This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft File: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft (raw, json) Hash identifier: qtiJzVB0AjVdznUUHCHxi3atU3PJXgTfKb1ZMdO1VsQ= Subject key identifier: 69:5A:45:09:91:D3:25:3E:3E:B3:28:3C:0D:71:C4:8D:1A:2B:01:18 Authority key identifier: A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE Certificate issuer: /CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de Certificate serial: 019AF50A4371AA404ECF9764055A9E50BCE5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft Manifest number: 1091 Signing time: Sat 06 Dec 2025 19:01:21 +0000 Manifest this update: Sat 06 Dec 2025 19:01:21 +0000 Manifest next update: Sun 07 Dec 2025 19:01:21 +0000 Files and hashes: 1: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl (hash: BPCBEFsUFJQ3t7i9xcopSiqMZQFzxpa+nP8QI0caufw=) 2: y54lwyg0yxWntbnoIO-4zit0Jno.roa (hash: H4sOyX+DnDSSZx2P69W1kPQ6mzjJ5+oKrKghYFIkZco=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:43:71:aa:40:4e:cf:97:64:05:5a:9e:50:bc:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de Validity Not Before: Dec 6 19:01:21 2025 GMT Not After : Dec 7 19:01:21 2025 GMT Subject: CN=695a450991d3253e3eb3283c0d71c48d1a2b0118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8e:12:f6:e2:2a:ab:c1:59:47:81:56:90:a4: 9f:dc:df:e7:be:cd:01:ad:3c:04:3e:a6:61:6c:e4: c2:3f:53:3e:dd:ea:6e:72:3d:8d:12:16:da:87:8f: 73:4b:31:06:b9:43:0a:dd:0a:a1:4b:bd:d2:0f:6b: 11:be:9c:68:c7:c7:d2:99:81:af:6e:c1:8c:dc:8c: 03:34:e3:44:3a:7b:ee:9f:66:28:b3:b7:15:1b:3b: 98:09:03:1d:db:ae:e4:99:33:c4:ff:63:ec:50:1c: 8c:0e:88:23:b0:3e:50:ef:b9:e2:61:cc:db:f3:57: 7c:2a:33:51:88:1e:bb:cb:86:d1:82:5b:a5:23:5c: 39:8c:d4:81:0b:a3:e0:14:56:f7:a1:57:07:7b:b9: 3d:10:15:be:d4:3e:c9:1e:bd:ec:34:a2:1d:1f:6b: 81:84:c0:a4:9a:08:c4:db:0a:45:9a:df:82:44:41: ff:48:f7:2e:e0:5f:d6:3f:0d:d9:f2:ff:1c:ba:00: 8a:e1:8a:b2:66:1f:de:59:e8:81:1e:12:cf:2e:f8: ce:eb:4d:37:1c:08:33:e3:f8:ba:83:d8:a3:c9:53: c5:44:4e:59:dc:39:61:5d:25:ca:48:48:69:d8:6b: e7:d7:c6:c8:ae:92:97:92:92:1d:98:da:db:e1:fa: 10:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5A:45:09:91:D3:25:3E:3E:B3:28:3C:0D:71:C4:8D:1A:2B:01:18 X509v3 Authority Key Identifier: keyid:A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:50:31:ce:03:d9:51:4c:86:1e:ba:79:2a:2d:40:05:11:21: 70:d2:56:33:99:9a:72:c9:aa:9f:9b:42:06:e0:59:7a:b9:b7: 14:d3:d7:76:01:7a:e9:12:32:f1:98:90:58:8a:ad:18:f0:ab: 73:7a:73:80:51:57:9a:25:d1:37:a0:54:26:b0:b5:21:ed:d9: b0:21:5a:05:f3:cd:64:1c:8d:9d:a4:fe:72:26:61:94:af:01: c0:a7:30:3f:f8:d3:bd:cb:a0:a4:0c:2a:94:31:b1:65:22:20: 2e:0f:48:ca:29:72:55:8f:9d:7d:51:e7:a7:b3:9e:5f:39:39: 42:14:79:2f:cc:73:53:ce:98:03:4a:66:1b:56:3c:cd:6d:e7: d5:2f:e4:aa:80:a3:db:5a:df:58:02:f7:58:23:54:03:a1:bb: 35:65:23:87:4e:9f:a7:02:e4:da:dd:55:1e:a4:6d:66:24:8b: 63:e6:9f:e3:44:22:e3:1b:ee:f5:77:f2:af:f1:aa:0e:85:12: 2b:e9:a3:1b:1a:3a:9d:bc:77:67:ae:bf:6d:e7:d0:e2:67:62: 37:ed:fb:b2:2f:21:1c:c0:03:da:ee:c5:fa:b9:0d:0e:6c:e5: 88:51:36:b1:6a:81:eb:0f:aa:1c:e8:b2:f5:0c:a9:66:bf:6f: 19:ef:db:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CkNxqkBOz5dkBVqeULzlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwMDk5NWE4N2JmNjRkYzQ5NDliODE5ZGZlMDJmOGE1ODZh YWE0ZGUwHhcNMjUxMjA2MTkwMTIxWhcNMjUxMjA3MTkwMTIxWjAzMTEwLwYDVQQD Eyg2OTVhNDUwOTkxZDMyNTNlM2ViMzI4M2MwZDcxYzQ4ZDFhMmIwMTE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuI4S9uIqq8FZR4FWkKSf3N/nvs0B rTwEPqZhbOTCP1M+3epucj2NEhbah49zSzEGuUMK3QqhS73SD2sRvpxox8fSmYGv bsGM3IwDNONEOnvun2Yos7cVGzuYCQMd267kmTPE/2PsUByMDogjsD5Q77niYczb 81d8KjNRiB67y4bRglulI1w5jNSBC6PgFFb3oVcHe7k9EBW+1D7JHr3sNKIdH2uB hMCkmgjE2wpFmt+CREH/SPcu4F/WPw3Z8v8cugCK4YqyZh/eWeiBHhLPLvjO6003 HAgz4/i6g9ijyVPFRE5Z3DlhXSXKSEhp2Gvn18bIrpKXkpIdmNrb4foQqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGlaRQmR0yU+PrMoPA1xxI0aKwEYMB8GA1UdIwQY MBaAFKAJlah79k3ElJuBnf4C+KWGqqTeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0FtVnFIdjJUY1NVbTRHZF9nTDRwWWFxcE40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9mZWE1YzQtZGRlMS00NTQ4LWE1OGIt ODkzOGU5NTU2MzQyLzEvb0FtVnFIdjJUY1NVbTRHZF9nTDRwWWFxcE40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My9mZWE1YzQtZGRlMS00NTQ4LWE1OGItODkzOGU5NTU2MzQy LzEvb0FtVnFIdjJUY1NVbTRHZF9nTDRwWWFxcE40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK1AxzgPZ UUyGHrp5Ki1ABREhcNJWM5macsmqn5tCBuBZerm3FNPXdgF66RIy8ZiQWIqtGPCr c3pzgFFXmiXRN6BUJrC1Ie3ZsCFaBfPNZByNnaT+ciZhlK8BwKcwP/jTvcugpAwq lDGxZSIgLg9IyilyVY+dfVHnp7OeXzk5QhR5L8xzU86YA0pmG1Y8zW3n1S/kqoCj 21rfWAL3WCNUA6G7NWUjh06fpwLk2t1VHqRtZiSLY+af40Qi4xvu9Xfyr/GqDoUS K+mjGxo6nbx3Z66/befQ4mdiN+37si8hHMAD2u7F+rkNDmzliFE2sWqB6w+qHOiy 9QypZr9vGe/bCw== -----END CERTIFICATE-----Generated at Sun Dec 7 02:12:47 2025 by rpki-client