This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft File: OjSIklHnyxM-kGxwiRuhoEle2GA.mft (raw, json) Hash identifier: Xukck/45Wk+H7jcdN3pLramfPHyXkPW1Rjtof9wEuD0= Subject key identifier: CE:28:BB:9A:21:72:2B:70:78:C7:92:DD:CF:87:C8:46:C1:09:F0:2F Authority key identifier: 3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60 Certificate issuer: /CN=3a34889251e7cb133e906c70891ba1a0495ed860 Certificate serial: 019AF3894FF0F5D0B6B8D31E4B451B2918A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft Manifest number: 0EFE Signing time: Sat 06 Dec 2025 12:00:53 +0000 Manifest this update: Sat 06 Dec 2025 12:00:53 +0000 Manifest next update: Sun 07 Dec 2025 12:00:53 +0000 Files and hashes: 1: E8pnZAwdco6rqZPYbTvktaE1H_E.roa (hash: mJU1Xr9YV7h0pCMVQKe6h9rLN6ylm3PlXlO/99QSzGM=) 2: OjSIklHnyxM-kGxwiRuhoEle2GA.crl (hash: Jj7SYmkuZvSSzdiGusNhe5+Eu9dNsni3MADjqJsJkvo=) 3: PosgbjBEN3JIZPm6yklNyzwEmB8.roa (hash: LxPaPYdBVWlHlKrzs8JwxQbkpaWJXSY0yo3gaOhFHFk=) 4: iYqIMSLhd13kAtHmsyVRJLCRELQ.roa (hash: Sy2brI825JIDwfnRYmv5+hBpQhClnbRKdRnTs+cKh/c=) 5: trRwMwj1TozbbVDdJBYsUBjss8A.roa (hash: R2jnNGJ/7Zo+ytylzMHKu/XH3p37UtlobvuFEWQLQHM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:4f:f0:f5:d0:b6:b8:d3:1e:4b:45:1b:29:18:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a34889251e7cb133e906c70891ba1a0495ed860 Validity Not Before: Dec 6 12:00:53 2025 GMT Not After : Dec 7 12:00:53 2025 GMT Subject: CN=ce28bb9a21722b7078c792ddcf87c846c109f02f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:25:84:cf:49:df:3b:76:87:e3:d3:8a:ae:f3: b4:48:db:7f:96:29:55:b9:0d:82:e1:32:81:09:ef: ec:8e:a8:cf:90:be:f6:10:06:e3:4f:6e:3e:87:b3: ea:7b:a3:a2:ee:bf:8f:19:54:ef:ae:03:37:c4:22: 0c:95:56:a1:0a:77:cf:a6:24:ac:ea:3f:a3:59:b0: 96:dc:a2:3e:70:c4:75:11:39:29:ad:39:20:e2:63: 7a:fb:a1:55:57:dd:19:69:d6:8d:51:11:1e:65:1c: ae:47:54:85:db:f9:5e:0a:31:6a:9e:4f:5b:60:ab: f2:b1:a5:fc:7f:62:8d:59:84:d8:62:23:1a:98:d5: 1b:c1:98:91:29:a3:2c:f0:4e:6e:01:81:e0:77:bb: 4b:11:6b:5d:d1:c4:27:ed:98:fc:ac:e6:ca:00:f9: df:af:5d:65:1a:6c:74:8c:eb:0d:10:ce:5a:b8:8d: bc:57:7b:6c:7b:67:c1:48:51:37:fb:ad:52:8e:a4: b3:2a:a4:30:cf:13:5e:01:db:ac:26:b7:2f:e5:ee: fd:1d:a2:be:37:44:96:3e:76:18:92:c1:32:6e:e2: 85:78:06:d7:9d:a2:fb:b9:81:10:05:86:2c:dd:3b: 47:d2:f9:7e:06:e1:3d:74:fd:17:28:80:af:8a:2b: 6c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:28:BB:9A:21:72:2B:70:78:C7:92:DD:CF:87:C8:46:C1:09:F0:2F X509v3 Authority Key Identifier: keyid:3A:34:88:92:51:E7:CB:13:3E:90:6C:70:89:1B:A1:A0:49:5E:D8:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OjSIklHnyxM-kGxwiRuhoEle2GA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/91182a-f34b-4a15-b363-84f9ed87ac31/1/OjSIklHnyxM-kGxwiRuhoEle2GA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:b3:4b:0f:26:16:8d:fb:41:27:4c:09:98:32:b0:d9:d7:8b: 91:75:4b:25:73:29:16:df:df:bb:b3:c3:0e:b4:ad:35:cf:72: bd:a0:5a:f2:58:48:73:de:e8:31:85:d7:fe:d8:27:33:b5:16: 87:f5:73:d1:80:63:ae:f3:d8:08:40:a7:3e:94:9e:50:b2:f9: b3:17:66:2e:84:bb:76:1b:ec:44:ac:6a:d2:52:16:97:88:6d: ac:99:1f:8e:ef:af:92:8f:c9:e6:49:33:e8:ae:a6:6d:60:2d: 52:95:86:65:6b:82:a2:cb:a9:4d:a5:be:0d:f6:45:43:1b:ba: e9:db:60:17:a6:83:4a:87:c3:5d:eb:72:8e:ea:5a:94:96:5c: c8:b5:ee:63:09:79:5b:bb:44:48:f2:bf:1b:86:99:e1:95:f2: 71:2c:bd:f6:70:dc:a4:63:97:4e:45:48:50:76:05:8c:c9:af: 6d:09:bb:f2:10:fc:78:d3:21:59:65:e6:65:24:2b:e3:05:3a: b6:b3:f7:ea:02:3e:36:f7:00:a0:32:9d:78:9a:fb:39:1a:87: cc:76:3f:71:2a:15:93:37:06:64:fd:0a:50:20:41:39:c6:08: aa:20:dc:e6:15:a6:14:13:cf:46:c3:41:d6:1d:47:e3:15:9c: 15:06:47:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziU/w9dC2uNMeS0UbKRiiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhMzQ4ODkyNTFlN2NiMTMzZTkwNmM3MDg5MWJhMWEwNDk1 ZWQ4NjAwHhcNMjUxMjA2MTIwMDUzWhcNMjUxMjA3MTIwMDUzWjAzMTEwLwYDVQQD EyhjZTI4YmI5YTIxNzIyYjcwNzhjNzkyZGRjZjg3Yzg0NmMxMDlmMDJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzCWEz0nfO3aH49OKrvO0SNt/lilV uQ2C4TKBCe/sjqjPkL72EAbjT24+h7Pqe6Oi7r+PGVTvrgM3xCIMlVahCnfPpiSs 6j+jWbCW3KI+cMR1ETkprTkg4mN6+6FVV90ZadaNUREeZRyuR1SF2/leCjFqnk9b YKvysaX8f2KNWYTYYiMamNUbwZiRKaMs8E5uAYHgd7tLEWtd0cQn7Zj8rObKAPnf r11lGmx0jOsNEM5auI28V3tse2fBSFE3+61SjqSzKqQwzxNeAdusJrcv5e79HaK+ N0SWPnYYksEybuKFeAbXnaL7uYEQBYYs3TtH0vl+BuE9dP0XKICviitsXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM4ou5ohcitweMeS3c+HyEbBCfAvMB8GA1UdIwQY MBaAFDo0iJJR58sTPpBscIkboaBJXthgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2pTSWtsSG55eE0ta0d4d2lSdWhvRWxlMkdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS85MTE4MmEtZjM0Yi00YTE1LWIzNjMt ODRmOWVkODdhYzMxLzEvT2pTSWtsSG55eE0ta0d4d2lSdWhvRWxlMkdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS85MTE4MmEtZjM0Yi00YTE1LWIzNjMtODRmOWVkODdhYzMx LzEvT2pTSWtsSG55eE0ta0d4d2lSdWhvRWxlMkdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIbNLDyYW jftBJ0wJmDKw2deLkXVLJXMpFt/fu7PDDrStNc9yvaBa8lhIc97oMYXX/tgnM7UW h/Vz0YBjrvPYCECnPpSeULL5sxdmLoS7dhvsRKxq0lIWl4htrJkfju+vko/J5kkz 6K6mbWAtUpWGZWuCosupTaW+DfZFQxu66dtgF6aDSofDXetyjupalJZcyLXuYwl5 W7tESPK/G4aZ4ZXycSy99nDcpGOXTkVIUHYFjMmvbQm78hD8eNMhWWXmZSQr4wU6 trP36gI+NvcAoDKdeJr7ORqHzHY/cSoVkzcGZP0KUCBBOcYIqiDc5hWmFBPPRsNB 1h1H4xWcFQZHOw== -----END CERTIFICATE-----Generated at Sat Dec 6 16:11:50 2025 by rpki-client