This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft File: os1DAbKJXx2YqFDlic58BjxTn00.mft (raw, json) Hash identifier: +/KCwpd0M+i9xbwYWZmpXaEHHJxrEbhuwvj+ln0HzrE= Subject key identifier: 83:92:5E:CA:C3:C4:3E:83:BD:D4:1D:91:5F:E0:E4:89:87:66:93:08 Authority key identifier: A2:CD:43:01:B2:89:5F:1D:98:A8:50:E5:89:CE:7C:06:3C:53:9F:4D Certificate issuer: /CN=a2cd4301b2895f1d98a850e589ce7c063c539f4d Certificate serial: 019AF164256E606CB43077CF8B1657FA8FB3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/os1DAbKJXx2YqFDlic58BjxTn00.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft Manifest number: 12C6 Signing time: Sat 06 Dec 2025 02:01:03 +0000 Manifest this update: Sat 06 Dec 2025 02:01:03 +0000 Manifest next update: Sun 07 Dec 2025 02:01:03 +0000 Files and hashes: 1: KAKz0xo2XXEBIDI7U4s2tUakP98.roa (hash: nzwZHLIuL4E1A+Jcxn7qeWA8mqGxoFVori2v9JbkLPE=) 2: os1DAbKJXx2YqFDlic58BjxTn00.crl (hash: GXSWu4vTo5ZeeSdSZEpDyD1qOmHriJjPsFGlgFjYvY8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.crl rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft rsync://rpki.ripe.net/repository/DEFAULT/os1DAbKJXx2YqFDlic58BjxTn00.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:25:6e:60:6c:b4:30:77:cf:8b:16:57:fa:8f:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2cd4301b2895f1d98a850e589ce7c063c539f4d Validity Not Before: Dec 6 02:01:03 2025 GMT Not After : Dec 7 02:01:03 2025 GMT Subject: CN=83925ecac3c43e83bdd41d915fe0e48987669308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a7:88:4d:c6:d8:7f:b5:02:14:70:a0:29:31: 2b:4e:0d:b9:aa:b5:42:e0:f2:2f:dd:66:d5:52:a5: 52:c1:0a:c0:8a:cd:c4:59:22:32:4d:54:6c:8b:3b: 5b:10:64:33:86:f6:d3:a2:90:48:6f:48:94:ff:4e: 7b:22:16:39:8b:35:67:44:c7:6d:58:9d:09:77:19: 48:1b:16:0e:ec:ba:81:e7:1c:51:d2:bb:d7:6b:c1: 19:66:dd:d6:10:87:3d:c5:c6:3c:de:32:06:57:8a: ab:6d:93:d8:0c:15:4c:32:6f:0a:ad:2f:13:d1:fe: 51:bf:00:97:fa:d0:4d:09:13:4b:b2:1f:dc:64:c9: 48:85:11:b3:8d:6c:2b:00:50:8d:76:23:d0:41:7c: 96:4d:96:70:6c:b0:8c:03:86:41:8f:cb:3f:da:2e: 73:d9:cf:f4:6a:8e:b3:65:25:92:a1:60:3d:6f:0c: 4f:61:1b:1d:7c:71:52:0b:e1:a6:33:14:df:6f:51: 96:3b:22:f0:ef:f4:bd:7a:27:1c:cf:a8:39:0f:16: df:da:ec:c7:30:b4:f5:4f:04:5a:c7:3d:8f:e5:f3: 32:9b:0e:a1:d2:4d:6c:3b:d3:eb:51:c8:8a:89:e1: f4:13:3a:26:1c:1e:4f:19:f8:ca:da:ea:95:db:05: 0b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:92:5E:CA:C3:C4:3E:83:BD:D4:1D:91:5F:E0:E4:89:87:66:93:08 X509v3 Authority Key Identifier: keyid:A2:CD:43:01:B2:89:5F:1D:98:A8:50:E5:89:CE:7C:06:3C:53:9F:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/os1DAbKJXx2YqFDlic58BjxTn00.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:3b:93:6f:45:67:26:07:12:22:a5:a7:45:8d:28:0f:0a:a7: ba:56:71:8c:83:8b:6b:59:b1:19:38:15:93:73:2a:48:f7:3e: 48:a1:e4:7a:1d:8f:d6:cf:c7:3b:6b:e7:d2:de:79:63:e2:41: d2:4b:71:f1:58:0b:d2:f1:a1:71:22:0c:3d:4f:9d:92:03:e5: f9:b1:08:3d:31:aa:62:72:b3:45:ec:43:9a:9b:ff:d8:07:c7: 59:26:dd:95:cf:ee:a9:99:10:5f:f1:ac:5a:21:eb:db:5b:46: 85:66:de:de:83:e7:4f:0c:99:7f:27:66:ae:d2:af:2d:e1:55: dc:76:54:e5:73:d7:c7:13:28:2f:eb:bf:50:92:7d:4d:f0:82: 1a:a2:4b:b1:49:09:ca:eb:45:77:40:7c:c4:bf:09:d1:bf:cd: 7d:da:af:33:86:3d:2c:a7:30:b2:d0:33:be:bb:e4:16:16:64: e1:7a:1c:b4:98:03:0b:29:5c:39:cf:3d:d1:fa:6f:71:09:d5: 21:45:cb:d7:07:3a:bf:98:b7:f7:9a:4b:ae:32:41:a1:39:f7: e0:85:4f:f0:b9:13:26:78:80:27:ad:89:ad:36:cc:24:d2:62: 44:44:ba:7c:a4:b1:8c:0c:43:34:f3:cb:0e:2d:14:b0:dc:e2: 79:94:0a:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZCVuYGy0MHfPixZX+o+zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyY2Q0MzAxYjI4OTVmMWQ5OGE4NTBlNTg5Y2U3YzA2M2M1 MzlmNGQwHhcNMjUxMjA2MDIwMTAzWhcNMjUxMjA3MDIwMTAzWjAzMTEwLwYDVQQD Eyg4MzkyNWVjYWMzYzQzZTgzYmRkNDFkOTE1ZmUwZTQ4OTg3NjY5MzA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0qeITcbYf7UCFHCgKTErTg25qrVC 4PIv3WbVUqVSwQrAis3EWSIyTVRsiztbEGQzhvbTopBIb0iU/057IhY5izVnRMdt WJ0JdxlIGxYO7LqB5xxR0rvXa8EZZt3WEIc9xcY83jIGV4qrbZPYDBVMMm8KrS8T 0f5RvwCX+tBNCRNLsh/cZMlIhRGzjWwrAFCNdiPQQXyWTZZwbLCMA4ZBj8s/2i5z 2c/0ao6zZSWSoWA9bwxPYRsdfHFSC+GmMxTfb1GWOyLw7/S9eiccz6g5Dxbf2uzH MLT1TwRaxz2P5fMymw6h0k1sO9PrUciKieH0EzomHB5PGfjK2uqV2wULsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIOSXsrDxD6DvdQdkV/g5ImHZpMIMB8GA1UdIwQY MBaAFKLNQwGyiV8dmKhQ5YnOfAY8U59NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3MxREFiS0pYeDJZcUZEbGljNThCanhUbjAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8zODQ4NmMtOWRlMy00NGVmLWFiMjkt NThmM2YzN2NjZGQ5LzEvb3MxREFiS0pYeDJZcUZEbGljNThCanhUbjAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS8zODQ4NmMtOWRlMy00NGVmLWFiMjktNThmM2YzN2NjZGQ5 LzEvb3MxREFiS0pYeDJZcUZEbGljNThCanhUbjAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArjuTb0Vn JgcSIqWnRY0oDwqnulZxjIOLa1mxGTgVk3MqSPc+SKHkeh2P1s/HO2vn0t55Y+JB 0ktx8VgL0vGhcSIMPU+dkgPl+bEIPTGqYnKzRexDmpv/2AfHWSbdlc/uqZkQX/Gs WiHr21tGhWbe3oPnTwyZfydmrtKvLeFV3HZU5XPXxxMoL+u/UJJ9TfCCGqJLsUkJ yutFd0B8xL8J0b/NfdqvM4Y9LKcwstAzvrvkFhZk4XoctJgDCylcOc890fpvcQnV IUXL1wc6v5i395pLrjJBoTn34IVP8LkTJniAJ62JrTbMJNJiRES6fKSxjAxDNPPL Di0UsNzieZQKjg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:13:45 2025 by rpki-client