This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/a97c7d-bcc7-4fb5-86e2-2e6246c219f7/1/OdAejKCv5BTBV-H7-1OUhnzlHts.mft File: OdAejKCv5BTBV-H7-1OUhnzlHts.mft (raw, json) Hash identifier: N6eVakTvkJThufpvmItS6D9KRwaRdn12ksZKTV5jKuE= Subject key identifier: 59:D8:F6:C7:01:56:13:EA:E7:BA:C0:77:A8:08:6F:2F:DE:27:17:A4 Authority key identifier: 39:D0:1E:8C:A0:AF:E4:14:C1:57:E1:FB:FB:53:94:86:7C:E5:1E:DB Certificate issuer: /CN=39d01e8ca0afe414c157e1fbfb5394867ce51edb Certificate serial: 019AF2099E77850CFAE1132F6AFD5F54149B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OdAejKCv5BTBV-H7-1OUhnzlHts.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/a97c7d-bcc7-4fb5-86e2-2e6246c219f7/1/OdAejKCv5BTBV-H7-1OUhnzlHts.mft Manifest number: 2A Signing time: Sat 06 Dec 2025 05:01:47 +0000 Manifest this update: Sat 06 Dec 2025 05:01:47 +0000 Manifest next update: Sun 07 Dec 2025 05:01:47 +0000 Files and hashes: 1: 2G4Xf8pLqEWjirvogul_LDd5FPI.roa (hash: /5ZBPi9hR3OWcYF4JvFkWR9sLIrIvmMOKZx6ycQkpcU=) 2: OdAejKCv5BTBV-H7-1OUhnzlHts.crl (hash: Mypzah848VNHQ45Yc6TgrmId5ZQsu6IwxWDwpZxLDBg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/a97c7d-bcc7-4fb5-86e2-2e6246c219f7/1/OdAejKCv5BTBV-H7-1OUhnzlHts.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/a97c7d-bcc7-4fb5-86e2-2e6246c219f7/1/OdAejKCv5BTBV-H7-1OUhnzlHts.mft rsync://rpki.ripe.net/repository/DEFAULT/OdAejKCv5BTBV-H7-1OUhnzlHts.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:9e:77:85:0c:fa:e1:13:2f:6a:fd:5f:54:14:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39d01e8ca0afe414c157e1fbfb5394867ce51edb Validity Not Before: Dec 6 05:01:47 2025 GMT Not After : Dec 7 05:01:47 2025 GMT Subject: CN=59d8f6c7015613eae7bac077a8086f2fde2717a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ef:65:c5:d0:d8:5c:ae:a7:cb:39:52:ce:b6: cf:04:16:11:c6:f2:b4:d1:ed:17:e6:2d:af:b8:b8: 5a:98:0d:6a:a4:f3:6b:55:cc:36:57:c6:80:47:b5: 5e:49:70:8e:03:3f:e8:da:d0:3f:33:68:fb:bb:5c: f1:1f:1e:14:81:50:30:9c:07:ce:e2:fc:27:0f:fb: e3:a8:39:3e:d5:b9:82:09:6c:39:6a:f9:73:d9:18: 2b:5f:fd:0f:12:9b:63:9d:ac:c4:44:f2:10:17:f7: 7a:db:30:72:15:b6:c6:c3:e2:67:db:ff:01:57:df: cc:88:6a:72:6e:5d:1d:54:03:f6:0a:2f:c8:7c:96: 78:87:c9:1e:6f:6e:00:d2:f5:97:ac:0d:d9:68:ac: 42:e0:0d:bf:77:ff:f4:d0:de:0d:99:20:2f:37:c6: 24:3b:d8:65:e1:97:a0:f0:11:da:ec:56:a5:6e:35: ab:b5:ec:08:7b:60:95:31:a5:7b:9d:98:3e:cc:5f: e7:85:cd:a4:ec:e9:79:7f:c2:7b:05:22:8b:49:49: c6:2a:76:7c:b0:38:ef:f2:df:c1:b1:99:9e:34:bf: d7:c7:aa:83:e0:84:32:0c:f3:b5:8e:33:80:db:09: 1b:18:03:93:07:f5:43:23:6f:48:ee:62:19:c3:ca: 64:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:D8:F6:C7:01:56:13:EA:E7:BA:C0:77:A8:08:6F:2F:DE:27:17:A4 X509v3 Authority Key Identifier: keyid:39:D0:1E:8C:A0:AF:E4:14:C1:57:E1:FB:FB:53:94:86:7C:E5:1E:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OdAejKCv5BTBV-H7-1OUhnzlHts.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/a97c7d-bcc7-4fb5-86e2-2e6246c219f7/1/OdAejKCv5BTBV-H7-1OUhnzlHts.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/a97c7d-bcc7-4fb5-86e2-2e6246c219f7/1/OdAejKCv5BTBV-H7-1OUhnzlHts.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:e2:5a:26:fb:02:c4:95:6d:54:b9:d0:fc:07:f6:5a:41:55: ec:53:de:89:59:aa:42:d0:45:c6:ab:e2:4c:85:c7:82:c0:5f: 20:24:c3:a3:51:d1:93:d3:52:8d:cb:f1:28:4f:b2:3f:96:28: 65:cb:fe:b3:e4:27:54:93:7b:4f:77:16:f1:a0:d2:c1:d9:8d: e7:01:a6:d1:33:14:a3:58:19:e6:a9:16:9e:b4:a2:43:ad:8f: c9:83:93:b4:d6:51:76:b2:6e:1f:11:d2:4c:b5:4a:47:e0:fe: e4:67:fc:f0:57:6c:2c:78:c4:8a:6b:c2:cf:81:81:95:58:b8: d9:f1:61:11:94:0d:5c:0f:1d:b3:30:32:55:50:61:02:1c:e2: 85:95:48:ea:e0:ab:e5:f7:f6:1d:82:69:aa:7a:8a:6a:dc:dc: 12:fe:a4:5b:b0:28:5e:2d:a5:cc:ab:89:96:04:d5:a3:1d:8c: 1a:3b:62:cc:3d:91:9b:89:e0:19:a9:c0:01:00:d4:af:fd:0e: 66:48:8b:9b:29:a1:21:a8:f0:9b:a4:cb:8d:cc:6e:d2:fd:bf: e8:f3:92:6a:3f:11:90:26:54:ba:6d:73:71:65:ff:77:e7:33: 18:36:08:5f:48:b8:60:6c:3b:42:89:c2:7b:97:fc:b5:b2:10: ae:d7:b1:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCZ53hQz64RMvav1fVBSbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5ZDAxZThjYTBhZmU0MTRjMTU3ZTFmYmZiNTM5NDg2N2Nl NTFlZGIwHhcNMjUxMjA2MDUwMTQ3WhcNMjUxMjA3MDUwMTQ3WjAzMTEwLwYDVQQD Eyg1OWQ4ZjZjNzAxNTYxM2VhZTdiYWMwNzdhODA4NmYyZmRlMjcxN2E0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtO9lxdDYXK6nyzlSzrbPBBYRxvK0 0e0X5i2vuLhamA1qpPNrVcw2V8aAR7VeSXCOAz/o2tA/M2j7u1zxHx4UgVAwnAfO 4vwnD/vjqDk+1bmCCWw5avlz2RgrX/0PEptjnazERPIQF/d62zByFbbGw+Jn2/8B V9/MiGpybl0dVAP2Ci/IfJZ4h8keb24A0vWXrA3ZaKxC4A2/d//00N4NmSAvN8Yk O9hl4Zeg8BHa7FalbjWrtewIe2CVMaV7nZg+zF/nhc2k7Ol5f8J7BSKLSUnGKnZ8 sDjv8t/BsZmeNL/Xx6qD4IQyDPO1jjOA2wkbGAOTB/VDI29I7mIZw8pkPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFnY9scBVhPq57rAd6gIby/eJxekMB8GA1UdIwQY MBaAFDnQHoygr+QUwVfh+/tTlIZ85R7bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2RBZWpLQ3Y1QlRCVi1INy0xT1VobnpsSHRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9hOTdjN2QtYmNjNy00ZmI1LTg2ZTIt MmU2MjQ2YzIxOWY3LzEvT2RBZWpLQ3Y1QlRCVi1INy0xT1VobnpsSHRzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi9hOTdjN2QtYmNjNy00ZmI1LTg2ZTItMmU2MjQ2YzIxOWY3 LzEvT2RBZWpLQ3Y1QlRCVi1INy0xT1VobnpsSHRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAROJaJvsC xJVtVLnQ/Af2WkFV7FPeiVmqQtBFxqviTIXHgsBfICTDo1HRk9NSjcvxKE+yP5Yo Zcv+s+QnVJN7T3cW8aDSwdmN5wGm0TMUo1gZ5qkWnrSiQ62PyYOTtNZRdrJuHxHS TLVKR+D+5Gf88FdsLHjEimvCz4GBlVi42fFhEZQNXA8dszAyVVBhAhzihZVI6uCr 5ff2HYJpqnqKatzcEv6kW7AoXi2lzKuJlgTVox2MGjtizD2Rm4ngGanAAQDUr/0O ZkiLmymhIajwm6TLjcxu0v2/6POSaj8RkCZUum1zcWX/d+czGDYIX0i4YGw7QonC e5f8tbIQrtexug== -----END CERTIFICATE-----Generated at Sat Dec 6 09:42:07 2025 by rpki-client