This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft File: oixSeMS7sCbhL_12C-rFn8FV_CU.mft (raw, json) Hash identifier: f44uiQhcDQEkh9Jo4S9tiOqTVhBboJ4FUSQomUgPTFk= Subject key identifier: 72:2C:6D:42:E2:E5:71:7D:93:33:E5:1E:E6:86:6E:B9:5D:E5:4C:11 Authority key identifier: A2:2C:52:78:C4:BB:B0:26:E1:2F:FD:76:0B:EA:C5:9F:C1:55:FC:25 Certificate issuer: /CN=a22c5278c4bbb026e12ffd760beac59fc155fc25 Certificate serial: 019AF31BCB2A647B54EB4C6A8D2684DC21E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft Manifest number: 0BCE Signing time: Sat 06 Dec 2025 10:01:16 +0000 Manifest this update: Sat 06 Dec 2025 10:01:16 +0000 Manifest next update: Sun 07 Dec 2025 10:01:16 +0000 Files and hashes: 1: P8h8nlnz4dD4fkTghoS9unFyKig.roa (hash: MYpmJNo5HIfucuzKcNdlv0aQadbbtMqL8vbh/XHclWY=) 2: oixSeMS7sCbhL_12C-rFn8FV_CU.crl (hash: XcScWCeBMwxoipM4J1ALu8ItSz8fBNKGHTKI2VJFDg8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.crl rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:cb:2a:64:7b:54:eb:4c:6a:8d:26:84:dc:21:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a22c5278c4bbb026e12ffd760beac59fc155fc25 Validity Not Before: Dec 6 10:01:16 2025 GMT Not After : Dec 7 10:01:16 2025 GMT Subject: CN=722c6d42e2e5717d9333e51ee6866eb95de54c11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6d:09:59:c0:42:ea:7e:5c:62:cd:0a:46:ea: 07:ef:8c:f4:a9:91:69:38:d4:ec:44:5f:58:33:1b: 88:a0:f1:1b:0c:4c:3f:4d:1f:eb:c5:37:d8:2c:30: 7d:34:d6:e7:23:e8:98:cc:5b:fa:c7:a8:93:ce:09: f4:14:fa:13:8f:31:24:e5:89:50:55:9e:55:a2:4a: 8e:6b:69:b8:47:6a:d9:11:83:95:21:ef:78:e9:5c: a3:80:d0:92:63:b3:10:e1:c4:f8:7d:4c:f0:5d:39: 0b:2c:c9:5d:77:e3:c0:ae:75:20:da:a4:20:b4:61: 1a:1e:c2:ad:f0:c9:18:6f:60:e5:0d:1c:d8:86:cb: fd:c4:50:26:a3:99:ae:53:11:b1:30:b9:69:62:94: 6e:13:e1:86:79:f6:e5:a5:b6:16:cd:81:d3:9b:31: 59:51:9a:ec:d1:33:0b:cb:ee:93:c1:bb:32:c7:44: 14:a7:ed:6a:58:fb:24:78:85:f1:90:8e:a1:1c:ea: 80:2e:8d:78:b3:7e:79:b7:13:ed:fc:3c:16:d5:b2: 87:d4:b9:b3:4d:be:80:d2:e2:1b:eb:91:5a:27:4e: 48:6e:1c:76:3d:84:59:37:86:0f:aa:6a:d7:a8:c8: 6e:fd:bc:57:b6:af:d5:a9:ae:a2:07:10:45:48:2d: 2a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:2C:6D:42:E2:E5:71:7D:93:33:E5:1E:E6:86:6E:B9:5D:E5:4C:11 X509v3 Authority Key Identifier: keyid:A2:2C:52:78:C4:BB:B0:26:E1:2F:FD:76:0B:EA:C5:9F:C1:55:FC:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:22:de:98:0d:3e:89:df:1f:cc:ac:ab:ac:45:58:b9:b1:b9: 82:30:2a:8a:42:50:a6:4c:25:71:87:f1:f9:f5:9e:8b:31:db: 26:b3:e7:de:91:c4:d2:99:8d:f9:7f:83:6a:37:0e:c2:6f:41: 10:e9:70:d7:42:e6:31:09:4d:9c:c2:c0:13:21:ed:99:d8:c2: 85:da:e6:98:b6:f1:23:b9:ce:9b:cb:77:18:8f:84:0a:59:74: 2f:fe:ff:ec:78:21:02:37:89:64:56:61:50:f2:6c:48:14:95: 5c:be:15:26:cf:69:61:6d:4c:a0:8c:62:a5:be:d0:06:b1:0a: 54:f4:e5:66:e7:b3:9c:62:76:4b:eb:3e:a2:b2:fc:80:ce:ef: 0e:66:c1:18:5e:d4:85:00:74:6d:09:1b:07:fe:f5:e7:e4:e8: c7:4f:85:6c:88:0e:03:f7:b4:e3:20:8c:c9:37:d6:ea:b0:42: 5c:19:06:72:06:9c:55:e1:6c:1e:a9:68:52:5a:99:7c:2b:5e: bb:5b:db:cf:e6:bb:60:2d:38:53:1b:e3:91:d3:8e:cf:8d:32: 78:97:33:36:d5:42:7b:91:a3:f3:ad:74:3e:f7:ec:7e:48:94: 81:4c:5b:68:25:3f:cc:19:e6:ea:b4:54:7e:a0:22:dc:69:e2: b3:b7:3c:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG8sqZHtU60xqjSaE3CHkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyMmM1Mjc4YzRiYmIwMjZlMTJmZmQ3NjBiZWFjNTlmYzE1 NWZjMjUwHhcNMjUxMjA2MTAwMTE2WhcNMjUxMjA3MTAwMTE2WjAzMTEwLwYDVQQD Eyg3MjJjNmQ0MmUyZTU3MTdkOTMzM2U1MWVlNjg2NmViOTVkZTU0YzExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqm0JWcBC6n5cYs0KRuoH74z0qZFp ONTsRF9YMxuIoPEbDEw/TR/rxTfYLDB9NNbnI+iYzFv6x6iTzgn0FPoTjzEk5YlQ VZ5VokqOa2m4R2rZEYOVIe946VyjgNCSY7MQ4cT4fUzwXTkLLMldd+PArnUg2qQg tGEaHsKt8MkYb2DlDRzYhsv9xFAmo5muUxGxMLlpYpRuE+GGefblpbYWzYHTmzFZ UZrs0TMLy+6Twbsyx0QUp+1qWPskeIXxkI6hHOqALo14s355txPt/DwW1bKH1Lmz Tb6A0uIb65FaJ05Ibhx2PYRZN4YPqmrXqMhu/bxXtq/Vqa6iBxBFSC0qBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHIsbULi5XF9kzPlHuaGbrld5UwRMB8GA1UdIwQY MBaAFKIsUnjEu7Am4S/9dgvqxZ/BVfwlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2l4U2VNUzdzQ2JoTF8xMkMtckZuOEZWX0NVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9hZmNiYWQtYzEyNi00ZjhlLWJkMjIt NDkyYjYwMzQzYTcwLzEvb2l4U2VNUzdzQ2JoTF8xMkMtckZuOEZWX0NVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS9hZmNiYWQtYzEyNi00ZjhlLWJkMjItNDkyYjYwMzQzYTcw LzEvb2l4U2VNUzdzQ2JoTF8xMkMtckZuOEZWX0NVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANiLemA0+ id8fzKyrrEVYubG5gjAqikJQpkwlcYfx+fWeizHbJrPn3pHE0pmN+X+DajcOwm9B EOlw10LmMQlNnMLAEyHtmdjChdrmmLbxI7nOm8t3GI+ECll0L/7/7HghAjeJZFZh UPJsSBSVXL4VJs9pYW1MoIxipb7QBrEKVPTlZueznGJ2S+s+orL8gM7vDmbBGF7U hQB0bQkbB/715+Tox0+FbIgOA/e04yCMyTfW6rBCXBkGcgacVeFsHqloUlqZfCte u1vbz+a7YC04UxvjkdOOz40yeJczNtVCe5Gj8610PvfsfkiUgUxbaCU/zBnm6rRU fqAi3Gnis7c8Uw== -----END CERTIFICATE-----Generated at Sat Dec 6 17:51:21 2025 by rpki-client