This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft File: OJwDADZ1arjNrJIrGvI3vOE2fOA.mft (raw, json) Hash identifier: Gnuhf5bP3C7yuYUdmvzn/rDNKwKiNlo7skd6HWgGDlA= Subject key identifier: F2:B8:86:64:F4:57:12:4A:B2:A3:46:41:78:4B:5F:A9:D2:AC:23:C0 Authority key identifier: 38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0 Certificate issuer: /CN=389c030036756ab8cdac922b1af237bce1367ce0 Certificate serial: 019AF0F5EFEC50A0E34B6093218326919C86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 00:00:40 +0000 Manifest this update: Sat 06 Dec 2025 00:00:40 +0000 Manifest next update: Sun 07 Dec 2025 00:00:40 +0000 Files and hashes: 1: 7_8yBJLyqtyIR9OHFg7LU1M1Onc.roa (hash: RwjNHeRVHQ2HqUbmJiZCyAxBMEck7wiXEWN73Kexaq4=) 2: OJwDADZ1arjNrJIrGvI3vOE2fOA.crl (hash: gs6ZwVVPGG7osB99er3M0e0i1pupSb5cvCZrp18GQgE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 00:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:f5:ef:ec:50:a0:e3:4b:60:93:21:83:26:91:9c:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=389c030036756ab8cdac922b1af237bce1367ce0 Validity Not Before: Dec 6 00:00:40 2025 GMT Not After : Dec 7 00:00:40 2025 GMT Subject: CN=f2b88664f457124ab2a34641784b5fa9d2ac23c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:42:94:45:96:9e:dc:84:01:c8:2b:85:ec:cd: 31:a6:0b:5d:c5:6d:c8:3f:68:3d:c5:6b:ef:35:b3: b2:8c:4b:80:33:0b:42:89:89:ae:ec:1e:4e:b7:8a: 98:7c:e8:ef:61:54:f5:71:b1:3c:92:53:96:51:51: e6:dc:c7:2d:d3:40:ea:6e:b1:99:de:f9:aa:a4:94: cc:09:d4:ac:cf:57:da:5a:30:7b:5f:4a:29:2a:c0: eb:62:08:77:c5:70:1d:53:48:d7:22:41:18:d8:a2: 08:d7:a8:71:32:72:a4:ae:48:8c:9b:99:d5:19:df: 12:b9:8f:4a:8a:6c:81:29:33:00:39:6d:4f:c7:cd: f6:5f:74:27:ad:68:21:ba:5c:b1:66:1e:34:5f:0d: 48:e3:0a:5e:41:7f:75:4e:11:71:e1:67:63:22:e9: c3:9c:c1:30:dc:fc:74:d0:37:43:11:6d:ba:1d:7d: f2:f0:81:85:d9:6c:fd:38:7b:b4:59:b6:f7:ed:5d: f1:35:dd:00:43:2a:c7:f5:78:14:8e:40:40:5a:a5: b9:4b:6f:80:fd:2f:9a:7d:81:66:8d:2e:39:e5:75: 43:f7:1e:1e:e0:06:e5:e4:94:1f:5f:a9:1a:54:e1: c4:e1:b2:f9:fa:f1:6a:c7:99:64:d1:76:41:db:cd: 5e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:B8:86:64:F4:57:12:4A:B2:A3:46:41:78:4B:5F:A9:D2:AC:23:C0 X509v3 Authority Key Identifier: keyid:38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:47:fe:bf:e2:f8:dc:ba:51:c6:73:1f:11:24:91:30:28:0c: 7e:60:94:7b:34:1b:75:a3:2d:47:32:83:fb:ad:a4:b5:f8:3f: 75:f0:70:e9:c2:ec:cf:c2:ea:34:33:3d:30:ae:da:b2:72:d6: cb:d5:11:3e:db:3f:2f:bc:78:17:88:bf:72:8f:85:74:c2:ef: 19:23:f1:98:13:05:0f:fd:65:e1:d7:d9:2a:48:c9:f2:2d:57: 4c:07:56:5b:8a:c0:ba:91:3b:8f:22:6c:83:7f:1c:75:04:52: f9:be:56:47:5c:05:bb:b8:a3:33:f7:49:36:2f:5f:22:63:a1: 8b:4a:e2:05:ce:b5:67:98:28:ca:95:5c:a5:55:43:56:18:3b: ba:a9:de:bc:41:97:66:76:9e:eb:99:19:09:dd:9e:e0:15:05: b9:8e:b9:43:6c:bb:72:02:83:a0:f8:b6:08:6a:af:91:5f:81: 6f:87:ea:d1:c0:bf:1b:d5:75:13:14:3c:8c:2f:ba:ee:b5:62: 33:2f:26:d2:38:79:a2:7a:33:09:37:78:a9:bc:c1:f2:10:d5: 06:45:8b:8f:12:99:61:1a:8c:5f:2d:f0:97:e0:16:b3:80:0e: ee:f6:9a:be:8a:d3:2c:ce:1e:37:bc:a3:c8:c4:88:2e:d3:15: 67:cf:4c:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrw9e/sUKDjS2CTIYMmkZyGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4OWMwMzAwMzY3NTZhYjhjZGFjOTIyYjFhZjIzN2JjZTEz NjdjZTAwHhcNMjUxMjA2MDAwMDQwWhcNMjUxMjA3MDAwMDQwWjAzMTEwLwYDVQQD EyhmMmI4ODY2NGY0NTcxMjRhYjJhMzQ2NDE3ODRiNWZhOWQyYWMyM2MwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoEKURZae3IQByCuF7M0xpgtdxW3I P2g9xWvvNbOyjEuAMwtCiYmu7B5Ot4qYfOjvYVT1cbE8klOWUVHm3Mct00DqbrGZ 3vmqpJTMCdSsz1faWjB7X0opKsDrYgh3xXAdU0jXIkEY2KII16hxMnKkrkiMm5nV Gd8SuY9KimyBKTMAOW1Px832X3QnrWghulyxZh40Xw1I4wpeQX91ThFx4WdjIunD nMEw3Px00DdDEW26HX3y8IGF2Wz9OHu0Wbb37V3xNd0AQyrH9XgUjkBAWqW5S2+A /S+afYFmjS455XVD9x4e4Abl5JQfX6kaVOHE4bL5+vFqx5lk0XZB281efwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPK4hmT0VxJKsqNGQXhLX6nSrCPAMB8GA1UdIwQY MBaAFDicAwA2dWq4zaySKxryN7zhNnzgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0p3REFEWjFhcmpOckpJckd2STN2T0UyZk9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8yMGZjYTAtMDRiMi00M2IwLWJkMmMt NjcxN2I5YmFiYjM0LzEvT0p3REFEWjFhcmpOckpJckd2STN2T0UyZk9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi8yMGZjYTAtMDRiMi00M2IwLWJkMmMtNjcxN2I5YmFiYjM0 LzEvT0p3REFEWjFhcmpOckpJckd2STN2T0UyZk9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAskf+v+L4 3LpRxnMfESSRMCgMfmCUezQbdaMtRzKD+62ktfg/dfBw6cLsz8LqNDM9MK7asnLW y9URPts/L7x4F4i/co+FdMLvGSPxmBMFD/1l4dfZKkjJ8i1XTAdWW4rAupE7jyJs g38cdQRS+b5WR1wFu7ijM/dJNi9fImOhi0riBc61Z5goypVcpVVDVhg7uqnevEGX Znae65kZCd2e4BUFuY65Q2y7cgKDoPi2CGqvkV+Bb4fq0cC/G9V1ExQ8jC+67rVi My8m0jh5onozCTd4qbzB8hDVBkWLjxKZYRqMXy3wl+AWs4AO7vaavorTLM4eN7yj yMSILtMVZ89Mfw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:09:21 2025 by rpki-client