This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft File: oynU0nVy71pqbb7NeS7vmM6QcW0.mft (raw, json) Hash identifier: 5sbEfS9Gqx5GUla+cs3xu205qz81LLLPi03+jquW0Ig= Subject key identifier: 47:40:CF:42:AF:96:0C:5E:B9:53:E7:CE:F6:F9:3A:38:8E:33:15:DE Authority key identifier: A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D Certificate issuer: /CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d Certificate serial: 019AF42E392FA009E52662B8A9D57F650A36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 15:01:01 +0000 Manifest this update: Sat 06 Dec 2025 15:01:01 +0000 Manifest next update: Sun 07 Dec 2025 15:01:01 +0000 Files and hashes: 1: blse6v5EH2fVrElwGZmlrK99XJk.roa (hash: otAVsYT9s6hCs6g9uAr3ovy061yRH8/KdKxwyyD5qvk=) 2: oynU0nVy71pqbb7NeS7vmM6QcW0.crl (hash: BjxJi4Rdyc3GwHW/VTooj42iutE7r7qhwSnWCd/Gcmg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:39:2f:a0:09:e5:26:62:b8:a9:d5:7f:65:0a:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d Validity Not Before: Dec 6 15:01:01 2025 GMT Not After : Dec 7 15:01:01 2025 GMT Subject: CN=4740cf42af960c5eb953e7cef6f93a388e3315de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f3:0e:7c:6a:83:c1:a3:ea:ef:6c:70:19:c2: 97:26:05:43:0e:3e:ab:68:f0:5c:82:5e:17:80:db: 61:8c:3a:16:99:c3:b2:40:28:07:44:a0:95:b0:7d: 9e:40:ff:90:f0:8b:23:76:dd:82:d1:50:f7:00:55: b3:0c:35:c3:9c:a2:13:24:63:3f:05:c0:b0:82:5f: 85:e9:e6:90:48:39:de:fc:83:fb:f0:84:46:22:84: d9:20:55:a0:77:97:ce:ef:bc:07:84:d3:01:d7:d9: 88:04:67:95:54:f3:69:ad:f0:c4:cb:26:5d:53:04: 0d:4e:97:ba:44:b8:89:8c:0e:7e:07:38:cf:33:07: e3:8d:5f:a8:c6:d6:ab:05:6b:e1:2b:54:55:30:ec: 10:0d:1d:28:ef:22:97:b1:3b:bb:5f:0e:b6:12:cd: a9:a0:72:e1:6e:e3:22:ad:f6:31:c8:d3:0e:06:5e: 8d:5d:6a:8a:e6:ce:88:af:8f:02:2e:6c:c0:55:9d: e5:ae:85:66:b0:06:b5:b5:08:14:f2:46:b4:5d:b2: 5d:22:b4:2b:1b:64:34:ed:85:5d:be:be:9d:c8:96: 5e:23:ba:39:ed:30:3d:fc:0e:44:5f:d8:d2:8a:52: 9e:65:50:92:3c:65:a7:84:bf:1c:78:2a:8c:9e:1d: 5c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:40:CF:42:AF:96:0C:5E:B9:53:E7:CE:F6:F9:3A:38:8E:33:15:DE X509v3 Authority Key Identifier: keyid:A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:e1:f2:f7:ff:d8:a0:ef:50:7b:ac:26:12:af:71:23:8a:7b: c3:91:03:90:5d:7c:b2:70:aa:a3:7a:6a:8f:e4:f3:60:39:42: 96:13:88:10:69:6e:b7:37:09:af:ed:c4:18:d2:bd:9a:21:a3: fa:02:f8:74:26:48:60:a0:86:40:8b:21:47:cb:7d:18:8d:28: d5:8e:da:5a:8a:db:07:c4:e4:0b:7c:e0:67:f8:14:f8:bb:d5: 34:50:f3:a7:60:c6:ee:a0:f2:f7:3f:e5:bc:7d:18:b5:11:fb: 3c:ac:2d:79:dd:ba:f0:97:63:b7:8e:4f:10:55:93:fe:42:ea: 50:c3:fc:de:3f:2a:bb:a1:5f:65:a4:90:5f:33:9f:09:c7:6a: 8b:1f:51:fd:7c:65:aa:d1:3f:4b:f2:42:9b:c1:62:61:54:be: d3:d4:ee:44:8b:95:e1:49:57:19:e1:ac:5b:bf:3f:09:f1:f2: b9:54:68:75:e7:d5:31:e1:80:5d:b4:da:43:16:10:ab:32:d4: eb:c2:54:2b:ee:0c:08:e8:85:fb:ff:d1:4f:89:3b:60:24:65: c9:23:a4:ed:a5:83:d9:cd:2c:5b:9c:f2:54:52:88:09:7e:ef: 42:08:6e:d1:4a:27:5a:d2:bd:6a:94:53:79:25:fd:7d:8c:10: 1b:db:b2:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LjkvoAnlJmK4qdV/ZQo2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzMjlkNGQyNzU3MmVmNWE2YTZkYmVjZDc5MmVlZjk4Y2U5 MDcxNmQwHhcNMjUxMjA2MTUwMTAxWhcNMjUxMjA3MTUwMTAxWjAzMTEwLwYDVQQD Eyg0NzQwY2Y0MmFmOTYwYzVlYjk1M2U3Y2VmNmY5M2EzODhlMzMxNWRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1PMOfGqDwaPq72xwGcKXJgVDDj6r aPBcgl4XgNthjDoWmcOyQCgHRKCVsH2eQP+Q8Isjdt2C0VD3AFWzDDXDnKITJGM/ BcCwgl+F6eaQSDne/IP78IRGIoTZIFWgd5fO77wHhNMB19mIBGeVVPNprfDEyyZd UwQNTpe6RLiJjA5+BzjPMwfjjV+oxtarBWvhK1RVMOwQDR0o7yKXsTu7Xw62Es2p oHLhbuMirfYxyNMOBl6NXWqK5s6Ir48CLmzAVZ3lroVmsAa1tQgU8ka0XbJdIrQr G2Q07YVdvr6dyJZeI7o57TA9/A5EX9jSilKeZVCSPGWnhL8ceCqMnh1ctwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEdAz0KvlgxeuVPnzvb5OjiOMxXeMB8GA1UdIwQY MBaAFKMp1NJ1cu9aam2+zXku75jOkHFtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3luVTBuVnk3MXBxYmI3TmVTN3ZtTTZRY1cwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8wZjNkOGEtYTQzMC00YjI3LThmOTUt ZWUxNzg1NzhkY2I1LzEvb3luVTBuVnk3MXBxYmI3TmVTN3ZtTTZRY1cwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy8wZjNkOGEtYTQzMC00YjI3LThmOTUtZWUxNzg1NzhkY2I1 LzEvb3luVTBuVnk3MXBxYmI3TmVTN3ZtTTZRY1cwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASuHy9//Y oO9Qe6wmEq9xI4p7w5EDkF18snCqo3pqj+TzYDlClhOIEGlutzcJr+3EGNK9miGj +gL4dCZIYKCGQIshR8t9GI0o1Y7aWorbB8TkC3zgZ/gU+LvVNFDzp2DG7qDy9z/l vH0YtRH7PKwted268Jdjt45PEFWT/kLqUMP83j8qu6FfZaSQXzOfCcdqix9R/Xxl qtE/S/JCm8FiYVS+09TuRIuV4UlXGeGsW78/CfHyuVRodefVMeGAXbTaQxYQqzLU 68JUK+4MCOiF+//RT4k7YCRlySOk7aWD2c0sW5zyVFKICX7vQghu0UonWtK9apRT eSX9fYwQG9uyPw== -----END CERTIFICATE-----Generated at Sat Dec 6 16:43:45 2025 by rpki-client