This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft File: ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft (raw, json) Hash identifier: s4wQm54ngIwFyTQq9gaMqWdTVx+bERqvYCeSqULLib0= Subject key identifier: D6:77:DE:89:84:0D:8F:F8:3B:99:B4:49:A3:E7:79:47:88:DA:21:51 Authority key identifier: A2:0C:C6:71:54:B4:03:14:5D:13:94:69:88:61:27:AB:62:9E:B9:28 Certificate issuer: /CN=a20cc67154b403145d139469886127ab629eb928 Certificate serial: 019B3DC77755EE6306D3CD8BBDBCD4DCD71D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft Manifest number: 11FC Signing time: Sat 20 Dec 2025 22:00:40 +0000 Manifest this update: Sat 20 Dec 2025 22:00:40 +0000 Manifest next update: Sun 21 Dec 2025 22:00:40 +0000 Files and hashes: 1: 0riwbK-R5SQDQbiXbxNMvOKwj1Q.roa (hash: d2SRgakZUBxW5TlLkPzlI9efZpJljVH6FfcMkO1myyQ=) 2: 13rU8nhg31f282Ufq4fY9epK_mk.roa (hash: 71Un032C55jpwedQZGjeiCXgaYcH9RkzCt+gCgI2Wak=) 3: ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl (hash: Fy1eIPyQatF8LVGQ63oaoPaw99qd0omevBgWlAmba64=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:c7:77:55:ee:63:06:d3:cd:8b:bd:bc:d4:dc:d7:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a20cc67154b403145d139469886127ab629eb928 Validity Not Before: Dec 20 22:00:40 2025 GMT Not After : Dec 21 22:00:40 2025 GMT Subject: CN=d677de89840d8ff83b99b449a3e7794788da2151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:85:c4:9c:20:49:87:c4:35:a5:56:fb:fb:cc: db:44:d9:2d:26:3e:5b:4c:3c:2b:81:b3:24:84:9b: 2a:e6:84:8a:74:61:21:dc:c8:f1:a2:08:8c:4b:f7: fd:01:df:bd:b3:46:bd:42:3e:02:ef:64:04:3f:cf: 2e:1e:71:3b:0e:b6:aa:1f:6e:7b:30:09:8c:4b:8b: 97:24:f4:0d:87:43:74:eb:84:d0:17:93:af:d4:db: 63:54:bb:99:5c:bc:05:b9:17:ce:d1:af:de:5e:7a: fe:02:f8:32:4c:0f:73:be:74:0e:08:9d:e5:55:98: 46:92:54:a5:3c:32:03:fa:d9:f3:4d:33:50:bd:fe: 53:1f:d6:95:8a:76:98:3b:c6:e9:b9:16:9f:8e:ce: 73:ac:f0:21:a8:f7:de:b6:f6:68:2e:f8:ca:85:5e: 8e:c0:f3:23:98:c0:6c:47:b2:12:eb:e9:44:f0:91: 34:d8:e7:b9:cb:fe:90:f8:4d:15:0e:2c:c3:cc:da: c7:75:0f:b9:e2:8e:85:b6:e3:4d:b6:2a:0c:e5:3a: 30:12:f8:81:9d:31:6b:69:4d:13:d0:d5:c2:cb:78: 02:7f:26:f2:8d:e2:21:95:ae:e1:45:9f:21:e7:36: d6:d1:44:65:bd:12:2c:e8:1e:d0:ed:f8:69:a9:ba: a6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:77:DE:89:84:0D:8F:F8:3B:99:B4:49:A3:E7:79:47:88:DA:21:51 X509v3 Authority Key Identifier: keyid:A2:0C:C6:71:54:B4:03:14:5D:13:94:69:88:61:27:AB:62:9E:B9:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:b4:5c:ca:ad:8d:15:75:c9:29:cf:92:5d:9d:95:5a:c2:cf: dd:72:e9:b7:e1:b4:18:c7:ab:89:27:36:62:0b:9c:03:4c:b6: 65:68:ea:b2:29:21:f6:0a:f6:29:d3:c3:5e:2d:0c:08:62:48: ea:7f:c1:90:00:6e:cb:04:e1:e9:90:68:97:f4:3d:8a:0a:1a: 44:ff:51:82:8b:21:f0:83:aa:d0:5e:47:2a:28:e4:8a:bf:03: 3c:dc:74:0a:90:a3:b2:96:cb:2a:71:ea:d7:ce:45:23:69:f5: af:e1:40:f1:a5:83:0d:8a:04:5f:06:a2:5f:15:0a:68:33:27: 9e:94:9a:9e:e3:21:b8:be:ec:63:1f:0f:99:19:4a:66:90:a4: d5:f8:e9:fc:ca:d4:1f:07:8d:3d:9f:07:a6:8c:ed:63:89:0b: 85:0f:44:2a:ee:48:30:22:2f:78:fa:8f:44:91:85:e0:eb:a8: 4f:c7:42:67:47:53:b8:1e:d7:38:2a:fe:24:dc:62:86:ca:ed: 44:f6:16:16:17:22:9b:f1:c3:18:be:81:ce:0b:f8:11:40:22: b0:61:ae:67:1b:b5:cf:7b:ff:4d:09:db:c9:a2:d5:ab:01:d3: 5f:4e:30:10:21:76:30:25:c5:99:6a:01:ba:06:e3:91:fe:6d: c0:cc:e1:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9x3dV7mMG082LvbzU3NcdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyMGNjNjcxNTRiNDAzMTQ1ZDEzOTQ2OTg4NjEyN2FiNjI5 ZWI5MjgwHhcNMjUxMjIwMjIwMDQwWhcNMjUxMjIxMjIwMDQwWjAzMTEwLwYDVQQD EyhkNjc3ZGU4OTg0MGQ4ZmY4M2I5OWI0NDlhM2U3Nzk0Nzg4ZGEyMTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYXEnCBJh8Q1pVb7+8zbRNktJj5b TDwrgbMkhJsq5oSKdGEh3MjxogiMS/f9Ad+9s0a9Qj4C72QEP88uHnE7DraqH257 MAmMS4uXJPQNh0N064TQF5Ov1NtjVLuZXLwFuRfO0a/eXnr+AvgyTA9zvnQOCJ3l VZhGklSlPDID+tnzTTNQvf5TH9aVinaYO8bpuRafjs5zrPAhqPfetvZoLvjKhV6O wPMjmMBsR7IS6+lE8JE02Oe5y/6Q+E0VDizDzNrHdQ+54o6FtuNNtioM5TowEviB nTFraU0T0NXCy3gCfybyjeIhla7hRZ8h5zbW0URlvRIs6B7Q7fhpqbqmnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNZ33omEDY/4O5m0SaPneUeI2iFRMB8GA1UdIwQY MBaAFKIMxnFUtAMUXROUaYhhJ6tinrkoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2d6R2NWUzBBeFJkRTVScGlHRW5xMktldVNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9kZDg4NzgtMjk0MS00YzE1LWIyMDQt OGZjMzM3MzdjZWFiLzEvb2d6R2NWUzBBeFJkRTVScGlHRW5xMktldVNnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9kZDg4NzgtMjk0MS00YzE1LWIyMDQtOGZjMzM3MzdjZWFi LzEvb2d6R2NWUzBBeFJkRTVScGlHRW5xMktldVNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbLRcyq2N FXXJKc+SXZ2VWsLP3XLpt+G0GMeriSc2YgucA0y2ZWjqsikh9gr2KdPDXi0MCGJI 6n/BkABuywTh6ZBol/Q9igoaRP9Rgosh8IOq0F5HKijkir8DPNx0CpCjspbLKnHq 185FI2n1r+FA8aWDDYoEXwaiXxUKaDMnnpSanuMhuL7sYx8PmRlKZpCk1fjp/MrU HweNPZ8HpoztY4kLhQ9EKu5IMCIvePqPRJGF4OuoT8dCZ0dTuB7XOCr+JNxihsrt RPYWFhcim/HDGL6Bzgv4EUAisGGuZxu1z3v/TQnbyaLVqwHTX04wECF2MCXFmWoB ugbjkf5twMzhgQ== -----END CERTIFICATE-----Generated at Sun Dec 21 03:53:19 2025 by rpki-client