This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json) Hash identifier: 5JSY9Jd3tZjMFe4XO6v9lFbjdKDItamozYMaAOZQUH4= Subject key identifier: 28:F0:18:B1:57:33:09:5D:2E:94:77:8E:EF:E3:79:C7:F3:68:4A:1E Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2 Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2 Certificate serial: 019AF1647002664BAE6563162116D76C8865 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft Manifest number: 072B Signing time: Sat 06 Dec 2025 02:01:22 +0000 Manifest this update: Sat 06 Dec 2025 02:01:22 +0000 Manifest next update: Sun 07 Dec 2025 02:01:22 +0000 Files and hashes: 1: 4sh0yYbT80cSrTPvdQEkGETfVo8.roa (hash: 7RnvvHQkkS8YaZiuCDpplhOJhAdwXKsdDZ03EF+NYdQ=) 2: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: 2Ukn3t9RiOmLAx1I1RXWnICL842r2EfxBDReWodM7Cg=) 3: T3WVNDq5fB7durp2xzBnS3GvikA.roa (hash: yDIX+9j0VmuYreUTlBxWuulf2dZWF2rW9eLhkcZnsyo=) 4: UPULz0BbmOL6oB1Lvph6s81bIVc.roa (hash: KEGK8PJbSBsiHtUKaY1bLTWtxHt/0jD8x2QpGJMF8nk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:70:02:66:4b:ae:65:63:16:21:16:d7:6c:88:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2 Validity Not Before: Dec 6 02:01:22 2025 GMT Not After : Dec 7 02:01:22 2025 GMT Subject: CN=28f018b15733095d2e94778eefe379c7f3684a1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5c:22:0e:63:6e:ab:ff:51:40:d3:41:fa:be: 3e:31:39:5c:a5:be:a8:e1:18:a8:77:e9:d2:82:7a: 7f:6f:08:3c:7f:02:ac:ad:5e:e3:be:1c:5a:9c:28: 0d:12:c4:28:4f:7b:4e:a1:f2:1f:13:19:dc:bf:90: a7:f6:b2:7c:76:00:5a:51:79:f7:08:f4:2b:f4:47: 46:85:18:81:2c:96:87:93:a3:77:4c:bb:99:74:8d: 4e:32:01:af:06:c4:41:85:65:41:db:c5:b7:81:68: b6:18:20:c2:15:ec:db:87:03:16:b9:98:37:85:72: bd:a9:b6:25:89:ae:33:0f:d3:80:15:2d:87:49:d7: a4:00:88:94:03:43:a7:94:d4:b7:44:23:5b:b5:31: 85:37:43:e3:80:eb:bb:83:47:98:a7:dd:64:5a:ee: 28:f3:bd:18:95:12:36:b7:6e:8b:61:15:61:99:ee: 52:4a:18:83:26:eb:fe:a9:84:4a:18:a4:13:cf:f8: 74:3f:8f:7d:72:ec:14:c8:ff:9b:43:37:c4:3d:83: b4:d8:63:1f:7f:c8:89:f3:e7:09:06:4a:e1:e9:bd: 5b:84:99:2b:4a:71:0c:f6:1e:c6:27:fd:e5:1e:84: 57:30:9c:40:f0:0f:0c:e5:58:ce:09:ba:85:12:05: 42:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F0:18:B1:57:33:09:5D:2E:94:77:8E:EF:E3:79:C7:F3:68:4A:1E X509v3 Authority Key Identifier: keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:38:2f:0c:80:ca:ab:13:a3:9e:dc:85:08:5e:af:25:ec:23: f1:58:87:89:6d:10:75:0b:de:a7:cf:4b:d1:c7:ab:15:2e:f2: c1:91:f6:70:f5:e8:a3:8e:8a:f8:28:9f:5e:b7:68:b0:53:aa: 08:7f:94:66:fb:6a:8e:56:06:b6:5e:26:d5:47:34:e7:46:8e: 98:d0:48:d2:00:da:28:e9:6b:19:c1:d2:88:bf:68:05:ad:6e: 28:7b:bd:1b:6d:5d:01:0e:27:d3:bc:7c:eb:88:a3:8d:38:9b: 15:20:00:b0:e2:f1:cc:aa:de:30:7d:62:db:f0:12:2c:32:1b: 25:6e:c8:ab:9f:51:f0:72:8e:b4:1c:cd:f6:dd:f3:c0:6b:7b: 78:cb:d1:d5:74:1a:05:a6:82:c1:b3:75:f2:92:d5:a8:8f:a1: 0c:72:53:36:3f:f7:d1:99:a2:40:6c:7f:9d:68:ac:9e:69:ce: 1f:69:db:db:95:45:cd:60:92:72:9e:02:3e:18:dd:d7:0c:df: 12:35:51:c8:7c:e3:22:a0:2d:63:f3:04:ff:b2:4a:92:e5:37: 17:e7:c0:ba:50:60:7b:14:9e:2e:df:09:c9:d9:eb:fd:8b:8f: 2c:83:61:eb:aa:54:95:82:2f:5f:22:fd:ef:bf:d5:ea:cb:f5: 35:6c:1f:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZHACZkuuZWMWIRbXbIhlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhODM5OTM2YWVlZmYyODg2NzhlNzcyNjMzMDIwZmEyNTli ZDljZjIwHhcNMjUxMjA2MDIwMTIyWhcNMjUxMjA3MDIwMTIyWjAzMTEwLwYDVQQD EygyOGYwMThiMTU3MzMwOTVkMmU5NDc3OGVlZmUzNzljN2YzNjg0YTFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFwiDmNuq/9RQNNB+r4+MTlcpb6o 4Riod+nSgnp/bwg8fwKsrV7jvhxanCgNEsQoT3tOofIfExncv5Cn9rJ8dgBaUXn3 CPQr9EdGhRiBLJaHk6N3TLuZdI1OMgGvBsRBhWVB28W3gWi2GCDCFezbhwMWuZg3 hXK9qbYlia4zD9OAFS2HSdekAIiUA0OnlNS3RCNbtTGFN0PjgOu7g0eYp91kWu4o 870YlRI2t26LYRVhme5SShiDJuv+qYRKGKQTz/h0P499cuwUyP+bQzfEPYO02GMf f8iJ8+cJBkrh6b1bhJkrSnEM9h7GJ/3lHoRXMJxA8A8M5VjOCbqFEgVCbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCjwGLFXMwldLpR3ju/jecfzaEoeMB8GA1UdIwQY MBaAFDqDmTau7/KIZ453JjMCD6JZvZzyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My81YzY3NDUtNzY4ZS00ZDYxLWI2MDQt ODM1ZjRlMzcyODNjLzEvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My81YzY3NDUtNzY4ZS00ZDYxLWI2MDQtODM1ZjRlMzcyODNj LzEvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkTgvDIDK qxOjntyFCF6vJewj8ViHiW0QdQvep89L0cerFS7ywZH2cPXoo46K+CifXrdosFOq CH+UZvtqjlYGtl4m1Uc050aOmNBI0gDaKOlrGcHSiL9oBa1uKHu9G21dAQ4n07x8 64ijjTibFSAAsOLxzKreMH1i2/ASLDIbJW7Iq59R8HKOtBzN9t3zwGt7eMvR1XQa BaaCwbN18pLVqI+hDHJTNj/30ZmiQGx/nWisnmnOH2nb25VFzWCScp4CPhjd1wzf EjVRyHzjIqAtY/ME/7JKkuU3F+fAulBgexSeLt8Jydnr/YuPLINh66pUlYIvXyL9 77/V6sv1NWwfTw== -----END CERTIFICATE-----Generated at Sat Dec 6 12:10:38 2025 by rpki-client