This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c4b401-e595-4a00-9123-f21ab7e9e1f5/1/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.mft File: oMoz5_ZyXrTuh7qRsd0uHEIWjDk.mft (raw, json) Hash identifier: cSLbFXzf8YSCdOuy5kbPtU4k/JYeIlt2jW4RTUMRauU= Subject key identifier: E3:C1:94:AF:BB:82:04:CD:59:02:10:12:57:10:3F:04:F2:AC:F5:59 Authority key identifier: A0:CA:33:E7:F6:72:5E:B4:EE:87:BA:91:B1:DD:2E:1C:42:16:8C:39 Certificate issuer: /CN=a0ca33e7f6725eb4ee87ba91b1dd2e1c42168c39 Certificate serial: 019AF12EC2FFE9F36539642C4BE04B540D43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c4b401-e595-4a00-9123-f21ab7e9e1f5/1/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.mft Manifest number: 1331 Signing time: Sat 06 Dec 2025 01:02:44 +0000 Manifest this update: Sat 06 Dec 2025 01:02:44 +0000 Manifest next update: Sun 07 Dec 2025 01:02:44 +0000 Files and hashes: 1: oMoz5_ZyXrTuh7qRsd0uHEIWjDk.crl (hash: jH6GLijKSxhFWETSL8hzpwnNH6F7iB++/zQhb5oIafo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/c4b401-e595-4a00-9123-f21ab7e9e1f5/1/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.crl rsync://rpki.ripe.net/repository/DEFAULT/54/c4b401-e595-4a00-9123-f21ab7e9e1f5/1/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.mft rsync://rpki.ripe.net/repository/DEFAULT/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:c2:ff:e9:f3:65:39:64:2c:4b:e0:4b:54:0d:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0ca33e7f6725eb4ee87ba91b1dd2e1c42168c39 Validity Not Before: Dec 6 01:02:44 2025 GMT Not After : Dec 7 01:02:44 2025 GMT Subject: CN=e3c194afbb8204cd5902101257103f04f2acf559 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:af:1d:49:22:a8:77:87:85:a0:4f:6e:64:ab: ce:28:bb:96:ac:af:5c:c0:fe:60:07:b5:50:b4:6b: 27:e6:8c:94:7e:46:ba:a7:45:6c:98:d4:92:36:55: dc:ad:c5:9f:6b:5d:3b:e2:5d:fc:54:a9:d3:73:ad: 27:26:06:f8:fa:ae:1b:c6:6b:de:bc:73:87:c7:f1: fc:68:0c:db:ec:0c:ab:32:6d:36:1e:4b:b4:f0:e5: 63:3d:12:50:75:1c:cc:6b:7d:b6:24:d0:25:80:eb: 1d:ce:83:a1:e4:76:3c:75:82:06:8b:b6:4f:e7:45: b7:84:3b:d0:28:90:75:2c:19:0a:8c:19:d3:96:ca: bd:5c:b3:99:bb:33:39:a0:68:22:98:af:8e:e5:18: 07:23:a0:0e:0c:af:87:26:4b:aa:38:59:b9:b6:5c: 41:4e:dd:5a:81:24:46:be:4c:85:08:b1:bf:45:43: 9b:78:dc:c9:99:0c:f6:65:10:4d:41:2a:27:57:37: 1a:b7:ac:c7:20:ca:c7:8f:fa:ed:fb:17:31:b4:02: 71:72:1e:86:e1:d0:04:96:3e:1d:0d:f4:e8:fb:5b: 45:2f:c1:ca:88:6d:b8:da:51:5d:b9:05:31:ad:4e: 49:fb:ec:2f:da:9b:ca:b5:bb:10:62:7b:32:fb:69: 73:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:C1:94:AF:BB:82:04:CD:59:02:10:12:57:10:3F:04:F2:AC:F5:59 X509v3 Authority Key Identifier: keyid:A0:CA:33:E7:F6:72:5E:B4:EE:87:BA:91:B1:DD:2E:1C:42:16:8C:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c4b401-e595-4a00-9123-f21ab7e9e1f5/1/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c4b401-e595-4a00-9123-f21ab7e9e1f5/1/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:22:1a:d4:6a:e5:96:cd:ab:50:20:6e:95:e7:f5:d4:6c:42: c8:e7:e1:b5:e7:72:b4:97:06:a6:1f:b4:67:80:bb:1c:47:2e: 89:a5:bf:93:6d:62:16:b6:16:25:a8:1b:ca:81:9f:6b:15:f5: a3:ee:ba:d4:41:4b:46:00:70:a8:2b:20:42:d2:6b:73:7e:b3: 65:bc:40:e0:98:c1:4a:9e:10:26:c2:ca:43:00:8a:c3:b2:3f: 58:b5:67:37:d8:3e:0d:93:b9:e6:a4:23:a7:0f:79:18:d7:fb: dd:3b:12:19:d8:01:21:7d:5d:89:6d:28:c7:28:d8:ac:4d:76: 78:95:cb:e9:e9:ae:df:84:38:de:82:f7:a7:b4:b6:34:9c:2e: 2c:50:e0:17:3e:57:51:ba:7c:14:4a:93:69:75:70:87:0d:95: 54:23:b4:9b:8e:66:9a:76:30:4c:b6:07:9f:53:b7:fe:c7:80: 23:f0:5d:cf:fc:29:23:d9:5d:dd:28:54:e1:f6:1e:38:55:cd: 47:67:14:de:f2:eb:6f:3b:a9:01:8d:55:09:40:3a:9f:a1:cc: f3:93:12:88:dd:70:9a:ed:86:10:05:36:81:64:d5:7e:3e:b0: 9d:7b:56:b0:85:b3:58:69:61:b7:10:aa:21:d1:53:36:1f:9b: 14:01:42:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLsL/6fNlOWQsS+BLVA1DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwY2EzM2U3ZjY3MjVlYjRlZTg3YmE5MWIxZGQyZTFjNDIx NjhjMzkwHhcNMjUxMjA2MDEwMjQ0WhcNMjUxMjA3MDEwMjQ0WjAzMTEwLwYDVQQD EyhlM2MxOTRhZmJiODIwNGNkNTkwMjEwMTI1NzEwM2YwNGYyYWNmNTU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq68dSSKod4eFoE9uZKvOKLuWrK9c wP5gB7VQtGsn5oyUfka6p0VsmNSSNlXcrcWfa1074l38VKnTc60nJgb4+q4bxmve vHOHx/H8aAzb7AyrMm02Hku08OVjPRJQdRzMa322JNAlgOsdzoOh5HY8dYIGi7ZP 50W3hDvQKJB1LBkKjBnTlsq9XLOZuzM5oGgimK+O5RgHI6AODK+HJkuqOFm5tlxB Tt1agSRGvkyFCLG/RUObeNzJmQz2ZRBNQSonVzcat6zHIMrHj/rt+xcxtAJxch6G 4dAElj4dDfTo+1tFL8HKiG242lFduQUxrU5J++wv2pvKtbsQYnsy+2lzRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOPBlK+7ggTNWQIQElcQPwTyrPVZMB8GA1UdIwQY MBaAFKDKM+f2cl607oe6kbHdLhxCFow5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb01vejVfWnlYclR1aDdxUnNkMHVIRUlXakRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9jNGI0MDEtZTU5NS00YTAwLTkxMjMt ZjIxYWI3ZTllMWY1LzEvb01vejVfWnlYclR1aDdxUnNkMHVIRUlXakRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC9jNGI0MDEtZTU5NS00YTAwLTkxMjMtZjIxYWI3ZTllMWY1 LzEvb01vejVfWnlYclR1aDdxUnNkMHVIRUlXakRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjiIa1Grl ls2rUCBulef11GxCyOfhtedytJcGph+0Z4C7HEcuiaW/k21iFrYWJagbyoGfaxX1 o+661EFLRgBwqCsgQtJrc36zZbxA4JjBSp4QJsLKQwCKw7I/WLVnN9g+DZO55qQj pw95GNf73TsSGdgBIX1diW0oxyjYrE12eJXL6emu34Q43oL3p7S2NJwuLFDgFz5X Ubp8FEqTaXVwhw2VVCO0m45mmnYwTLYHn1O3/seAI/Bdz/wpI9ld3ShU4fYeOFXN R2cU3vLrbzupAY1VCUA6n6HM85MSiN1wmu2GEAU2gWTVfj6wnXtWsIWzWGlhtxCq IdFTNh+bFAFCpA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:22:20 2025 by rpki-client