This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft File: oAy0uNVpR3USzleIW6aiiY-8LZU.mft (raw, json) Hash identifier: 5cgEGHZefCL32SBTMKbAXd2ZEgz+eCKbHWxLfKmIhHw= Subject key identifier: 24:72:68:C7:9D:5A:6E:33:3E:0A:23:23:60:F8:02:AE:2A:78:F5:C9 Authority key identifier: A0:0C:B4:B8:D5:69:47:75:12:CE:57:88:5B:A6:A2:89:8F:BC:2D:95 Certificate issuer: /CN=a00cb4b8d569477512ce57885ba6a2898fbc2d95 Certificate serial: 019AF27704231DACD2A20D8463574003F72B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft Manifest number: 1269 Signing time: Sat 06 Dec 2025 07:01:17 +0000 Manifest this update: Sat 06 Dec 2025 07:01:17 +0000 Manifest next update: Sun 07 Dec 2025 07:01:17 +0000 Files and hashes: 1: RDMJmsptAt79z1bZNxCRYGoDbOA.roa (hash: psHiDB3pvgN7EOgCxCvfgOl6kkNmShVGm0R8glPdahE=) 2: oAy0uNVpR3USzleIW6aiiY-8LZU.crl (hash: BjCSHq05OcPg1gAsBMhrKv7V3rH9qeJSs8F660KbWIs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.crl rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:04:23:1d:ac:d2:a2:0d:84:63:57:40:03:f7:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a00cb4b8d569477512ce57885ba6a2898fbc2d95 Validity Not Before: Dec 6 07:01:17 2025 GMT Not After : Dec 7 07:01:17 2025 GMT Subject: CN=247268c79d5a6e333e0a232360f802ae2a78f5c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:80:06:93:b7:88:72:bc:1a:c8:86:40:31:26: 1b:73:d1:4e:66:6c:fa:a4:81:57:bd:3c:d8:cc:61: 7d:b5:b4:23:85:f9:53:ef:44:c7:c2:c7:c8:49:84: a3:48:db:c0:64:d4:88:31:7b:63:b2:3b:50:dc:61: fd:bf:06:3e:f3:4e:40:a1:17:26:26:d3:6c:3a:7d: 41:87:6c:af:32:cd:c7:5d:4b:25:77:8d:c6:88:95: 2e:c6:15:44:51:aa:37:d8:56:6f:dc:b5:69:93:7c: 8e:1a:13:b9:04:1b:7b:f2:4c:c4:15:4a:cc:b1:3b: 9a:78:2d:20:5d:a2:e6:d3:08:39:c6:6b:74:cb:89: a3:2e:96:a8:77:56:f5:6b:87:c2:92:0a:27:8c:95: 5b:f0:e6:ff:55:59:7c:ae:16:94:f5:d5:7f:b2:0e: ad:f8:39:19:17:61:1f:f3:ba:c1:73:d8:12:ab:0e: b3:8c:1d:6f:7e:3f:93:25:8d:47:bd:e8:52:da:a0: 31:17:b0:83:df:57:02:13:df:f1:43:ab:1b:75:b7: 80:7e:2e:90:9e:6d:f9:24:61:71:80:fe:bd:62:09: e9:91:b3:4f:f6:8e:8e:44:54:56:4f:91:71:2a:7c: 66:00:d9:0d:6b:06:88:a7:7d:a9:34:19:dd:86:2a: fb:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:72:68:C7:9D:5A:6E:33:3E:0A:23:23:60:F8:02:AE:2A:78:F5:C9 X509v3 Authority Key Identifier: keyid:A0:0C:B4:B8:D5:69:47:75:12:CE:57:88:5B:A6:A2:89:8F:BC:2D:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:0d:70:aa:b6:e5:cc:a8:ea:6a:e1:33:de:4d:9c:39:21:37: f4:a5:84:de:00:61:ac:af:a8:9e:87:7c:b4:18:82:7e:a2:b7: 7d:cb:ea:64:17:04:9c:5e:e1:ec:d3:e0:2e:cd:14:32:50:11: 18:70:54:ef:0c:6b:93:02:bc:99:31:99:9e:b9:da:79:df:4c: d8:80:cf:b9:dd:d3:0c:63:b3:c8:f8:6b:da:a2:5e:db:1b:fb: 6d:1f:e1:ac:24:21:52:26:e3:11:e8:8e:46:d7:77:ec:fd:ba: 19:f0:df:28:96:e1:50:4c:bd:eb:73:5b:23:e3:ee:fd:ee:11: c7:c0:e6:5f:b6:e6:fc:81:c8:cc:95:27:98:67:17:3b:63:db: 75:8a:11:2d:12:66:db:87:d3:3f:d0:8a:ba:54:3c:c8:e6:57: 1a:fd:26:38:17:c2:5f:af:6b:b6:f0:18:74:d1:6e:59:fc:b7: 37:af:4b:87:24:b3:7f:bf:f6:61:51:9d:4a:1c:11:3a:9c:83: da:5a:bb:fc:ef:50:a9:3d:d7:e3:e3:28:12:3f:dd:48:95:ba: af:57:b4:e4:55:27:35:ac:55:c6:c3:84:26:31:f5:80:13:a2: 10:c5:9d:db:dd:27:e8:55:bf:d1:58:18:e8:65:c8:d2:73:3e: 49:27:4e:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydwQjHazSog2EY1dAA/crMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwMGNiNGI4ZDU2OTQ3NzUxMmNlNTc4ODViYTZhMjg5OGZi YzJkOTUwHhcNMjUxMjA2MDcwMTE3WhcNMjUxMjA3MDcwMTE3WjAzMTEwLwYDVQQD EygyNDcyNjhjNzlkNWE2ZTMzM2UwYTIzMjM2MGY4MDJhZTJhNzhmNWM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzIAGk7eIcrwayIZAMSYbc9FOZmz6 pIFXvTzYzGF9tbQjhflT70THwsfISYSjSNvAZNSIMXtjsjtQ3GH9vwY+805AoRcm JtNsOn1Bh2yvMs3HXUsld43GiJUuxhVEUao32FZv3LVpk3yOGhO5BBt78kzEFUrM sTuaeC0gXaLm0wg5xmt0y4mjLpaod1b1a4fCkgonjJVb8Ob/VVl8rhaU9dV/sg6t +DkZF2Ef87rBc9gSqw6zjB1vfj+TJY1HvehS2qAxF7CD31cCE9/xQ6sbdbeAfi6Q nm35JGFxgP69YgnpkbNP9o6ORFRWT5FxKnxmANkNawaIp32pNBndhir76QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCRyaMedWm4zPgojI2D4Aq4qePXJMB8GA1UdIwQY MBaAFKAMtLjVaUd1Es5XiFumoomPvC2VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0F5MHVOVnBSM1VTemxlSVc2YWlpWS04TFpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9mOGZkNTktMDExNS00ZGIzLWJkODUt MThjNzBlYmY2ODFhLzEvb0F5MHVOVnBSM1VTemxlSVc2YWlpWS04TFpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9mOGZkNTktMDExNS00ZGIzLWJkODUtMThjNzBlYmY2ODFh LzEvb0F5MHVOVnBSM1VTemxlSVc2YWlpWS04TFpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUg1wqrbl zKjqauEz3k2cOSE39KWE3gBhrK+onod8tBiCfqK3fcvqZBcEnF7h7NPgLs0UMlAR GHBU7wxrkwK8mTGZnrnaed9M2IDPud3TDGOzyPhr2qJe2xv7bR/hrCQhUibjEeiO Rtd37P26GfDfKJbhUEy963NbI+Pu/e4Rx8DmX7bm/IHIzJUnmGcXO2PbdYoRLRJm 24fTP9CKulQ8yOZXGv0mOBfCX69rtvAYdNFuWfy3N69LhySzf7/2YVGdShwROpyD 2lq7/O9QqT3X4+MoEj/dSJW6r1e05FUnNaxVxsOEJjH1gBOiEMWd290n6FW/0VgY 6GXI0nM+SSdOxg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:14:36 2025 by rpki-client