This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft File: dlOpinSeVpdEoe3iyUDy5DPEQIo.mft (raw, json) Hash identifier: Nb4I9QMNV3dJ7TpGsTtjRvpAGvrYbQwTB2de9dPG+no= Subject key identifier: FD:25:72:83:C8:7F:A2:AB:9D:32:1E:A5:D6:BD:28:70:73:82:ED:FD Authority key identifier: 76:53:A9:8A:74:9E:56:97:44:A1:ED:E2:C9:40:F2:E4:33:C4:40:8A Certificate issuer: /CN=7653a98a749e569744a1ede2c940f2e433c4408a Certificate serial: 019AF20964BF13F7CDD2BFF8B3B9D61DCC5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft Manifest number: 0AF2 Signing time: Sat 06 Dec 2025 05:01:33 +0000 Manifest this update: Sat 06 Dec 2025 05:01:33 +0000 Manifest next update: Sun 07 Dec 2025 05:01:33 +0000 Files and hashes: 1: 5-5dw7BQUILpSuBDRasWi_TUWvo.roa (hash: hm9ysYElh3sbrH5I7xkNigsOqhpocQkIVZkL8ahr+uU=) 2: dlOpinSeVpdEoe3iyUDy5DPEQIo.crl (hash: 1Rq/8bqpk8l3LtTqV7+KjHunWZL1LOKwgPEhbKLFnaI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:64:bf:13:f7:cd:d2:bf:f8:b3:b9:d6:1d:cc:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7653a98a749e569744a1ede2c940f2e433c4408a Validity Not Before: Dec 6 05:01:33 2025 GMT Not After : Dec 7 05:01:33 2025 GMT Subject: CN=fd257283c87fa2ab9d321ea5d6bd28707382edfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:33:77:17:f6:4c:29:17:76:d5:a7:10:c1:bd: 29:35:99:ca:60:9f:77:56:bd:a6:c4:5f:92:0a:71: 4e:09:e2:e7:b2:29:01:ec:43:1b:fa:ad:65:62:1a: 35:ff:9b:d2:cb:d9:7c:b4:de:e1:9d:66:38:ab:5e: c0:19:72:a6:a9:24:4b:6e:4d:aa:2b:4e:10:6a:af: 49:4a:1e:e6:f7:6b:14:ad:94:84:52:50:e7:cd:21: df:02:2e:44:ce:4b:ed:d8:db:52:d1:a9:7b:9c:78: 33:e4:e8:29:6c:b0:22:34:e5:52:2e:d2:d4:bf:77: d2:18:70:86:a7:62:09:d4:a8:b0:80:53:8e:29:bc: b0:73:c9:39:61:ce:0a:1e:6d:b9:b2:6b:6b:60:ce: fc:6d:05:a4:01:8a:e5:54:88:2a:b0:8e:37:17:73: 11:bc:d0:b7:dc:8e:80:1a:90:d5:24:f4:58:12:5f: 68:37:be:7f:ac:a4:69:a1:25:60:74:9a:05:e6:67: 57:8b:c1:ba:3c:02:a8:46:1e:35:62:fe:b6:72:fe: 92:59:09:6f:69:ad:62:fb:11:a0:8c:f6:d5:9c:08: e3:5f:6f:a5:af:a3:b7:71:1a:91:99:87:7f:12:67: 7f:70:1f:8f:2f:7c:61:86:c7:92:85:70:f6:0d:06: ef:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:25:72:83:C8:7F:A2:AB:9D:32:1E:A5:D6:BD:28:70:73:82:ED:FD X509v3 Authority Key Identifier: keyid:76:53:A9:8A:74:9E:56:97:44:A1:ED:E2:C9:40:F2:E4:33:C4:40:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dlOpinSeVpdEoe3iyUDy5DPEQIo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/861592-b1c2-495f-b5a1-b9dc2f2b002c/1/dlOpinSeVpdEoe3iyUDy5DPEQIo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:5a:dc:6f:0d:f5:76:a3:73:4e:51:e7:a7:04:db:49:35:ce: 44:a9:c8:ef:4e:5b:6a:68:a9:eb:93:3a:c4:4b:73:7e:73:47: 88:b4:f7:0f:de:79:d7:a4:01:9a:da:01:13:b3:de:47:77:83: e2:47:04:4a:d3:0c:15:e8:46:eb:70:8d:bc:db:c2:85:b9:1a: 68:b8:05:fa:44:14:8a:88:f2:5b:62:2c:5d:3b:91:c0:ad:be: 07:97:24:95:2b:14:53:0b:44:c0:78:df:6a:a5:52:1f:ac:34: a3:06:2c:c5:af:6e:27:be:25:f2:c1:42:03:1f:3a:eb:36:53: c0:3b:90:b1:7d:f5:8d:50:1d:57:26:92:1c:0c:fd:d9:1d:8b: 36:3d:e8:80:11:23:b4:d7:1f:4a:8a:ef:3b:c9:c1:7a:80:8b: 91:2d:5f:32:a5:56:53:ec:f0:1b:a1:b0:ee:d6:7e:b2:f0:ef: f5:c9:e5:2a:90:d3:2e:20:da:97:d1:b7:a3:cf:61:9d:6c:1b: e3:24:85:f5:d0:e7:ae:23:9e:f0:2e:8c:d4:86:df:dd:52:3f: c6:5f:73:7e:7b:d0:b9:d3:b2:34:68:f9:f6:4c:b0:6c:d3:f8: ea:eb:81:16:23:df:4e:78:4f:f1:52:64:9b:79:e0:da:1f:0b: c4:41:db:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCWS/E/fN0r/4s7nWHcxeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2NTNhOThhNzQ5ZTU2OTc0NGExZWRlMmM5NDBmMmU0MzNj NDQwOGEwHhcNMjUxMjA2MDUwMTMzWhcNMjUxMjA3MDUwMTMzWjAzMTEwLwYDVQQD EyhmZDI1NzI4M2M4N2ZhMmFiOWQzMjFlYTVkNmJkMjg3MDczODJlZGZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDN3F/ZMKRd21acQwb0pNZnKYJ93 Vr2mxF+SCnFOCeLnsikB7EMb+q1lYho1/5vSy9l8tN7hnWY4q17AGXKmqSRLbk2q K04Qaq9JSh7m92sUrZSEUlDnzSHfAi5Ezkvt2NtS0al7nHgz5OgpbLAiNOVSLtLU v3fSGHCGp2IJ1KiwgFOOKbywc8k5Yc4KHm25smtrYM78bQWkAYrlVIgqsI43F3MR vNC33I6AGpDVJPRYEl9oN75/rKRpoSVgdJoF5mdXi8G6PAKoRh41Yv62cv6SWQlv aa1i+xGgjPbVnAjjX2+lr6O3cRqRmYd/Emd/cB+PL3xhhseShXD2DQbv+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP0lcoPIf6KrnTIepda9KHBzgu39MB8GA1UdIwQY MBaAFHZTqYp0nlaXRKHt4slA8uQzxECKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGxPcGluU2VWcGRFb2UzaXlVRHk1RFBFUUlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS84NjE1OTItYjFjMi00OTVmLWI1YTEt YjlkYzJmMmIwMDJjLzEvZGxPcGluU2VWcGRFb2UzaXlVRHk1RFBFUUlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS84NjE1OTItYjFjMi00OTVmLWI1YTEtYjlkYzJmMmIwMDJj LzEvZGxPcGluU2VWcGRFb2UzaXlVRHk1RFBFUUlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZVrcbw31 dqNzTlHnpwTbSTXORKnI705bamip65M6xEtzfnNHiLT3D95516QBmtoBE7PeR3eD 4kcEStMMFehG63CNvNvChbkaaLgF+kQUiojyW2IsXTuRwK2+B5cklSsUUwtEwHjf aqVSH6w0owYsxa9uJ74l8sFCAx866zZTwDuQsX31jVAdVyaSHAz92R2LNj3ogBEj tNcfSorvO8nBeoCLkS1fMqVWU+zwG6Gw7tZ+svDv9cnlKpDTLiDal9G3o89hnWwb 4ySF9dDnriOe8C6M1Ibf3VI/xl9zfnvQudOyNGj59kywbNP46uuBFiPfTnhP8VJk m3ng2h8LxEHbyA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:56:17 2025 by rpki-client