Identifier: keyid:3A:07:31:8A:13:14:23:3F:56:23:C0:F8:35:FA:E1:8F:91:26:41:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgcxihMUIz9WI8D4Nfrhj5EmQS8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:37:e2:dc:d1:85:bb:b1:59:38:10:49:44:c4:18:85:6e:1c: b5:c2:8e:cb:2e:c2:99:79:64:aa:8e:cc:f8:56:01:21:bf:a7: 26:49:08:d5:b6:1d:66:f0:11:c8:d8:02:7c:ee:39:68:dc:19: e7:54:52:59:c5:4f:f6:d1:2f:9f:ca:7b:e3:ca:e3:dc:e2:7d: c0:91:5f:0c:b1:e2:81:49:3d:ec:16:03:84:f8:2a:46:04:04: 7f:3c:15:74:34:77:eb:16:5b:f5:31:12:80:1e:50:1a:86:fe: d8:e4:ce:30:e7:2d:a0:bf:15:23:64:f5:6a:c4:72:6c:f2:74: da:4f:64:22:60:8f:32:a1:a8:96:90:9c:e8:f4:eb:cb:9d:2a: 02:a7:59:fc:fb:f6:0e:b6:48:1c:f0:4b:74:f2:1b:f5:f0:ca: 94:d6:15:bf:da:d6:b3:9f:74:57:91:8e:77:74:64:e1:00:fd: 6a:cf:81:06:85:4c:e3:14:18:aa:66:c1:f8:74:8e:12:e9:1a: e8:1f:22:63:7e:91:c4:9c:ac:d4:46:57:89:d6:8a:54:3e:f1: 72:3e:8d:4a:38:ce:52:04:20:4b:26:0f:14:5e:8e:1e:3f:7d: 0f:4a:10:53:b3:da:9e:d2:0f:4a:82:e7:c3:f3:c8:d7:b9:ed: 2d:9b:c3:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6kEjPIkROHk+qK2MhNqm8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhMDczMThhMTMxNDIzM2Y1NjIzYzBmODM1ZmFlMThmOTEy NjQxMmYwHhcNMjUxMjIwMDcwMTMyWhcNMjUxMjIxMDcwMTMyWjAzMTEwLwYDVQQD EyhiMjUxZWE3NWFjNjkxOWZkMWIzNDAyNWE0OTRiYmRmM2JhNDM0ZGY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzwmoPiIgnk5xTe5QrMIjnPUqm9jK 5E7flnkDzzyQm06Ncd2HZ+rN5LrvnQai16RXrMlWT9kzELjxWlyKPJp6N8OGzQ0w C9WfdufmX7LvUxCv8gn/qPoa01LmMpj/Sfnt2f/HuNS9KS20RPyxXkiqXM81JpKr iC5meH61KlpALAr3lonWuKjfeYtn2NWPGmWAfo9OZe07kvuU9Z1nBwnTqF5Zqf74 sEUvTrkcFnc9JK/gh/k4ez/g8NyES5cUgziWfQzMxAJSln/U5Sdbh0/Rl3B+zFoc GaoJQEnzP7ATEhPINDtiqSGb55H3eTV3+h3s+2dqpirByQ7QlDg4+/Aj4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLJR6nWsaRn9GzQCWklLvfO6Q032MB8GA1UdIwQY MBaAFDoHMYoTFCM/ViPA+DX64Y+RJkEvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2djeGloTVVJejlXSThENE5mcmhqNUVtUVM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8yYjUzNzQtZDQwNS00ZmYxLTg1NjMt MDI2YTdiNjU0Zjg4LzEvT2djeGloTVVJejlXSThENE5mcmhqNUVtUVM4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS8yYjUzNzQtZDQwNS00ZmYxLTg1NjMtMDI2YTdiNjU0Zjg4 LzEvT2djeGloTVVJejlXSThENE5mcmhqNUVtUVM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUzfi3NGF u7FZOBBJRMQYhW4ctcKOyy7CmXlkqo7M+FYBIb+nJkkI1bYdZvARyNgCfO45aNwZ 51RSWcVP9tEvn8p748rj3OJ9wJFfDLHigUk97BYDhPgqRgQEfzwVdDR36xZb9TES gB5QGob+2OTOMOctoL8VI2T1asRybPJ02k9kImCPMqGolpCc6PTry50qAqdZ/Pv2 DrZIHPBLdPIb9fDKlNYVv9rWs590V5GOd3Rk4QD9as+BBoVM4xQYqmbB+HSOEuka 6B8iY36RxJys1EZXidaKVD7xcj6NSjjOUgQgSyYPFF6OHj99D0oQU7PantIPSoLn w/PI17ntLZvDOw== -----END CERTIFICATE-----Generated at Sat Dec 20 17:05:27 2025 by rpki-client