This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft File: Ooz8_rg-iPNror8kRduewegvDVQ.mft (raw, json) Hash identifier: pWOpquEd0xq9atoEnMqIAMr3g2dUgydm7rjpgcaZXxA= Subject key identifier: 17:9D:25:EF:76:F0:C9:95:6D:17:57:AC:E0:87:3C:68:A1:AB:5F:54 Authority key identifier: 3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54 Certificate issuer: /CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54 Certificate serial: 019AF20943EAE073C9CD2CB98571594D2B54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 05:01:24 +0000 Manifest this update: Sat 06 Dec 2025 05:01:24 +0000 Manifest next update: Sun 07 Dec 2025 05:01:24 +0000 Files and hashes: 1: 26TbrymsKsZjBkQHIbbRRWaFR8Y.roa (hash: SWIdCtaxTysSBJj/hZn1IHZ7qzsZ9zOqjJPPtoUQNGw=) 2: Ooz8_rg-iPNror8kRduewegvDVQ.crl (hash: j8uy4bBFIx5ite5hGRJs6YI0JvVVlBKB26rd/DEIqL0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:43:ea:e0:73:c9:cd:2c:b9:85:71:59:4d:2b:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54 Validity Not Before: Dec 6 05:01:24 2025 GMT Not After : Dec 7 05:01:24 2025 GMT Subject: CN=179d25ef76f0c9956d1757ace0873c68a1ab5f54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1e:ae:3c:d4:5b:2b:1e:8c:ab:ca:f0:cc:e7: 9b:dd:ef:d2:d0:bd:a1:e6:cc:c2:69:27:e2:ae:89: 89:73:eb:d9:e9:74:96:19:d1:62:ae:87:9f:0d:06: f4:78:27:ae:90:b2:38:cd:58:32:15:23:a7:43:85: a0:5e:ad:23:b1:f7:4d:2c:69:96:68:6e:37:ab:33: 09:72:41:80:ea:00:0d:13:c7:7d:4e:b2:34:2a:b0: 1a:c9:43:c8:0c:b1:d4:43:88:77:f3:1c:e2:bf:c8: 0f:33:4d:9e:d4:ac:62:5f:e5:f9:d8:62:77:d5:ec: 8d:aa:3b:95:2f:fb:40:3d:c8:a3:70:ad:7b:9b:c2: 19:08:32:8c:a4:a4:94:dc:a5:65:b0:06:e1:a4:95: 84:04:35:74:b2:e8:88:6e:11:fd:42:17:e6:19:6d: a5:e2:ba:68:20:86:33:bc:0c:c0:01:9c:55:1c:ee: c2:78:09:c2:59:87:55:1e:28:95:29:63:62:3b:dc: 30:df:97:95:e4:2d:a7:8a:47:93:99:9f:f9:68:52: d1:8d:81:2a:6b:4a:57:fb:ef:1d:19:68:d5:26:db: 71:1f:b5:e5:d1:0a:72:10:16:f9:b0:76:ea:44:37: a6:13:ea:ca:55:11:38:10:78:22:66:94:42:99:02: fe:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:9D:25:EF:76:F0:C9:95:6D:17:57:AC:E0:87:3C:68:A1:AB:5F:54 X509v3 Authority Key Identifier: keyid:3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:85:70:13:1b:d3:12:ac:93:cc:2b:bc:37:30:fb:93:c3:99: e8:0b:63:70:a5:ab:41:de:f6:f1:5e:e2:02:f2:14:d3:34:10: b2:f2:e0:d6:37:f6:e9:8b:d5:a0:5f:48:8c:7c:63:3c:19:cf: 8f:a5:90:ba:73:a6:d8:23:c1:53:16:53:f3:2a:52:f9:65:48: 5a:50:fe:4e:71:08:7c:f9:40:ff:c8:17:29:fb:74:25:b8:e8: 92:d6:5e:77:22:c2:23:29:b0:57:47:6e:12:8b:d7:82:93:66: af:c6:e0:56:e4:a4:0f:9c:c9:5c:bd:46:3d:61:0e:52:4b:03: 36:5f:2e:a8:9c:de:e3:fa:a2:40:6a:23:5b:63:cd:f4:ab:d9: 87:44:be:48:4e:d1:ae:3b:c4:fa:98:a3:49:c4:7c:67:cf:a6: 28:48:db:59:82:36:68:84:ff:d2:62:56:c6:f7:5b:82:72:13: 43:ae:e5:a6:5f:0c:9f:ac:91:24:59:71:1f:2b:4e:80:d5:6d: f7:19:6c:2b:90:f0:18:16:a8:b4:21:f9:67:b5:33:00:09:97: 0c:fa:df:6b:6b:db:f9:ee:77:ae:f3:89:d6:e8:fc:91:e2:6d: 7a:35:59:a5:4d:26:d2:28:f3:ec:b6:17:35:c6:6b:ab:0f:46: 89:da:52:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCUPq4HPJzSy5hXFZTStUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhOGNmY2ZlYjgzZTg4ZjM2YmEyYmYyNDQ1ZGI5ZWMxZTgy ZjBkNTQwHhcNMjUxMjA2MDUwMTI0WhcNMjUxMjA3MDUwMTI0WjAzMTEwLwYDVQQD EygxNzlkMjVlZjc2ZjBjOTk1NmQxNzU3YWNlMDg3M2M2OGExYWI1ZjU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqR6uPNRbKx6Mq8rwzOeb3e/S0L2h 5szCaSfiromJc+vZ6XSWGdFiroefDQb0eCeukLI4zVgyFSOnQ4WgXq0jsfdNLGmW aG43qzMJckGA6gANE8d9TrI0KrAayUPIDLHUQ4h38xziv8gPM02e1KxiX+X52GJ3 1eyNqjuVL/tAPcijcK17m8IZCDKMpKSU3KVlsAbhpJWEBDV0suiIbhH9QhfmGW2l 4rpoIIYzvAzAAZxVHO7CeAnCWYdVHiiVKWNiO9ww35eV5C2nikeTmZ/5aFLRjYEq a0pX++8dGWjVJttxH7Xl0QpyEBb5sHbqRDemE+rKVRE4EHgiZpRCmQL+9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBedJe928MmVbRdXrOCHPGihq19UMB8GA1UdIwQY MBaAFDqM/P64Pojza6K/JEXbnsHoLw1UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT296OF9yZy1pUE5yb3I4a1JkdWV3ZWd2RFZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi85MDJjMWEtMjlmNS00OGRkLWFkYTEt NmE0ZWIzN2EzM2NjLzEvT296OF9yZy1pUE5yb3I4a1JkdWV3ZWd2RFZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi85MDJjMWEtMjlmNS00OGRkLWFkYTEtNmE0ZWIzN2EzM2Nj LzEvT296OF9yZy1pUE5yb3I4a1JkdWV3ZWd2RFZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcYVwExvT EqyTzCu8NzD7k8OZ6AtjcKWrQd728V7iAvIU0zQQsvLg1jf26YvVoF9IjHxjPBnP j6WQunOm2CPBUxZT8ypS+WVIWlD+TnEIfPlA/8gXKft0JbjoktZedyLCIymwV0du EovXgpNmr8bgVuSkD5zJXL1GPWEOUksDNl8uqJze4/qiQGojW2PN9KvZh0S+SE7R rjvE+pijScR8Z8+mKEjbWYI2aIT/0mJWxvdbgnITQ67lpl8Mn6yRJFlxHytOgNVt 9xlsK5DwGBaotCH5Z7UzAAmXDPrfa2vb+e53rvOJ1uj8keJtejVZpU0m0ijz7LYX NcZrqw9GidpSxQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:21:35 2025 by rpki-client