This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft File: 4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft (raw, json) Hash identifier: LA2gEvNMeZnnbv4bofh8LFRSVvk2en2dr1QWQ5YsCcc= Subject key identifier: 5A:E1:AB:CC:6D:20:EE:D1:2B:7E:D1:DE:48:2D:7E:23:60:70:8D:A9 Authority key identifier: E0:E3:97:6D:9E:CB:83:09:A8:18:1F:BD:02:5C:A5:2F:EF:16:19:99 Certificate issuer: /CN=e0e3976d9ecb8309a8181fbd025ca52fef161999 Certificate serial: 019AF49BEAAC1AB7B3FC11ABF5CF61699C1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft Manifest number: 0B7F Signing time: Sat 06 Dec 2025 17:00:50 +0000 Manifest this update: Sat 06 Dec 2025 17:00:50 +0000 Manifest next update: Sun 07 Dec 2025 17:00:50 +0000 Files and hashes: 1: 1NJHOgkSNtldGHlVdb90ILGaOIU.roa (hash: p7r+eUtZZPVGpnqQhwYcuwE/smqM71GVZ7jWKrGSevA=) 2: 2sQZrECcWQMz0yagYBj0rHZBNaA.roa (hash: ifVTyTkvryP5hww8yzaeOkfdrWnESnsheNSv99i7IM8=) 3: 4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl (hash: xiY1esV6iimmyMwsi869eHTJkOzoLCvjWiHrU4qWqAw=) 4: cK4llrkBdLlV4HeILjRyQ98esEM.roa (hash: MuU2BWlfRFj75k9zGngWfQu7w/ZtaYOQ1aHN3Tj8NDI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:9b:ea:ac:1a:b7:b3:fc:11:ab:f5:cf:61:69:9c:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e0e3976d9ecb8309a8181fbd025ca52fef161999 Validity Not Before: Dec 6 17:00:50 2025 GMT Not After : Dec 7 17:00:50 2025 GMT Subject: CN=5ae1abcc6d20eed12b7ed1de482d7e2360708da9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ad:c7:60:26:21:e2:24:78:43:a4:75:a4:77: b4:6a:7d:8e:b3:3f:d7:79:40:b9:f5:a8:ce:68:50: e2:2c:b4:b5:3b:be:bf:34:1c:c1:3b:17:d5:6e:87: 2e:50:6e:3c:30:f0:f7:79:af:00:00:e6:91:ea:c1: 36:c7:7c:2e:5d:f3:35:1c:f1:b3:55:65:30:93:e8: c0:16:53:d6:37:a5:93:33:b2:ff:79:6f:55:f1:9a: 5d:26:cf:59:26:e9:be:d3:3a:13:be:c3:7c:8c:e1: 00:c0:d5:56:73:d2:89:73:9b:13:bb:bb:f5:67:bb: e1:dd:5f:cf:72:62:38:b3:0c:d0:98:8b:f8:ef:c1: 88:85:6f:c3:84:aa:b5:ff:cf:05:72:ea:a6:f5:44: e3:9c:98:41:29:fd:17:35:97:93:ea:f0:63:78:6d: 68:71:8d:cf:26:70:92:e2:0a:0a:e6:9d:1d:d2:60: 3a:30:15:4f:4c:8e:d8:8d:4c:7a:1c:92:b6:ae:62: 7a:d8:08:e4:b3:92:1c:b1:01:ab:3d:d1:f4:46:d4: 22:31:72:8c:38:6f:48:98:1c:90:46:3d:59:bc:f4: 4f:49:1e:bc:48:17:89:07:00:45:fd:59:1d:9e:42: 5c:09:fe:44:4e:a0:cf:c0:4a:35:b3:33:92:22:d5: 07:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:E1:AB:CC:6D:20:EE:D1:2B:7E:D1:DE:48:2D:7E:23:60:70:8D:A9 X509v3 Authority Key Identifier: keyid:E0:E3:97:6D:9E:CB:83:09:A8:18:1F:BD:02:5C:A5:2F:EF:16:19:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:da:67:be:70:58:8c:ad:b8:a7:52:e4:bf:00:ca:3b:93:29: 1d:88:cc:05:ee:dc:f2:76:07:43:67:2d:3a:1c:ed:19:9d:37: ee:a7:1b:4e:a0:3e:41:b6:35:e6:c9:bc:e5:21:73:ef:ae:2f: 70:c7:3d:98:f1:05:09:78:a2:fb:c5:d4:ac:bc:76:33:0a:51: 0c:22:a5:d3:e7:3e:e4:d4:47:4c:ed:7e:51:f2:ed:1f:f0:ef: 97:a2:36:b9:39:55:95:5d:c4:04:b4:33:7d:0f:ae:df:51:8f: a0:a0:85:69:2a:7f:de:82:f9:0f:2d:39:8b:dd:4d:a1:23:69: 95:1e:8e:c0:43:7a:af:e7:4b:c1:6f:d3:25:98:d6:c0:ac:cd: 26:03:57:e8:13:49:0b:bd:61:f6:bb:c4:87:e9:1e:83:c0:cd: 70:8c:ea:cf:4c:57:fa:d5:63:e8:45:0b:00:97:cd:98:c8:c5: db:aa:18:cc:88:78:0c:92:cf:97:ea:c0:bb:6c:e0:ae:44:51: b7:16:a1:06:39:d4:f0:a9:01:d4:55:fd:c3:aa:1b:de:0e:7c: 31:22:a6:ab:4e:da:0b:6f:c8:20:87:f4:24:18:d1:e7:2c:8b: 94:65:19:fd:ea:60:cc:9f:7a:98:10:c1:4a:71:0b:a9:78:08: c1:f0:e6:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0m+qsGrez/BGr9c9haZwdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwZTM5NzZkOWVjYjgzMDlhODE4MWZiZDAyNWNhNTJmZWYx NjE5OTkwHhcNMjUxMjA2MTcwMDUwWhcNMjUxMjA3MTcwMDUwWjAzMTEwLwYDVQQD Eyg1YWUxYWJjYzZkMjBlZWQxMmI3ZWQxZGU0ODJkN2UyMzYwNzA4ZGE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzq3HYCYh4iR4Q6R1pHe0an2Osz/X eUC59ajOaFDiLLS1O76/NBzBOxfVbocuUG48MPD3ea8AAOaR6sE2x3wuXfM1HPGz VWUwk+jAFlPWN6WTM7L/eW9V8ZpdJs9ZJum+0zoTvsN8jOEAwNVWc9KJc5sTu7v1 Z7vh3V/PcmI4swzQmIv478GIhW/DhKq1/88Fcuqm9UTjnJhBKf0XNZeT6vBjeG1o cY3PJnCS4goK5p0d0mA6MBVPTI7YjUx6HJK2rmJ62Ajks5IcsQGrPdH0RtQiMXKM OG9ImByQRj1ZvPRPSR68SBeJBwBF/VkdnkJcCf5ETqDPwEo1szOSItUHnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFrhq8xtIO7RK37R3kgtfiNgcI2pMB8GA1UdIwQY MBaAFODjl22ey4MJqBgfvQJcpS/vFhmZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNE9PWGJaN0xnd21vR0ItOUFseWxMLThXR1prLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9kNjEyYTMtNDYzMS00N2RlLTk0MGQt OGJlMGQ5NzY4MmFiLzEvNE9PWGJaN0xnd21vR0ItOUFseWxMLThXR1prLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC9kNjEyYTMtNDYzMS00N2RlLTk0MGQtOGJlMGQ5NzY4MmFi LzEvNE9PWGJaN0xnd21vR0ItOUFseWxMLThXR1prLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQdpnvnBY jK24p1LkvwDKO5MpHYjMBe7c8nYHQ2ctOhztGZ037qcbTqA+QbY15sm85SFz764v cMc9mPEFCXii+8XUrLx2MwpRDCKl0+c+5NRHTO1+UfLtH/Dvl6I2uTlVlV3EBLQz fQ+u31GPoKCFaSp/3oL5Dy05i91NoSNplR6OwEN6r+dLwW/TJZjWwKzNJgNX6BNJ C71h9rvEh+keg8DNcIzqz0xX+tVj6EULAJfNmMjF26oYzIh4DJLPl+rAu2zgrkRR txahBjnU8KkB1FX9w6ob3g58MSKmq07aC2/IIIf0JBjR5yyLlGUZ/epgzJ96mBDB SnELqXgIwfDmUw== -----END CERTIFICATE-----Generated at Sat Dec 6 22:24:27 2025 by rpki-client