This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft File: OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft (raw, json) Hash identifier: d3zQzhZk3lqBJhfq82guMnpLHl5I7rea7P+SBEAl9Ig= Subject key identifier: 70:98:54:51:EC:34:B8:4C:AE:DE:1B:90:7F:4D:FB:92:3E:90:42:D3 Authority key identifier: 38:EA:D5:DE:B5:35:00:F2:54:8A:E1:81:2C:08:7E:32:A4:7F:C8:B4 Certificate issuer: /CN=38ead5deb53500f2548ae1812c087e32a47fc8b4 Certificate serial: 019AF209080969F36EAEFA4F998B3BF6D422 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft Manifest number: 0D9E Signing time: Sat 06 Dec 2025 05:01:09 +0000 Manifest this update: Sat 06 Dec 2025 05:01:09 +0000 Manifest next update: Sun 07 Dec 2025 05:01:09 +0000 Files and hashes: 1: OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl (hash: RwvzRMqmpsVoPd32wwhRyvSRJHUjYfJCil2R8RePw60=) 2: akjM-xe6r7wN8q85qvVsiC6HFoc.roa (hash: DJGYhYAc1tW0r6f5bvOKTaPIoda2gTETmwDHHbAC3Yc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:08:09:69:f3:6e:ae:fa:4f:99:8b:3b:f6:d4:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38ead5deb53500f2548ae1812c087e32a47fc8b4 Validity Not Before: Dec 6 05:01:09 2025 GMT Not After : Dec 7 05:01:09 2025 GMT Subject: CN=70985451ec34b84caede1b907f4dfb923e9042d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3b:c7:c0:85:0c:58:84:2a:41:81:24:7d:e1: 1f:32:64:04:2c:de:57:4a:6e:5b:15:5a:9a:ee:a6: 78:8d:f0:8d:15:65:98:18:8b:13:aa:95:e3:95:8b: f1:5b:01:eb:07:3d:dc:05:7c:05:d6:7b:db:55:33: 1a:e2:b0:0a:3f:c4:9d:db:12:ab:28:3f:7b:0f:e6: 64:9b:45:9e:88:bc:94:35:04:3e:57:a0:eb:c3:cd: 27:a9:8d:e2:f3:f8:22:e9:9d:3d:22:a7:88:f8:8f: 11:a8:7d:d3:96:96:c6:ef:64:85:f0:a3:17:34:21: 9b:89:a0:e5:d4:a1:a3:dd:5f:6a:7e:3e:a8:dc:72: eb:7a:22:c2:00:94:80:fb:b0:b9:5b:0d:99:3b:a3: 91:ca:c3:a8:94:e9:cc:10:c9:4c:8e:17:b0:98:8f: 5c:da:e9:b5:0f:a4:9f:a0:e6:5a:bd:c4:37:bd:1d: d2:bd:84:52:55:31:06:51:0a:ae:e5:3d:0c:10:67: 41:b6:86:4f:fb:74:2e:18:55:c8:54:d2:84:ab:6d: b6:55:5f:e6:d0:cc:63:13:c9:fd:8e:43:eb:f0:8a: b4:33:36:54:db:8e:b5:c9:0c:d6:19:7e:1b:6c:3c: 55:01:95:c1:5e:a3:dd:e6:5e:0f:7d:dc:4d:b2:d1: 0d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:98:54:51:EC:34:B8:4C:AE:DE:1B:90:7F:4D:FB:92:3E:90:42:D3 X509v3 Authority Key Identifier: keyid:38:EA:D5:DE:B5:35:00:F2:54:8A:E1:81:2C:08:7E:32:A4:7F:C8:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:f0:a9:ba:27:35:8b:d4:5e:ce:b1:02:f0:8b:2a:0b:d6:61: 5d:94:cf:8e:9c:be:d6:c0:4c:e6:1d:97:ef:c9:1c:c3:0b:3d: 64:cf:12:0b:63:97:8c:35:ba:ab:a9:2a:59:f9:c2:e0:24:55: 04:cd:7d:ba:fd:a7:ea:b3:6e:99:35:8e:46:28:c9:ee:37:5d: 02:75:92:92:41:62:50:ee:63:5d:f1:47:38:e2:29:16:8c:a7: a5:8c:6c:5c:02:9b:0c:f0:12:e2:6d:92:ca:65:4c:04:25:5d: 33:63:6a:1f:fe:41:5f:c3:1e:b8:9a:79:6c:c9:f5:ca:1f:0a: 59:f1:15:ed:42:59:9d:01:39:4b:94:56:2d:2e:31:ed:28:35: 92:e2:9e:1c:6d:cd:63:67:0b:94:c0:6d:47:8c:f8:bb:1d:ac: 55:89:00:aa:78:c3:05:e1:16:88:9b:89:3c:4c:69:a4:8a:19: ba:8b:8c:cc:b0:b0:39:34:1e:d3:fa:46:47:47:24:8d:88:6d: d3:83:77:69:43:8f:3e:2b:93:92:13:bf:ba:39:94:c6:69:10: fc:2f:0b:7b:5b:7f:2f:26:79:6a:2e:98:df:33:73:66:a3:73: 3b:09:d2:5d:9b:e7:91:f4:a7:f0:d3:fc:0c:8b:cf:75:d3:ac: ca:ab:92:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCQgJafNurvpPmYs79tQiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4ZWFkNWRlYjUzNTAwZjI1NDhhZTE4MTJjMDg3ZTMyYTQ3 ZmM4YjQwHhcNMjUxMjA2MDUwMTA5WhcNMjUxMjA3MDUwMTA5WjAzMTEwLwYDVQQD Eyg3MDk4NTQ1MWVjMzRiODRjYWVkZTFiOTA3ZjRkZmI5MjNlOTA0MmQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzzvHwIUMWIQqQYEkfeEfMmQELN5X Sm5bFVqa7qZ4jfCNFWWYGIsTqpXjlYvxWwHrBz3cBXwF1nvbVTMa4rAKP8Sd2xKr KD97D+Zkm0WeiLyUNQQ+V6Drw80nqY3i8/gi6Z09IqeI+I8RqH3TlpbG72SF8KMX NCGbiaDl1KGj3V9qfj6o3HLreiLCAJSA+7C5Ww2ZO6ORysOolOnMEMlMjhewmI9c 2um1D6SfoOZavcQ3vR3SvYRSVTEGUQqu5T0MEGdBtoZP+3QuGFXIVNKEq222VV/m 0MxjE8n9jkPr8Iq0MzZU2461yQzWGX4bbDxVAZXBXqPd5l4PfdxNstENwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHCYVFHsNLhMrt4bkH9N+5I+kELTMB8GA1UdIwQY MBaAFDjq1d61NQDyVIrhgSwIfjKkf8i0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT09yVjNyVTFBUEpVaXVHQkxBaC1NcVJfeUxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8zNTE2YTEtZmQ5ZC00ZTI5LWFkZDMt ZDQ0NmYxZjgzYWU5LzEvT09yVjNyVTFBUEpVaXVHQkxBaC1NcVJfeUxRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS8zNTE2YTEtZmQ5ZC00ZTI5LWFkZDMtZDQ0NmYxZjgzYWU5 LzEvT09yVjNyVTFBUEpVaXVHQkxBaC1NcVJfeUxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJvCpuic1 i9RezrEC8IsqC9ZhXZTPjpy+1sBM5h2X78kcwws9ZM8SC2OXjDW6q6kqWfnC4CRV BM19uv2n6rNumTWORijJ7jddAnWSkkFiUO5jXfFHOOIpFoynpYxsXAKbDPAS4m2S ymVMBCVdM2NqH/5BX8MeuJp5bMn1yh8KWfEV7UJZnQE5S5RWLS4x7Sg1kuKeHG3N Y2cLlMBtR4z4ux2sVYkAqnjDBeEWiJuJPExppIoZuouMzLCwOTQe0/pGR0ckjYht 04N3aUOPPiuTkhO/ujmUxmkQ/C8Le1t/LyZ5ai6Y3zNzZqNzOwnSXZvnkfSn8NP8 DIvPddOsyquSvA== -----END CERTIFICATE-----Generated at Sat Dec 6 06:58:36 2025 by rpki-client