This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json) Hash identifier: MRoD+9oBXC9D3LQ40RuZfVflZzzywaRiNyshxyNWM8c= Subject key identifier: 3B:42:E8:8B:E6:FA:E8:E1:50:7D:BD:CE:E5:2C:71:A4:47:CB:0D:FB Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58 Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958 Certificate serial: 019B3F47EABEECE93E793A9EFC724EC2AFCE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft Manifest number: 177A Signing time: Sun 21 Dec 2025 05:00:36 +0000 Manifest this update: Sun 21 Dec 2025 05:00:36 +0000 Manifest next update: Mon 22 Dec 2025 05:00:36 +0000 Files and hashes: 1: EQS-D1pgF9X9JxFRgbIMqF1eIP4.roa (hash: X1oH+D4EKjN/FZ/0o/XNZpi/rX7eBTsOxnwwIoAyafs=) 2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: 1ZHZFZQUH9cjVa1NA+zlfd14ll4ktgrxeKh/UuX+m6s=) 3: VK52xwAI-aKIKTeQlztwUDOO02E.roa (hash: C9ydrT1jO/tCG0jTbHX7J5njz1R33YyX3/MyTTWyLe8=) 4: cVloRXAZs5Oo5mzrcunH3Tc2864.roa (hash: PRZbsG5bEI+5vtvix6l8s4vQ6r0jrrNQcUM/ZaoxHsc=) 5: fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa (hash: NJGE7uKTYs1I+EUOo5wFk+oBfIXQxyDxL9xtb3Bt434=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:47:ea:be:ec:e9:3e:79:3a:9e:fc:72:4e:c2:af:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958 Validity Not Before: Dec 21 05:00:36 2025 GMT Not After : Dec 22 05:00:36 2025 GMT Subject: CN=3b42e88be6fae8e1507dbdcee52c71a447cb0dfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:eb:83:be:88:f4:80:b4:62:12:ec:e5:50:00: 62:f4:1b:11:6e:1e:1e:6a:6c:1d:7c:d3:02:82:25: cd:41:da:d0:8d:77:67:af:f1:78:d8:2f:f9:59:29: cb:29:4b:32:6a:3b:9d:a3:53:7f:d0:85:41:64:f6: 0b:62:72:e2:cc:12:60:0c:e2:15:26:07:cc:43:67: 07:9f:26:ce:3b:6c:37:77:a7:f1:24:2c:51:91:53: 20:a3:7c:aa:90:4a:db:41:4a:0a:d0:ba:12:a1:2d: c8:0b:79:70:3b:90:19:32:02:7b:c5:76:74:b4:5c: 04:64:c9:01:2a:58:80:92:ba:0f:51:1c:9f:d4:08: 3e:d1:62:a9:82:26:0f:de:6d:91:be:17:21:b4:18: 53:d5:dd:d4:db:05:de:2f:8c:59:6b:24:33:9e:90: f4:75:62:65:cc:62:b6:78:f9:62:33:4b:27:62:e3: 76:5d:a5:ef:3b:2c:fe:ac:50:ac:0a:8a:2e:7a:b5: 1b:bd:c3:43:9e:2c:b2:e4:32:04:e3:28:c8:3e:d3: 3e:63:22:31:e0:b2:e6:00:5e:0f:72:f5:f2:09:58: a4:76:b9:64:d5:09:89:ac:96:aa:a3:9c:38:26:fe: b2:57:e6:46:68:f1:84:e8:ce:58:fb:27:d0:49:e0: a8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:42:E8:8B:E6:FA:E8:E1:50:7D:BD:CE:E5:2C:71:A4:47:CB:0D:FB X509v3 Authority Key Identifier: keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:b3:24:ec:f0:7c:91:d5:cd:78:3d:df:37:bb:88:65:78:58: fb:38:54:ee:51:d5:99:40:c0:65:f9:74:54:e5:8c:e5:6b:fe: 89:51:97:c1:ee:6f:08:3f:d0:28:83:cc:81:6c:e6:2b:c9:91: e8:8c:e3:fd:79:4a:94:90:5e:cc:81:6c:be:c4:5e:f4:6c:1d: 8a:88:4c:ca:49:70:d3:f0:b3:b6:d7:82:f4:56:fb:53:35:7d: e6:66:a5:88:a8:0b:12:2e:f9:0f:1b:95:02:e9:6d:c8:02:34: f5:16:ea:41:f3:dd:1f:59:52:0b:09:64:58:37:e0:d3:7c:e4: f1:c2:af:f4:1b:18:ab:cb:18:4d:7e:8c:1d:45:4d:a1:0a:df: 7b:76:14:c0:fc:28:e8:ed:83:9f:4b:87:30:ce:ec:69:29:af: 22:85:23:47:ca:32:36:76:62:e1:04:93:e3:22:8f:dc:4b:64: d4:77:fe:b7:71:45:5b:ec:cf:8b:63:4c:3e:04:df:89:9a:74: 44:c6:20:78:96:c8:32:53:5d:c6:23:ed:53:03:62:c2:09:98: b7:4e:aa:45:6a:11:60:91:7b:ef:b9:d6:ed:f0:c4:c6:d0:55: 3c:2b:d7:9e:72:28:47:5b:a9:91:b9:72:cf:41:dd:e5:87:6b: e3:09:64:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/R+q+7Ok+eTqe/HJOwq/OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5NzMyZGNkMGMzNTQyNjE0NGY5ZjAyNjc1NDE3OWRmYWVi ZTg5NTgwHhcNMjUxMjIxMDUwMDM2WhcNMjUxMjIyMDUwMDM2WjAzMTEwLwYDVQQD EygzYjQyZTg4YmU2ZmFlOGUxNTA3ZGJkY2VlNTJjNzFhNDQ3Y2IwZGZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+uDvoj0gLRiEuzlUABi9BsRbh4e amwdfNMCgiXNQdrQjXdnr/F42C/5WSnLKUsyajudo1N/0IVBZPYLYnLizBJgDOIV JgfMQ2cHnybOO2w3d6fxJCxRkVMgo3yqkErbQUoK0LoSoS3IC3lwO5AZMgJ7xXZ0 tFwEZMkBKliAkroPURyf1Ag+0WKpgiYP3m2RvhchtBhT1d3U2wXeL4xZayQznpD0 dWJlzGK2ePliM0snYuN2XaXvOyz+rFCsCoouerUbvcNDniyy5DIE4yjIPtM+YyIx 4LLmAF4PcvXyCVikdrlk1QmJrJaqo5w4Jv6yV+ZGaPGE6M5Y+yfQSeCoyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDtC6Ivm+ujhUH29zuUscaRHyw37MB8GA1UdIwQY MBaAFDlzLc0MNUJhRPnwJnVBed+uvolYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODIt ZjYwYWYyYTgyMDYwLzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODItZjYwYWYyYTgyMDYw LzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG7Mk7PB8 kdXNeD3fN7uIZXhY+zhU7lHVmUDAZfl0VOWM5Wv+iVGXwe5vCD/QKIPMgWzmK8mR 6Izj/XlKlJBezIFsvsRe9GwdiohMyklw0/CztteC9Fb7UzV95maliKgLEi75DxuV AultyAI09RbqQfPdH1lSCwlkWDfg03zk8cKv9BsYq8sYTX6MHUVNoQrfe3YUwPwo 6O2Dn0uHMM7saSmvIoUjR8oyNnZi4QST4yKP3Etk1Hf+t3FFW+zPi2NMPgTfiZp0 RMYgeJbIMlNdxiPtUwNiwgmYt06qRWoRYJF777nW7fDExtBVPCvXnnIoR1upkbly z0Hd5Ydr4wlkDQ== -----END CERTIFICATE-----Generated at Sun Dec 21 10:33:44 2025 by rpki-client