This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7697f5-448a-4c9a-959a-706dae51c401/1/ov7n60DFpFQ5UC658zG-_qxPjQw.mft File: ov7n60DFpFQ5UC658zG-_qxPjQw.mft (raw, json) Hash identifier: cGKZsoua+aDRv5bc0HCcQpvbJtNsXP/flo3L6lUH8Hg= Subject key identifier: 1A:74:38:B9:F4:DB:1F:40:1F:50:FD:97:60:75:41:F3:0C:A0:35:6C Authority key identifier: A2:FE:E7:EB:40:C5:A4:54:39:50:2E:B9:F3:31:BE:FE:AC:4F:8D:0C Certificate issuer: /CN=a2fee7eb40c5a45439502eb9f331befeac4f8d0c Certificate serial: 019AF208AD3FC8ADDCCA206B84E487C9FED1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ov7n60DFpFQ5UC658zG-_qxPjQw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7697f5-448a-4c9a-959a-706dae51c401/1/ov7n60DFpFQ5UC658zG-_qxPjQw.mft Manifest number: 7C Signing time: Sat 06 Dec 2025 05:00:46 +0000 Manifest this update: Sat 06 Dec 2025 05:00:46 +0000 Manifest next update: Sun 07 Dec 2025 05:00:46 +0000 Files and hashes: 1: cLXJPZRMjACNJWdbzWBHdJk4Gq0.roa (hash: 67waz9BUSl1rmmTlp4M5HuhrKHWIN9dnMCNTzaYDP50=) 2: ov7n60DFpFQ5UC658zG-_qxPjQw.crl (hash: nh/F/RI2QBRgwxKIOnRntStP0GQXd7m2cpwR+ClRf6M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/7697f5-448a-4c9a-959a-706dae51c401/1/ov7n60DFpFQ5UC658zG-_qxPjQw.crl rsync://rpki.ripe.net/repository/DEFAULT/82/7697f5-448a-4c9a-959a-706dae51c401/1/ov7n60DFpFQ5UC658zG-_qxPjQw.mft rsync://rpki.ripe.net/repository/DEFAULT/ov7n60DFpFQ5UC658zG-_qxPjQw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:ad:3f:c8:ad:dc:ca:20:6b:84:e4:87:c9:fe:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2fee7eb40c5a45439502eb9f331befeac4f8d0c Validity Not Before: Dec 6 05:00:46 2025 GMT Not After : Dec 7 05:00:46 2025 GMT Subject: CN=1a7438b9f4db1f401f50fd97607541f30ca0356c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5d:10:72:19:cc:ab:21:c5:af:5e:7f:1b:26: 18:3e:a6:f3:5d:04:0d:97:11:02:98:80:62:1d:54: 08:6e:f3:2e:5e:25:49:7c:83:d5:ee:0e:75:b7:87: e1:2e:56:20:be:0e:e7:ab:39:a0:d1:82:25:e3:1b: 01:df:b9:b4:2c:07:8f:21:c9:6a:94:1f:92:bd:3b: 81:3a:73:0e:52:5b:1e:f9:5c:5b:63:ad:b8:d9:3f: 8e:bb:30:78:7b:4e:37:9c:28:18:89:7c:04:0a:77: 44:8d:38:7a:f5:68:69:e1:6a:43:45:bb:f3:93:0a: c1:1e:2c:19:5c:c7:1c:c2:12:60:3b:74:9e:3e:46: 14:7a:fa:56:aa:cd:40:81:2f:de:e1:f3:27:e0:83: 1e:af:0f:e0:ff:e7:b1:0e:7c:ec:e8:c2:cf:c3:69: 23:89:cf:b1:9a:cf:92:79:84:73:b7:65:1c:ac:01: 61:ff:e8:d5:ed:60:56:93:8c:ec:db:eb:40:e7:ea: 95:59:ac:4d:e4:ee:cc:cd:e3:86:11:96:5e:55:27: 00:72:c3:60:d6:d7:d5:88:e9:91:22:38:ee:82:d8: 2a:b2:c0:10:83:a6:b1:8a:b2:33:87:ad:e6:e2:06: 4f:31:2e:36:4b:75:9e:31:c8:72:46:86:2f:ac:d7: d0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:74:38:B9:F4:DB:1F:40:1F:50:FD:97:60:75:41:F3:0C:A0:35:6C X509v3 Authority Key Identifier: keyid:A2:FE:E7:EB:40:C5:A4:54:39:50:2E:B9:F3:31:BE:FE:AC:4F:8D:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ov7n60DFpFQ5UC658zG-_qxPjQw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7697f5-448a-4c9a-959a-706dae51c401/1/ov7n60DFpFQ5UC658zG-_qxPjQw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7697f5-448a-4c9a-959a-706dae51c401/1/ov7n60DFpFQ5UC658zG-_qxPjQw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:66:c4:26:a1:5d:eb:b8:e3:78:2c:cb:59:dc:e9:62:be:1b: ee:00:b0:43:1f:d9:66:8f:12:de:e0:3e:35:93:b1:cc:0d:00: e5:7c:af:2a:53:ef:00:88:69:ff:1a:ee:69:2c:ca:f5:78:d1: 63:0d:bc:b8:fa:a3:43:08:f3:3a:0d:9e:14:f6:67:e8:3a:b1: b0:06:98:06:a3:30:7b:66:ce:ab:85:1b:ef:2e:bc:5d:dd:7a: 77:98:72:22:5c:02:08:7e:5b:69:26:b7:b6:89:eb:99:55:02: ed:9e:48:5f:ea:02:15:23:80:8d:42:9f:71:7b:4b:b2:d9:53: b9:83:11:29:fc:95:1d:00:cf:08:2e:bf:9f:d1:3c:dc:44:71: 62:c0:45:82:c8:64:b9:a3:3b:51:69:ff:38:cf:c8:fc:50:66: a6:e9:6e:92:52:e6:f1:19:b6:1e:1e:6c:64:8f:5a:0c:4d:69: b7:8b:72:e0:f2:50:8a:28:b7:9f:ed:34:8d:74:d7:41:b1:01: 77:10:03:f1:c6:4c:73:48:a8:ae:46:03:90:d0:a3:22:9b:df: e1:35:cc:e7:9c:6b:d1:0c:09:46:9a:cf:03:2e:66:72:ee:9e: 7f:20:fd:86:cc:99:84:fb:6e:4e:d1:42:aa:f5:f4:12:b7:49: 93:7c:ec:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCK0/yK3cyiBrhOSHyf7RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyZmVlN2ViNDBjNWE0NTQzOTUwMmViOWYzMzFiZWZlYWM0 ZjhkMGMwHhcNMjUxMjA2MDUwMDQ2WhcNMjUxMjA3MDUwMDQ2WjAzMTEwLwYDVQQD EygxYTc0MzhiOWY0ZGIxZjQwMWY1MGZkOTc2MDc1NDFmMzBjYTAzNTZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnF0QchnMqyHFr15/GyYYPqbzXQQN lxECmIBiHVQIbvMuXiVJfIPV7g51t4fhLlYgvg7nqzmg0YIl4xsB37m0LAePIclq lB+SvTuBOnMOUlse+VxbY6242T+OuzB4e043nCgYiXwECndEjTh69Whp4WpDRbvz kwrBHiwZXMccwhJgO3SePkYUevpWqs1AgS/e4fMn4IMerw/g/+exDnzs6MLPw2kj ic+xms+SeYRzt2UcrAFh/+jV7WBWk4zs2+tA5+qVWaxN5O7MzeOGEZZeVScAcsNg 1tfViOmRIjjugtgqssAQg6axirIzh63m4gZPMS42S3WeMchyRoYvrNfQyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBp0OLn02x9AH1D9l2B1QfMMoDVsMB8GA1UdIwQY MBaAFKL+5+tAxaRUOVAuufMxvv6sT40MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3Y3bjYwREZwRlE1VUM2NTh6Ry1fcXhQalF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi83Njk3ZjUtNDQ4YS00YzlhLTk1OWEt NzA2ZGFlNTFjNDAxLzEvb3Y3bjYwREZwRlE1VUM2NTh6Ry1fcXhQalF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi83Njk3ZjUtNDQ4YS00YzlhLTk1OWEtNzA2ZGFlNTFjNDAx LzEvb3Y3bjYwREZwRlE1VUM2NTh6Ry1fcXhQalF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgmbEJqFd 67jjeCzLWdzpYr4b7gCwQx/ZZo8S3uA+NZOxzA0A5XyvKlPvAIhp/xruaSzK9XjR Yw28uPqjQwjzOg2eFPZn6DqxsAaYBqMwe2bOq4Ub7y68Xd16d5hyIlwCCH5baSa3 tonrmVUC7Z5IX+oCFSOAjUKfcXtLstlTuYMRKfyVHQDPCC6/n9E83ERxYsBFgshk uaM7UWn/OM/I/FBmpuluklLm8Rm2Hh5sZI9aDE1pt4ty4PJQiii3n+00jXTXQbEB dxAD8cZMc0iorkYDkNCjIpvf4TXM55xr0QwJRprPAy5mcu6efyD9hsyZhPtuTtFC qvX0ErdJk3zsdA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:03:01 2025 by rpki-client