This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft File: OACZqBs0b5q8ryYFb1t3CU0c8RM.mft (raw, json) Hash identifier: Cd+SHcfcYsy6slY6mFNwGHBGwOScTR7TuMspKBOLCxc= Subject key identifier: 10:0E:32:C7:1B:13:59:69:0F:ED:B0:C8:BE:F7:A2:32:BC:72:83:1C Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13 Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113 Certificate serial: 019AF20932577C93AAC5EB782C0D4BEB4CC3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft Manifest number: 1769 Signing time: Sat 06 Dec 2025 05:01:20 +0000 Manifest this update: Sat 06 Dec 2025 05:01:20 +0000 Manifest next update: Sun 07 Dec 2025 05:01:20 +0000 Files and hashes: 1: 8uKSKM8TVx970yK_aHmjajWuHlo.roa (hash: Kv8ysTx9zq+WIfK6VNPlttN4b3mr4mqd5LylYbnznig=) 2: 9pCmbwuWDKFww6JalPNjMXiQ2uc.roa (hash: crRW/IaBwcSVgY89PTYbAz61UCGYjtm5jlog0eAP9F0=) 3: DfJAzf9Q3L4tEmWPS7qqKDmlgK0.roa (hash: fuVQXP2ZqWav/yCgsPsm3fiqqB9eYt0wXu73N33zIys=) 4: F-WM6V0pDS_ngxIgpNgM_SOKzXs.roa (hash: YycRdDyGTbaVD3BQBXWfEPp9cD6S80QfheVTwZQO9zE=) 5: OACZqBs0b5q8ryYFb1t3CU0c8RM.crl (hash: uTZ6H335TjOU/qYeMqO09IMQUHdBXQsHX/EFQZVL620=) 6: Ox8NDyO7Lu2pVppSpwPpBrklgoc.roa (hash: cdngPKwKptE72CQ/axAKXaUmzgT1mhIjk6pmelzFUgg=) 7: W0I5WxQMrOu6TANHFOGcvsplCew.roa (hash: as8TMPog4cNQstxcdryoIwh9zVe/CWxue8zaTtgppZI=) 8: drQvOj9TpOHRytlyOo6kxATgZOw.roa (hash: 4wVUz15BtyiS24LCP9jZgWAlCIUKAL3+afNKe8X1w18=) 9: qwwHopD_0G8M1Je41mhruAKGMpE.roa (hash: aHrYRaDs2jeGMQeUQIc+2frl2SVKEgdlFJTzXtA4yQs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:32:57:7c:93:aa:c5:eb:78:2c:0d:4b:eb:4c:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113 Validity Not Before: Dec 6 05:01:20 2025 GMT Not After : Dec 7 05:01:20 2025 GMT Subject: CN=100e32c71b1359690fedb0c8bef7a232bc72831c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8b:f4:3f:9d:d5:2a:89:e3:51:bc:95:9d:8a: c7:88:43:31:03:12:3f:e8:de:c2:ad:1d:88:16:49: 06:d8:4e:9b:83:84:8c:19:0f:22:0f:33:4e:ff:dd: bf:33:3e:13:bc:31:92:b0:c6:36:fe:8c:a1:cb:a8: fa:d7:8e:bc:03:25:26:8e:6d:57:cf:6f:86:27:0d: 49:a5:07:e8:56:c2:e1:0c:24:b5:1d:49:1f:4f:6d: 94:aa:75:32:ac:dd:76:ac:9f:85:d6:99:58:70:55: c0:e0:fa:65:48:69:fd:1c:d9:72:c1:c9:4d:c7:db: 5e:ae:1d:e8:6e:c9:28:b3:45:e6:d1:b4:36:65:69: e8:48:ed:0b:6e:90:a7:a5:a4:7b:a1:05:c2:e1:cc: cd:63:34:26:78:1c:86:99:fc:fc:14:1c:4f:34:f7: 8e:db:b3:9e:fa:c9:3b:fd:08:b2:a5:9a:e9:d4:cd: f5:a6:ed:35:75:89:4d:5c:da:90:a3:7e:6a:d8:8e: 43:4d:fa:0c:c4:5e:b5:d6:33:d6:d1:3c:3b:3e:d7: 52:71:a6:e4:01:9f:fe:65:a9:c6:67:90:14:e7:61: f2:74:a7:aa:23:e0:46:ad:bb:9b:f9:95:bc:a3:36: a8:d0:cf:63:b2:8f:6c:df:52:29:4d:4e:eb:f9:1c: 33:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:0E:32:C7:1B:13:59:69:0F:ED:B0:C8:BE:F7:A2:32:BC:72:83:1C X509v3 Authority Key Identifier: keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:2a:5a:e7:1b:c6:11:24:22:34:4c:c5:5e:36:70:85:7a:d8: e3:fe:5f:e6:92:b0:ea:80:62:96:db:7e:2b:85:87:09:29:84: 5b:82:4a:0d:61:b7:58:e2:43:8b:c4:d9:1b:9b:b4:df:15:be: e4:a5:44:4e:ee:5b:2b:15:1f:60:6b:6e:05:78:29:99:c1:68: 56:65:27:c6:2b:6b:b7:24:49:85:fb:70:3b:61:8d:98:f2:af: 33:97:83:98:6f:75:a2:7d:10:c2:d8:37:03:58:fe:51:fb:ea: 3d:8a:3d:0f:5d:76:ba:33:b8:c7:13:1f:12:93:30:bb:15:35: 4a:c0:0e:3f:d6:fa:de:b0:d1:a6:a1:45:1e:0b:00:02:64:56: 5b:bc:f0:81:8f:d9:5d:94:2c:a0:61:6b:14:23:22:e6:19:b8: eb:d6:0f:20:c0:e2:39:90:10:d0:35:78:ee:e7:f1:36:0d:a9: 1a:39:65:47:32:1a:1e:09:1e:96:7b:3b:f6:52:4d:6a:58:76: d1:c4:8b:bc:71:e5:f4:e9:50:aa:d9:fd:94:70:c6:ac:1e:de: ef:0b:3e:c5:2d:75:e0:2e:45:62:e7:26:cc:0f:3d:49:ac:5c: 18:7a:30:3d:83:46:67:fc:69:87:53:4c:fd:da:16:b4:b5:44: 9f:59:14:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCTJXfJOqxet4LA1L60zDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MDA5OWE4MWIzNDZmOWFiY2FmMjYwNTZmNWI3NzA5NGQx Y2YxMTMwHhcNMjUxMjA2MDUwMTIwWhcNMjUxMjA3MDUwMTIwWjAzMTEwLwYDVQQD EygxMDBlMzJjNzFiMTM1OTY5MGZlZGIwYzhiZWY3YTIzMmJjNzI4MzFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIv0P53VKonjUbyVnYrHiEMxAxI/ 6N7CrR2IFkkG2E6bg4SMGQ8iDzNO/92/Mz4TvDGSsMY2/oyhy6j61468AyUmjm1X z2+GJw1JpQfoVsLhDCS1HUkfT22UqnUyrN12rJ+F1plYcFXA4PplSGn9HNlywclN x9terh3obskos0Xm0bQ2ZWnoSO0LbpCnpaR7oQXC4czNYzQmeByGmfz8FBxPNPeO 27Oe+sk7/QiypZrp1M31pu01dYlNXNqQo35q2I5DTfoMxF611jPW0Tw7PtdScabk AZ/+ZanGZ5AU52HydKeqI+BGrbub+ZW8ozao0M9jso9s31IpTU7r+RwzZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBAOMscbE1lpD+2wyL73ojK8coMcMB8GA1UdIwQY MBaAFDgAmagbNG+avK8mBW9bdwlNHPETMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0FDWnFCczBiNXE4cnlZRmIxdDNDVTBjOFJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My84ZTUwMWQtYzA4OC00ODk1LWFlZTMt NDUwZmUzMzU5NWQxLzEvT0FDWnFCczBiNXE4cnlZRmIxdDNDVTBjOFJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My84ZTUwMWQtYzA4OC00ODk1LWFlZTMtNDUwZmUzMzU5NWQx LzEvT0FDWnFCczBiNXE4cnlZRmIxdDNDVTBjOFJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANCpa5xvG ESQiNEzFXjZwhXrY4/5f5pKw6oBiltt+K4WHCSmEW4JKDWG3WOJDi8TZG5u03xW+ 5KVETu5bKxUfYGtuBXgpmcFoVmUnxitrtyRJhftwO2GNmPKvM5eDmG91on0Qwtg3 A1j+UfvqPYo9D112ujO4xxMfEpMwuxU1SsAOP9b63rDRpqFFHgsAAmRWW7zwgY/Z XZQsoGFrFCMi5hm469YPIMDiOZAQ0DV47ufxNg2pGjllRzIaHgkelns79lJNalh2 0cSLvHHl9OlQqtn9lHDGrB7e7ws+xS114C5FYucmzA89SaxcGHowPYNGZ/xph1NM /doWtLVEn1kUfQ== -----END CERTIFICATE-----Generated at Sat Dec 6 13:55:59 2025 by rpki-client