This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft File: Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft (raw, json) Hash identifier: usXzdsKIsPW3RVZwYZBLmj9ok4zYG+DeHlFFd8Emwzg= Subject key identifier: 39:2A:0B:48:51:BC:14:AB:DE:E2:DA:D8:CC:D6:75:C2:83:B4:1F:B2 Authority key identifier: 3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E Certificate issuer: /CN=3a1d8225b27122794bc82e91b967bb25dbe4508e Certificate serial: 019AF2ADDF02678942419C66DB3E7ADF81FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft Manifest number: 10DE Signing time: Sat 06 Dec 2025 08:01:12 +0000 Manifest this update: Sat 06 Dec 2025 08:01:12 +0000 Manifest next update: Sun 07 Dec 2025 08:01:12 +0000 Files and hashes: 1: Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl (hash: 8HWNAH7cYz2jiBqhgffQi6KH/bU5Px5wtFtAenjls+w=) 2: X2ZWwlq5JgdZCBhrE-skZo9Zodk.roa (hash: jm4EeR/8LyEqdFtytjbhKQG8mWbwHJBMpiLCK8D6HPo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:df:02:67:89:42:41:9c:66:db:3e:7a:df:81:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a1d8225b27122794bc82e91b967bb25dbe4508e Validity Not Before: Dec 6 08:01:12 2025 GMT Not After : Dec 7 08:01:12 2025 GMT Subject: CN=392a0b4851bc14abdee2dad8ccd675c283b41fb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:88:a0:35:50:a5:c3:1f:94:21:99:d4:1e:8a: fb:e0:d3:37:ec:e8:b9:83:5d:e0:e2:23:64:22:7b: 16:9f:7c:2b:57:0b:c3:b0:13:98:ae:4e:ff:01:4a: 40:5d:34:ab:ec:ca:71:2c:20:8c:b3:16:83:1c:7e: 96:13:cb:31:dd:00:77:3c:4e:50:fd:b9:71:c7:51: b7:d8:7c:2b:f1:0d:bd:f1:c2:71:66:6c:8f:c7:75: 34:9c:ef:a3:70:c0:ed:69:2b:3a:8c:c2:79:19:ff: 53:95:af:b6:65:a3:23:41:e2:39:c1:27:65:e4:25: f7:af:2f:c5:31:5e:15:cb:c4:c8:2e:40:a3:e5:06: c7:6d:72:43:32:4f:ac:61:fb:9a:c0:a8:77:6b:f1: 1a:16:db:3c:74:7f:2a:07:c3:cb:ac:77:cf:39:89: 83:f7:1d:25:af:f9:61:56:24:67:40:61:49:23:7b: 61:16:99:39:f0:ac:d3:0a:e5:8d:cb:61:18:4e:82: 2f:29:ba:fe:9f:dc:70:53:ce:f3:ad:96:7d:cc:ac: ab:2e:8d:ab:40:35:8f:c7:b0:b6:82:b6:b8:7e:92: ef:80:5d:1f:9f:ff:57:8e:30:b9:d3:02:bc:fd:45: 88:07:e9:d1:a0:62:6d:46:cd:b5:b3:cd:db:ac:76: d0:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:2A:0B:48:51:BC:14:AB:DE:E2:DA:D8:CC:D6:75:C2:83:B4:1F:B2 X509v3 Authority Key Identifier: keyid:3A:1D:82:25:B2:71:22:79:4B:C8:2E:91:B9:67:BB:25:DB:E4:50:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oh2CJbJxInlLyC6RuWe7JdvkUI4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/59d4ee-4613-4649-ad2c-749e2bca73ce/1/Oh2CJbJxInlLyC6RuWe7JdvkUI4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:74:05:87:91:86:1c:75:f5:8e:20:ab:ce:20:59:6e:ea:92: aa:cb:01:02:12:45:40:66:e1:2f:ed:78:e9:94:5c:a4:4e:c5: 03:28:61:1f:50:f3:2b:92:6f:2e:df:83:5b:5b:a8:a5:24:1f: d4:b8:28:46:5a:bf:d2:d3:9c:be:c9:57:3f:e7:b3:17:28:03: 70:cb:ef:f5:12:ff:64:f4:b4:eb:72:fa:d1:99:af:70:7a:73: 02:9f:bb:12:65:c9:79:bc:91:a2:0c:ac:26:8c:55:f3:6f:46: f7:56:c6:d0:0d:73:2b:b2:ab:38:e4:4b:4c:ce:3f:7f:00:a8: ea:39:3f:23:31:fb:62:0b:1c:59:31:54:cb:a3:88:2a:aa:5b: 17:5d:1f:3a:af:61:fd:b8:a5:ea:2f:30:72:bc:f1:7d:51:b2: 7f:9e:a5:cf:f0:10:b1:94:83:48:18:4f:15:8f:13:37:49:e7: 9d:cc:f6:61:dc:87:de:5f:d2:e5:53:dc:72:7e:48:77:3f:31: fe:96:be:8c:77:85:e6:4b:30:99:cd:b0:66:ac:11:95:ae:44: b4:b5:be:1e:8f:c5:ce:a1:57:07:79:bc:57:d8:1f:85:a2:1d: e3:2f:c1:7d:74:e8:77:65:20:19:27:5c:4d:3a:e4:64:e6:f6: 96:57:36:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrd8CZ4lCQZxm2z5634H8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhMWQ4MjI1YjI3MTIyNzk0YmM4MmU5MWI5NjdiYjI1ZGJl NDUwOGUwHhcNMjUxMjA2MDgwMTEyWhcNMjUxMjA3MDgwMTEyWjAzMTEwLwYDVQQD EygzOTJhMGI0ODUxYmMxNGFiZGVlMmRhZDhjY2Q2NzVjMjgzYjQxZmIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoIigNVClwx+UIZnUHor74NM37Oi5 g13g4iNkInsWn3wrVwvDsBOYrk7/AUpAXTSr7MpxLCCMsxaDHH6WE8sx3QB3PE5Q /blxx1G32Hwr8Q298cJxZmyPx3U0nO+jcMDtaSs6jMJ5Gf9Tla+2ZaMjQeI5wSdl 5CX3ry/FMV4Vy8TILkCj5QbHbXJDMk+sYfuawKh3a/EaFts8dH8qB8PLrHfPOYmD 9x0lr/lhViRnQGFJI3thFpk58KzTCuWNy2EYToIvKbr+n9xwU87zrZZ9zKyrLo2r QDWPx7C2gra4fpLvgF0fn/9XjjC50wK8/UWIB+nRoGJtRs21s83brHbQgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDkqC0hRvBSr3uLa2MzWdcKDtB+yMB8GA1UdIwQY MBaAFDodgiWycSJ5S8gukblnuyXb5FCOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2gyQ0piSnhJbmxMeUM2UnVXZTdKZHZrVUk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi81OWQ0ZWUtNDYxMy00NjQ5LWFkMmMt NzQ5ZTJiY2E3M2NlLzEvT2gyQ0piSnhJbmxMeUM2UnVXZTdKZHZrVUk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi81OWQ0ZWUtNDYxMy00NjQ5LWFkMmMtNzQ5ZTJiY2E3M2Nl LzEvT2gyQ0piSnhJbmxMeUM2UnVXZTdKZHZrVUk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWnQFh5GG HHX1jiCrziBZbuqSqssBAhJFQGbhL+146ZRcpE7FAyhhH1DzK5JvLt+DW1uopSQf 1LgoRlq/0tOcvslXP+ezFygDcMvv9RL/ZPS063L60ZmvcHpzAp+7EmXJebyRogys JoxV829G91bG0A1zK7KrOORLTM4/fwCo6jk/IzH7YgscWTFUy6OIKqpbF10fOq9h /bil6i8wcrzxfVGyf56lz/AQsZSDSBhPFY8TN0nnncz2YdyH3l/S5VPccn5Idz8x /pa+jHeF5kswmc2wZqwRla5EtLW+Ho/FzqFXB3m8V9gfhaId4y/BfXTod2UgGSdc TTrkZOb2llc22Q== -----END CERTIFICATE-----Generated at Sat Dec 6 13:43:24 2025 by rpki-client