This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json) Hash identifier: oP3j/7+QXgF4NGJl9xi5c1Mt6jUUvBQDsJqB+EkL1tQ= Subject key identifier: 3E:95:71:53:A4:17:AA:FC:97:81:C0:37:48:E7:66:5E:C2:44:9E:E1 Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4 Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4 Certificate serial: 019AF0BEFAC8AEC7F9F6293C8C9A1D18B5BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft Manifest number: 0266 Signing time: Fri 05 Dec 2025 23:00:39 +0000 Manifest this update: Fri 05 Dec 2025 23:00:39 +0000 Manifest next update: Sat 06 Dec 2025 23:00:39 +0000 Files and hashes: 1: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: a4b1CYubnGmgV5dFIs0zwKU+Dpk5ZIBBV+kfhLlVmiY=) 2: cvTvlJFXIrx4LNBKFN32BnQowu0.roa (hash: 2SQfqAvlePWceYDa/Gr4IqsSS7uQeMq3g8yyqM6DnK8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:be:fa:c8:ae:c7:f9:f6:29:3c:8c:9a:1d:18:b5:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4 Validity Not Before: Dec 5 23:00:39 2025 GMT Not After : Dec 6 23:00:39 2025 GMT Subject: CN=3e957153a417aafc9781c03748e7665ec2449ee1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3c:79:d1:8d:5f:e3:d1:d2:fe:65:d7:20:44: 6c:eb:30:94:73:81:64:ac:2d:a3:e5:7b:c7:de:d9: 63:87:69:37:b6:c1:89:07:27:b3:59:7f:54:f1:95: 47:b7:87:ab:6c:62:39:1b:e2:ab:60:60:53:a5:31: b0:f2:84:23:ce:05:05:dd:82:99:dd:16:c3:97:6e: c7:31:a9:32:00:71:04:44:fa:13:72:2f:86:37:e8: 38:3f:6b:34:2e:a5:56:63:6c:8c:e7:1a:84:80:84: 3d:c7:80:aa:73:6a:f1:49:11:58:40:b3:57:e5:2c: ef:bd:9b:91:6c:10:6d:e5:de:3a:42:67:e5:33:0c: 3d:42:6b:75:05:7a:e3:57:34:fc:bb:88:ae:75:ad: 63:c0:7b:06:d3:77:3f:61:d3:e2:eb:9f:46:83:37: 8c:96:c7:03:ed:d9:a8:77:ad:74:8b:fd:b0:22:fa: 6b:9f:b8:6e:40:d5:84:75:64:92:29:9d:73:e4:13: 90:37:6a:fb:e2:e9:ed:29:fa:38:90:f3:4a:94:ff: e1:07:e0:b7:dd:a5:c3:a5:f3:80:61:93:13:40:49: b3:90:79:10:33:b0:1e:d2:57:7c:1f:6f:4a:f6:52: 13:e6:1e:e9:50:a3:7b:1f:6d:0d:de:c0:ac:15:e4: 63:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:95:71:53:A4:17:AA:FC:97:81:C0:37:48:E7:66:5E:C2:44:9E:E1 X509v3 Authority Key Identifier: keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:23:8a:e8:c0:5b:33:42:24:37:43:44:bd:b3:c7:c2:85:fb: 2d:5f:aa:39:91:a4:53:90:d7:89:59:36:ed:03:27:2e:d3:6e: 37:70:73:47:88:f9:ca:32:a5:22:05:72:fe:b2:33:92:5b:61: 29:97:c0:fb:a5:15:18:b3:cb:1f:00:dd:d8:4e:1a:26:3b:aa: 4d:87:7d:59:2e:ba:a5:df:4c:8a:2d:81:27:da:a3:85:d4:7e: f3:4d:e9:d0:a3:a9:23:2a:99:63:05:a5:8f:5a:93:db:e6:e1: 2e:10:0a:d2:a2:76:96:82:eb:08:8a:6c:57:ce:1a:7b:a6:f8: 89:17:c3:57:5b:4c:8e:62:0a:2b:0e:ec:ec:5b:28:32:e4:c6: 82:17:b4:53:88:32:6b:a6:29:f0:93:56:24:b3:6c:58:fc:43: cc:75:6e:7d:22:b7:f5:e2:c0:34:12:2d:dd:31:a1:04:5a:da: 45:31:4e:88:89:05:b9:ea:03:d9:81:ab:ce:13:9e:d3:3a:15: c3:1a:9f:6e:38:2b:c4:b1:25:3f:4d:83:16:85:e1:96:82:0a: f2:26:47:88:0e:eb:a2:a7:ee:5a:65:25:96:ac:31:17:53:87: 3a:6d:3b:4b:7d:0d:9d:80:95:01:cf:04:78:73:a3:6a:a6:8a: f6:54:30:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwvvrIrsf59ik8jJodGLW6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4NjZmNzM4NTAwNWQ1YmU2MTAxNzI3Mzg4ZTFiMzI3MWY2 NDRkZTQwHhcNMjUxMjA1MjMwMDM5WhcNMjUxMjA2MjMwMDM5WjAzMTEwLwYDVQQD EygzZTk1NzE1M2E0MTdhYWZjOTc4MWMwMzc0OGU3NjY1ZWMyNDQ5ZWUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2zx50Y1f49HS/mXXIERs6zCUc4Fk rC2j5XvH3tljh2k3tsGJByezWX9U8ZVHt4erbGI5G+KrYGBTpTGw8oQjzgUF3YKZ 3RbDl27HMakyAHEERPoTci+GN+g4P2s0LqVWY2yM5xqEgIQ9x4Cqc2rxSRFYQLNX 5SzvvZuRbBBt5d46QmflMww9Qmt1BXrjVzT8u4iuda1jwHsG03c/YdPi659GgzeM lscD7dmod610i/2wIvprn7huQNWEdWSSKZ1z5BOQN2r74untKfo4kPNKlP/hB+C3 3aXDpfOAYZMTQEmzkHkQM7Ae0ld8H29K9lIT5h7pUKN7H20N3sCsFeRjqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD6VcVOkF6r8l4HAN0jnZl7CRJ7hMB8GA1UdIwQY MBaAFDhm9zhQBdW+YQFyc4jhsycfZE3kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9iMDYxOTctNjhkMi00MjllLWFjZTUt ZTAxNWJmM2YzM2Q3LzEvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My9iMDYxOTctNjhkMi00MjllLWFjZTUtZTAxNWJmM2YzM2Q3 LzEvT0diM09GQUYxYjVoQVhKemlPR3pKeDlrVGVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZSOK6MBb M0IkN0NEvbPHwoX7LV+qOZGkU5DXiVk27QMnLtNuN3BzR4j5yjKlIgVy/rIzklth KZfA+6UVGLPLHwDd2E4aJjuqTYd9WS66pd9Mii2BJ9qjhdR+803p0KOpIyqZYwWl j1qT2+bhLhAK0qJ2loLrCIpsV84ae6b4iRfDV1tMjmIKKw7s7FsoMuTGghe0U4gy a6Yp8JNWJLNsWPxDzHVufSK39eLANBIt3TGhBFraRTFOiIkFueoD2YGrzhOe0zoV wxqfbjgrxLElP02DFoXhloIK8iZHiA7roqfuWmUllqwxF1OHOm07S30NnYCVAc8E eHOjaqaK9lQwtA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:45:55 2025 by rpki-client