This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft File: oev1TQKO5HZPYveK2HHb8CYih4g.mft (raw, json) Hash identifier: DcK7xbzbH1uOlpOXKtJbQ5RkD/kb7KrNyDM8p5hTmgo= Subject key identifier: 84:96:F2:07:EA:8E:D5:58:41:E5:BE:CD:58:1E:AD:86:85:E2:9E:04 Authority key identifier: A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88 Certificate issuer: /CN=a1ebf54d028ee4764f62f78ad871dbf026228788 Certificate serial: 019AF1D22E99A6BAF1AD4531622BE278A46C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft Manifest number: 04AB Signing time: Sat 06 Dec 2025 04:01:14 +0000 Manifest this update: Sat 06 Dec 2025 04:01:14 +0000 Manifest next update: Sun 07 Dec 2025 04:01:14 +0000 Files and hashes: 1: 0BmC-81HN_hGVStiVWyBsG7yPOQ.roa (hash: 1DBUkLbwQ3sH8OPXtfdrx6wa0RdQ3lqLVqMY8QCHCK8=) 2: 58QzCphRddJsBqi71H5oisOTtGM.roa (hash: K7oZA9oPzuB3kuDmCdohN1gPlNbeKKgYedD/MB4pxbM=) 3: K5VqopWIERNLlg6XYIHxbSMQwf8.roa (hash: 6CqhTE0o4WqNXO4cXlNrVv+QBipio9ZfLg1pbcvRhvU=) 4: Qt9hOGMkdfDH8ID_bHwfLmJlE60.roa (hash: ARZiY2rT8rE43lKmT9EIHjzaS4HpYkA+YcbbFMZTS4E=) 5: oev1TQKO5HZPYveK2HHb8CYih4g.crl (hash: /kV85gZr5mwNHD5gEa7J4OuqmJClT2dsfPHRGmeiN7A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:2e:99:a6:ba:f1:ad:45:31:62:2b:e2:78:a4:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1ebf54d028ee4764f62f78ad871dbf026228788 Validity Not Before: Dec 6 04:01:14 2025 GMT Not After : Dec 7 04:01:14 2025 GMT Subject: CN=8496f207ea8ed55841e5becd581ead8685e29e04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0a:9c:27:51:bf:c6:13:3d:b5:9b:e0:2b:a2: 01:d2:03:c8:9b:0b:a6:64:9f:29:2e:ca:d2:b6:d3: e2:53:88:81:74:49:8b:4c:04:99:82:d6:77:61:51: b0:38:04:20:e5:4a:ee:d1:cd:9d:9c:98:37:ef:ff: d8:a0:9c:1c:44:c5:67:0c:1c:28:de:48:45:c2:0c: c8:80:ac:58:5f:f5:50:62:96:e0:84:a8:a3:30:32: 6c:2a:f3:c1:c9:78:87:39:f2:33:2c:0f:f8:f4:7e: 88:f7:e2:4f:76:38:13:bd:ea:c3:33:9e:73:14:71: 3d:1e:99:b1:41:02:89:e6:90:d6:5f:ed:3a:f9:66: b5:e5:bb:cd:f3:74:e6:5f:e1:52:46:86:68:71:f3: f1:4e:8a:19:03:13:b4:bb:ef:d4:48:5b:75:1b:e2: 4f:1c:43:19:35:08:2e:e5:15:80:c8:b1:6f:f2:dc: 55:57:0c:a1:5c:fd:bd:a8:71:04:ec:dd:e7:26:27: 8d:8f:45:e8:9d:23:6a:f2:1c:aa:54:39:ab:70:ee: 43:5a:d0:50:23:b8:32:7d:00:f3:2c:84:2c:90:b1: 40:d1:b3:5e:cc:68:1a:84:d6:70:02:e6:2f:e1:b6: 4c:0e:64:31:6c:dd:1b:cb:aa:04:41:ea:42:94:5c: d8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:96:F2:07:EA:8E:D5:58:41:E5:BE:CD:58:1E:AD:86:85:E2:9E:04 X509v3 Authority Key Identifier: keyid:A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:51:bc:19:a0:62:8f:29:06:ad:11:8e:92:3f:45:5a:1d:ac: 49:94:f5:69:b1:3c:1c:1e:45:53:96:a0:3e:33:28:c4:ef:c7: 8d:3d:ff:24:58:9c:47:95:eb:9f:87:06:11:8f:a1:38:df:a8: 3c:3e:09:bf:08:51:a1:7f:b6:01:49:76:4d:74:7b:35:ae:9f: d8:af:8c:9c:b6:ec:c9:d8:02:fa:fb:c8:2a:8e:2f:8f:e5:07: 98:1f:f7:d6:ef:e0:28:a3:3d:7a:ad:ab:99:61:75:d2:d2:57: fc:91:20:3a:b9:bf:06:ff:5a:8d:f4:7d:65:59:16:25:1c:29: 81:dd:b5:1a:e7:36:65:28:f0:ab:33:ba:79:8a:47:c1:5c:43: d2:7d:f4:0f:f5:1a:c0:05:12:c6:d7:d6:73:98:b6:b7:a7:b8: 11:c9:54:88:19:43:68:bb:86:c7:12:be:f4:d7:39:7d:f5:83: 19:71:01:87:66:08:60:21:3f:32:e8:93:db:ed:25:6e:6b:17: 63:97:4f:80:0e:71:d8:78:e3:4f:6e:cb:46:cc:1c:dd:5c:f0: 93:b6:bd:6f:9d:26:41:e5:32:35:28:68:37:2e:f2:43:66:56: 38:98:2a:f8:8d:a2:60:6d:31:f9:cb:a9:98:ec:f7:29:9e:bd: 1f:41:f2:9a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0i6ZprrxrUUxYivieKRsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExZWJmNTRkMDI4ZWU0NzY0ZjYyZjc4YWQ4NzFkYmYwMjYy Mjg3ODgwHhcNMjUxMjA2MDQwMTE0WhcNMjUxMjA3MDQwMTE0WjAzMTEwLwYDVQQD Eyg4NDk2ZjIwN2VhOGVkNTU4NDFlNWJlY2Q1ODFlYWQ4Njg1ZTI5ZTA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxAqcJ1G/xhM9tZvgK6IB0gPImwum ZJ8pLsrSttPiU4iBdEmLTASZgtZ3YVGwOAQg5Uru0c2dnJg37//YoJwcRMVnDBwo 3khFwgzIgKxYX/VQYpbghKijMDJsKvPByXiHOfIzLA/49H6I9+JPdjgTverDM55z FHE9HpmxQQKJ5pDWX+06+Wa15bvN83TmX+FSRoZocfPxTooZAxO0u+/USFt1G+JP HEMZNQgu5RWAyLFv8txVVwyhXP29qHEE7N3nJieNj0XonSNq8hyqVDmrcO5DWtBQ I7gyfQDzLIQskLFA0bNezGgahNZwAuYv4bZMDmQxbN0by6oEQepClFzY9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFISW8gfqjtVYQeW+zVgerYaF4p4EMB8GA1UdIwQY MBaAFKHr9U0CjuR2T2L3ithx2/AmIoeIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2V2MVRRS081SFpQWXZlSzJISGI4Q1lpaDRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS8xYjE3MmEtNjFkMS00MjBjLWEzZGQt NDdhNWJmNWIzMTNkLzEvb2V2MVRRS081SFpQWXZlSzJISGI4Q1lpaDRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NS8xYjE3MmEtNjFkMS00MjBjLWEzZGQtNDdhNWJmNWIzMTNk LzEvb2V2MVRRS081SFpQWXZlSzJISGI4Q1lpaDRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg1G8GaBi jykGrRGOkj9FWh2sSZT1abE8HB5FU5agPjMoxO/HjT3/JFicR5Xrn4cGEY+hON+o PD4JvwhRoX+2AUl2TXR7Na6f2K+MnLbsydgC+vvIKo4vj+UHmB/31u/gKKM9eq2r mWF10tJX/JEgOrm/Bv9ajfR9ZVkWJRwpgd21Guc2ZSjwqzO6eYpHwVxD0n30D/Ua wAUSxtfWc5i2t6e4EclUiBlDaLuGxxK+9Nc5ffWDGXEBh2YIYCE/MuiT2+0lbmsX Y5dPgA5x2HjjT27LRswc3Vzwk7a9b50mQeUyNShoNy7yQ2ZWOJgq+I2iYG0x+cup mOz3KZ69H0Hymg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:19:12 2025 by rpki-client