This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft File: oVHP748-2G0RrqutTRngal0HDTA.mft (raw, json) Hash identifier: cdyw++T4qzjjHMd8H680a6bEkQWb9recOHcFehCM2yI= Subject key identifier: C1:F2:C8:43:E6:F5:98:8B:14:A4:E1:D3:5B:74:CC:6D:EA:FF:1B:A6 Authority key identifier: A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30 Certificate issuer: /CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30 Certificate serial: 019AF50A2154B33CF092F0DDE6FF5511EA01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 19:01:13 +0000 Manifest this update: Sat 06 Dec 2025 19:01:13 +0000 Manifest next update: Sun 07 Dec 2025 19:01:13 +0000 Files and hashes: 1: cURozdoKIb78CE26-wMYNNQ7Uyc.roa (hash: dA/x8vNS0uSWiGck2vmKHPyuh1JLESwmF1FR0wRZ1Jw=) 2: oVHP748-2G0RrqutTRngal0HDTA.crl (hash: 0UGxjkn0MT9DkNLFqJ/JlDyLMBNaNU0AQyy82aJlvw4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:21:54:b3:3c:f0:92:f0:dd:e6:ff:55:11:ea:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30 Validity Not Before: Dec 6 19:01:13 2025 GMT Not After : Dec 7 19:01:13 2025 GMT Subject: CN=c1f2c843e6f5988b14a4e1d35b74cc6deaff1ba6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:70:b9:6f:46:ed:45:8a:eb:6c:a2:50:07:50: d6:40:84:be:70:5f:0c:27:b7:da:a6:b5:11:9f:63: 58:fd:df:94:58:6f:42:2f:53:7b:30:e7:cd:c3:f8: 97:22:85:24:ed:8e:0d:58:0e:56:25:25:8f:8d:5e: 09:25:0d:73:55:e1:e3:3c:2d:90:f7:f0:9e:5a:d9: cb:c6:41:3a:da:59:83:bc:79:61:5f:06:c1:5f:71: 1d:95:58:7c:62:bd:ee:66:c2:48:9b:f1:b1:24:b0: 21:90:dc:d9:cf:3c:d3:48:37:93:e1:9a:02:12:82: 5b:e5:cc:93:d2:7e:7f:c1:05:f6:50:49:13:20:26: 35:c6:57:8b:bd:cb:2c:ab:3a:56:f7:be:a3:51:88: 68:17:04:18:36:3d:e3:6a:5c:c6:38:8d:33:8b:0c: 89:52:16:dc:41:ba:b0:4e:27:1f:56:7d:36:95:5b: 05:97:9f:34:48:f0:cc:c9:b3:b3:0d:7e:4b:f3:4e: d5:37:fb:48:7d:84:a0:37:1e:de:cd:c7:19:62:38: d9:23:53:45:70:3d:cb:5a:3c:63:b2:ed:6d:31:47: e5:13:85:90:5a:57:48:0b:45:32:7f:57:ba:96:0f: 9f:c7:76:a3:d2:db:de:b5:f9:45:d4:01:51:ed:dd: 97:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:F2:C8:43:E6:F5:98:8B:14:A4:E1:D3:5B:74:CC:6D:EA:FF:1B:A6 X509v3 Authority Key Identifier: keyid:A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:d6:9f:72:38:e2:14:b2:24:29:16:c3:62:ec:c4:1c:97:6e: d2:30:cb:b4:46:60:39:9b:61:c0:b9:87:ef:3a:b6:bf:57:5f: b7:ad:49:bf:2a:e3:90:4b:b9:c0:ff:37:fd:be:86:23:5f:2b: 53:ff:16:0c:8e:5a:b3:db:3f:76:0d:0b:ac:b5:21:84:1f:bc: 88:0a:88:b7:0f:4a:a3:d0:b6:ba:fd:2c:5c:f2:fc:71:91:57: f0:28:e8:07:a0:c5:5b:c8:fa:f4:d9:cd:76:f1:be:0c:92:55: 45:65:5d:fc:90:8c:20:6a:52:be:ef:e2:42:91:48:a5:94:67: 44:bd:18:23:86:74:db:4b:57:18:0d:f6:20:ab:58:ca:dd:56: 7d:96:5d:2b:9b:ee:64:8d:d4:9e:b0:b6:49:2d:c7:f1:94:c8: d0:fe:f3:91:a4:36:55:04:c2:46:c1:54:46:52:6c:a3:f0:8d: c8:af:4c:fb:49:65:ec:13:90:88:08:61:a6:60:8d:74:13:d3: 2c:a0:b5:b2:25:11:d3:c1:32:a9:97:82:97:e6:06:ec:b3:10: dc:9a:c3:99:dc:df:5d:88:9b:d9:35:08:b7:e9:51:a1:f3:0a: e4:7c:05:4e:b9:31:73:82:2e:a0:92:73:06:58:c8:a0:e8:b7: 08:bb:4a:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CiFUszzwkvDd5v9VEeoBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExNTFjZmVmOGYzZWQ4NmQxMWFlYWJhZDRkMTllMDZhNWQw NzBkMzAwHhcNMjUxMjA2MTkwMTEzWhcNMjUxMjA3MTkwMTEzWjAzMTEwLwYDVQQD EyhjMWYyYzg0M2U2ZjU5ODhiMTRhNGUxZDM1Yjc0Y2M2ZGVhZmYxYmE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh3C5b0btRYrrbKJQB1DWQIS+cF8M J7faprURn2NY/d+UWG9CL1N7MOfNw/iXIoUk7Y4NWA5WJSWPjV4JJQ1zVeHjPC2Q 9/CeWtnLxkE62lmDvHlhXwbBX3EdlVh8Yr3uZsJIm/GxJLAhkNzZzzzTSDeT4ZoC EoJb5cyT0n5/wQX2UEkTICY1xleLvcssqzpW976jUYhoFwQYNj3jalzGOI0ziwyJ UhbcQbqwTicfVn02lVsFl580SPDMybOzDX5L807VN/tIfYSgNx7ezccZYjjZI1NF cD3LWjxjsu1tMUflE4WQWldIC0Uyf1e6lg+fx3aj0tvetflF1AFR7d2XZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMHyyEPm9ZiLFKTh01t0zG3q/xumMB8GA1UdIwQY MBaAFKFRz++PPthtEa6rrU0Z4GpdBw0wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1ZIUDc0OC0yRzBScnF1dFRSbmdhbDBIRFRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS85NTliOWYtMTQwOC00Y2Y3LThlNzUt NDA0NmEzMmQyN2E0LzEvb1ZIUDc0OC0yRzBScnF1dFRSbmdhbDBIRFRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS85NTliOWYtMTQwOC00Y2Y3LThlNzUtNDA0NmEzMmQyN2E0 LzEvb1ZIUDc0OC0yRzBScnF1dFRSbmdhbDBIRFRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGdafcjji FLIkKRbDYuzEHJdu0jDLtEZgOZthwLmH7zq2v1dft61JvyrjkEu5wP83/b6GI18r U/8WDI5as9s/dg0LrLUhhB+8iAqItw9Ko9C2uv0sXPL8cZFX8CjoB6DFW8j69NnN dvG+DJJVRWVd/JCMIGpSvu/iQpFIpZRnRL0YI4Z020tXGA32IKtYyt1WfZZdK5vu ZI3UnrC2SS3H8ZTI0P7zkaQ2VQTCRsFURlJso/CNyK9M+0ll7BOQiAhhpmCNdBPT LKC1siUR08EyqZeCl+YG7LMQ3JrDmdzfXYib2TUIt+lRofMK5HwFTrkxc4IuoJJz BljIoOi3CLtKSw== -----END CERTIFICATE-----Generated at Sun Dec 7 03:49:29 2025 by rpki-client