This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft File: ogqr6NvAhXg0PCW4xomHpevAOMk.mft (raw, json) Hash identifier: 1hMwlxllBSEsv3ZVY2poPqu6bD+ISa4nCZkTzuBEoPo= Subject key identifier: 04:4F:19:5C:59:4E:CE:24:EB:61:7C:9D:C6:12:0E:D7:E1:63:0F:17 Authority key identifier: A2:0A:AB:E8:DB:C0:85:78:34:3C:25:B8:C6:89:87:A5:EB:C0:38:C9 Certificate issuer: /CN=a20aabe8dbc08578343c25b8c68987a5ebc038c9 Certificate serial: 019AF3C02C168E7928DF827703EC191B24E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogqr6NvAhXg0PCW4xomHpevAOMk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft Manifest number: 01B2 Signing time: Sat 06 Dec 2025 13:00:48 +0000 Manifest this update: Sat 06 Dec 2025 13:00:48 +0000 Manifest next update: Sun 07 Dec 2025 13:00:48 +0000 Files and hashes: 1: ogqr6NvAhXg0PCW4xomHpevAOMk.crl (hash: /TybC529PkiuFSyLNKmth6rcWbtapEhzcZ7OtrPbeCA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.crl rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft rsync://rpki.ripe.net/repository/DEFAULT/ogqr6NvAhXg0PCW4xomHpevAOMk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:2c:16:8e:79:28:df:82:77:03:ec:19:1b:24:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a20aabe8dbc08578343c25b8c68987a5ebc038c9 Validity Not Before: Dec 6 13:00:48 2025 GMT Not After : Dec 7 13:00:48 2025 GMT Subject: CN=044f195c594ece24eb617c9dc6120ed7e1630f17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fa:37:6f:cf:61:a0:27:fa:cd:53:7d:ff:1b: eb:33:be:ed:9c:58:9a:be:d4:27:90:af:16:33:2c: 8e:b6:8e:a9:28:f3:c0:4e:32:70:fc:a8:1a:8b:65: 81:48:da:ea:7b:54:76:e3:e1:ce:fa:51:c5:96:a9: 74:ef:e9:70:a2:aa:35:e8:bc:c4:cf:6a:b7:79:10: 67:9b:34:1f:7b:81:22:34:66:9d:55:85:ef:2f:4f: 30:43:56:96:99:b0:99:b7:20:34:0a:d8:8d:8d:75: 57:b5:72:fc:64:93:7d:d4:a7:34:5c:3c:ef:f1:31: 9d:e2:89:8a:be:a8:0c:a9:d6:3c:93:5a:26:fe:82: 42:ca:d3:83:7e:60:b9:35:ea:b8:32:05:e3:d6:12: 10:87:e9:00:bb:36:6d:28:2d:c8:1a:0d:b1:33:e8: 85:16:2a:51:77:e1:5e:51:2d:b1:71:3f:de:c4:18: 93:61:0a:c1:d4:29:0f:b9:0c:20:d1:78:2b:df:06: a1:c5:96:c4:71:a1:31:32:cf:4e:70:3e:0e:83:03: c7:bc:4d:91:d4:85:d7:5f:8a:0d:93:fc:87:a3:7d: 51:6d:f9:66:11:22:cf:be:be:a1:6b:b9:b1:c4:fd: a9:5a:3f:7b:70:54:cb:48:55:95:75:1c:8f:b8:e6: 12:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:4F:19:5C:59:4E:CE:24:EB:61:7C:9D:C6:12:0E:D7:E1:63:0F:17 X509v3 Authority Key Identifier: keyid:A2:0A:AB:E8:DB:C0:85:78:34:3C:25:B8:C6:89:87:A5:EB:C0:38:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogqr6NvAhXg0PCW4xomHpevAOMk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:50:31:0e:b9:62:f4:c0:6f:ac:f4:77:66:91:8b:cb:15:89: 48:93:74:66:1f:00:2b:1a:a8:51:83:0b:6d:e7:40:11:0f:56: fc:69:ef:ac:41:c7:ea:0f:76:08:cf:ad:5a:28:56:76:75:b0: 9a:b5:69:4b:da:f3:32:72:74:7d:4b:d1:8a:aa:63:1a:6c:fe: 0f:bd:b9:b9:c6:ae:6c:1d:31:8a:9a:05:91:d7:dd:0b:b8:4a: 90:73:44:1c:46:df:46:45:4a:00:28:a6:b0:28:02:f2:cb:cf: 15:3d:9f:b7:12:66:6e:32:09:36:d3:9d:2d:22:ad:93:04:5c: c4:e9:ff:8f:57:3b:60:ff:f7:dc:0f:f4:a2:17:27:74:9f:86: 37:26:a2:cb:c1:42:51:0d:01:98:62:f9:c1:6c:d2:eb:f2:99: d9:5b:4b:55:85:a0:1c:ad:00:84:e6:aa:4c:02:e1:3b:84:98: 77:35:62:f3:1d:3b:37:6e:a8:60:6d:38:42:4e:d4:42:3d:22: f9:32:2b:4e:aa:04:ca:5d:23:43:4f:a0:f0:ae:29:aa:84:84: d2:10:5c:76:d2:5f:44:e5:2c:0b:3c:c9:8b:96:54:12:05:2e: 57:07:01:98:c7:74:cf:50:d7:89:ab:2b:68:42:16:7a:55:01: cc:82:37:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwCwWjnko34J3A+wZGyTkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyMGFhYmU4ZGJjMDg1NzgzNDNjMjViOGM2ODk4N2E1ZWJj MDM4YzkwHhcNMjUxMjA2MTMwMDQ4WhcNMjUxMjA3MTMwMDQ4WjAzMTEwLwYDVQQD EygwNDRmMTk1YzU5NGVjZTI0ZWI2MTdjOWRjNjEyMGVkN2UxNjMwZjE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm/o3b89hoCf6zVN9/xvrM77tnFia vtQnkK8WMyyOto6pKPPATjJw/Kgai2WBSNrqe1R24+HO+lHFlql07+lwoqo16LzE z2q3eRBnmzQfe4EiNGadVYXvL08wQ1aWmbCZtyA0CtiNjXVXtXL8ZJN91Kc0XDzv 8TGd4omKvqgMqdY8k1om/oJCytODfmC5Neq4MgXj1hIQh+kAuzZtKC3IGg2xM+iF FipRd+FeUS2xcT/exBiTYQrB1CkPuQwg0Xgr3wahxZbEcaExMs9OcD4OgwPHvE2R 1IXXX4oNk/yHo31RbflmESLPvr6ha7mxxP2pWj97cFTLSFWVdRyPuOYSbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFARPGVxZTs4k62F8ncYSDtfhYw8XMB8GA1UdIwQY MBaAFKIKq+jbwIV4NDwluMaJh6XrwDjJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2dxcjZOdkFoWGcwUENXNHhvbUhwZXZBT01rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC84N2NkMzMtZDYyMy00ZjExLWFjMjYt NzFkNjQ5YzNmZDM1LzEvb2dxcjZOdkFoWGcwUENXNHhvbUhwZXZBT01rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC84N2NkMzMtZDYyMy00ZjExLWFjMjYtNzFkNjQ5YzNmZDM1 LzEvb2dxcjZOdkFoWGcwUENXNHhvbUhwZXZBT01rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQlAxDrli 9MBvrPR3ZpGLyxWJSJN0Zh8AKxqoUYMLbedAEQ9W/GnvrEHH6g92CM+tWihWdnWw mrVpS9rzMnJ0fUvRiqpjGmz+D725ucaubB0xipoFkdfdC7hKkHNEHEbfRkVKACim sCgC8svPFT2ftxJmbjIJNtOdLSKtkwRcxOn/j1c7YP/33A/0ohcndJ+GNyaiy8FC UQ0BmGL5wWzS6/KZ2VtLVYWgHK0AhOaqTALhO4SYdzVi8x07N26oYG04Qk7UQj0i +TIrTqoEyl0jQ0+g8K4pqoSE0hBcdtJfROUsCzzJi5ZUEgUuVwcBmMd0z1DXiasr aEIWelUBzII3Iw== -----END CERTIFICATE-----Generated at Sat Dec 6 18:36:11 2025 by rpki-client