This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft File: oYanahiZ2_kCnhrv2QUXe7CdNo0.mft (raw, json) Hash identifier: 3bJEo01FwQXXXX+RgVquBP9C/BP1hVdTB6PykmAmkCs= Subject key identifier: BE:77:BF:F6:C2:C6:52:B0:68:5C:B8:9B:5E:26:DD:87:F0:CC:28:42 Authority key identifier: A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D Certificate issuer: /CN=a186a76a1899dbf9029e1aefd905177bb09d368d Certificate serial: 019AF509CFB31D89473F730A5890509BB1F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft Manifest number: 0BF4 Signing time: Sat 06 Dec 2025 19:00:52 +0000 Manifest this update: Sat 06 Dec 2025 19:00:52 +0000 Manifest next update: Sun 07 Dec 2025 19:00:52 +0000 Files and hashes: 1: bcgHeTecNhcHR9QWO6gmvpmmI5c.roa (hash: EV6/wlUYGCbS7xEazmx8eI5Bar/BgAFt51P9o3UlOuQ=) 2: oYanahiZ2_kCnhrv2QUXe7CdNo0.crl (hash: OMZHauAvBaUULrUvAcuSyQ8ZbYsu7UH7zY1DCfpnAng=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:09:cf:b3:1d:89:47:3f:73:0a:58:90:50:9b:b1:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a186a76a1899dbf9029e1aefd905177bb09d368d Validity Not Before: Dec 6 19:00:52 2025 GMT Not After : Dec 7 19:00:52 2025 GMT Subject: CN=be77bff6c2c652b0685cb89b5e26dd87f0cc2842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:91:e7:b9:f4:39:a5:4c:08:4a:10:81:16:8c: 2f:54:ec:5c:6d:32:71:f9:10:7b:0e:20:16:fc:8d: a7:89:0b:76:4b:44:b5:54:47:d2:b0:06:10:9a:44: 56:29:d6:0c:d5:d1:13:a2:33:d0:0a:d7:43:df:a4: 1d:09:3a:01:69:8b:d1:28:87:97:6b:e8:52:af:b3: cc:3d:31:47:be:11:48:76:bb:71:45:ca:8d:5b:68: 7d:aa:a7:c2:64:d7:90:70:5e:6c:b4:a0:c4:a8:e6: 5a:17:3f:47:f2:06:a3:e0:bd:ad:18:44:b0:16:de: ca:63:25:b4:99:54:31:f4:69:0b:fb:d8:8d:0b:10: 66:e2:66:69:b4:23:76:21:6e:d4:87:4d:03:71:cb: 36:16:10:f7:71:bc:7e:37:96:0a:44:36:89:b7:42: 17:19:c4:01:1f:66:01:5a:2f:da:9d:54:81:80:fe: 8e:79:04:78:4a:10:47:c8:6b:50:b8:76:46:e1:f7: da:66:fb:33:5f:44:d1:b5:b3:4f:fa:2a:8d:d7:d7: a8:0d:f9:be:e8:bd:c9:c3:26:b7:57:fd:cd:5c:b2: 2a:bb:0a:ad:ed:2b:4d:72:5d:42:8a:e6:02:fb:b8: 85:a6:15:90:4e:d7:bd:91:01:ae:db:78:d5:1c:72: f3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:77:BF:F6:C2:C6:52:B0:68:5C:B8:9B:5E:26:DD:87:F0:CC:28:42 X509v3 Authority Key Identifier: keyid:A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:a4:8f:7e:62:d2:1b:eb:a8:a2:74:23:fc:6e:8c:08:3f:29: 99:99:51:b8:99:34:5e:7e:bf:c8:1c:44:42:d4:28:f9:ce:7b: bc:15:57:47:f4:12:23:43:34:65:6f:e9:b0:f8:38:9c:78:c5: 69:5f:96:11:26:94:3d:61:66:27:e1:5a:bf:f6:24:bd:8a:51: cd:0a:7e:2f:39:b2:97:6c:a3:49:9d:04:03:e1:6d:3c:7a:ad: 08:83:d0:9f:c4:96:83:dd:36:3d:a5:36:ea:31:1e:74:cb:69: 3f:ed:82:8b:73:c4:60:db:ea:52:c0:60:7b:b1:62:d8:cf:c0: 38:df:c8:8e:5d:18:b3:05:36:30:57:ac:e3:85:90:6c:62:4e: 5e:20:37:f1:2b:a4:1e:b8:26:f1:c1:37:e9:76:09:bc:80:40: 1d:42:4d:af:99:2f:2b:45:75:10:a0:93:dd:0e:f7:51:68:22: da:f8:2c:ac:cc:d8:a1:10:c0:67:cb:b7:15:6b:87:5b:56:61: f6:e0:50:72:eb:e2:b9:d0:dc:50:95:d8:ea:3a:0c:fa:16:f7: 74:3c:20:09:31:b4:b2:67:cf:ca:c7:d6:1f:d2:7e:39:f3:ac: 23:cb:1b:da:6a:f2:16:22:26:ae:0b:a3:b7:0d:78:21:66:77: 3d:73:61:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1Cc+zHYlHP3MKWJBQm7HwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExODZhNzZhMTg5OWRiZjkwMjllMWFlZmQ5MDUxNzdiYjA5 ZDM2OGQwHhcNMjUxMjA2MTkwMDUyWhcNMjUxMjA3MTkwMDUyWjAzMTEwLwYDVQQD EyhiZTc3YmZmNmMyYzY1MmIwNjg1Y2I4OWI1ZTI2ZGQ4N2YwY2MyODQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpHnufQ5pUwIShCBFowvVOxcbTJx +RB7DiAW/I2niQt2S0S1VEfSsAYQmkRWKdYM1dETojPQCtdD36QdCToBaYvRKIeX a+hSr7PMPTFHvhFIdrtxRcqNW2h9qqfCZNeQcF5stKDEqOZaFz9H8gaj4L2tGESw Ft7KYyW0mVQx9GkL+9iNCxBm4mZptCN2IW7Uh00Dccs2FhD3cbx+N5YKRDaJt0IX GcQBH2YBWi/anVSBgP6OeQR4ShBHyGtQuHZG4ffaZvszX0TRtbNP+iqN19eoDfm+ 6L3Jwya3V/3NXLIquwqt7StNcl1CiuYC+7iFphWQTte9kQGu23jVHHLzjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL53v/bCxlKwaFy4m14m3YfwzChCMB8GA1UdIwQY MBaAFKGGp2oYmdv5Ap4a79kFF3uwnTaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEt MzEyZTViNDkxMTQ2LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS84NTk1YzgtNDgzNC00ZDU0LWEzOTEtMzEyZTViNDkxMTQ2 LzEvb1lhbmFoaVoyX2tDbmhydjJRVVhlN0NkTm8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN6SPfmLS G+uoonQj/G6MCD8pmZlRuJk0Xn6/yBxEQtQo+c57vBVXR/QSI0M0ZW/psPg4nHjF aV+WESaUPWFmJ+Fav/YkvYpRzQp+Lzmyl2yjSZ0EA+FtPHqtCIPQn8SWg902PaU2 6jEedMtpP+2Ci3PEYNvqUsBge7Fi2M/AON/Ijl0YswU2MFes44WQbGJOXiA38Suk Hrgm8cE36XYJvIBAHUJNr5kvK0V1EKCT3Q73UWgi2vgsrMzYoRDAZ8u3FWuHW1Zh 9uBQcuviudDcUJXY6joM+hb3dDwgCTG0smfPysfWH9J+OfOsI8sb2mryFiImrguj tw14IWZ3PXNhyA== -----END CERTIFICATE-----Generated at Sat Dec 6 22:30:21 2025 by rpki-client