This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json) Hash identifier: yQ7BniKuiJr28o4BhIt5pRywHHaIlVbrAjpRf0hkn0Q= Subject key identifier: BD:D1:F1:74:D1:E3:DE:40:DA:F4:06:4C:3C:F3:B4:D2:F2:C9:9D:DA Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58 Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958 Certificate serial: 019B2FD51DD50A6468509018FEA94864BB6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft Manifest number: 1772 Signing time: Thu 18 Dec 2025 05:00:54 +0000 Manifest this update: Thu 18 Dec 2025 05:00:54 +0000 Manifest next update: Fri 19 Dec 2025 05:00:54 +0000 Files and hashes: 1: EQS-D1pgF9X9JxFRgbIMqF1eIP4.roa (hash: X1oH+D4EKjN/FZ/0o/XNZpi/rX7eBTsOxnwwIoAyafs=) 2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: OpSDKbUH3F5QSvWzvyo+KzMkwvkkcCq1AemdP+g+CLc=) 3: VK52xwAI-aKIKTeQlztwUDOO02E.roa (hash: C9ydrT1jO/tCG0jTbHX7J5njz1R33YyX3/MyTTWyLe8=) 4: cVloRXAZs5Oo5mzrcunH3Tc2864.roa (hash: PRZbsG5bEI+5vtvix6l8s4vQ6r0jrrNQcUM/ZaoxHsc=) 5: fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa (hash: NJGE7uKTYs1I+EUOo5wFk+oBfIXQxyDxL9xtb3Bt434=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 05:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:d5:1d:d5:0a:64:68:50:90:18:fe:a9:48:64:bb:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958 Validity Not Before: Dec 18 05:00:54 2025 GMT Not After : Dec 19 05:00:54 2025 GMT Subject: CN=bdd1f174d1e3de40daf4064c3cf3b4d2f2c99dda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2f:39:65:dc:45:31:9c:24:1f:09:1c:99:3d: 18:da:64:02:b6:09:ba:8b:3b:e1:0d:f2:c9:8b:d2: 73:d5:96:a3:8c:91:c5:2d:1c:a3:c4:ea:17:c4:ba: 46:aa:4c:cf:8c:0d:ef:51:fd:fa:f1:84:e4:32:8e: 8d:12:c4:3a:f8:66:24:a2:14:4d:d9:c4:31:33:83: 52:a4:2e:ed:06:fd:07:de:4d:25:49:98:e7:d4:01: 6c:26:3a:45:3d:4a:48:bb:8e:44:c7:4d:7f:0f:f5: e4:8e:bb:5a:77:21:f0:89:30:54:b3:b4:bb:e7:ca: 19:f4:bd:cc:cc:72:95:a5:a2:23:64:28:87:76:b0: 66:b4:41:01:c8:e6:42:52:d7:0e:c8:7f:ef:44:43: 13:2a:b9:f2:b0:7a:b6:e8:0e:97:e1:fe:6e:0c:f6: 86:74:8c:02:14:e0:a5:c1:38:c4:26:4f:2e:f2:f8: 52:db:c1:99:68:10:2d:24:55:5a:43:88:5e:50:20: 43:d2:2e:f1:9e:8f:50:37:64:ba:d8:86:27:4a:59: 54:36:68:d7:80:75:90:59:66:d7:0a:6c:f7:fc:e9: db:24:c6:1d:5d:83:a8:f4:95:e1:0b:a9:47:fa:26: 1b:af:2c:87:f9:14:35:9a:1e:2c:19:53:fc:20:c5: de:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D1:F1:74:D1:E3:DE:40:DA:F4:06:4C:3C:F3:B4:D2:F2:C9:9D:DA X509v3 Authority Key Identifier: keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:83:0f:9d:d2:90:e1:d3:25:7c:0d:56:73:65:60:fd:b7:75: 5d:2e:9e:b3:15:f0:81:d0:8b:4a:33:7f:2d:d5:08:38:77:58: 3d:d2:7d:ff:4c:ca:6a:d4:cc:dd:5a:ea:df:ec:97:1b:8a:6e: f2:3b:62:00:73:34:96:ee:65:18:e4:d1:6d:a0:3b:4d:85:b3: e1:d5:c0:45:5b:2d:ed:f6:71:df:90:c0:83:86:e0:80:71:dd: db:22:9f:21:22:a2:34:6a:86:2a:f6:7f:16:62:d9:4a:c6:06: 0a:62:55:a1:31:b7:04:a0:90:92:8c:35:01:2d:02:18:e3:5e: 9a:1f:b7:91:7d:39:36:4b:a6:03:bb:8e:7e:a0:f4:a2:f5:97: f7:e2:7f:39:fd:70:51:86:83:bf:cd:4b:78:42:a0:d3:9c:ce: 65:3b:ef:f0:35:bb:7a:0b:a3:56:38:a8:85:3b:4a:87:c5:13: 26:bb:a5:81:e3:3a:22:3d:6a:6b:8a:3b:2d:3e:70:8c:29:45: 88:32:1f:95:3d:66:4b:ff:00:33:3e:54:7d:0a:50:c8:39:f9: d8:4b:4e:bf:7b:00:d1:01:52:79:d2:e8:e6:4d:5b:04:1e:cb: 5b:b2:84:b0:61:b8:2a:88:76:c9:3b:1d:d7:0d:35:98:7b:9c: e1:6f:12:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsv1R3VCmRoUJAY/qlIZLtvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5NzMyZGNkMGMzNTQyNjE0NGY5ZjAyNjc1NDE3OWRmYWVi ZTg5NTgwHhcNMjUxMjE4MDUwMDU0WhcNMjUxMjE5MDUwMDU0WjAzMTEwLwYDVQQD EyhiZGQxZjE3NGQxZTNkZTQwZGFmNDA2NGMzY2YzYjRkMmYyYzk5ZGRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2C85ZdxFMZwkHwkcmT0Y2mQCtgm6 izvhDfLJi9Jz1ZajjJHFLRyjxOoXxLpGqkzPjA3vUf368YTkMo6NEsQ6+GYkohRN 2cQxM4NSpC7tBv0H3k0lSZjn1AFsJjpFPUpIu45Ex01/D/XkjrtadyHwiTBUs7S7 58oZ9L3MzHKVpaIjZCiHdrBmtEEByOZCUtcOyH/vREMTKrnysHq26A6X4f5uDPaG dIwCFOClwTjEJk8u8vhS28GZaBAtJFVaQ4heUCBD0i7xno9QN2S62IYnSllUNmjX gHWQWWbXCmz3/OnbJMYdXYOo9JXhC6lH+iYbryyH+RQ1mh4sGVP8IMXekQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL3R8XTR495A2vQGTDzztNLyyZ3aMB8GA1UdIwQY MBaAFDlzLc0MNUJhRPnwJnVBed+uvolYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODIt ZjYwYWYyYTgyMDYwLzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODItZjYwYWYyYTgyMDYw LzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALIMPndKQ 4dMlfA1Wc2Vg/bd1XS6esxXwgdCLSjN/LdUIOHdYPdJ9/0zKatTM3Vrq3+yXG4pu 8jtiAHM0lu5lGOTRbaA7TYWz4dXARVst7fZx35DAg4bggHHd2yKfISKiNGqGKvZ/ FmLZSsYGCmJVoTG3BKCQkow1AS0CGONemh+3kX05NkumA7uOfqD0ovWX9+J/Of1w UYaDv81LeEKg05zOZTvv8DW7egujVjiohTtKh8UTJrulgeM6Ij1qa4o7LT5wjClF iDIflT1mS/8AMz5UfQpQyDn52EtOv3sA0QFSedLo5k1bBB7LW7KEsGG4Koh2yTsd 1w01mHuc4W8ScQ== -----END CERTIFICATE-----Generated at Thu Dec 18 14:21:57 2025 by rpki-client