This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.mft File: ocEwBy0s6c9WK4MZjtqtr6SPbbQ.mft (raw, json) Hash identifier: sZ8EnvWLqMUgjkYKplFVXBaQMDfY7QpjEzZQ8dwhP/E= Subject key identifier: 26:EA:F1:F8:8C:DE:72:30:7A:A9:18:C9:0B:31:DA:41:0D:8C:AB:29 Authority key identifier: A1:C1:30:07:2D:2C:E9:CF:56:2B:83:19:8E:DA:AD:AF:A4:8F:6D:B4 Certificate issuer: /CN=a1c130072d2ce9cf562b83198edaadafa48f6db4 Certificate serial: 019AF1D194A6D0605D26AD8B6E0E60138139 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.mft Manifest number: 1032 Signing time: Sat 06 Dec 2025 04:00:35 +0000 Manifest this update: Sat 06 Dec 2025 04:00:35 +0000 Manifest next update: Sun 07 Dec 2025 04:00:35 +0000 Files and hashes: 1: JyWi5BFZcLnbfEzmECOIrpo9WqY.roa (hash: BGeaCEXgvEq5NNxKl+Ag2+yFWkLD9Y1n05TPe3xR8kw=) 2: ocEwBy0s6c9WK4MZjtqtr6SPbbQ.crl (hash: 3+vour1zwbESMGrwmGmdSwuBYgYs8texL6L6S5NwTxQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.mft rsync://rpki.ripe.net/repository/DEFAULT/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:94:a6:d0:60:5d:26:ad:8b:6e:0e:60:13:81:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1c130072d2ce9cf562b83198edaadafa48f6db4 Validity Not Before: Dec 6 04:00:35 2025 GMT Not After : Dec 7 04:00:35 2025 GMT Subject: CN=26eaf1f88cde72307aa918c90b31da410d8cab29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:53:61:f1:02:26:66:e3:81:24:4d:dd:50:8a: b2:fb:4d:36:c1:e5:3e:29:66:42:e8:e0:9c:08:be: 70:94:29:28:bf:ca:e7:4b:4b:a7:c8:d1:a7:7b:00: 82:8c:ad:5f:89:eb:5b:ec:b0:79:1f:c6:d1:e6:c4: d0:b4:e4:04:a2:63:f4:f1:a1:03:64:55:9a:91:f3: a3:29:57:fd:73:6b:d0:2d:0d:d1:94:47:1c:86:65: 03:f7:f7:c5:c2:25:17:c6:d7:40:bc:41:d8:5e:9d: 42:13:4a:82:04:83:99:0d:7a:d0:f5:a0:44:18:44: 8f:18:04:62:cb:ea:5b:f7:8a:1d:4e:e4:5f:cb:ff: fa:f5:bd:ec:be:d7:7b:5c:a9:2f:09:5c:23:f5:25: 4f:73:65:a5:d5:36:5d:bd:d9:f8:70:bc:ca:93:30: d3:c4:38:bb:1d:cf:76:1f:4a:92:75:66:0c:e3:4c: 24:6d:64:f7:6c:d5:cb:7a:62:2d:1e:24:bf:4a:0e: 5c:dc:18:0d:d9:fc:93:c2:3e:04:69:d0:42:42:08: b8:28:49:02:68:89:c0:f8:af:b3:b2:1c:fb:79:dd: af:38:44:d4:61:62:e6:22:d2:9c:58:c9:d3:bf:ae: 88:f4:d5:6d:18:16:f0:27:d3:61:01:bd:1e:11:50: 07:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:EA:F1:F8:8C:DE:72:30:7A:A9:18:C9:0B:31:DA:41:0D:8C:AB:29 X509v3 Authority Key Identifier: keyid:A1:C1:30:07:2D:2C:E9:CF:56:2B:83:19:8E:DA:AD:AF:A4:8F:6D:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:0d:96:71:a5:59:2c:a9:5c:66:73:35:91:76:a5:db:4d:53: 85:11:91:52:b6:b2:10:9a:9c:08:1a:a4:6a:57:a8:60:71:e4: 31:a1:b2:2c:07:f3:52:26:e6:c5:16:32:7f:56:78:63:36:34: 3b:2b:05:06:06:42:87:d4:f3:1b:f9:93:65:f7:fd:a1:c0:c9: 09:92:74:38:05:97:53:8a:3d:8b:57:97:e9:6f:50:e2:d4:86: 51:84:60:86:46:f6:4a:fd:d3:ca:22:32:21:e5:f8:e2:e1:23: 01:cb:6d:64:c1:40:eb:4c:05:ca:0e:8b:b7:53:4b:da:d1:15: 7e:6a:99:6a:85:05:ca:74:29:ff:96:18:85:15:e0:f7:d9:65: 0b:f6:9d:10:4d:a3:2a:27:ed:36:8b:4d:9c:e2:66:16:04:5e: 42:bb:d3:5e:87:13:19:df:0e:80:3d:fb:0b:7c:b6:42:99:88: 9b:c8:e4:7e:7a:0f:2a:7b:64:66:66:16:8e:25:e5:04:9c:f4: ec:4d:91:ab:89:d2:de:16:65:6c:7e:eb:83:69:b4:b7:95:ca: 2e:1e:c6:3d:ee:43:12:b6:b2:59:58:7a:b1:c8:1e:4e:a8:8b: 19:4d:aa:02:08:3c:96:1d:c0:2b:21:f9:ce:6f:b3:a0:32:dc: 25:94:ee:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0ZSm0GBdJq2Lbg5gE4E5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExYzEzMDA3MmQyY2U5Y2Y1NjJiODMxOThlZGFhZGFmYTQ4 ZjZkYjQwHhcNMjUxMjA2MDQwMDM1WhcNMjUxMjA3MDQwMDM1WjAzMTEwLwYDVQQD EygyNmVhZjFmODhjZGU3MjMwN2FhOTE4YzkwYjMxZGE0MTBkOGNhYjI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVNh8QImZuOBJE3dUIqy+002weU+ KWZC6OCcCL5wlCkov8rnS0unyNGnewCCjK1fietb7LB5H8bR5sTQtOQEomP08aED ZFWakfOjKVf9c2vQLQ3RlEcchmUD9/fFwiUXxtdAvEHYXp1CE0qCBIOZDXrQ9aBE GESPGARiy+pb94odTuRfy//69b3svtd7XKkvCVwj9SVPc2Wl1TZdvdn4cLzKkzDT xDi7Hc92H0qSdWYM40wkbWT3bNXLemItHiS/Sg5c3BgN2fyTwj4EadBCQgi4KEkC aInA+K+zshz7ed2vOETUYWLmItKcWMnTv66I9NVtGBbwJ9NhAb0eEVAHZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCbq8fiM3nIweqkYyQsx2kENjKspMB8GA1UdIwQY MBaAFKHBMActLOnPViuDGY7ara+kj220MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2NFd0J5MHM2YzlXSzRNWmp0cXRyNlNQYmJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi9mNWJiNTEtNzA4Zi00ZGQyLTg4MGYt ODdkOTA1NjFhYTQ4LzEvb2NFd0J5MHM2YzlXSzRNWmp0cXRyNlNQYmJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi9mNWJiNTEtNzA4Zi00ZGQyLTg4MGYtODdkOTA1NjFhYTQ4 LzEvb2NFd0J5MHM2YzlXSzRNWmp0cXRyNlNQYmJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQg2WcaVZ LKlcZnM1kXal201ThRGRUrayEJqcCBqkaleoYHHkMaGyLAfzUibmxRYyf1Z4YzY0 OysFBgZCh9TzG/mTZff9ocDJCZJ0OAWXU4o9i1eX6W9Q4tSGUYRghkb2Sv3TyiIy IeX44uEjActtZMFA60wFyg6Lt1NL2tEVfmqZaoUFynQp/5YYhRXg99llC/adEE2j KiftNotNnOJmFgReQrvTXocTGd8OgD37C3y2QpmIm8jkfnoPKntkZmYWjiXlBJz0 7E2Rq4nS3hZlbH7rg2m0t5XKLh7GPe5DErayWVh6scgeTqiLGU2qAgg8lh3AKyH5 zm+zoDLcJZTuag== -----END CERTIFICATE-----Generated at Sat Dec 6 11:32:00 2025 by rpki-client