This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json) Hash identifier: tjrRk/LUoCJoUnA3Nu+vLwIYpa4GABr4rzqp0+nitvo= Subject key identifier: 56:03:DB:62:B5:04:3E:E4:F3:C1:9E:71:CD:59:E0:B5:7A:C1:03:1C Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58 Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958 Certificate serial: 019AF2098D00FDF20E60C770F9D86DD912E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft Manifest number: 1752 Signing time: Sat 06 Dec 2025 05:01:43 +0000 Manifest this update: Sat 06 Dec 2025 05:01:43 +0000 Manifest next update: Sun 07 Dec 2025 05:01:43 +0000 Files and hashes: 1: EQS-D1pgF9X9JxFRgbIMqF1eIP4.roa (hash: X1oH+D4EKjN/FZ/0o/XNZpi/rX7eBTsOxnwwIoAyafs=) 2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: vveF7s4efkrVWyArEM0If4M8sBtTpBg4p9A4SO3yplM=) 3: VK52xwAI-aKIKTeQlztwUDOO02E.roa (hash: C9ydrT1jO/tCG0jTbHX7J5njz1R33YyX3/MyTTWyLe8=) 4: cVloRXAZs5Oo5mzrcunH3Tc2864.roa (hash: PRZbsG5bEI+5vtvix6l8s4vQ6r0jrrNQcUM/ZaoxHsc=) 5: fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa (hash: NJGE7uKTYs1I+EUOo5wFk+oBfIXQxyDxL9xtb3Bt434=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:8d:00:fd:f2:0e:60:c7:70:f9:d8:6d:d9:12:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958 Validity Not Before: Dec 6 05:01:43 2025 GMT Not After : Dec 7 05:01:43 2025 GMT Subject: CN=5603db62b5043ee4f3c19e71cd59e0b57ac1031c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:19:06:6f:d1:cc:f6:e8:b7:b6:d0:5a:80:59: 9a:90:59:0c:32:89:a5:c1:e3:88:7a:0d:c1:9c:a8: a4:1a:45:d4:3b:58:6a:f1:98:32:ee:b5:8a:92:0b: ef:5d:45:20:8e:64:6e:df:65:5e:3c:d6:11:78:c9: ef:6a:9d:54:8a:14:01:5e:36:f1:ff:3a:b1:8b:63: 18:48:1f:f3:90:38:75:35:b8:b8:99:b6:87:cf:45: 47:59:7e:b3:f1:6d:2e:75:b0:5c:8b:60:78:9c:1b: 99:4e:ab:55:be:0e:e9:3d:5d:58:9f:57:7d:19:8b: 4a:5d:90:84:dd:e2:52:4b:bf:95:68:9f:76:7a:f7: 2d:e2:37:08:d3:a2:26:b3:60:0e:15:0b:e0:da:0b: 19:26:f1:f9:26:d1:ad:ce:ce:13:11:21:ec:04:4b: 4a:fc:29:d4:86:05:8c:cc:7f:41:ff:7f:09:18:f2: 88:ef:37:18:9f:26:d8:d6:1e:01:5c:ab:1a:06:03: 11:29:a2:f6:a7:1f:65:75:96:59:e4:49:bb:ac:52: 6e:89:36:10:47:27:c3:b5:d1:f8:f0:a8:91:ee:6b: e9:16:95:b3:27:9f:dc:6b:44:e3:b4:7e:aa:e9:06: 6f:31:95:f3:b8:91:39:d1:c5:42:6b:bf:9d:61:89: 26:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:03:DB:62:B5:04:3E:E4:F3:C1:9E:71:CD:59:E0:B5:7A:C1:03:1C X509v3 Authority Key Identifier: keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:db:97:bf:10:79:03:9b:67:15:d7:7a:0f:9f:1e:e4:74:11: 2e:4d:2b:b0:44:e4:17:3f:3f:83:08:a6:a7:d9:a4:23:13:ab: a2:ce:85:f5:13:95:40:8a:d8:e4:92:4d:2f:c2:ad:3d:2b:fd: 51:82:3e:66:6e:00:6a:90:61:6a:2a:d1:6c:55:ad:15:71:10: 51:c7:19:f4:88:c9:2b:30:5d:ef:fa:52:e7:ab:13:6c:5b:4c: 9a:2d:7b:15:cd:19:fd:18:86:47:b4:73:b1:b4:56:c2:77:70: 8d:e8:6e:00:52:b2:a0:79:bd:0f:28:3c:38:74:f4:95:e2:e1: 8a:21:ac:2b:7e:aa:99:a1:07:2f:67:45:bc:f7:30:14:73:06: 61:4a:ef:02:90:8a:d6:c3:21:d5:d4:b8:1d:0f:f7:54:75:c2: 9c:80:63:80:af:60:a9:6b:5c:22:2f:ca:05:4b:6f:20:05:01: bc:e8:72:9a:e3:2c:e3:6d:6e:a0:4d:d8:86:30:9f:d7:87:dd: 86:22:6a:a4:ef:9a:49:fe:84:c4:69:d4:d8:09:bd:38:d0:c5: eb:c4:b7:1f:94:cd:3f:2e:15:77:94:34:3e:7e:b5:f7:c0:f1: 83:74:01:56:a3:cf:2a:e9:73:26:de:31:6f:94:26:d9:f6:4f: 7e:6a:7f:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCY0A/fIOYMdw+dht2RLiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5NzMyZGNkMGMzNTQyNjE0NGY5ZjAyNjc1NDE3OWRmYWVi ZTg5NTgwHhcNMjUxMjA2MDUwMTQzWhcNMjUxMjA3MDUwMTQzWjAzMTEwLwYDVQQD Eyg1NjAzZGI2MmI1MDQzZWU0ZjNjMTllNzFjZDU5ZTBiNTdhYzEwMzFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3hkGb9HM9ui3ttBagFmakFkMMoml weOIeg3BnKikGkXUO1hq8Zgy7rWKkgvvXUUgjmRu32VePNYReMnvap1UihQBXjbx /zqxi2MYSB/zkDh1Nbi4mbaHz0VHWX6z8W0udbBci2B4nBuZTqtVvg7pPV1Yn1d9 GYtKXZCE3eJSS7+VaJ92evct4jcI06Ims2AOFQvg2gsZJvH5JtGtzs4TESHsBEtK /CnUhgWMzH9B/38JGPKI7zcYnybY1h4BXKsaBgMRKaL2px9ldZZZ5Em7rFJuiTYQ RyfDtdH48KiR7mvpFpWzJ5/ca0TjtH6q6QZvMZXzuJE50cVCa7+dYYkm3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFYD22K1BD7k88Gecc1Z4LV6wQMcMB8GA1UdIwQY MBaAFDlzLc0MNUJhRPnwJnVBed+uvolYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODIt ZjYwYWYyYTgyMDYwLzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODItZjYwYWYyYTgyMDYw LzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnduXvxB5 A5tnFdd6D58e5HQRLk0rsETkFz8/gwimp9mkIxOros6F9ROVQIrY5JJNL8KtPSv9 UYI+Zm4AapBhairRbFWtFXEQUccZ9IjJKzBd7/pS56sTbFtMmi17Fc0Z/RiGR7Rz sbRWwndwjehuAFKyoHm9Dyg8OHT0leLhiiGsK36qmaEHL2dFvPcwFHMGYUrvApCK 1sMh1dS4HQ/3VHXCnIBjgK9gqWtcIi/KBUtvIAUBvOhymuMs421uoE3YhjCf14fd hiJqpO+aSf6ExGnU2Am9ONDF68S3H5TNPy4Vd5Q0Pn6198Dxg3QBVqPPKulzJt4x b5Qm2fZPfmp//A== -----END CERTIFICATE-----Generated at Sat Dec 6 10:06:22 2025 by rpki-client