This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft File: oYanahiZ2_kCnhrv2QUXe7CdNo0.mft (raw, json) Hash identifier: r++lAVXNVJVqf/5Cmjsck+9ysifBpVcR7uIGb4mIres= Subject key identifier: 8B:1B:F7:F5:55:02:F1:44:67:B4:14:AD:9D:55:0C:E5:7F:DB:0D:90 Authority key identifier: A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D Certificate issuer: /CN=a186a76a1899dbf9029e1aefd905177bb09d368d Certificate serial: 019B6CC5A76E77E21D28E4A9B4641BC604B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft Manifest number: 0C32 Signing time: Tue 30 Dec 2025 01:00:51 +0000 Manifest this update: Tue 30 Dec 2025 01:00:51 +0000 Manifest next update: Wed 31 Dec 2025 01:00:51 +0000 Files and hashes: 1: bcgHeTecNhcHR9QWO6gmvpmmI5c.roa (hash: EV6/wlUYGCbS7xEazmx8eI5Bar/BgAFt51P9o3UlOuQ=) 2: oYanahiZ2_kCnhrv2QUXe7CdNo0.crl (hash: J7B/kIoR/V16U+/ia4ioXlizO+WnE3DKVbQrxBSIdp4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 23:52:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6c:c5:a7:6e:77:e2:1d:28:e4:a9:b4:64:1b:c6:04:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a186a76a1899dbf9029e1aefd905177bb09d368d Validity Not Before: Dec 30 01:00:51 2025 GMT Not After : Dec 31 01:00:51 2025 GMT Subject: CN=8b1bf7f55502f14467b414ad9d550ce57fdb0d90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ef:25:fb:bd:fc:02:68:aa:d3:e4:cd:59:b6: 07:70:df:7b:71:24:68:d1:7b:c2:72:20:a5:14:e8: d4:f4:9b:9d:16:89:59:a5:f2:9f:ff:43:23:6f:2b: ca:9d:6d:07:cf:b0:02:4e:7e:17:b6:2a:e4:15:22: bd:fb:ef:3d:f5:3c:71:57:47:21:19:af:f3:0e:56: ff:63:f2:e8:cd:64:60:28:d0:21:e9:70:3b:41:fb: 43:88:66:d7:cf:39:ad:97:6f:c3:3f:17:a0:1f:3e: f2:4b:ea:50:a6:00:bf:a2:37:4f:9f:b2:aa:9e:6b: 97:ff:c8:81:38:06:5d:e3:31:5c:d8:4b:e7:63:9c: 0f:cd:55:71:be:26:64:fa:28:4d:92:56:5a:7e:86: ae:73:9c:5d:2c:7d:5d:56:77:07:9c:ca:df:ef:2e: 66:d0:ff:92:a8:e9:a5:4f:1c:2c:0d:b3:da:cd:f7: 77:c3:b6:15:ad:5e:b8:71:c4:59:b0:d4:19:40:94: 32:c0:7c:da:2c:19:8c:9e:6a:9d:c1:3f:21:a9:0d: 5a:c2:00:12:66:68:d4:cf:4a:72:65:ef:fc:58:56: 7c:8f:2a:ce:8c:68:d3:7b:fc:11:5a:6c:9d:47:99: 4b:e4:29:a4:92:1a:94:88:bb:02:12:b1:19:a4:cc: 1b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:1B:F7:F5:55:02:F1:44:67:B4:14:AD:9D:55:0C:E5:7F:DB:0D:90 X509v3 Authority Key Identifier: keyid:A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:7b:4a:4f:37:71:ba:c7:66:d7:40:5d:5e:eb:b5:5a:f7:69: ef:6b:16:23:56:d4:c2:f3:3f:40:3d:eb:8a:d2:4d:43:de:b7: 54:ce:dd:88:89:8d:0e:a6:4a:5a:71:52:1d:38:85:89:d8:48: 7b:44:59:76:94:06:b5:20:16:6f:43:73:c6:dc:c7:ed:79:9c: 2f:f8:6c:43:95:b0:6e:bd:7a:e8:9b:47:0f:c0:ef:a1:27:b5: f8:41:56:c0:30:55:50:fc:a1:24:ad:e0:44:a0:32:c0:9a:2a: 96:e3:64:70:9a:70:21:1d:ce:08:58:a1:c7:c4:cc:f3:fb:b9: 37:04:b5:f8:c1:ea:9c:ea:42:4f:d2:a4:47:c0:c3:47:f7:a8: a8:c8:76:8c:e8:fb:94:5d:5d:06:e1:02:55:3a:84:52:3f:2f: f8:72:8c:05:09:bb:a0:68:29:bb:a1:79:0d:70:ce:1c:b6:5b: 13:f5:a8:62:cc:ca:2f:d3:e7:07:31:e5:2c:99:a1:ce:dc:8c: f4:90:61:8d:ef:35:98:59:86:4c:4b:76:45:b7:e2:ed:7f:e9: ed:80:1c:45:dc:50:20:b3:5e:a5:8b:ba:ff:78:de:00:66:cc: 69:6f:11:9a:82:b6:1b:65:41:0a:16:a0:c8:8b:48:6e:43:4d: 03:d3:4c:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtsxadud+IdKOSptGQbxgS3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExODZhNzZhMTg5OWRiZjkwMjllMWFlZmQ5MDUxNzdiYjA5 ZDM2OGQwHhcNMjUxMjMwMDEwMDUxWhcNMjUxMjMxMDEwMDUxWjAzMTEwLwYDVQQD Eyg4YjFiZjdmNTU1MDJmMTQ0NjdiNDE0YWQ5ZDU1MGNlNTdmZGIwZDkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuO8l+738Amiq0+TNWbYHcN97cSRo 0XvCciClFOjU9JudFolZpfKf/0MjbyvKnW0Hz7ACTn4XtirkFSK9++899TxxV0ch Ga/zDlb/Y/LozWRgKNAh6XA7QftDiGbXzzmtl2/DPxegHz7yS+pQpgC/ojdPn7Kq nmuX/8iBOAZd4zFc2EvnY5wPzVVxviZk+ihNklZafoauc5xdLH1dVncHnMrf7y5m 0P+SqOmlTxwsDbPazfd3w7YVrV64ccRZsNQZQJQywHzaLBmMnmqdwT8hqQ1awgAS ZmjUz0pyZe/8WFZ8jyrOjGjTe/wRWmydR5lL5CmkkhqUiLsCErEZpMwbJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIsb9/VVAvFEZ7QUrZ1VDOV/2w2QMB8GA1UdIwQY MBaAFKGGp2oYmdv5Ap4a79kFF3uwnTaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEt MzEyZTViNDkxMTQ2LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEtMzEyZTViNDkxMTQ2 LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN3tKTzdx usdm10BdXuu1Wvdp72sWI1bUwvM/QD3ritJNQ963VM7diImNDqZKWnFSHTiFidhI e0RZdpQGtSAWb0NzxtzH7XmcL/hsQ5Wwbr166JtHD8DvoSe1+EFWwDBVUPyhJK3g RKAywJoqluNkcJpwIR3OCFihx8TM8/u5NwS1+MHqnOpCT9KkR8DDR/eoqMh2jOj7 lF1dBuECVTqEUj8v+HKMBQm7oGgpu6F5DXDOHLZbE/WoYszKL9PnBzHlLJmhztyM 9JBhje81mFmGTEt2Rbfi7X/p7YAcRdxQILNepYu6/3jeAGbMaW8RmoK2G2VBChag yItIbkNNA9NMNA== -----END CERTIFICATE-----Generated at Tue Dec 30 04:38:09 2025 by rpki-client