This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.mft File: oybRlH-kQ2NloBOsZ_TzKx_bqck.mft (raw, json) Hash identifier: lzvkLrqXniRM6JY1T8jYjV6ZgXxFdn5iOGT9N801vtc= Subject key identifier: 98:2C:DA:37:9B:85:77:8D:F2:CD:57:16:9D:00:CA:E1:B6:CB:A6:F3 Authority key identifier: A3:26:D1:94:7F:A4:43:63:65:A0:13:AC:67:F4:F3:2B:1F:DB:A9:C9 Certificate issuer: /CN=a326d1947fa4436365a013ac67f4f32b1fdba9c9 Certificate serial: 019AF31BE9FDF53F1EA1C4EDEF6E42757A7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oybRlH-kQ2NloBOsZ_TzKx_bqck.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.mft Manifest number: 145B Signing time: Sat 06 Dec 2025 10:01:24 +0000 Manifest this update: Sat 06 Dec 2025 10:01:24 +0000 Manifest next update: Sun 07 Dec 2025 10:01:24 +0000 Files and hashes: 1: oybRlH-kQ2NloBOsZ_TzKx_bqck.crl (hash: 445/uqR7KMpzIxe+EvnBx314W2yuiPxYpjbMrPUUABw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.mft rsync://rpki.ripe.net/repository/DEFAULT/oybRlH-kQ2NloBOsZ_TzKx_bqck.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:e9:fd:f5:3f:1e:a1:c4:ed:ef:6e:42:75:7a:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a326d1947fa4436365a013ac67f4f32b1fdba9c9 Validity Not Before: Dec 6 10:01:24 2025 GMT Not After : Dec 7 10:01:24 2025 GMT Subject: CN=982cda379b85778df2cd57169d00cae1b6cba6f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ad:bb:05:53:a0:02:d8:fb:58:50:46:0a:78: e2:3a:fe:6c:8f:83:bd:ef:df:83:db:e4:4a:ee:88: 02:2d:e3:5b:ef:15:aa:a7:6e:45:7d:1c:9b:f7:af: ee:3f:6b:ed:d9:b1:2e:6c:f1:92:a2:55:cb:74:70: 13:b6:f3:4a:43:e6:68:24:d0:25:37:25:ae:c5:96: 56:6b:32:cf:4f:06:b2:76:2f:89:3a:a1:87:6b:0e: 4f:34:4a:ac:bc:2e:1a:f3:04:d0:99:ae:60:8a:b9: 17:ac:c8:6f:4d:20:19:15:5b:b7:0c:2b:34:84:a6: 1f:fc:00:63:62:59:09:06:26:61:a8:64:84:8f:bd: ca:33:a9:ff:e0:68:6c:87:c1:7a:0d:ce:a2:32:56: 3e:10:82:52:7a:23:e1:db:aa:df:78:f5:c4:94:7c: ac:57:76:e7:41:c4:c1:52:6a:92:a5:9d:8c:f3:48: 6a:40:e2:2d:96:29:30:8a:b8:2d:3b:fa:42:43:3c: 7e:7b:2c:1c:a9:dc:09:3f:3b:eb:cb:d0:23:28:12: 84:1b:84:6e:30:83:2e:55:04:9d:e6:1b:47:5e:e6: 23:3a:72:3c:a2:d8:f0:5f:91:00:7f:87:3d:49:cc: a9:8b:36:91:ad:54:03:d7:ff:24:36:9c:7a:d7:83: 17:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:2C:DA:37:9B:85:77:8D:F2:CD:57:16:9D:00:CA:E1:B6:CB:A6:F3 X509v3 Authority Key Identifier: keyid:A3:26:D1:94:7F:A4:43:63:65:A0:13:AC:67:F4:F3:2B:1F:DB:A9:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oybRlH-kQ2NloBOsZ_TzKx_bqck.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:37:70:c7:a3:25:4b:1b:aa:14:12:4f:75:62:73:d1:2c:a9: 91:e1:ce:9c:75:c6:e1:fa:0a:69:6a:1e:d3:f8:be:a9:72:7a: 9d:05:04:4d:36:c5:f0:c2:6c:49:93:e7:c3:18:ed:53:1e:1f: a4:02:39:15:29:73:19:18:5c:1d:64:8a:d3:dd:36:26:dc:02: ec:bb:1e:03:53:42:c9:13:a2:52:87:6a:cb:e8:c5:c7:01:38: 94:ad:35:e1:84:1e:5d:43:d5:95:e4:26:53:4e:1c:46:cd:8f: 80:19:59:ae:9b:ac:18:ee:3c:b3:dc:e7:93:fd:42:20:b9:ee: e0:ce:a4:0e:63:11:e6:70:6d:c9:0a:28:6e:b3:8f:7b:f3:e9: d7:58:f1:df:05:bc:43:a4:c4:9a:c6:55:cb:0e:5e:00:85:9e: ce:b4:96:e9:a4:27:55:1b:ad:4a:dc:23:8e:e8:27:d2:b9:75: f8:87:8c:d8:96:35:10:14:f7:c6:ac:e8:78:e0:24:9a:d5:6a: 86:b0:ed:a3:81:09:26:11:ce:54:94:34:44:a7:a1:de:83:e0: 4e:a7:64:0e:46:55:80:1d:90:13:18:36:a6:a8:9b:e5:75:ad: 63:cb:51:c9:97:4a:77:a2:85:7c:5a:9e:b1:58:5a:62:4a:b3: 06:e6:0a:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG+n99T8eocTt725CdXp+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzMjZkMTk0N2ZhNDQzNjM2NWEwMTNhYzY3ZjRmMzJiMWZk YmE5YzkwHhcNMjUxMjA2MTAwMTI0WhcNMjUxMjA3MTAwMTI0WjAzMTEwLwYDVQQD Eyg5ODJjZGEzNzliODU3NzhkZjJjZDU3MTY5ZDAwY2FlMWI2Y2JhNmYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo627BVOgAtj7WFBGCnjiOv5sj4O9 79+D2+RK7ogCLeNb7xWqp25FfRyb96/uP2vt2bEubPGSolXLdHATtvNKQ+ZoJNAl NyWuxZZWazLPTwaydi+JOqGHaw5PNEqsvC4a8wTQma5girkXrMhvTSAZFVu3DCs0 hKYf/ABjYlkJBiZhqGSEj73KM6n/4Ghsh8F6Dc6iMlY+EIJSeiPh26rfePXElHys V3bnQcTBUmqSpZ2M80hqQOItlikwirgtO/pCQzx+eywcqdwJPzvry9AjKBKEG4Ru MIMuVQSd5htHXuYjOnI8otjwX5EAf4c9ScypizaRrVQD1/8kNpx614MXeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJgs2jebhXeN8s1XFp0AyuG2y6bzMB8GA1UdIwQY MBaAFKMm0ZR/pENjZaATrGf08ysf26nJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3liUmxILWtRMk5sb0JPc1pfVHpLeF9icWNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8wNTdmOWItYTAzYy00YmEzLTliN2Yt NTdkM2RmYTU2NDA3LzEvb3liUmxILWtRMk5sb0JPc1pfVHpLeF9icWNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS8wNTdmOWItYTAzYy00YmEzLTliN2YtNTdkM2RmYTU2NDA3 LzEvb3liUmxILWtRMk5sb0JPc1pfVHpLeF9icWNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdjdwx6Ml SxuqFBJPdWJz0SypkeHOnHXG4foKaWoe0/i+qXJ6nQUETTbF8MJsSZPnwxjtUx4f pAI5FSlzGRhcHWSK0902JtwC7LseA1NCyROiUodqy+jFxwE4lK014YQeXUPVleQm U04cRs2PgBlZrpusGO48s9znk/1CILnu4M6kDmMR5nBtyQoobrOPe/Pp11jx3wW8 Q6TEmsZVyw5eAIWezrSW6aQnVRutStwjjugn0rl1+IeM2JY1EBT3xqzoeOAkmtVq hrDto4EJJhHOVJQ0RKeh3oPgTqdkDkZVgB2QExg2pqib5XWtY8tRyZdKd6KFfFqe sVhaYkqzBuYK9A== -----END CERTIFICATE-----Generated at Sat Dec 6 11:59:40 2025 by rpki-client