This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft File: oJ1luSb910PaW0c9NBhf4QGwWig.mft (raw, json) Hash identifier: J4WdH+H4tiL2kaz9Ztnn9G/PumUCeRsuK+kNPrDouok= Subject key identifier: B7:1A:72:33:F8:FE:0E:C0:45:34:F4:F8:B9:77:90:DE:E5:14:5E:35 Authority key identifier: A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28 Certificate issuer: /CN=a09d65b926fdd743da5b473d34185fe101b05a28 Certificate serial: 019AF0BF2FEB09C9F9EFCA7FE4BE861B9398 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft Manifest number: 1763 Signing time: Fri 05 Dec 2025 23:00:52 +0000 Manifest this update: Fri 05 Dec 2025 23:00:52 +0000 Manifest next update: Sat 06 Dec 2025 23:00:52 +0000 Files and hashes: 1: lhjGJIifChZhyO0SU9NNpxfAaP0.roa (hash: nX/uaYhIBdSKJHgpMLgtjy0tDRvricoltizd7F7VYTI=) 2: oJ1luSb910PaW0c9NBhf4QGwWig.crl (hash: uWlmy+vRdtDD2IZ5oZ9A+SCpv4t3+6Y+FePTAmXOsg0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:2f:eb:09:c9:f9:ef:ca:7f:e4:be:86:1b:93:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a09d65b926fdd743da5b473d34185fe101b05a28 Validity Not Before: Dec 5 23:00:52 2025 GMT Not After : Dec 6 23:00:52 2025 GMT Subject: CN=b71a7233f8fe0ec04534f4f8b97790dee5145e35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:99:29:4a:67:f4:60:01:a1:38:fa:4d:7f:01: 31:e6:47:d3:d2:ab:6a:f1:70:55:2c:4e:0a:98:a8: 05:e7:e1:a2:f8:15:59:a5:09:d2:13:74:19:64:6f: 71:61:08:21:0d:63:72:7f:37:a8:86:40:aa:c9:39: 4d:cb:64:75:d9:14:e0:b1:4e:27:53:03:56:3a:09: b2:f3:b0:4d:18:8e:50:5f:ff:c6:48:0b:31:63:60: 30:47:39:5c:47:60:41:7a:19:07:2c:62:6a:21:50: 4e:16:1f:aa:1f:92:5d:93:4f:46:1b:28:90:1a:f1: 78:2e:ab:43:86:37:ab:4e:48:6b:f5:d1:ed:d8:6a: d9:29:85:1b:97:2d:90:27:6f:6e:a2:1c:1e:2f:1b: bb:26:90:ad:79:6a:ed:9c:0e:9c:ab:08:55:e9:c8: 97:a2:70:24:24:d0:0b:3a:c0:24:ac:47:6c:be:5a: 25:fc:ef:72:bd:85:a6:33:98:16:69:ef:c4:53:b9: 27:8f:c5:21:f4:5a:cb:01:cb:65:d0:b5:b8:81:ba: 8c:32:1f:8d:1e:50:fc:b1:20:a1:96:f0:85:d4:e8: 3b:4f:e0:b2:15:26:30:9b:1a:ee:8e:ec:9f:a6:62: 6f:64:5f:f8:a0:0f:b2:17:ce:91:1a:d7:a8:bd:fe: cf:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:1A:72:33:F8:FE:0E:C0:45:34:F4:F8:B9:77:90:DE:E5:14:5E:35 X509v3 Authority Key Identifier: keyid:A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:b8:ff:f4:e8:5a:48:b1:52:10:0d:e1:f4:27:26:af:b7:f4: df:4e:ad:f4:0f:30:62:68:e7:12:4b:83:63:40:e9:f4:d0:43: 57:dc:f6:95:b4:1b:25:6b:8f:fc:27:9b:0b:b3:ad:af:58:cb: 9d:6c:fe:33:d0:8a:cc:5f:e0:23:58:60:f1:2c:63:cb:72:62: a1:48:4f:66:78:d4:64:c4:de:ec:88:eb:54:74:59:9d:57:57: af:f5:f7:71:7e:0f:94:8d:88:80:35:f2:ad:4a:d9:5f:f9:bb: 5c:73:5b:0b:df:d9:f9:b4:8b:32:b5:86:c0:da:3d:24:4d:5e: b7:c7:1e:da:4e:8b:1d:55:66:13:6f:e9:21:8c:d2:f3:95:56: 8d:dc:c5:ef:2c:e6:56:52:d2:0f:5d:72:32:2c:4a:a4:bf:48: 3a:be:46:66:6f:bc:68:2b:00:6d:b1:b7:25:8b:ec:b4:70:e9: 66:93:29:34:4c:76:7b:b5:37:d6:c9:bb:b5:a0:66:f0:0d:56: a4:a2:3e:d5:6b:72:b6:05:29:04:1d:4a:56:fb:f7:f4:f9:6e: 98:d1:a7:50:0d:5d:ce:4a:fe:b0:a7:d5:a8:ab:2b:53:e8:68: 90:64:cd:1c:79:02:4d:8b:20:1c:7b:9e:3b:8a:8f:ef:d6:df: 9a:95:b6:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwvy/rCcn578p/5L6GG5OYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwOWQ2NWI5MjZmZGQ3NDNkYTViNDczZDM0MTg1ZmUxMDFi MDVhMjgwHhcNMjUxMjA1MjMwMDUyWhcNMjUxMjA2MjMwMDUyWjAzMTEwLwYDVQQD EyhiNzFhNzIzM2Y4ZmUwZWMwNDUzNGY0ZjhiOTc3OTBkZWU1MTQ1ZTM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnZkpSmf0YAGhOPpNfwEx5kfT0qtq 8XBVLE4KmKgF5+Gi+BVZpQnSE3QZZG9xYQghDWNyfzeohkCqyTlNy2R12RTgsU4n UwNWOgmy87BNGI5QX//GSAsxY2AwRzlcR2BBehkHLGJqIVBOFh+qH5Jdk09GGyiQ GvF4LqtDhjerTkhr9dHt2GrZKYUbly2QJ29uohweLxu7JpCteWrtnA6cqwhV6ciX onAkJNALOsAkrEdsvlol/O9yvYWmM5gWae/EU7knj8Uh9FrLActl0LW4gbqMMh+N HlD8sSChlvCF1Og7T+CyFSYwmxrujuyfpmJvZF/4oA+yF86RGteovf7PgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLcacjP4/g7ARTT0+Ll3kN7lFF41MB8GA1UdIwQY MBaAFKCdZbkm/ddD2ltHPTQYX+EBsFooMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0oxbHVTYjkxMFBhVzBjOU5CaGY0UUd3V2lnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9jYmVjMzMtMDMyNS00MWU3LTgyNjYt NzlhN2VhYTdhZTU4LzEvb0oxbHVTYjkxMFBhVzBjOU5CaGY0UUd3V2lnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC9jYmVjMzMtMDMyNS00MWU3LTgyNjYtNzlhN2VhYTdhZTU4 LzEvb0oxbHVTYjkxMFBhVzBjOU5CaGY0UUd3V2lnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtrj/9Oha SLFSEA3h9Ccmr7f0306t9A8wYmjnEkuDY0Dp9NBDV9z2lbQbJWuP/CebC7Otr1jL nWz+M9CKzF/gI1hg8Sxjy3JioUhPZnjUZMTe7IjrVHRZnVdXr/X3cX4PlI2IgDXy rUrZX/m7XHNbC9/Z+bSLMrWGwNo9JE1et8ce2k6LHVVmE2/pIYzS85VWjdzF7yzm VlLSD11yMixKpL9IOr5GZm+8aCsAbbG3JYvstHDpZpMpNEx2e7U31sm7taBm8A1W pKI+1WtytgUpBB1KVvv39PlumNGnUA1dzkr+sKfVqKsrU+hokGTNHHkCTYsgHHue O4qP79bfmpW2vQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:20:54 2025 by rpki-client