This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft File: ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft (raw, json) Hash identifier: ER95+S5zGegfIejgSwXVJExvWzchTVGwYXvTm+IMW6g= Subject key identifier: 1A:2B:E6:B8:57:95:D3:4E:4D:28:77:B3:CB:62:6E:66:20:FB:80:8E Authority key identifier: A2:0C:C6:71:54:B4:03:14:5D:13:94:69:88:61:27:AB:62:9E:B9:28 Certificate issuer: /CN=a20cc67154b403145d139469886127ab629eb928 Certificate serial: 019B5117558D0EC4DF6357CD7002DA710404 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft Manifest number: 1206 Signing time: Wed 24 Dec 2025 16:00:42 +0000 Manifest this update: Wed 24 Dec 2025 16:00:42 +0000 Manifest next update: Thu 25 Dec 2025 16:00:42 +0000 Files and hashes: 1: 0riwbK-R5SQDQbiXbxNMvOKwj1Q.roa (hash: d2SRgakZUBxW5TlLkPzlI9efZpJljVH6FfcMkO1myyQ=) 2: 13rU8nhg31f282Ufq4fY9epK_mk.roa (hash: 71Un032C55jpwedQZGjeiCXgaYcH9RkzCt+gCgI2Wak=) 3: ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl (hash: PGraijyuIlpgLsPlAeU6KJnn/GxCGcHpNDt2B+9NJmY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 16:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:17:55:8d:0e:c4:df:63:57:cd:70:02:da:71:04:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a20cc67154b403145d139469886127ab629eb928 Validity Not Before: Dec 24 16:00:42 2025 GMT Not After : Dec 25 16:00:42 2025 GMT Subject: CN=1a2be6b85795d34e4d2877b3cb626e6620fb808e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b6:a9:b6:0c:0e:5d:98:12:f6:fb:53:ed:e3: 51:d5:07:22:c0:7d:55:20:8e:e9:c0:1f:56:62:73: d4:d9:66:43:dc:a4:b4:ac:b3:36:52:bc:bc:1c:80: ac:88:0a:84:7e:31:b3:cb:a3:00:2f:5e:b9:77:29: fc:a5:fc:24:6c:f1:94:6e:f2:c0:92:fd:06:c2:96: 14:a4:62:9e:0b:25:84:c7:17:73:66:fe:0f:9c:e2: 78:57:c1:14:33:82:80:70:1b:15:54:7d:ca:89:35: 1a:bf:99:a4:dc:41:22:b1:c1:c9:d3:b1:12:da:d7: 5c:cb:56:ab:6e:c7:37:64:ee:06:40:11:90:cc:3e: 13:b1:f3:75:01:07:30:7a:97:33:19:ca:83:bd:c1: 5a:b3:44:11:99:fa:89:40:cb:1f:9e:11:b2:55:cb: 1a:18:0b:e3:7a:ac:eb:ef:78:14:b2:19:83:5d:f1: 71:2a:18:0d:f6:fd:f3:ae:6a:ac:b1:3d:5a:47:29: 33:1a:83:3c:4b:2f:84:e1:83:11:8f:49:15:a8:96: eb:1b:36:e3:c3:83:a0:26:bf:d0:f0:21:e0:ad:48: bc:e1:4a:b8:99:6b:6b:95:68:52:fd:c5:bb:cf:f3: 2c:e2:ec:a9:e0:b8:84:81:5e:f8:cc:8b:8b:e2:17: 1e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:2B:E6:B8:57:95:D3:4E:4D:28:77:B3:CB:62:6E:66:20:FB:80:8E X509v3 Authority Key Identifier: keyid:A2:0C:C6:71:54:B4:03:14:5D:13:94:69:88:61:27:AB:62:9E:B9:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:d1:eb:12:73:28:1f:25:ee:8a:43:6f:f9:1c:54:ea:25:a0: 9b:f4:86:98:2b:bd:38:57:ea:5c:75:de:65:c4:ac:6c:26:61: d7:0e:c5:8c:60:ff:07:f9:82:0f:48:90:e5:2f:48:48:8b:19: 29:65:8e:d4:ab:0e:95:28:73:d5:db:1c:4d:dd:69:c4:59:67: 40:bb:d7:a4:0a:b7:d6:50:c0:20:ed:8c:a0:c5:b8:0f:f3:9c: a8:69:7b:b0:34:2c:cf:4e:cb:53:27:c8:42:b7:9c:6d:b9:15: 5e:1a:54:0d:2b:4e:d6:5f:c1:af:8a:90:0d:59:8a:fc:69:ba: 1a:7c:66:99:cc:25:75:06:ed:c9:83:e7:e7:47:92:e2:92:33: 27:f5:0e:a0:bb:21:b8:96:bc:a5:bd:e8:30:1c:f4:4b:a1:96: a5:1c:6c:d4:6b:a0:a4:a1:b8:12:9b:f7:a5:38:9d:4a:d0:32: d9:18:50:0c:c9:e0:44:97:78:ff:6d:06:60:fc:8b:5f:d3:95: c4:42:23:b6:8c:3d:c6:2b:d9:ce:4b:a0:dd:0b:90:26:74:03: 3b:0c:7d:fd:a8:22:fe:d9:d2:d9:84:a8:92:80:cd:5e:a6:6f: d1:c2:67:f9:11:7c:d7:70:48:f2:58:7c:26:1f:0e:e8:b0:bc: dd:b3:1f:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtRF1WNDsTfY1fNcALacQQEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyMGNjNjcxNTRiNDAzMTQ1ZDEzOTQ2OTg4NjEyN2FiNjI5 ZWI5MjgwHhcNMjUxMjI0MTYwMDQyWhcNMjUxMjI1MTYwMDQyWjAzMTEwLwYDVQQD EygxYTJiZTZiODU3OTVkMzRlNGQyODc3YjNjYjYyNmU2NjIwZmI4MDhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1raptgwOXZgS9vtT7eNR1QciwH1V II7pwB9WYnPU2WZD3KS0rLM2Ury8HICsiAqEfjGzy6MAL165dyn8pfwkbPGUbvLA kv0GwpYUpGKeCyWExxdzZv4PnOJ4V8EUM4KAcBsVVH3KiTUav5mk3EEiscHJ07ES 2tdcy1arbsc3ZO4GQBGQzD4TsfN1AQcwepczGcqDvcFas0QRmfqJQMsfnhGyVcsa GAvjeqzr73gUshmDXfFxKhgN9v3zrmqssT1aRykzGoM8Sy+E4YMRj0kVqJbrGzbj w4OgJr/Q8CHgrUi84Uq4mWtrlWhS/cW7z/Ms4uyp4LiEgV74zIuL4hceaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBor5rhXldNOTSh3s8tibmYg+4COMB8GA1UdIwQY MBaAFKIMxnFUtAMUXROUaYhhJ6tinrkoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2d6R2NWUzBBeFJkRTVScGlHRW5xMktldVNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9kZDg4NzgtMjk0MS00YzE1LWIyMDQt OGZjMzM3MzdjZWFiLzEvb2d6R2NWUzBBeFJkRTVScGlHRW5xMktldVNnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9kZDg4NzgtMjk0MS00YzE1LWIyMDQtOGZjMzM3MzdjZWFi LzEvb2d6R2NWUzBBeFJkRTVScGlHRW5xMktldVNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL9HrEnMo HyXuikNv+RxU6iWgm/SGmCu9OFfqXHXeZcSsbCZh1w7FjGD/B/mCD0iQ5S9ISIsZ KWWO1KsOlShz1dscTd1pxFlnQLvXpAq31lDAIO2MoMW4D/OcqGl7sDQsz07LUyfI QrecbbkVXhpUDStO1l/Br4qQDVmK/Gm6GnxmmcwldQbtyYPn50eS4pIzJ/UOoLsh uJa8pb3oMBz0S6GWpRxs1GugpKG4Epv3pTidStAy2RhQDMngRJd4/20GYPyLX9OV xEIjtow9xivZzkug3QuQJnQDOwx9/agi/tnS2YSokoDNXqZv0cJn+RF813BI8lh8 Jh8O6LC83bMf7g== -----END CERTIFICATE-----Generated at Thu Dec 25 01:23:06 2025 by rpki-client