This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft File: 0OhNbWqe7eaC7xtcePGz8KMxORE.mft (raw, json) Hash identifier: UEvYgbkp4+bVCcZWyOt0X5RfEriAWsQEcDWjOBBc/wA= Subject key identifier: 99:39:A1:23:12:DF:50:6E:D1:0E:29:AA:35:00:D9:85:B2:39:97:8F Authority key identifier: D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11 Certificate issuer: /CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911 Certificate serial: 019AF1D21D72EAEA35F70E5D2F5A85A66F2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft Manifest number: 0935 Signing time: Sat 06 Dec 2025 04:01:10 +0000 Manifest this update: Sat 06 Dec 2025 04:01:10 +0000 Manifest next update: Sun 07 Dec 2025 04:01:10 +0000 Files and hashes: 1: 0OhNbWqe7eaC7xtcePGz8KMxORE.crl (hash: wZgQsrXw863ebAmWU+7C+EVn0T8s8ORxvdMFovRO8O8=) 2: eEAcVM4h3e_6uLTwXzH2smck964.roa (hash: 2dyqSC4Nr999y8UdL9+8BtI2W3QPoxUvEaAKvO9sMtg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:1d:72:ea:ea:35:f7:0e:5d:2f:5a:85:a6:6f:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911 Validity Not Before: Dec 6 04:01:10 2025 GMT Not After : Dec 7 04:01:10 2025 GMT Subject: CN=9939a12312df506ed10e29aa3500d985b239978f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f0:44:56:96:a5:58:20:ce:3b:96:7b:ca:64: c5:ea:42:88:1d:f7:cf:b2:64:69:79:d0:68:8b:a4: db:e3:03:5c:be:57:61:0f:24:b9:b0:d9:a4:f7:f8: ca:2d:d0:79:62:02:d5:7e:d2:2d:83:1c:b0:8e:1e: f0:98:9a:cd:a6:fc:cf:56:d4:33:2d:f6:01:cf:05: ae:dd:9f:63:9d:8b:df:18:48:1e:61:18:65:04:20: 32:50:d5:a1:03:9c:56:4e:49:45:6e:ce:d7:30:2c: 4c:33:14:da:19:e2:b6:7c:d7:7c:b5:05:bc:ef:93: 1f:99:81:4f:14:67:3b:d2:ea:f3:11:fb:a8:8c:1b: a9:95:70:23:72:75:5d:9c:23:86:25:66:c1:a1:86: 52:b7:33:ce:ff:3f:2d:48:06:18:c3:0c:be:4c:33: 32:ef:55:b2:9d:6a:e4:bd:ea:42:ad:d2:d1:2c:21: 4b:45:40:8a:1f:b7:ee:3d:f4:36:d2:f3:fa:7c:16: a5:f9:df:17:5b:fa:c2:b5:3d:31:25:3c:0b:64:ec: 8b:7c:3a:14:5a:76:61:5d:24:e0:2f:db:e8:06:e4: 03:91:d4:54:78:19:8c:20:79:35:2a:22:a4:17:e3: d8:9c:6f:be:7d:23:9b:7a:af:49:79:fe:7b:0d:5d: 32:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:39:A1:23:12:DF:50:6E:D1:0E:29:AA:35:00:D9:85:B2:39:97:8F X509v3 Authority Key Identifier: keyid:D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:23:78:dc:27:7b:e7:06:07:7b:59:bd:61:0d:9a:66:98:d5: 78:84:c4:d4:c6:8f:66:60:56:19:bd:c0:c2:33:02:d4:f3:b3: 4f:ca:41:1b:44:23:64:76:3a:70:98:8a:99:e9:eb:bf:1d:c9: a4:ae:75:30:d9:e5:d6:4c:84:c5:ee:48:3c:ed:e3:e2:d8:c2: fc:c1:17:0b:15:66:37:77:ec:bb:2e:0a:4d:35:a7:ab:b9:29: 31:18:d9:19:6d:5c:e6:9c:7c:76:01:20:09:29:9e:01:d0:f8: a7:65:43:5e:af:35:60:ab:04:1c:9c:b6:34:ed:a7:cb:a4:ce: 73:4f:a6:c1:23:67:bd:b6:e8:c5:4e:cc:f6:48:78:1e:61:10: 3b:bd:0a:4f:4b:c3:42:ed:9a:0e:d1:35:19:02:d3:b3:77:dc: c1:b3:7c:38:ec:6e:35:ee:7a:b0:f9:c1:93:b4:f5:54:38:06: 9e:c0:13:fa:9c:04:1d:03:a4:f0:45:a7:9b:ff:71:72:c3:a5: 46:a8:49:8f:10:eb:91:83:18:87:51:a0:cb:f1:82:e1:45:77: c7:d9:78:a5:32:48:dc:af:7c:5b:77:72:bf:a3:af:8a:bf:f4: 5a:35:95:ba:37:37:70:8b:a1:8a:c8:53:0d:ca:6a:f0:6c:ec: 66:13:88:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0h1y6uo19w5dL1qFpm8uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwZTg0ZDZkNmE5ZWVkZTY4MmVmMWI1Yzc4ZjFiM2YwYTMz MTM5MTEwHhcNMjUxMjA2MDQwMTEwWhcNMjUxMjA3MDQwMTEwWjAzMTEwLwYDVQQD Eyg5OTM5YTEyMzEyZGY1MDZlZDEwZTI5YWEzNTAwZDk4NWIyMzk5NzhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/BEVpalWCDOO5Z7ymTF6kKIHffP smRpedBoi6Tb4wNcvldhDyS5sNmk9/jKLdB5YgLVftItgxywjh7wmJrNpvzPVtQz LfYBzwWu3Z9jnYvfGEgeYRhlBCAyUNWhA5xWTklFbs7XMCxMMxTaGeK2fNd8tQW8 75MfmYFPFGc70urzEfuojBuplXAjcnVdnCOGJWbBoYZStzPO/z8tSAYYwwy+TDMy 71WynWrkvepCrdLRLCFLRUCKH7fuPfQ20vP6fBal+d8XW/rCtT0xJTwLZOyLfDoU WnZhXSTgL9voBuQDkdRUeBmMIHk1KiKkF+PYnG++fSObeq9Jef57DV0y6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJk5oSMS31Bu0Q4pqjUA2YWyOZePMB8GA1UdIwQY MBaAFNDoTW1qnu3mgu8bXHjxs/CjMTkRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvME9oTmJXcWU3ZWFDN3h0Y2VQR3o4S014T1JFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS82MmI3NzUtNzg0MS00YTYxLWI3OGMt YjdiYTI4MTY1YTc3LzEvME9oTmJXcWU3ZWFDN3h0Y2VQR3o4S014T1JFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS82MmI3NzUtNzg0MS00YTYxLWI3OGMtYjdiYTI4MTY1YTc3 LzEvME9oTmJXcWU3ZWFDN3h0Y2VQR3o4S014T1JFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApiN43Cd7 5wYHe1m9YQ2aZpjVeITE1MaPZmBWGb3AwjMC1POzT8pBG0QjZHY6cJiKmenrvx3J pK51MNnl1kyExe5IPO3j4tjC/MEXCxVmN3fsuy4KTTWnq7kpMRjZGW1c5px8dgEg CSmeAdD4p2VDXq81YKsEHJy2NO2ny6TOc0+mwSNnvbboxU7M9kh4HmEQO70KT0vD Qu2aDtE1GQLTs3fcwbN8OOxuNe56sPnBk7T1VDgGnsAT+pwEHQOk8EWnm/9xcsOl RqhJjxDrkYMYh1Ggy/GC4UV3x9l4pTJI3K98W3dyv6Ovir/0WjWVujc3cIuhishT Dcpq8GzsZhOIqw== -----END CERTIFICATE-----Generated at Sat Dec 6 12:13:58 2025 by rpki-client