This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft File: dOEz6h5A_BPgdOMncQpTRKlgtcA.mft (raw, json) Hash identifier: u2OBTMowxR2nlT5xed2sMuakBW7modg1ICqsGpF23KY= Subject key identifier: 1C:93:6A:DE:CE:FA:D8:36:DC:28:13:CD:EA:B1:C7:E4:F9:BC:EA:A7 Authority key identifier: 74:E1:33:EA:1E:40:FC:13:E0:74:E3:27:71:0A:53:44:A9:60:B5:C0 Certificate issuer: /CN=74e133ea1e40fc13e074e327710a5344a960b5c0 Certificate serial: 019AF38A1690921E10244F0149000E9E36ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft Manifest number: 0E11 Signing time: Sat 06 Dec 2025 12:01:44 +0000 Manifest this update: Sat 06 Dec 2025 12:01:44 +0000 Manifest next update: Sun 07 Dec 2025 12:01:44 +0000 Files and hashes: 1: XXhZSJTw-3dSmsRY9bvXQqHBaIs.roa (hash: mmW0AxSNYmhmTbAA4XApc0Tjpzzlw3yy/NM/Jy4hxuI=) 2: dOEz6h5A_BPgdOMncQpTRKlgtcA.crl (hash: rKggtz3PWXdfqivUYEngIQN0diQkR5dgabq92QsDBv0=) 3: lQpPjj9gpOYnRRV52S0ec3Spick.roa (hash: 2/R15nQqw+pyTSeVtt80lTdeScEa1kOW3xe+Ueb0Hdo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:8a:16:90:92:1e:10:24:4f:01:49:00:0e:9e:36:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74e133ea1e40fc13e074e327710a5344a960b5c0 Validity Not Before: Dec 6 12:01:44 2025 GMT Not After : Dec 7 12:01:44 2025 GMT Subject: CN=1c936adecefad836dc2813cdeab1c7e4f9bceaa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a4:ca:9b:01:eb:17:99:82:28:6f:a0:63:ae: e4:e8:02:4b:4d:9a:2d:ac:6b:02:6b:94:96:a8:f9: 3b:15:d9:3d:8c:94:e3:46:2d:8e:54:f8:34:37:d2: 90:14:3c:93:67:79:ef:ad:18:99:bb:0c:5c:bb:b5: 14:92:d8:5c:c8:9f:83:a6:8a:c7:25:ac:ce:2a:cf: 0b:a7:c9:ef:be:37:f6:40:e4:af:1a:7d:4d:7f:65: 06:74:e5:f0:f9:98:9e:38:49:f3:d7:7a:67:fd:dc: f4:ba:7d:98:2a:36:c6:0c:28:7d:c6:ac:af:0b:2c: 12:22:6d:59:9b:38:fb:10:29:08:93:70:59:e1:d5: eb:2a:9c:bd:c5:df:2e:89:7b:5f:a5:4a:4f:7b:c7: fc:06:02:d9:63:3e:84:1f:f1:43:03:28:ec:7d:74: b4:fa:14:0e:c7:72:1c:9f:72:a6:0d:e5:af:5b:cc: 61:b0:b0:02:f6:e1:aa:39:bf:f9:94:f2:78:27:ef: 8e:87:16:c2:e8:07:d3:63:b9:8e:a0:85:af:88:b3: 2b:b7:8b:c3:aa:92:7f:21:75:d3:50:5a:86:4d:8b: f8:94:c3:b5:e5:d2:25:11:1d:0c:29:89:d8:19:11: 7d:29:92:f3:cb:a9:f6:03:9d:cf:d1:9d:dc:56:7e: 7b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:93:6A:DE:CE:FA:D8:36:DC:28:13:CD:EA:B1:C7:E4:F9:BC:EA:A7 X509v3 Authority Key Identifier: keyid:74:E1:33:EA:1E:40:FC:13:E0:74:E3:27:71:0A:53:44:A9:60:B5:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:92:e9:e8:4c:26:09:18:30:4a:d8:2b:16:5f:76:9b:cb:5f: 06:22:e6:26:31:92:e8:33:0a:30:25:af:62:55:ee:a5:23:5f: cd:27:47:e0:5b:1a:c0:c9:78:ef:f0:6b:ea:8d:62:bd:b8:45: 95:28:b8:f1:ba:b7:e5:d1:e6:cb:5d:1a:a7:29:1c:f6:75:4b: 10:0f:0c:31:1d:0d:01:6b:f5:97:87:2b:f3:7a:7c:5e:fe:41: 6d:0f:ff:bc:0f:f5:0e:ff:83:12:2c:49:6e:6c:d7:f7:92:48: 4d:9d:0c:93:07:0c:8e:dc:5b:72:f8:b9:e5:76:c4:70:75:60: a0:f8:69:ba:70:44:2f:5c:56:a7:46:09:0b:7a:0a:75:ff:0e: 52:82:34:73:84:92:8c:8b:59:67:24:f8:10:80:f4:29:23:71: 0c:c9:4f:9c:ab:fc:38:94:92:66:48:f9:b2:c4:49:5c:e1:96: 84:34:ef:94:53:19:af:12:9c:89:d6:33:28:6e:5d:ea:8d:2e: 4d:b6:b3:65:97:e1:dd:7e:b7:d1:73:5a:9d:d9:aa:8f:02:10: d6:f3:4b:bb:3d:c1:16:49:7e:79:93:23:f4:de:d7:94:cf:03: fc:3d:46:0a:74:0d:0f:95:46:63:0a:91:d3:ee:2f:9e:d9:56: 45:5e:37:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzihaQkh4QJE8BSQAOnjbtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0ZTEzM2VhMWU0MGZjMTNlMDc0ZTMyNzcxMGE1MzQ0YTk2 MGI1YzAwHhcNMjUxMjA2MTIwMTQ0WhcNMjUxMjA3MTIwMTQ0WjAzMTEwLwYDVQQD EygxYzkzNmFkZWNlZmFkODM2ZGMyODEzY2RlYWIxYzdlNGY5YmNlYWE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxKTKmwHrF5mCKG+gY67k6AJLTZot rGsCa5SWqPk7Fdk9jJTjRi2OVPg0N9KQFDyTZ3nvrRiZuwxcu7UUkthcyJ+DporH JazOKs8Lp8nvvjf2QOSvGn1Nf2UGdOXw+ZieOEnz13pn/dz0un2YKjbGDCh9xqyv CywSIm1Zmzj7ECkIk3BZ4dXrKpy9xd8uiXtfpUpPe8f8BgLZYz6EH/FDAyjsfXS0 +hQOx3Icn3KmDeWvW8xhsLAC9uGqOb/5lPJ4J++OhxbC6AfTY7mOoIWviLMrt4vD qpJ/IXXTUFqGTYv4lMO15dIlER0MKYnYGRF9KZLzy6n2A53P0Z3cVn577QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFByTat7O+tg23CgTzeqxx+T5vOqnMB8GA1UdIwQY MBaAFHThM+oeQPwT4HTjJ3EKU0SpYLXAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZE9FejZoNUFfQlBnZE9NbmNRcFRSS2xndGNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8xZjU1ODctY2I5Mi00OTE3LThjZjMt MmNiOWUyMTcyZjk3LzEvZE9FejZoNUFfQlBnZE9NbmNRcFRSS2xndGNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8xZjU1ODctY2I5Mi00OTE3LThjZjMtMmNiOWUyMTcyZjk3 LzEvZE9FejZoNUFfQlBnZE9NbmNRcFRSS2xndGNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMZLp6Ewm CRgwStgrFl92m8tfBiLmJjGS6DMKMCWvYlXupSNfzSdH4FsawMl47/Br6o1ivbhF lSi48bq35dHmy10apykc9nVLEA8MMR0NAWv1l4cr83p8Xv5BbQ//vA/1Dv+DEixJ bmzX95JITZ0MkwcMjtxbcvi55XbEcHVgoPhpunBEL1xWp0YJC3oKdf8OUoI0c4SS jItZZyT4EID0KSNxDMlPnKv8OJSSZkj5ssRJXOGWhDTvlFMZrxKcidYzKG5d6o0u TbazZZfh3X630XNandmqjwIQ1vNLuz3BFkl+eZMj9N7XlM8D/D1GCnQND5VGYwqR 0+4vntlWRV436g== -----END CERTIFICATE-----Generated at Sat Dec 6 21:49:27 2025 by rpki-client