This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft File: oE3odQHH0wgsdmWfTevZQohDtMs.mft (raw, json) Hash identifier: CdVZZXIY91fx3XQouFvawhxXaKnxhkqo6t7NJu0bDpA= Subject key identifier: 22:CC:EC:60:55:7D:63:8D:E8:4E:1B:1F:71:1B:95:00:D7:5A:B9:AF Authority key identifier: A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB Certificate issuer: /CN=a04de87501c7d3082c76659f4debd9428843b4cb Certificate serial: 019AF2094BCBD8FCFB2FE0724306494CEB0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft Manifest number: 1344 Signing time: Sat 06 Dec 2025 05:01:26 +0000 Manifest this update: Sat 06 Dec 2025 05:01:26 +0000 Manifest next update: Sun 07 Dec 2025 05:01:26 +0000 Files and hashes: 1: 3oKx6h0eBr3yZ2nfockvN65K1_o.roa (hash: geWao+6sgTP3cLFpfRuFIKY1lyLCLqYJA9Pcg4p46Gs=) 2: oE3odQHH0wgsdmWfTevZQohDtMs.crl (hash: +a4XCYsnAwP+sZTXdYq8T6gC23qjBv+Uriw8NorNjr8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:4b:cb:d8:fc:fb:2f:e0:72:43:06:49:4c:eb:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a04de87501c7d3082c76659f4debd9428843b4cb Validity Not Before: Dec 6 05:01:26 2025 GMT Not After : Dec 7 05:01:26 2025 GMT Subject: CN=22ccec60557d638de84e1b1f711b9500d75ab9af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:45:8c:c1:c6:fb:9f:48:71:9e:49:f8:49:45: 25:d2:cb:a0:e8:50:c2:3f:ff:28:e8:d4:b9:97:67: a2:ce:ea:59:f9:8f:0b:44:a1:72:e6:15:e9:4c:20: 6f:4e:6a:c1:57:8d:80:54:cb:7e:2d:c8:ba:de:4b: 02:ea:71:9d:69:ad:15:96:07:63:60:24:3a:a6:fd: e1:39:f9:c7:e1:45:8a:06:97:a3:56:ab:03:bb:67: 46:a6:f0:63:b0:48:3d:38:ef:14:ef:29:3b:2b:27: 63:93:33:66:92:6e:08:03:5f:b8:2a:cb:01:90:5d: 2e:fa:56:06:89:8f:ab:c5:ca:2a:1e:f7:76:7a:f4: 53:2e:5b:ec:44:ef:aa:93:74:3b:50:1f:b0:8d:08: a7:ca:74:14:54:2f:22:aa:4c:08:5a:6d:3c:12:7f: 71:49:66:0e:99:90:5e:69:7c:c2:bb:16:96:14:a0: 83:2e:06:68:00:8b:bf:79:fa:da:c2:ff:a2:e8:35: 3c:2a:23:93:4f:ad:a8:d2:d3:c8:ae:4c:02:f5:d7: 16:43:4e:b6:bb:8b:a5:ba:b6:7a:e3:0e:d3:f1:c5: 26:db:d8:1f:79:62:80:20:a8:70:9e:c2:e1:ed:fe: d5:3c:33:e3:8b:a9:54:0c:fd:9d:e0:14:d0:0f:32: 5c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:CC:EC:60:55:7D:63:8D:E8:4E:1B:1F:71:1B:95:00:D7:5A:B9:AF X509v3 Authority Key Identifier: keyid:A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:87:51:cb:76:35:fc:f1:52:16:d2:9d:ca:c0:85:87:5d:85: e7:a3:2c:d4:ac:04:48:bf:eb:d1:94:2f:18:28:9f:c2:68:1f: 2b:45:29:6e:51:7b:c4:42:04:6d:b3:4f:db:61:2a:52:39:bf: 8e:8b:01:65:dc:af:13:70:f1:31:43:ea:0d:e0:6b:6f:50:0c: 6a:ab:77:e8:2d:40:7b:da:07:e6:7a:4e:20:b0:e2:da:14:e3: d0:22:c4:ea:08:59:c0:55:23:57:9a:ec:65:b2:e2:c8:c9:94: ba:56:d1:dd:bc:9d:78:ab:44:f0:21:00:6d:b1:08:ed:d0:3e: 46:21:db:67:68:b0:3a:d2:50:b8:5d:ae:7a:a3:ba:3a:89:82: cd:ef:dd:b4:7f:75:3c:a9:8b:80:15:64:86:4c:77:24:f3:ce: cd:0c:11:c8:bd:29:79:91:2d:78:a8:f8:5e:5e:6d:8b:be:aa: 31:27:3d:89:39:d7:4a:3c:ca:50:c0:e6:c8:7a:9d:93:6b:98: 8a:7d:9e:8f:e4:ac:cc:30:bf:fb:67:99:c5:05:95:43:82:c2: c3:15:66:e9:b1:80:65:d1:7e:4f:13:06:b6:8b:74:8a:8a:ae: b5:5b:48:03:fb:30:a4:16:42:c9:6e:e5:55:26:fe:2b:dd:4e: d1:66:a1:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCUvL2Pz7L+ByQwZJTOsLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwNGRlODc1MDFjN2QzMDgyYzc2NjU5ZjRkZWJkOTQyODg0 M2I0Y2IwHhcNMjUxMjA2MDUwMTI2WhcNMjUxMjA3MDUwMTI2WjAzMTEwLwYDVQQD EygyMmNjZWM2MDU1N2Q2MzhkZTg0ZTFiMWY3MTFiOTUwMGQ3NWFiOWFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxkWMwcb7n0hxnkn4SUUl0sug6FDC P/8o6NS5l2eizupZ+Y8LRKFy5hXpTCBvTmrBV42AVMt+Lci63ksC6nGdaa0Vlgdj YCQ6pv3hOfnH4UWKBpejVqsDu2dGpvBjsEg9OO8U7yk7KydjkzNmkm4IA1+4KssB kF0u+lYGiY+rxcoqHvd2evRTLlvsRO+qk3Q7UB+wjQinynQUVC8iqkwIWm08En9x SWYOmZBeaXzCuxaWFKCDLgZoAIu/efrawv+i6DU8KiOTT62o0tPIrkwC9dcWQ062 u4ulurZ64w7T8cUm29gfeWKAIKhwnsLh7f7VPDPji6lUDP2d4BTQDzJctwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCLM7GBVfWON6E4bH3EblQDXWrmvMB8GA1UdIwQY MBaAFKBN6HUBx9MILHZln03r2UKIQ7TLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0Uzb2RRSEgwd2dzZG1XZlRldlpRb2hEdE1zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS80NjVjOTAtNzBmYi00MDE1LWI5Njkt NzQ4Zjc4NzgzODhhLzEvb0Uzb2RRSEgwd2dzZG1XZlRldlpRb2hEdE1zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS80NjVjOTAtNzBmYi00MDE1LWI5NjktNzQ4Zjc4NzgzODhh LzEvb0Uzb2RRSEgwd2dzZG1XZlRldlpRb2hEdE1zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIodRy3Y1 /PFSFtKdysCFh12F56Ms1KwESL/r0ZQvGCifwmgfK0UpblF7xEIEbbNP22EqUjm/ josBZdyvE3DxMUPqDeBrb1AMaqt36C1Ae9oH5npOILDi2hTj0CLE6ghZwFUjV5rs ZbLiyMmUulbR3bydeKtE8CEAbbEI7dA+RiHbZ2iwOtJQuF2ueqO6OomCze/dtH91 PKmLgBVkhkx3JPPOzQwRyL0peZEteKj4Xl5ti76qMSc9iTnXSjzKUMDmyHqdk2uY in2ej+SszDC/+2eZxQWVQ4LCwxVm6bGAZdF+TxMGtot0ioqutVtIA/swpBZCyW7l VSb+K91O0WahdQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:12:33 2025 by rpki-client