This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft File: OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft (raw, json) Hash identifier: nIoi4emf6IEE2YWzWYJBEdN84bLi1itPmuirREEsMj4= Subject key identifier: BF:64:8C:15:CC:C5:7D:E1:F4:03:C6:2A:DF:ED:6D:D4:CB:28:7E:BA Authority key identifier: 3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB Certificate issuer: /CN=3a611bc291ff1de02256f2315345680603fa4edb Certificate serial: 019AF0BF964A2036591A4CF4235A7CD750EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft Manifest number: 0626 Signing time: Fri 05 Dec 2025 23:01:18 +0000 Manifest this update: Fri 05 Dec 2025 23:01:18 +0000 Manifest next update: Sat 06 Dec 2025 23:01:18 +0000 Files and hashes: 1: OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl (hash: InF47kcnFTm1dQJj35HPjTakQrrtbi8MvQzbxKtFGgA=) 2: WMqMrN8GSXOfRqdUfWDSfGSeNoY.roa (hash: +HUvEm/zmLGsWH85M7k1xXVdXwdEmqkh5XDlJHFGu2c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:96:4a:20:36:59:1a:4c:f4:23:5a:7c:d7:50:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a611bc291ff1de02256f2315345680603fa4edb Validity Not Before: Dec 5 23:01:18 2025 GMT Not After : Dec 6 23:01:18 2025 GMT Subject: CN=bf648c15ccc57de1f403c62adfed6dd4cb287eba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3d:c5:ac:df:31:19:6d:c4:0a:5a:a7:d9:64: 4e:17:2c:f7:aa:f0:89:c9:6c:9a:63:0f:8c:c3:30: 20:ba:77:5b:78:dc:e5:54:c8:c4:97:b1:84:07:19: e7:09:47:f2:0e:2e:3c:b2:b0:50:58:0a:9d:91:21: ad:ea:aa:b3:ae:ba:9e:94:e2:6e:25:4c:1c:75:45: fc:56:b8:51:b5:15:19:c3:04:dd:38:1e:13:5c:3d: 8f:6a:66:50:48:3d:75:5f:ff:93:ef:19:ef:b3:80: c2:31:e1:94:0f:19:7b:b0:b7:6c:9a:0f:d6:e1:96: 38:7a:98:86:56:a9:a1:5e:05:1b:e0:1d:41:49:af: 25:7f:55:62:6b:c8:a1:a1:26:1b:89:43:6b:cc:3d: 18:2b:17:2b:f0:f9:dd:84:96:d5:aa:83:e9:bd:e2: 2d:94:45:b4:6f:62:6d:1a:fc:84:05:14:63:40:70: 35:db:a6:a4:75:15:10:a2:90:df:88:65:fe:5d:eb: 6c:f2:f5:c6:1e:41:fc:e6:b6:3e:3f:7f:7f:d7:01: f1:09:b9:1b:29:b5:40:a4:9b:05:e4:82:2c:d7:f7: f2:af:8f:c6:a0:91:74:a6:43:de:ef:2e:5d:78:c9: bd:15:43:5c:59:01:f9:cf:39:aa:84:cf:61:cc:e0: e6:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:64:8C:15:CC:C5:7D:E1:F4:03:C6:2A:DF:ED:6D:D4:CB:28:7E:BA X509v3 Authority Key Identifier: keyid:3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:54:14:22:c7:a7:0f:26:5b:58:dc:c5:9f:e9:8f:a6:81:79: 9e:c3:2b:ef:ae:f6:32:f8:64:48:4a:fc:66:d3:21:77:ff:95: c8:b1:a7:5c:b7:3c:8f:90:7e:3d:8f:78:c0:30:2f:e1:4e:cc: 4e:eb:74:22:18:6d:52:44:c8:98:61:3e:03:cd:2f:84:77:b1: ce:30:a0:17:cb:67:6f:9a:20:c7:e3:94:57:a4:16:ac:0d:3f: 71:74:b6:db:9b:88:8c:1b:a8:40:51:9f:6a:3e:18:57:52:79: 8e:d9:25:8c:5c:db:ef:a1:c7:3e:b1:4b:cd:ed:88:ba:51:03: 76:a6:49:0d:8f:57:b9:b5:66:f9:28:9c:3e:4d:cf:67:78:f8: 7e:3c:2e:77:83:7d:9c:5c:90:b1:29:35:78:f2:07:23:64:61: 67:45:2f:cd:3a:b5:7d:e1:c1:66:87:08:c2:74:dc:bb:61:44: a5:18:13:7e:a2:34:7f:23:69:7e:48:bf:18:f2:d9:4f:a5:e8: c9:ad:b4:6d:b2:d8:d7:3e:86:97:28:a5:97:e8:90:69:bf:d9: 35:98:55:0b:1e:a5:3e:b4:39:9a:9a:78:da:6f:f5:6a:20:44: 28:31:e1:7d:f7:23:38:fd:22:b6:83:08:e7:f6:c6:72:d1:0f: 56:5a:47:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwv5ZKIDZZGkz0I1p811DuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNjExYmMyOTFmZjFkZTAyMjU2ZjIzMTUzNDU2ODA2MDNm YTRlZGIwHhcNMjUxMjA1MjMwMTE4WhcNMjUxMjA2MjMwMTE4WjAzMTEwLwYDVQQD EyhiZjY0OGMxNWNjYzU3ZGUxZjQwM2M2MmFkZmVkNmRkNGNiMjg3ZWJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwz3FrN8xGW3EClqn2WROFyz3qvCJ yWyaYw+MwzAgundbeNzlVMjEl7GEBxnnCUfyDi48srBQWAqdkSGt6qqzrrqelOJu JUwcdUX8VrhRtRUZwwTdOB4TXD2PamZQSD11X/+T7xnvs4DCMeGUDxl7sLdsmg/W 4ZY4epiGVqmhXgUb4B1BSa8lf1Via8ihoSYbiUNrzD0YKxcr8PndhJbVqoPpveIt lEW0b2JtGvyEBRRjQHA126akdRUQopDfiGX+Xets8vXGHkH85rY+P39/1wHxCbkb KbVApJsF5IIs1/fyr4/GoJF0pkPe7y5deMm9FUNcWQH5zzmqhM9hzODmBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL9kjBXMxX3h9APGKt/tbdTLKH66MB8GA1UdIwQY MBaAFDphG8KR/x3gIlbyMVNFaAYD+k7bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT21FYndwSF9IZUFpVnZJeFUwVm9CZ1A2VHRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9kMTQ3MjgtNDQyZS00NGVhLWFmZDct MWI1Y2Q1YjRkMzk5LzEvT21FYndwSF9IZUFpVnZJeFUwVm9CZ1A2VHRzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy9kMTQ3MjgtNDQyZS00NGVhLWFmZDctMWI1Y2Q1YjRkMzk5 LzEvT21FYndwSF9IZUFpVnZJeFUwVm9CZ1A2VHRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWFQUIsen DyZbWNzFn+mPpoF5nsMr7672MvhkSEr8ZtMhd/+VyLGnXLc8j5B+PY94wDAv4U7M Tut0IhhtUkTImGE+A80vhHexzjCgF8tnb5ogx+OUV6QWrA0/cXS225uIjBuoQFGf aj4YV1J5jtkljFzb76HHPrFLze2IulEDdqZJDY9XubVm+SicPk3PZ3j4fjwud4N9 nFyQsSk1ePIHI2RhZ0UvzTq1feHBZocIwnTcu2FEpRgTfqI0fyNpfki/GPLZT6Xo ya20bbLY1z6Glyill+iQab/ZNZhVCx6lPrQ5mpp42m/1aiBEKDHhffcjOP0itoMI 5/bGctEPVlpHKA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:27 2025 by rpki-client