This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json) Hash identifier: Bc04B39AK4IX2ng+BRuN2JM6htxf4DhoYbKM8aMpLGE= Subject key identifier: FB:44:9E:7A:7F:46:65:38:39:79:FA:48:C0:80:00:C6:6B:2C:74:12 Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58 Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958 Certificate serial: 019B41364791BC213B57320F4E24F887A291 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft Manifest number: 177B Signing time: Sun 21 Dec 2025 14:00:34 +0000 Manifest this update: Sun 21 Dec 2025 14:00:34 +0000 Manifest next update: Mon 22 Dec 2025 14:00:34 +0000 Files and hashes: 1: EQS-D1pgF9X9JxFRgbIMqF1eIP4.roa (hash: X1oH+D4EKjN/FZ/0o/XNZpi/rX7eBTsOxnwwIoAyafs=) 2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: qbPFMsDvznAVCsUeUM2Xcp+WR7Sqvdq1sQ4/qqREGak=) 3: VK52xwAI-aKIKTeQlztwUDOO02E.roa (hash: C9ydrT1jO/tCG0jTbHX7J5njz1R33YyX3/MyTTWyLe8=) 4: cVloRXAZs5Oo5mzrcunH3Tc2864.roa (hash: PRZbsG5bEI+5vtvix6l8s4vQ6r0jrrNQcUM/ZaoxHsc=) 5: fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa (hash: NJGE7uKTYs1I+EUOo5wFk+oBfIXQxyDxL9xtb3Bt434=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:36:47:91:bc:21:3b:57:32:0f:4e:24:f8:87:a2:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958 Validity Not Before: Dec 21 14:00:34 2025 GMT Not After : Dec 22 14:00:34 2025 GMT Subject: CN=fb449e7a7f4665383979fa48c08000c66b2c7412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:45:ae:32:6b:61:0a:54:55:c1:41:1e:a0:20: 6d:41:97:37:ec:ca:bf:93:2e:cc:3e:cc:3e:21:25: 3d:db:ea:ca:4e:a3:5f:21:69:84:d8:21:e5:e0:51: 42:cb:f3:1f:a4:64:36:31:9e:88:a7:af:50:d2:56: 19:bb:ee:09:7d:1f:be:da:d2:41:30:0a:07:af:7e: 26:d9:7a:65:c5:1a:79:e9:c9:ff:78:75:3e:f0:ac: f9:9c:14:31:f3:82:30:33:0f:cd:62:ac:3c:c0:82: 76:1f:96:b0:18:71:59:82:b9:0e:c3:16:d3:48:71: b4:46:d9:62:61:8f:4f:77:6b:1a:42:d6:b6:d1:a2: ef:b6:59:02:43:04:8f:bb:db:26:60:ee:cb:b7:77: df:92:7d:7f:8b:be:10:6b:52:cc:d9:ef:91:21:84: 3b:c9:cc:13:23:61:3a:33:a5:48:10:de:d6:50:fe: db:7c:ba:a8:2a:db:3c:08:42:6b:20:bb:3b:8a:cb: f8:0f:fe:4d:ec:6e:70:98:c2:61:da:43:07:0a:c5: 6b:e0:73:67:dc:6e:cc:67:31:07:17:36:74:9d:8d: f0:40:29:49:f4:a6:0c:ce:b4:30:a1:4f:c7:b9:69: 10:a6:d0:79:b1:d7:73:0e:9a:12:b8:3d:1d:82:58: a7:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:44:9E:7A:7F:46:65:38:39:79:FA:48:C0:80:00:C6:6B:2C:74:12 X509v3 Authority Key Identifier: keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:b2:2e:04:7b:18:14:ca:59:fb:07:58:71:0d:51:b4:02:1f: ee:21:ee:e0:d5:48:8d:f2:da:d7:52:cc:2d:41:0d:80:36:47: 8f:8d:a0:09:32:3e:b1:17:91:ee:ff:28:f2:a4:1d:81:c6:bf: f2:37:80:ec:f1:0e:2f:3c:85:01:d8:b8:73:cc:07:3d:69:f9: cc:e6:4f:8c:7d:4a:df:bd:a6:ab:e0:e8:28:42:e2:92:be:87: cd:60:83:7a:4d:ec:14:3a:5f:32:1a:cc:6b:3f:ad:cf:6a:75: 43:4d:bd:f4:89:90:68:30:c2:64:3a:c7:c2:1a:86:64:34:c2: 5a:20:77:35:12:55:1f:db:df:e3:3f:20:27:6a:5c:3c:97:2f: 3e:54:14:e4:33:2a:bd:fb:ad:03:3c:19:55:c5:98:6b:bc:31: 35:39:12:12:66:06:1b:21:10:fd:34:3a:47:3b:df:41:e5:ae: 7f:15:61:4a:aa:8e:a2:57:43:62:bf:14:0f:7b:ec:02:13:b9: c6:a8:73:49:57:58:f7:a7:a5:42:61:9b:d7:d3:7c:ab:4b:33: 0d:c7:82:8c:2a:ce:3c:73:43:53:1c:6f:78:7e:f7:ab:a0:7b: 06:e8:21:6c:3d:2d:4a:10:5d:eb:42:46:02:95:a6:cb:87:d2: 49:31:63:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBNkeRvCE7VzIPTiT4h6KRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5NzMyZGNkMGMzNTQyNjE0NGY5ZjAyNjc1NDE3OWRmYWVi ZTg5NTgwHhcNMjUxMjIxMTQwMDM0WhcNMjUxMjIyMTQwMDM0WjAzMTEwLwYDVQQD EyhmYjQ0OWU3YTdmNDY2NTM4Mzk3OWZhNDhjMDgwMDBjNjZiMmM3NDEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwkWuMmthClRVwUEeoCBtQZc37Mq/ ky7MPsw+ISU92+rKTqNfIWmE2CHl4FFCy/MfpGQ2MZ6Ip69Q0lYZu+4JfR++2tJB MAoHr34m2XplxRp56cn/eHU+8Kz5nBQx84IwMw/NYqw8wIJ2H5awGHFZgrkOwxbT SHG0RtliYY9Pd2saQta20aLvtlkCQwSPu9smYO7Lt3ffkn1/i74Qa1LM2e+RIYQ7 ycwTI2E6M6VIEN7WUP7bfLqoKts8CEJrILs7isv4D/5N7G5wmMJh2kMHCsVr4HNn 3G7MZzEHFzZ0nY3wQClJ9KYMzrQwoU/HuWkQptB5sddzDpoSuD0dglin1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPtEnnp/RmU4OXn6SMCAAMZrLHQSMB8GA1UdIwQY MBaAFDlzLc0MNUJhRPnwJnVBed+uvolYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODIt ZjYwYWYyYTgyMDYwLzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODItZjYwYWYyYTgyMDYw LzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkbIuBHsY FMpZ+wdYcQ1RtAIf7iHu4NVIjfLa11LMLUENgDZHj42gCTI+sReR7v8o8qQdgca/ 8jeA7PEOLzyFAdi4c8wHPWn5zOZPjH1K372mq+DoKELikr6HzWCDek3sFDpfMhrM az+tz2p1Q0299ImQaDDCZDrHwhqGZDTCWiB3NRJVH9vf4z8gJ2pcPJcvPlQU5DMq vfutAzwZVcWYa7wxNTkSEmYGGyEQ/TQ6RzvfQeWufxVhSqqOoldDYr8UD3vsAhO5 xqhzSVdY96elQmGb19N8q0szDceCjCrOPHNDUxxveH73q6B7BughbD0tShBd60JG ApWmy4fSSTFjkw== -----END CERTIFICATE-----Generated at Sun Dec 21 19:17:02 2025 by rpki-client