This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft File: OmaGndGplxZLpPoj4P1B-zrLEL4.mft (raw, json) Hash identifier: ORNIfR5pPagGBe6Clk161nCip5eP4g423L3nTLj5wMc= Subject key identifier: 87:8D:FD:85:DF:37:12:47:6A:BA:50:73:96:A0:D2:36:B5:B2:70:E8 Authority key identifier: 3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE Certificate issuer: /CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be Certificate serial: 019AF20956ACC2EA9342FE60BA6A6BB04778 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft Manifest number: 1347 Signing time: Sat 06 Dec 2025 05:01:29 +0000 Manifest this update: Sat 06 Dec 2025 05:01:29 +0000 Manifest next update: Sun 07 Dec 2025 05:01:29 +0000 Files and hashes: 1: FFjeL0IuCbzbDGWfr7U5gi5W5Os.roa (hash: 3sG/fd8pRrUXnkWnOf6agMt6Javmg7cQv1NVJ7eO+0w=) 2: OmaGndGplxZLpPoj4P1B-zrLEL4.crl (hash: KVgA8C75oVEIFkKe3WYrFtEcE2XLawaJbh0kawt624Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:56:ac:c2:ea:93:42:fe:60:ba:6a:6b:b0:47:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be Validity Not Before: Dec 6 05:01:29 2025 GMT Not After : Dec 7 05:01:29 2025 GMT Subject: CN=878dfd85df3712476aba507396a0d236b5b270e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:62:95:53:64:3f:ce:f4:ed:0d:d4:13:67:23: 71:27:6c:f9:e8:7c:4b:8d:88:91:82:32:1b:a0:40: 43:53:18:a9:dc:e1:f3:ae:57:48:c2:29:3b:e7:c4: 92:da:f6:14:8b:c8:48:73:ba:ec:4c:87:08:33:ad: 42:42:04:6a:1c:22:84:a4:61:ef:01:9a:77:fb:51: ba:7c:7d:89:66:55:8b:c5:83:76:e2:e8:07:e9:ee: a9:8e:a5:49:b2:d2:ee:af:28:e3:6e:8d:0a:fe:cf: 39:9b:35:a0:9a:b4:cc:7d:d6:37:6b:c8:5f:ce:24: 08:07:50:6a:31:cb:a7:23:46:c6:f7:20:aa:85:4b: e6:31:2f:3d:56:aa:ed:92:46:73:e4:b3:d3:4c:24: 18:57:4c:8c:1e:eb:7b:41:48:62:99:df:d3:ba:1c: 2b:cc:70:67:c0:64:af:4c:b1:63:66:04:9a:cb:c6: 24:cd:d9:44:dc:2c:bd:74:40:51:5c:5c:68:66:f7: cb:4d:34:98:f0:77:41:88:d5:52:ef:ae:5a:4a:03: d5:72:13:45:8a:9c:df:cf:7f:e8:00:36:e1:19:ee: 22:93:7c:42:af:16:7c:d6:cd:1c:d5:a4:00:10:6f: d4:42:65:1c:b5:39:87:67:03:04:08:12:c6:03:99: 33:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:8D:FD:85:DF:37:12:47:6A:BA:50:73:96:A0:D2:36:B5:B2:70:E8 X509v3 Authority Key Identifier: keyid:3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:46:bf:07:3a:73:20:96:f1:d6:c3:c0:dd:f0:e4:e7:91:6e: 62:dd:ce:ff:b6:23:15:58:be:f1:ec:da:2c:8b:30:67:d3:5a: 2f:e7:c7:67:40:a3:ee:ee:3f:a7:5c:ad:9e:3c:eb:f5:38:73: e4:45:9c:e0:d5:0a:41:4c:a3:a9:65:33:51:cc:de:4a:ea:e6: 1e:91:64:72:90:0e:64:2b:c5:09:e3:1b:d5:4d:08:a8:f2:07: 9e:f2:11:60:a8:30:20:8a:c3:4e:a6:67:12:30:4e:c5:69:e9: 75:59:28:d1:74:65:07:e9:82:14:9e:e5:ef:83:56:42:75:21: 02:93:6d:05:10:ae:d3:f5:6d:b9:20:ef:e3:9f:30:69:d2:01: 38:c5:10:15:9c:53:81:fe:9a:c4:af:1f:c1:1b:2e:80:60:30: 91:70:6c:8a:5f:43:ed:3c:8f:1d:1c:3e:9c:3e:28:04:97:83: 87:f7:77:f5:76:06:6e:83:27:c9:f8:6e:34:5b:e5:75:7c:18: f5:22:22:5b:01:2a:8e:4f:d1:45:59:61:1a:11:24:8b:e4:48: 0b:6a:f8:90:af:d1:95:74:f2:e2:5a:0f:7e:78:07:a8:17:3d: ba:04:fe:db:fd:0d:f3:0b:94:e7:f4:a5:bc:bb:70:0f:e7:54: 58:36:04:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCVaswuqTQv5gumprsEd4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNjY4NjlkZDFhOTk3MTY0YmE0ZmEyM2UwZmQ0MWZiM2Fj YjEwYmUwHhcNMjUxMjA2MDUwMTI5WhcNMjUxMjA3MDUwMTI5WjAzMTEwLwYDVQQD Eyg4NzhkZmQ4NWRmMzcxMjQ3NmFiYTUwNzM5NmEwZDIzNmI1YjI3MGU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx2KVU2Q/zvTtDdQTZyNxJ2z56HxL jYiRgjIboEBDUxip3OHzrldIwik758SS2vYUi8hIc7rsTIcIM61CQgRqHCKEpGHv AZp3+1G6fH2JZlWLxYN24ugH6e6pjqVJstLuryjjbo0K/s85mzWgmrTMfdY3a8hf ziQIB1BqMcunI0bG9yCqhUvmMS89VqrtkkZz5LPTTCQYV0yMHut7QUhimd/Tuhwr zHBnwGSvTLFjZgSay8YkzdlE3Cy9dEBRXFxoZvfLTTSY8HdBiNVS765aSgPVchNF ipzfz3/oADbhGe4ik3xCrxZ81s0c1aQAEG/UQmUctTmHZwMECBLGA5kzcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIeN/YXfNxJHarpQc5ag0ja1snDoMB8GA1UdIwQY MBaAFDpmhp3RqZcWS6T6I+D9Qfs6yxC+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT21hR25kR3BseFpMcFBvajRQMUItenJMRUw0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85MTE4ZTMtMTNkYS00ZDQ4LTljMzgt NzExZmMxYTJkMGEwLzEvT21hR25kR3BseFpMcFBvajRQMUItenJMRUw0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni85MTE4ZTMtMTNkYS00ZDQ4LTljMzgtNzExZmMxYTJkMGEw LzEvT21hR25kR3BseFpMcFBvajRQMUItenJMRUw0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL0a/Bzpz IJbx1sPA3fDk55FuYt3O/7YjFVi+8ezaLIswZ9NaL+fHZ0Cj7u4/p1ytnjzr9Thz 5EWc4NUKQUyjqWUzUczeSurmHpFkcpAOZCvFCeMb1U0IqPIHnvIRYKgwIIrDTqZn EjBOxWnpdVko0XRlB+mCFJ7l74NWQnUhApNtBRCu0/VtuSDv458wadIBOMUQFZxT gf6axK8fwRsugGAwkXBsil9D7TyPHRw+nD4oBJeDh/d39XYGboMnyfhuNFvldXwY 9SIiWwEqjk/RRVlhGhEki+RIC2r4kK/RlXTy4loPfngHqBc9ugT+2/0N8wuU5/Sl vLtwD+dUWDYExw== -----END CERTIFICATE-----Generated at Sat Dec 6 13:15:15 2025 by rpki-client