This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft File: oMWM0HH3gLesNAwBROsE-1DMu_E.mft (raw, json) Hash identifier: liAUXFNsuFeAx7tyfceZc915jyaZOHOQoPST8d9u+hw= Subject key identifier: 50:90:C8:4D:44:CD:1B:A4:94:03:61:19:42:C3:9D:6D:F8:98:AD:AD Authority key identifier: A0:C5:8C:D0:71:F7:80:B7:AC:34:0C:01:44:EB:04:FB:50:CC:BB:F1 Certificate issuer: /CN=a0c58cd071f780b7ac340c0144eb04fb50ccbbf1 Certificate serial: 019AF2090E9D3FDB622592BB67EF91B54D79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMWM0HH3gLesNAwBROsE-1DMu_E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft Manifest number: 1752 Signing time: Sat 06 Dec 2025 05:01:11 +0000 Manifest this update: Sat 06 Dec 2025 05:01:11 +0000 Manifest next update: Sun 07 Dec 2025 05:01:11 +0000 Files and hashes: 1: oMWM0HH3gLesNAwBROsE-1DMu_E.crl (hash: Ox2psGoaebwQM3S89KgIRoHJE6yhqmXcC0MgeiltBDg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.crl rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft rsync://rpki.ripe.net/repository/DEFAULT/oMWM0HH3gLesNAwBROsE-1DMu_E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:0e:9d:3f:db:62:25:92:bb:67:ef:91:b5:4d:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0c58cd071f780b7ac340c0144eb04fb50ccbbf1 Validity Not Before: Dec 6 05:01:11 2025 GMT Not After : Dec 7 05:01:11 2025 GMT Subject: CN=5090c84d44cd1ba49403611942c39d6df898adad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e3:51:1e:ca:3a:56:a6:56:2b:19:51:81:26: a0:12:d3:3d:53:ec:a4:41:5f:58:a8:4d:a3:ae:bc: 52:b6:eb:e7:fb:ee:9d:8e:65:fe:90:df:94:44:70: f6:c4:e4:ae:9c:4c:48:4b:00:4b:61:b0:1c:e9:3b: fb:ae:d1:de:0c:5d:ee:9c:bf:72:c6:81:b4:8c:fb: 5f:23:78:e7:12:4a:dc:7e:55:9b:24:b4:d7:82:4d: 32:6e:be:14:04:ea:51:99:73:80:06:99:05:b1:9b: cc:0c:be:48:9a:40:70:06:71:eb:63:df:4f:c4:f5: 3e:55:ed:05:cc:81:1c:61:5f:8a:be:6b:13:f7:e3: b5:fe:65:11:73:be:07:50:9c:1a:0f:2e:f2:54:0e: 2d:3d:66:66:b8:86:f0:0a:be:c8:cb:4f:ff:cc:63: 87:1d:4a:b9:30:a7:c5:1b:ed:4c:aa:f2:f5:6f:67: b9:34:b8:e1:0f:43:05:55:10:45:c1:fb:c6:28:2b: 8d:fa:98:9b:57:4e:1e:0c:fc:9b:f8:de:43:e9:e8: 27:14:6f:c8:fd:10:a5:6d:81:7b:8f:f7:60:a9:59: f2:b4:eb:e9:67:37:68:d8:70:c0:e5:07:3f:d8:6b: d8:dc:3b:f3:91:80:a1:09:20:6f:b9:cc:a7:1e:8e: d9:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:90:C8:4D:44:CD:1B:A4:94:03:61:19:42:C3:9D:6D:F8:98:AD:AD X509v3 Authority Key Identifier: keyid:A0:C5:8C:D0:71:F7:80:B7:AC:34:0C:01:44:EB:04:FB:50:CC:BB:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMWM0HH3gLesNAwBROsE-1DMu_E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:cf:f2:c8:10:a7:30:44:27:8f:70:68:b7:3d:dd:22:30:f2: 27:f8:d0:18:7b:49:49:ee:fe:24:d2:7f:0a:1f:80:e2:5e:1f: c9:33:d9:40:52:1a:2d:a5:97:ec:c1:c1:f9:9b:db:7c:45:c6: 3e:eb:b8:95:93:67:20:20:13:64:d3:3b:31:1d:72:ee:80:ac: c9:6f:cb:23:8b:5d:ab:e1:a6:55:f1:4d:e3:7b:6c:94:be:9f: de:69:92:61:bb:b9:b9:7a:c3:2d:c0:58:45:e3:22:38:3b:b1: e4:b4:45:b4:82:27:d3:58:64:17:8d:3a:3c:3d:b4:7f:fb:54: cc:42:ec:82:db:99:80:1f:4a:8d:59:52:06:b4:58:67:74:c6: 94:d7:65:60:fc:06:d3:57:8f:75:37:6d:0c:f9:10:27:a7:31: 41:3a:4f:54:19:18:09:c0:d6:26:e8:47:64:40:5b:06:d2:cc: 9a:b3:80:eb:07:6b:b0:ba:e1:a9:ed:d8:66:1b:05:cd:ec:a5: f9:8f:11:d1:8c:f5:ca:22:ac:ec:e2:e0:09:2f:40:9a:2f:3b: 94:4b:33:68:1b:7a:5b:cf:72:ab:31:cd:d9:dc:01:b0:05:7d: fd:50:4f:d4:64:c4:e2:6d:e1:ad:92:23:7c:ed:82:01:68:8d: c8:ea:9f:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCQ6dP9tiJZK7Z++RtU15MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYzU4Y2QwNzFmNzgwYjdhYzM0MGMwMTQ0ZWIwNGZiNTBj Y2JiZjEwHhcNMjUxMjA2MDUwMTExWhcNMjUxMjA3MDUwMTExWjAzMTEwLwYDVQQD Eyg1MDkwYzg0ZDQ0Y2QxYmE0OTQwMzYxMTk0MmMzOWQ2ZGY4OThhZGFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAreNRHso6VqZWKxlRgSagEtM9U+yk QV9YqE2jrrxStuvn++6djmX+kN+URHD2xOSunExISwBLYbAc6Tv7rtHeDF3unL9y xoG0jPtfI3jnEkrcflWbJLTXgk0ybr4UBOpRmXOABpkFsZvMDL5ImkBwBnHrY99P xPU+Ve0FzIEcYV+KvmsT9+O1/mURc74HUJwaDy7yVA4tPWZmuIbwCr7Iy0//zGOH HUq5MKfFG+1MqvL1b2e5NLjhD0MFVRBFwfvGKCuN+pibV04eDPyb+N5D6egnFG/I /RClbYF7j/dgqVnytOvpZzdo2HDA5Qc/2GvY3DvzkYChCSBvucynHo7ZHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFCQyE1EzRuklANhGULDnW34mK2tMB8GA1UdIwQY MBaAFKDFjNBx94C3rDQMAUTrBPtQzLvxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb01XTTBISDNnTGVzTkF3QlJPc0UtMURNdV9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC82Yzk3MjItMjYwOC00NGFmLThjNzkt NjZiMmY5OWMwYjQ1LzEvb01XTTBISDNnTGVzTkF3QlJPc0UtMURNdV9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZC82Yzk3MjItMjYwOC00NGFmLThjNzktNjZiMmY5OWMwYjQ1 LzEvb01XTTBISDNnTGVzTkF3QlJPc0UtMURNdV9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALM/yyBCn MEQnj3Botz3dIjDyJ/jQGHtJSe7+JNJ/Ch+A4l4fyTPZQFIaLaWX7MHB+ZvbfEXG Puu4lZNnICATZNM7MR1y7oCsyW/LI4tdq+GmVfFN43tslL6f3mmSYbu5uXrDLcBY ReMiODux5LRFtIIn01hkF406PD20f/tUzELsgtuZgB9KjVlSBrRYZ3TGlNdlYPwG 01ePdTdtDPkQJ6cxQTpPVBkYCcDWJuhHZEBbBtLMmrOA6wdrsLrhqe3YZhsFzeyl +Y8R0Yz1yiKs7OLgCS9Ami87lEszaBt6W89yqzHN2dwBsAV9/VBP1GTE4m3hrZIj fO2CAWiNyOqfKQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:58:50 2025 by rpki-client