This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.mft File: oWhu-kcXfglRrIjFZNj4hQvuxdA.mft (raw, json) Hash identifier: uzYnmwZ6+aaodtu+64DiR0mGPTnTWNnulPe4ak3bgZc= Subject key identifier: 13:DA:BC:7C:50:2F:38:4A:14:12:D3:10:3D:70:98:A6:A3:DF:5D:A9 Authority key identifier: A1:68:6E:FA:47:17:7E:09:51:AC:88:C5:64:D8:F8:85:0B:EE:C5:D0 Certificate issuer: /CN=a1686efa47177e0951ac88c564d8f8850beec5d0 Certificate serial: 019AF1D1A28A7EC9DC4875586FC7BF24544E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWhu-kcXfglRrIjFZNj4hQvuxdA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.mft Manifest number: 0DF1 Signing time: Sat 06 Dec 2025 04:00:38 +0000 Manifest this update: Sat 06 Dec 2025 04:00:38 +0000 Manifest next update: Sun 07 Dec 2025 04:00:38 +0000 Files and hashes: 1: oWhu-kcXfglRrIjFZNj4hQvuxdA.crl (hash: EHXHXxkxBwAVCtgjaUT8ZrKz0ayNApjpV4mqsf02j1c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.crl rsync://rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.mft rsync://rpki.ripe.net/repository/DEFAULT/oWhu-kcXfglRrIjFZNj4hQvuxdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:a2:8a:7e:c9:dc:48:75:58:6f:c7:bf:24:54:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1686efa47177e0951ac88c564d8f8850beec5d0 Validity Not Before: Dec 6 04:00:38 2025 GMT Not After : Dec 7 04:00:38 2025 GMT Subject: CN=13dabc7c502f384a1412d3103d7098a6a3df5da9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ce:76:65:07:31:3a:d1:5b:49:86:90:3e:45: 88:79:ca:f1:2b:ea:90:0b:2f:50:6b:bf:04:e0:19: 1b:b9:99:7a:40:7f:bd:cf:88:ff:57:0b:06:93:00: d9:69:25:29:98:a3:17:01:d6:73:e8:9d:1a:11:64: f5:53:b8:f8:82:cb:09:93:3a:f7:82:8b:b7:34:b6: cd:7a:26:c3:2a:5e:95:3c:c2:00:3c:e7:99:63:a4: 9e:62:55:89:68:cb:4c:ba:a5:af:48:15:81:c2:9f: 1e:12:e6:d0:0b:5a:e8:31:92:5b:87:a2:a5:9e:14: 96:55:c3:00:40:72:ca:41:c0:00:39:7c:52:25:3a: b4:e0:08:c6:ae:f2:f0:73:f3:cb:3d:fb:df:3e:b0: 99:a3:92:4b:13:85:0e:98:be:86:eb:0e:36:28:96: 6e:df:08:06:0a:ed:c3:0f:df:7c:f6:95:4b:ad:1d: c4:9e:99:27:d2:f9:48:f3:0e:f2:12:91:a3:0c:bf: 71:51:43:3b:7b:30:75:a5:bd:57:00:2d:8a:3d:f9: c4:e6:bb:27:fb:e6:1b:a5:59:8c:17:34:f8:cd:32: 09:fc:b0:38:e9:fc:af:b0:05:e7:c9:09:e9:64:8e: 0d:f8:f0:86:53:f6:93:7d:b5:d1:0a:61:bb:b9:0a: 18:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:DA:BC:7C:50:2F:38:4A:14:12:D3:10:3D:70:98:A6:A3:DF:5D:A9 X509v3 Authority Key Identifier: keyid:A1:68:6E:FA:47:17:7E:09:51:AC:88:C5:64:D8:F8:85:0B:EE:C5:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWhu-kcXfglRrIjFZNj4hQvuxdA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:c4:6c:bc:ab:62:ad:08:84:2a:9d:1f:f3:5a:4e:18:12:57: 00:96:0c:e3:14:2d:1d:66:d0:88:24:e2:a4:e3:bb:51:5b:11: 1c:90:16:6c:e3:ce:ac:26:8a:c8:a8:d6:03:be:c2:e3:e2:fc: 95:0f:14:98:6e:1a:9b:54:37:dd:38:75:e4:8e:62:d2:38:b3: 0f:f1:5a:49:a7:30:a8:22:02:1b:10:b8:3c:e9:6c:9b:c6:3f: f5:75:e2:96:d1:84:aa:8d:f4:71:7a:97:c2:38:e2:02:55:67: 71:5d:62:36:39:81:9c:20:f8:22:e3:f1:b7:a4:d2:6f:8e:a0: 27:39:fa:df:ac:f5:55:b5:c2:f8:00:42:85:0f:58:c1:83:22: 22:9f:23:01:b3:75:38:ba:fc:7a:c9:ad:11:30:96:96:5d:67: 11:ef:aa:88:1b:a2:9c:10:72:8e:06:e9:eb:cf:81:57:d4:c3: 91:93:20:e8:5f:a8:98:2e:de:2d:0e:cb:b3:da:3b:f6:a2:d0: 5b:4e:28:62:4a:22:d6:a8:73:a0:e9:f8:9f:83:e8:16:70:9d: 63:fc:a4:6d:06:cc:ff:ff:b8:05:17:d0:67:da:c5:3f:3c:9e: 89:de:6f:ec:e9:68:43:9a:75:e5:9f:15:94:96:a5:53:12:3b: b3:a6:b9:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0aKKfsncSHVYb8e/JFROMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExNjg2ZWZhNDcxNzdlMDk1MWFjODhjNTY0ZDhmODg1MGJl ZWM1ZDAwHhcNMjUxMjA2MDQwMDM4WhcNMjUxMjA3MDQwMDM4WjAzMTEwLwYDVQQD EygxM2RhYmM3YzUwMmYzODRhMTQxMmQzMTAzZDcwOThhNmEzZGY1ZGE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAts52ZQcxOtFbSYaQPkWIecrxK+qQ Cy9Qa78E4BkbuZl6QH+9z4j/VwsGkwDZaSUpmKMXAdZz6J0aEWT1U7j4gssJkzr3 gou3NLbNeibDKl6VPMIAPOeZY6SeYlWJaMtMuqWvSBWBwp8eEubQC1roMZJbh6Kl nhSWVcMAQHLKQcAAOXxSJTq04AjGrvLwc/PLPfvfPrCZo5JLE4UOmL6G6w42KJZu 3wgGCu3DD9989pVLrR3Enpkn0vlI8w7yEpGjDL9xUUM7ezB1pb1XAC2KPfnE5rsn ++YbpVmMFzT4zTIJ/LA46fyvsAXnyQnpZI4N+PCGU/aTfbXRCmG7uQoYAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBPavHxQLzhKFBLTED1wmKaj312pMB8GA1UdIwQY MBaAFKFobvpHF34JUayIxWTY+IUL7sXQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1dodS1rY1hmZ2xScklqRlpOajRoUXZ1eGRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8xMWQxOTgtODU0Zi00ODgzLWFiOTAt Y2E0MWIzM2I4ODNhLzEvb1dodS1rY1hmZ2xScklqRlpOajRoUXZ1eGRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS8xMWQxOTgtODU0Zi00ODgzLWFiOTAtY2E0MWIzM2I4ODNh LzEvb1dodS1rY1hmZ2xScklqRlpOajRoUXZ1eGRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG8RsvKti rQiEKp0f81pOGBJXAJYM4xQtHWbQiCTipOO7UVsRHJAWbOPOrCaKyKjWA77C4+L8 lQ8UmG4am1Q33Th15I5i0jizD/FaSacwqCICGxC4POlsm8Y/9XXiltGEqo30cXqX wjjiAlVncV1iNjmBnCD4IuPxt6TSb46gJzn636z1VbXC+ABChQ9YwYMiIp8jAbN1 OLr8esmtETCWll1nEe+qiBuinBByjgbp68+BV9TDkZMg6F+omC7eLQ7Ls9o79qLQ W04oYkoi1qhzoOn4n4PoFnCdY/ykbQbM//+4BRfQZ9rFPzyeid5v7OloQ5p15Z8V lJalUxI7s6a57Q== -----END CERTIFICATE-----Generated at Sat Dec 6 08:10:35 2025 by rpki-client