This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft File: OcqgvSVNGof0uzDbO1E_25r2JfY.mft (raw, json) Hash identifier: HRNHbuAAEIY7YKRkiW74uSq4WeubNvOqIP6gnUxXGGQ= Subject key identifier: 56:18:95:E0:D3:E8:91:A4:7B:98:C2:25:D0:60:AE:B0:53:8E:FD:7C Authority key identifier: 39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6 Certificate issuer: /CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6 Certificate serial: 019AF46561136859807EA70204D397CE208B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft Manifest number: 0974 Signing time: Sat 06 Dec 2025 16:01:15 +0000 Manifest this update: Sat 06 Dec 2025 16:01:15 +0000 Manifest next update: Sun 07 Dec 2025 16:01:15 +0000 Files and hashes: 1: OcqgvSVNGof0uzDbO1E_25r2JfY.crl (hash: SZm5DxOMMD2skYQvvoU14htzsbnIkUe+or8SM8sKmGM=) 2: _QTwS8nAMSFeKK0ZzzPsIxYgPqo.roa (hash: Q/O46iBV3y1aR3ABGTzdA2RTNwov3wLVP1w6lO4+h/M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:65:61:13:68:59:80:7e:a7:02:04:d3:97:ce:20:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39caa0bd254d1a87f4bb30db3b513fdb9af625f6 Validity Not Before: Dec 6 16:01:15 2025 GMT Not After : Dec 7 16:01:15 2025 GMT Subject: CN=561895e0d3e891a47b98c225d060aeb0538efd7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:61:06:e3:28:48:ac:f8:20:97:3a:e1:5a:07: 17:d8:e3:a2:d7:83:02:f8:d8:e4:d9:e2:9b:26:7d: 03:fd:60:f2:75:23:29:9c:28:0a:d4:43:ad:22:64: 0f:a0:d1:66:68:a3:3a:35:37:cc:b3:ed:70:83:df: ea:d1:19:37:26:32:6a:1a:a0:76:ae:83:12:7b:0b: 7c:1d:3c:59:21:30:83:4e:e3:c1:48:37:33:1d:ed: 40:74:90:fa:37:7c:ae:f3:1a:dc:66:55:c8:18:bd: 42:43:22:0a:e3:b2:25:16:f1:68:c6:ec:dd:6c:bc: 66:d4:96:e2:8b:b9:de:7d:50:fa:92:5e:02:7a:79: 93:10:26:a6:4d:60:b0:5a:6c:4d:13:0d:d0:9a:2c: a1:87:6e:c9:ef:2a:ac:78:54:d4:ee:31:4d:d7:d4: ae:46:0f:9d:a4:1b:b6:fd:c9:57:5e:c1:a9:11:52: aa:75:3d:f1:b3:04:fb:5d:f0:cf:c6:51:b6:54:38: 55:fc:a1:d0:d4:b3:09:0f:e0:58:f3:6d:24:e8:11: 74:37:43:f4:02:e4:ca:a4:a7:48:c0:24:84:ea:d8: 7d:55:96:e7:1a:8f:38:87:c0:bf:f3:18:3e:3d:ff: e6:5b:9d:e1:dd:ee:3b:84:b5:61:b1:50:d0:9d:9c: 17:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:18:95:E0:D3:E8:91:A4:7B:98:C2:25:D0:60:AE:B0:53:8E:FD:7C X509v3 Authority Key Identifier: keyid:39:CA:A0:BD:25:4D:1A:87:F4:BB:30:DB:3B:51:3F:DB:9A:F6:25:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OcqgvSVNGof0uzDbO1E_25r2JfY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/1f0955-4d62-433b-b18c-7c37e639bf0f/1/OcqgvSVNGof0uzDbO1E_25r2JfY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:02:cf:9e:e1:72:3f:ef:ea:16:97:28:59:29:f7:3a:90:ce: 0d:38:6f:f8:f1:24:67:90:df:26:b3:02:09:ca:30:74:de:12: 63:ba:9a:60:9e:38:47:3c:b0:c3:8e:28:2c:48:27:87:8a:eb: a0:fa:d8:0c:99:d2:ec:45:8b:ed:b1:b3:18:bf:f5:38:ef:1f: 84:4f:14:b6:95:fa:1e:32:1b:58:bc:27:7f:9a:ec:aa:51:e0: 1b:f1:ec:fe:dc:78:ef:44:da:dc:39:ce:6a:2b:dc:c4:3f:c7: 34:0d:11:85:df:32:b3:8c:e1:eb:e2:08:b2:05:63:a0:e4:2f: 48:65:6b:e2:13:93:0a:bb:17:89:b4:06:61:5b:95:79:4f:69: 60:ec:84:64:ca:09:6d:02:d3:b9:11:c8:aa:00:97:e7:28:96: 32:40:67:70:7e:ae:58:5b:0f:12:92:35:89:89:b8:73:65:98: f4:d1:83:ea:1b:92:6b:c6:b5:ed:10:34:1f:02:b0:15:a8:3b: df:8c:64:d1:1e:3e:20:91:0a:0c:87:46:6a:b1:82:07:3f:fc: 5c:89:b0:46:e0:3e:6a:57:17:0a:e5:91:33:bc:8f:19:6f:48: da:ad:7a:84:ee:ab:92:eb:a6:67:c3:f9:92:83:4a:c4:5c:8b: 7f:10:b5:66 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZWETaFmAfqcCBNOXziCLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5Y2FhMGJkMjU0ZDFhODdmNGJiMzBkYjNiNTEzZmRiOWFm NjI1ZjYwHhcNMjUxMjA2MTYwMTE1WhcNMjUxMjA3MTYwMTE1WjAzMTEwLwYDVQQD Eyg1NjE4OTVlMGQzZTg5MWE0N2I5OGMyMjVkMDYwYWViMDUzOGVmZDdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+mEG4yhIrPgglzrhWgcX2OOi14MC +Njk2eKbJn0D/WDydSMpnCgK1EOtImQPoNFmaKM6NTfMs+1wg9/q0Rk3JjJqGqB2 roMSewt8HTxZITCDTuPBSDczHe1AdJD6N3yu8xrcZlXIGL1CQyIK47IlFvFoxuzd bLxm1Jbii7nefVD6kl4CenmTECamTWCwWmxNEw3Qmiyhh27J7yqseFTU7jFN19Su Rg+dpBu2/clXXsGpEVKqdT3xswT7XfDPxlG2VDhV/KHQ1LMJD+BY820k6BF0N0P0 AuTKpKdIwCSE6th9VZbnGo84h8C/8xg+Pf/mW53h3e47hLVhsVDQnZwXmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFYYleDT6JGke5jCJdBgrrBTjv18MB8GA1UdIwQY MBaAFDnKoL0lTRqH9Lsw2ztRP9ua9iX2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2NxZ3ZTVk5Hb2YwdXpEYk8xRV8yNXIySmZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8xZjA5NTUtNGQ2Mi00MzNiLWIxOGMt N2MzN2U2MzliZjBmLzEvT2NxZ3ZTVk5Hb2YwdXpEYk8xRV8yNXIySmZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi8xZjA5NTUtNGQ2Mi00MzNiLWIxOGMtN2MzN2U2MzliZjBm LzEvT2NxZ3ZTVk5Hb2YwdXpEYk8xRV8yNXIySmZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUQLPnuFy P+/qFpcoWSn3OpDODThv+PEkZ5DfJrMCCcowdN4SY7qaYJ44Rzyww44oLEgnh4rr oPrYDJnS7EWL7bGzGL/1OO8fhE8UtpX6HjIbWLwnf5rsqlHgG/Hs/tx470Ta3DnO aivcxD/HNA0Rhd8ys4zh6+IIsgVjoOQvSGVr4hOTCrsXibQGYVuVeU9pYOyEZMoJ bQLTuRHIqgCX5yiWMkBncH6uWFsPEpI1iYm4c2WY9NGD6huSa8a17RA0HwKwFag7 34xk0R4+IJEKDIdGarGCBz/8XImwRuA+alcXCuWRM7yPGW9I2q16hO6rkuumZ8P5 koNKxFyLfxC1Zg== -----END CERTIFICATE-----Generated at Sat Dec 6 22:29:52 2025 by rpki-client