This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft File: oYanahiZ2_kCnhrv2QUXe7CdNo0.mft (raw, json) Hash identifier: 8frQ+ucv9vAs+QcPbUqfqFKmghuZfoj1eBFEC4oziGs= Subject key identifier: E2:07:F8:CC:95:7D:20:3E:CD:EA:DA:50:3D:A4:EA:26:CD:99:31:DB Authority key identifier: A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D Certificate issuer: /CN=a186a76a1899dbf9029e1aefd905177bb09d368d Certificate serial: 019B5F4175BA63D4F86D95A3FFA26F3A4468 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft Manifest number: 0C2B Signing time: Sat 27 Dec 2025 10:01:24 +0000 Manifest this update: Sat 27 Dec 2025 10:01:24 +0000 Manifest next update: Sun 28 Dec 2025 10:01:24 +0000 Files and hashes: 1: bcgHeTecNhcHR9QWO6gmvpmmI5c.roa (hash: EV6/wlUYGCbS7xEazmx8eI5Bar/BgAFt51P9o3UlOuQ=) 2: oYanahiZ2_kCnhrv2QUXe7CdNo0.crl (hash: vC65Ak9GOt1pgUibsIn3zu8ptdQ7aYT2fK9f9VYBqRA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5f:41:75:ba:63:d4:f8:6d:95:a3:ff:a2:6f:3a:44:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a186a76a1899dbf9029e1aefd905177bb09d368d Validity Not Before: Dec 27 10:01:24 2025 GMT Not After : Dec 28 10:01:24 2025 GMT Subject: CN=e207f8cc957d203ecdeada503da4ea26cd9931db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:89:12:92:30:b3:f9:8a:d4:f0:2d:08:77:96: 0f:b2:c2:7b:d5:2d:a9:69:de:13:a6:88:6c:69:e8: 56:5e:89:84:e5:7f:24:ae:e1:c3:d8:8a:ec:71:b6: f7:a0:30:f7:e8:ca:f3:7d:10:24:e8:ac:20:fb:ba: 0c:d0:4d:50:a9:40:a2:ee:9a:69:38:ef:2f:b9:3f: 2a:d6:b4:a3:cd:78:10:e7:e7:fe:d9:b9:e2:a3:0f: 6c:9f:95:fe:d0:4f:8f:5e:9f:32:2c:92:16:11:8f: 2e:5c:7d:8b:a5:dd:bc:99:b5:b0:1c:d4:c6:3c:39: a3:6e:b0:82:ca:7f:ae:b9:30:c0:aa:d6:f5:65:35: 3b:0a:c0:38:e4:7e:32:e5:60:8f:41:82:c6:03:36: d5:91:d8:9b:dd:23:d3:3b:7c:42:46:20:31:84:5d: 0b:65:ff:1b:e9:4f:c1:f5:a8:d6:94:61:fa:ca:35: d8:3b:7f:6f:f9:b5:52:4d:89:4e:1d:a1:93:4a:52: 3e:66:c7:fb:48:6d:1e:5d:43:c1:a9:00:7a:8c:b0: de:5c:12:47:7c:25:dd:a5:b2:e7:47:85:c9:2c:5b: 15:f2:69:58:01:0b:51:df:26:43:47:f1:d0:6a:f7: 1a:dd:77:f7:52:7f:63:0a:d0:61:fc:4b:7f:f0:ff: b7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:07:F8:CC:95:7D:20:3E:CD:EA:DA:50:3D:A4:EA:26:CD:99:31:DB X509v3 Authority Key Identifier: keyid:A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:a0:f2:dd:6c:61:c2:35:aa:a0:6c:57:7e:df:20:4f:5d:cf: 59:bd:01:b5:e6:db:fe:a9:f9:2b:99:9f:e3:3c:ff:fd:58:f7: 27:11:df:02:a5:66:aa:96:4d:da:ff:44:e1:b2:62:47:f0:8b: d4:c9:c5:df:78:41:37:e8:7e:92:9f:47:12:23:ea:51:8a:c1: 31:94:3c:1f:f9:c5:43:bb:41:85:4e:8e:7b:1b:fd:08:a6:83: db:12:f8:7b:9e:b2:b2:b9:3c:0a:8d:0f:bb:20:ea:ad:3f:77: 4c:f6:fe:30:01:70:a1:65:f9:d3:9a:f6:56:8c:f7:25:99:36: b5:3e:02:3f:79:62:b0:be:57:47:b8:eb:a5:c1:11:6b:6b:cb: 7a:4a:3c:61:32:42:b8:7c:2d:b9:e5:d8:0f:5a:de:bd:39:23: b5:25:cb:c0:12:c3:23:6b:7f:54:a2:51:8e:2e:8d:41:f4:67: 03:46:48:cb:83:db:0e:92:08:20:61:09:33:3d:44:61:92:8d: 9e:86:8a:fa:02:ad:87:1d:6d:bd:ec:ad:d1:fd:96:41:6e:1c: fe:b5:ab:fe:e9:66:55:5f:38:bd:34:e4:8c:9d:36:81:de:88: f9:75:eb:67:f3:b4:11:c3:33:b2:a2:da:86:e5:b9:d9:d4:77: 52:7d:6b:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtfQXW6Y9T4bZWj/6JvOkRoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExODZhNzZhMTg5OWRiZjkwMjllMWFlZmQ5MDUxNzdiYjA5 ZDM2OGQwHhcNMjUxMjI3MTAwMTI0WhcNMjUxMjI4MTAwMTI0WjAzMTEwLwYDVQQD EyhlMjA3ZjhjYzk1N2QyMDNlY2RlYWRhNTAzZGE0ZWEyNmNkOTkzMWRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuokSkjCz+YrU8C0Id5YPssJ71S2p ad4TpohsaehWXomE5X8kruHD2Irscbb3oDD36MrzfRAk6Kwg+7oM0E1QqUCi7ppp OO8vuT8q1rSjzXgQ5+f+2bniow9sn5X+0E+PXp8yLJIWEY8uXH2Lpd28mbWwHNTG PDmjbrCCyn+uuTDAqtb1ZTU7CsA45H4y5WCPQYLGAzbVkdib3SPTO3xCRiAxhF0L Zf8b6U/B9ajWlGH6yjXYO39v+bVSTYlOHaGTSlI+Zsf7SG0eXUPBqQB6jLDeXBJH fCXdpbLnR4XJLFsV8mlYAQtR3yZDR/HQavca3Xf3Un9jCtBh/Et/8P+3xwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOIH+MyVfSA+zeraUD2k6ibNmTHbMB8GA1UdIwQY MBaAFKGGp2oYmdv5Ap4a79kFF3uwnTaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEt MzEyZTViNDkxMTQ2LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEtMzEyZTViNDkxMTQ2 LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG6Dy3Wxh wjWqoGxXft8gT13PWb0Btebb/qn5K5mf4zz//Vj3JxHfAqVmqpZN2v9E4bJiR/CL 1MnF33hBN+h+kp9HEiPqUYrBMZQ8H/nFQ7tBhU6Oexv9CKaD2xL4e56ysrk8Co0P uyDqrT93TPb+MAFwoWX505r2Voz3JZk2tT4CP3lisL5XR7jrpcERa2vLeko8YTJC uHwtueXYD1revTkjtSXLwBLDI2t/VKJRji6NQfRnA0ZIy4PbDpIIIGEJMz1EYZKN noaK+gKthx1tveyt0f2WQW4c/rWr/ulmVV84vTTkjJ02gd6I+XXrZ/O0EcMzsqLa huW52dR3Un1rgQ== -----END CERTIFICATE-----Generated at Sat Dec 27 17:47:51 2025 by rpki-client