This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft (raw, json) Hash identifier: 1Uu8LjIeInTybS0fIMrqTsWIxF4RBWB+FKIWyId6y4s= Subject key identifier: 98:72:30:51:A7:AC:54:C7:12:FC:A2:0C:3D:CF:C7:9A:F7:4E:1D:54 Authority key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58 Certificate issuer: /CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58 Certificate serial: 019AF276D0B93D0E5ADCD8DB1DB3E6F83E36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 07:01:04 +0000 Manifest this update: Sat 06 Dec 2025 07:01:04 +0000 Manifest next update: Sun 07 Dec 2025 07:01:04 +0000 Files and hashes: 1: RW4un6mRBfPzHloV5RnOReMxV4M.roa (hash: 6KtCB53EZaTt4rkvk3WW5xLU60zG4n/pYxl9BtxsfPs=) 2: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl (hash: C72YnRImOcmUu3fzXZ/S5PDNQfWUaMaTzDxw5vxdD9g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:d0:b9:3d:0e:5a:dc:d8:db:1d:b3:e6:f8:3e:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58 Validity Not Before: Dec 6 07:01:04 2025 GMT Not After : Dec 7 07:01:04 2025 GMT Subject: CN=98723051a7ac54c712fca20c3dcfc79af74e1d54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:05:6e:a5:c0:29:98:3e:37:0f:26:cf:24:96: f4:8f:9a:9a:18:99:5c:da:f3:b3:b4:f3:a9:30:9d: e5:c6:35:10:cb:ce:63:d9:7e:26:cc:d4:37:ed:d1: ea:e1:9e:5f:c6:7b:3b:0b:60:2c:c3:6b:3e:41:c4: 09:ab:b0:57:cd:0d:b4:a9:dd:be:40:fa:e2:16:03: 8e:04:4d:4c:f5:3d:12:b8:ec:1c:f6:ea:ad:ac:73: 44:28:fd:51:d9:a2:94:8f:c8:97:e6:7f:b1:43:31: 7d:33:01:c0:c1:0f:0d:be:9b:5e:91:4a:21:82:ab: 79:66:aa:83:27:cd:3e:d1:49:b1:61:82:c1:e5:67: 38:06:2e:48:fe:42:de:54:f3:a4:0b:5e:7e:f5:44: be:69:5b:d3:49:d1:83:5c:1c:50:f2:e4:3e:51:da: 54:b6:9f:f5:b4:4d:29:ef:e8:e0:53:71:07:e3:bb: 2a:d2:a3:57:48:56:b6:03:7d:86:9f:80:75:53:a6: 8d:79:69:35:de:d0:84:1b:dc:4b:d0:8b:f4:33:ae: b7:3a:2b:db:df:8a:b1:ac:aa:a2:d3:5d:01:1f:17: b5:7e:2b:cf:49:d7:82:6d:bd:7b:e8:32:c8:11:64: 0a:84:51:6b:d4:af:67:7f:d6:36:2a:47:a1:5b:3f: 4c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:72:30:51:A7:AC:54:C7:12:FC:A2:0C:3D:CF:C7:9A:F7:4E:1D:54 X509v3 Authority Key Identifier: keyid:A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:48:b4:6c:12:45:0c:e7:14:bd:7c:92:19:7a:83:51:61:01: a3:0e:8e:8c:24:ae:2e:c1:47:16:5f:35:74:1c:ed:93:c1:b0: 24:ab:d5:fe:e2:4d:24:8b:60:d1:68:30:2e:0d:b8:96:39:a6: c0:95:f1:22:34:98:31:a8:6e:06:63:f2:17:c6:79:5b:2f:7e: d8:bb:57:c7:bf:f2:ea:e8:b0:d3:6a:0f:e1:77:81:0f:05:a2: cb:7e:fd:ed:03:ff:bd:11:57:23:67:23:a2:66:00:bd:14:7c: 93:62:07:5a:da:b6:34:67:e7:31:c6:34:b8:fc:48:64:2b:40: fa:74:52:59:9a:65:c4:39:07:68:e2:5e:a6:fc:a0:61:e5:47: 23:7a:9e:56:7a:82:70:4d:23:14:68:b6:c9:07:8f:f0:31:ae: ac:f5:36:6c:98:ee:0a:ac:a5:34:9e:7c:c9:f4:ec:16:21:29: 83:fc:4e:c8:e8:cd:5f:b1:09:31:b4:35:8b:d1:90:74:62:76: 39:9d:d9:c2:00:6f:d4:53:d3:1c:40:a4:08:c0:d2:3c:57:80: 8b:22:44:86:bc:ca:78:0d:dc:66:80:9f:e8:82:d5:c8:17:e6: f2:a1:12:bd:b0:cf:00:80:ca:17:2a:30:8e:36:76:6c:89:60: 7a:dd:26:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydtC5PQ5a3NjbHbPm+D42MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYzhjZGE4MTRlNzc3ZDlmZTE1NGI5MmU5OTU5Y2UxMjBi MGFkNTgwHhcNMjUxMjA2MDcwMTA0WhcNMjUxMjA3MDcwMTA0WjAzMTEwLwYDVQQD Eyg5ODcyMzA1MWE3YWM1NGM3MTJmY2EyMGMzZGNmYzc5YWY3NGUxZDU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzwVupcApmD43DybPJJb0j5qaGJlc 2vOztPOpMJ3lxjUQy85j2X4mzNQ37dHq4Z5fxns7C2Asw2s+QcQJq7BXzQ20qd2+ QPriFgOOBE1M9T0SuOwc9uqtrHNEKP1R2aKUj8iX5n+xQzF9MwHAwQ8NvptekUoh gqt5ZqqDJ80+0UmxYYLB5Wc4Bi5I/kLeVPOkC15+9US+aVvTSdGDXBxQ8uQ+UdpU tp/1tE0p7+jgU3EH47sq0qNXSFa2A32Gn4B1U6aNeWk13tCEG9xL0Iv0M663Oivb 34qxrKqi010BHxe1fivPSdeCbb176DLIEWQKhFFr1K9nf9Y2KkehWz9MiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJhyMFGnrFTHEvyiDD3Px5r3Th1UMB8GA1UdIwQY MBaAFKDIzagU53fZ/hVLkumVnOEgsK1YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb01qTnFCVG5kOW4tRlV1UzZaV2M0U0N3clZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9hYTI3MGEtYzA4OS00Nzc4LTkzNDMt YjczNjJlZGJkOGFjLzEvb01qTnFCVG5kOW4tRlV1UzZaV2M0U0N3clZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS9hYTI3MGEtYzA4OS00Nzc4LTkzNDMtYjczNjJlZGJkOGFj LzEvb01qTnFCVG5kOW4tRlV1UzZaV2M0U0N3clZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc0i0bBJF DOcUvXySGXqDUWEBow6OjCSuLsFHFl81dBztk8GwJKvV/uJNJItg0WgwLg24ljmm wJXxIjSYMahuBmPyF8Z5Wy9+2LtXx7/y6uiw02oP4XeBDwWiy3797QP/vRFXI2cj omYAvRR8k2IHWtq2NGfnMcY0uPxIZCtA+nRSWZplxDkHaOJepvygYeVHI3qeVnqC cE0jFGi2yQeP8DGurPU2bJjuCqylNJ58yfTsFiEpg/xOyOjNX7EJMbQ1i9GQdGJ2 OZ3ZwgBv1FPTHECkCMDSPFeAiyJEhrzKeA3cZoCf6ILVyBfm8qESvbDPAIDKFyow jjZ2bIlget0mAQ== -----END CERTIFICATE-----Generated at Sat Dec 6 14:52:51 2025 by rpki-client