This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft File: pOpmDdthAOfTLl02aJp3fKnK-hk.mft (raw, json) Hash identifier: BVyJBrTeKSEzOpzBt2R+iPvRyFdBSm1ReUqyyeOBFRM= Subject key identifier: 95:CF:00:C0:89:D6:AC:07:A9:79:AE:FE:5A:C4:72:F8:10:F7:C8:0E Authority key identifier: A4:EA:66:0D:DB:61:00:E7:D3:2E:5D:36:68:9A:77:7C:A9:CA:FA:19 Certificate issuer: /CN=a4ea660ddb6100e7d32e5d36689a777ca9cafa19 Certificate serial: 019AF1D1FF31AAB34923553D2ED4BD39B724 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOpmDdthAOfTLl02aJp3fKnK-hk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft Manifest number: D7 Signing time: Sat 06 Dec 2025 04:01:02 +0000 Manifest this update: Sat 06 Dec 2025 04:01:02 +0000 Manifest next update: Sun 07 Dec 2025 04:01:02 +0000 Files and hashes: 1: QBmdu5DezxoxKGOkAZGRTHz_Ovo.roa (hash: FxhiZR0M8vGdibBrIWA/GLd0J4VZN3IOW0ocA5RR3YQ=) 2: iVyiZxwev_wYI7BNU3e008G4zfk.roa (hash: 8qCaR6UbT2VINv7ijvxNhHg8ECE+Q7GiqaPlqabo5mM=) 3: pOpmDdthAOfTLl02aJp3fKnK-hk.crl (hash: MFO/iULE87ipxjcEySEMI5aypcwxWVh/LGNYC8/+KkA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.crl rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft rsync://rpki.ripe.net/repository/DEFAULT/pOpmDdthAOfTLl02aJp3fKnK-hk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:ff:31:aa:b3:49:23:55:3d:2e:d4:bd:39:b7:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4ea660ddb6100e7d32e5d36689a777ca9cafa19 Validity Not Before: Dec 6 04:01:02 2025 GMT Not After : Dec 7 04:01:02 2025 GMT Subject: CN=95cf00c089d6ac07a979aefe5ac472f810f7c80e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:90:1a:34:f7:c9:0d:04:88:05:02:72:99:73: a0:5d:d3:bc:b7:b0:47:ab:2f:e8:24:be:92:98:a0: c6:86:87:f9:1c:ee:e0:d5:be:57:44:19:38:0d:c7: c4:cc:77:5f:b4:7a:82:33:22:39:7a:b3:29:ee:88: 19:b6:1c:8c:f4:a2:1d:9c:ea:ff:d1:a7:31:c9:fb: b7:a9:a2:9e:37:bb:20:0d:b0:89:6f:01:dc:8a:11: e7:62:ac:0f:13:04:8b:fe:3d:97:09:44:bb:c4:ec: fa:4c:bb:7c:7f:8c:8c:0f:dc:93:c7:be:68:c7:2c: c3:0e:ca:bb:00:b3:8a:ee:65:1f:f6:4d:51:61:a9: 1f:20:cf:7d:45:74:2a:89:e1:19:62:1e:01:52:44: f3:13:07:6f:76:c8:ed:8b:a5:24:f2:18:a3:43:6e: ee:a9:07:9b:dd:a2:21:18:fb:ba:4c:78:03:0b:5f: be:a7:9d:37:f2:93:49:b3:d7:50:78:59:b9:9f:f1: ed:c3:98:63:f7:e4:9a:43:f3:3e:4e:2e:80:c2:88: ce:9a:ba:61:6e:1f:89:47:a6:8c:50:6a:3a:6e:fb: 4f:48:37:80:f4:15:b0:6a:9c:ac:2a:71:7e:c9:ed: 76:0e:89:9f:e8:4c:68:72:17:6f:7b:6c:3a:ed:51: b1:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:CF:00:C0:89:D6:AC:07:A9:79:AE:FE:5A:C4:72:F8:10:F7:C8:0E X509v3 Authority Key Identifier: keyid:A4:EA:66:0D:DB:61:00:E7:D3:2E:5D:36:68:9A:77:7C:A9:CA:FA:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOpmDdthAOfTLl02aJp3fKnK-hk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:e6:85:5c:85:49:49:46:29:08:89:3f:4d:0b:1d:4c:7f:b8: 64:ec:ee:f8:46:6c:ee:ba:cc:93:71:08:22:9b:ee:89:ef:95: ec:78:e3:bf:b1:ca:f3:7c:41:7e:80:08:5d:3a:32:bd:e2:77: 31:1f:b1:24:dd:5b:8d:f6:1d:65:d8:6d:e1:7d:fd:8f:08:8d: a7:4b:e2:d3:34:2f:e1:8e:30:ac:de:31:20:e9:1c:b3:6b:7a: 5d:2a:af:04:07:d1:41:56:c6:7a:c6:79:95:38:31:61:cb:d0: 9d:e4:62:97:29:12:5b:e3:9d:92:0a:7a:3e:05:05:e1:e8:3c: 19:c0:94:44:e8:c4:5c:8f:3c:2c:97:3f:67:4c:33:85:5d:d9: 0b:aa:01:ee:4d:a7:54:da:91:22:83:c4:32:6b:cb:9e:7d:1a: 67:0f:2d:aa:82:df:3c:f9:31:07:98:3f:b3:61:39:7d:af:8d: 92:75:30:03:db:cb:46:1a:96:2c:13:3f:68:ac:ef:1e:3a:9e: c1:11:a3:96:17:fc:b3:6e:23:e1:f3:81:5d:ad:66:c5:3f:d2: 3b:86:11:d7:3a:26:51:2f:8a:4c:b2:49:0e:c4:89:d8:e7:a4: cc:27:90:89:17:51:98:41:54:f6:4c:9f:7e:c4:af:56:29:20: b3:ee:39:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0f8xqrNJI1U9LtS9ObckMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0ZWE2NjBkZGI2MTAwZTdkMzJlNWQzNjY4OWE3NzdjYTlj YWZhMTkwHhcNMjUxMjA2MDQwMTAyWhcNMjUxMjA3MDQwMTAyWjAzMTEwLwYDVQQD Eyg5NWNmMDBjMDg5ZDZhYzA3YTk3OWFlZmU1YWM0NzJmODEwZjdjODBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJAaNPfJDQSIBQJymXOgXdO8t7BH qy/oJL6SmKDGhof5HO7g1b5XRBk4DcfEzHdftHqCMyI5erMp7ogZthyM9KIdnOr/ 0acxyfu3qaKeN7sgDbCJbwHcihHnYqwPEwSL/j2XCUS7xOz6TLt8f4yMD9yTx75o xyzDDsq7ALOK7mUf9k1RYakfIM99RXQqieEZYh4BUkTzEwdvdsjti6Uk8hijQ27u qQeb3aIhGPu6THgDC1++p5038pNJs9dQeFm5n/Htw5hj9+SaQ/M+Ti6AwojOmrph bh+JR6aMUGo6bvtPSDeA9BWwapysKnF+ye12Domf6Exochdve2w67VGxYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJXPAMCJ1qwHqXmu/lrEcvgQ98gOMB8GA1UdIwQY MBaAFKTqZg3bYQDn0y5dNmiad3ypyvoZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcE9wbURkdGhBT2ZUTGwwMmFKcDNmS25LLWhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9lMjBhYTAtMzM4ZS00ZjMzLTg2ZWEt NmY2MjJmZDE4ZDMwLzEvcE9wbURkdGhBT2ZUTGwwMmFKcDNmS25LLWhrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9lMjBhYTAtMzM4ZS00ZjMzLTg2ZWEtNmY2MjJmZDE4ZDMw LzEvcE9wbURkdGhBT2ZUTGwwMmFKcDNmS25LLWhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgeaFXIVJ SUYpCIk/TQsdTH+4ZOzu+EZs7rrMk3EIIpvuie+V7Hjjv7HK83xBfoAIXToyveJ3 MR+xJN1bjfYdZdht4X39jwiNp0vi0zQv4Y4wrN4xIOkcs2t6XSqvBAfRQVbGesZ5 lTgxYcvQneRilykSW+Odkgp6PgUF4eg8GcCUROjEXI88LJc/Z0wzhV3ZC6oB7k2n VNqRIoPEMmvLnn0aZw8tqoLfPPkxB5g/s2E5fa+NknUwA9vLRhqWLBM/aKzvHjqe wRGjlhf8s24j4fOBXa1mxT/SO4YR1zomUS+KTLJJDsSJ2OekzCeQiRdRmEFU9kyf fsSvVikgs+45fw== -----END CERTIFICATE-----Generated at Sat Dec 6 13:45:51 2025 by rpki-client