This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft File: oILdW4b5WNW-c_2-PwzPbf8C9yE.mft (raw, json) Hash identifier: O96ZGp2AzmQ8AxxA+CEJeM74K+CeH7JB35uGCgH2rak= Subject key identifier: DC:04:31:14:C3:E0:FD:35:F0:1A:59:CE:F3:17:84:C8:76:E3:D8:84 Authority key identifier: A0:82:DD:5B:86:F9:58:D5:BE:73:FD:BE:3F:0C:CF:6D:FF:02:F7:21 Certificate issuer: /CN=a082dd5b86f958d5be73fdbe3f0ccf6dff02f721 Certificate serial: 019AF2765D48A4243A8C3BAEA3F914DD9B9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oILdW4b5WNW-c_2-PwzPbf8C9yE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 07:00:34 +0000 Manifest this update: Sat 06 Dec 2025 07:00:34 +0000 Manifest next update: Sun 07 Dec 2025 07:00:34 +0000 Files and hashes: 1: PKIB0NDZswSqU-d6MbwA9JZfGMk.roa (hash: OewUcdT2Rw4jRK7U2p1ljpQHoVklDy1bcntiR+wXIOw=) 2: oILdW4b5WNW-c_2-PwzPbf8C9yE.crl (hash: KwYQIxr/yjXZdMmbd7CIUSijk/E4cgK5A57JbupUIFg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.crl rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft rsync://rpki.ripe.net/repository/DEFAULT/oILdW4b5WNW-c_2-PwzPbf8C9yE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:5d:48:a4:24:3a:8c:3b:ae:a3:f9:14:dd:9b:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a082dd5b86f958d5be73fdbe3f0ccf6dff02f721 Validity Not Before: Dec 6 07:00:34 2025 GMT Not After : Dec 7 07:00:34 2025 GMT Subject: CN=dc043114c3e0fd35f01a59cef31784c876e3d884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:29:29:68:63:81:b4:2a:27:95:52:51:3b:13: 58:9e:4a:49:47:4c:68:72:63:ab:73:e8:8e:72:df: e7:64:ca:4f:90:ca:bc:9c:67:52:58:c8:35:78:a3: 86:5f:39:9f:b7:c7:95:79:f8:93:f3:41:07:4a:57: 4f:ef:6d:6a:3a:36:b0:7f:a7:14:e0:c8:ca:b9:57: f4:2a:7c:13:e5:72:8f:b8:df:27:95:9c:d8:b4:48: c6:7f:5d:1c:e5:14:d5:00:d8:91:5c:fb:58:ec:93: b3:b2:f6:61:a3:eb:e9:52:86:46:91:9b:10:a2:19: d1:e2:b5:0a:8d:74:40:89:f1:f3:02:ea:5d:ba:c4: 7e:74:9e:98:e7:a9:23:cb:4e:d6:5d:99:96:c3:3a: 03:66:18:0f:9a:52:1a:39:ca:69:13:6b:9a:55:a0: 32:9a:fa:07:95:50:72:df:60:cf:3e:b0:cd:3b:04: 42:7a:01:8c:16:41:39:28:5d:b5:da:1d:46:39:84: 5c:78:5d:1a:b0:65:14:88:6c:a4:ab:b7:fb:2a:58: 1a:32:3f:fa:a7:a7:4e:b8:8b:44:c9:16:07:89:68: 3f:fd:3e:3d:82:6e:52:08:6f:1a:11:b4:2c:98:ac: 44:81:e1:3e:03:08:ef:21:4c:bb:c9:d3:6b:b7:ab: 9d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:04:31:14:C3:E0:FD:35:F0:1A:59:CE:F3:17:84:C8:76:E3:D8:84 X509v3 Authority Key Identifier: keyid:A0:82:DD:5B:86:F9:58:D5:BE:73:FD:BE:3F:0C:CF:6D:FF:02:F7:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oILdW4b5WNW-c_2-PwzPbf8C9yE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:b6:a8:85:15:66:6d:98:5c:8c:e0:01:c2:c6:03:95:79:e5: e3:c4:fe:5b:fd:88:a4:0d:37:73:3a:21:81:a5:e4:22:2d:89: f9:0d:cf:1e:49:a2:1e:9f:ad:db:48:a9:3c:60:84:39:1e:a1: f7:1d:81:d7:56:fc:25:11:20:2c:98:31:bb:c0:cc:36:00:c3: f1:52:49:cd:8f:75:a2:45:41:21:98:54:a4:db:86:a7:69:da: 31:05:af:8c:6c:44:f4:35:b2:4e:8b:a6:7f:93:e2:19:53:e8: 12:0f:59:d8:78:14:5c:b7:1f:75:dd:fb:42:16:4c:26:a9:f9: 48:88:1f:8f:c6:89:93:21:7b:53:fa:28:a1:5e:15:d3:a9:a6: 98:14:d5:47:65:32:7b:84:7f:a2:28:c9:49:82:0d:55:b6:6b: f4:9d:f0:04:c5:50:f9:eb:a5:66:f2:3a:c5:ad:0d:ef:7b:67: e1:79:c5:fa:48:5e:d3:50:02:91:fe:05:ff:0f:1f:5f:88:72: 7d:0a:05:a8:af:07:38:ec:77:8f:8f:c8:aa:50:6b:79:a0:c5: 57:42:3b:9f:5f:5b:6f:75:f9:5e:f0:31:55:42:b2:c5:4f:15: 70:76:a2:92:4a:fb:ca:27:25:c4:b7:97:2e:5d:4f:f3:37:a1: 2a:7d:47:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydl1IpCQ6jDuuo/kU3ZudMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwODJkZDViODZmOTU4ZDViZTczZmRiZTNmMGNjZjZkZmYw MmY3MjEwHhcNMjUxMjA2MDcwMDM0WhcNMjUxMjA3MDcwMDM0WjAzMTEwLwYDVQQD EyhkYzA0MzExNGMzZTBmZDM1ZjAxYTU5Y2VmMzE3ODRjODc2ZTNkODg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnCkpaGOBtConlVJROxNYnkpJR0xo cmOrc+iOct/nZMpPkMq8nGdSWMg1eKOGXzmft8eVefiT80EHSldP721qOjawf6cU 4MjKuVf0KnwT5XKPuN8nlZzYtEjGf10c5RTVANiRXPtY7JOzsvZho+vpUoZGkZsQ ohnR4rUKjXRAifHzAupdusR+dJ6Y56kjy07WXZmWwzoDZhgPmlIaOcppE2uaVaAy mvoHlVBy32DPPrDNOwRCegGMFkE5KF212h1GOYRceF0asGUUiGykq7f7KlgaMj/6 p6dOuItEyRYHiWg//T49gm5SCG8aEbQsmKxEgeE+AwjvIUy7ydNrt6udAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNwEMRTD4P018BpZzvMXhMh249iEMB8GA1UdIwQY MBaAFKCC3VuG+VjVvnP9vj8Mz23/AvchMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0lMZFc0YjVXTlctY18yLVB3elBiZjhDOXlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC83Mjc5ZDYtZjk1Mi00ZTM1LTk3OTYt ZjMwM2RlNGEyZDVlLzEvb0lMZFc0YjVXTlctY18yLVB3elBiZjhDOXlFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC83Mjc5ZDYtZjk1Mi00ZTM1LTk3OTYtZjMwM2RlNGEyZDVl LzEvb0lMZFc0YjVXTlctY18yLVB3elBiZjhDOXlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO7aohRVm bZhcjOABwsYDlXnl48T+W/2IpA03czohgaXkIi2J+Q3PHkmiHp+t20ipPGCEOR6h 9x2B11b8JREgLJgxu8DMNgDD8VJJzY91okVBIZhUpNuGp2naMQWvjGxE9DWyToum f5PiGVPoEg9Z2HgUXLcfdd37QhZMJqn5SIgfj8aJkyF7U/oooV4V06mmmBTVR2Uy e4R/oijJSYINVbZr9J3wBMVQ+eulZvI6xa0N73tn4XnF+khe01ACkf4F/w8fX4hy fQoFqK8HOOx3j4/IqlBreaDFV0I7n19bb3X5XvAxVUKyxU8VcHaikkr7yiclxLeX Ll1P8zehKn1HDA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:44:06 2025 by rpki-client