This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json) Hash identifier: z/PR1/vfEIGdcPNo2v/ZF08QkC1vdlFUubYTAL6tlmY= Subject key identifier: A0:83:C5:5F:F4:67:55:AD:FB:B2:16:AE:78:AD:02:51:39:3D:54:78 Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29 Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529 Certificate serial: 019AF3C02F79F459235668EA099DB6DEDF5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft Manifest number: 1026 Signing time: Sat 06 Dec 2025 13:00:49 +0000 Manifest this update: Sat 06 Dec 2025 13:00:49 +0000 Manifest next update: Sun 07 Dec 2025 13:00:49 +0000 Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: 7vDNnxj5LROB8HjiOVigQfBwVYPDmmorJkAZImCDuq8=) 2: T24Mb-6KOyII9Zj4ApmqBzXBKxg.roa (hash: l/FPlArXvYmwy1iwUTLkf9bdXt1EQpVFOKjPM76DwnU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:2f:79:f4:59:23:56:68:ea:09:9d:b6:de:df:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529 Validity Not Before: Dec 6 13:00:49 2025 GMT Not After : Dec 7 13:00:49 2025 GMT Subject: CN=a083c55ff46755adfbb216ae78ad0251393d5478 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4a:e3:8f:c1:5e:d4:54:99:16:ba:e7:24:02: b5:af:d7:e5:a3:fe:47:36:14:09:1b:15:95:e1:13: 95:6d:37:36:59:dd:50:a2:e5:c2:a5:08:16:53:f1: 74:f5:c5:9f:53:02:18:8b:7a:21:57:51:7f:cb:f8: 7f:99:ee:49:6b:60:39:a3:74:25:c4:83:45:74:41: 8d:3c:97:5f:14:17:a8:c5:80:70:16:3a:a5:30:93: c4:9d:19:87:6a:9d:a9:a0:ed:7e:a8:1c:44:ef:3a: 9c:ce:75:ab:1c:29:3c:d4:b3:70:f2:e9:0d:cf:1f: 7f:e7:ed:04:14:f2:49:81:76:a9:a7:c8:6d:d0:97: 6f:4c:3a:07:69:e0:09:2b:20:57:ed:d9:45:e5:68: 59:54:fc:6e:43:45:7d:df:ee:e4:d9:0c:d1:d2:42: 9e:a7:32:c1:8b:90:19:df:d0:ab:83:64:2b:22:bd: 33:49:85:7e:38:59:27:47:f2:97:8a:a4:b8:90:b1: 01:eb:e7:68:0f:4e:44:35:ea:9a:79:59:e1:ef:4e: 73:04:98:a1:c9:a1:4d:4c:5a:3c:26:14:2f:ca:6a: d8:10:ff:50:74:cb:9f:50:26:85:95:81:22:ce:2d: da:33:ac:80:b2:2f:23:16:4b:b2:94:1a:74:41:95: 6d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:83:C5:5F:F4:67:55:AD:FB:B2:16:AE:78:AD:02:51:39:3D:54:78 X509v3 Authority Key Identifier: keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:39:83:70:e9:87:11:e1:c6:55:cf:87:b5:d5:4d:cd:f1:de: 7a:bf:bb:a9:d0:e4:1b:96:23:0f:94:bf:48:28:b4:1f:65:a4: 2f:ec:92:91:49:bc:5b:02:ca:0d:72:8a:1f:ba:04:06:db:68: 51:47:24:51:89:42:af:08:69:e5:fd:da:65:28:23:02:33:a9: 63:79:f9:8b:ba:d0:5c:32:cc:d7:0e:91:91:ee:75:ab:53:cc: 6e:51:a4:05:65:8f:36:20:78:1d:eb:14:83:de:a8:cf:65:d0: 92:b2:46:0d:59:92:07:60:b1:29:ac:6f:0a:b9:38:15:cf:8d: 2d:5d:b3:7f:f7:43:cd:5d:2b:17:0d:45:00:13:ef:0a:f2:2a: dc:19:e8:37:30:7f:45:6c:12:ae:be:c3:ed:a1:d9:56:86:9e: 2f:47:d9:89:f0:33:45:75:08:b3:92:6c:94:85:f8:0e:76:de: d5:0f:8f:df:18:ee:5d:3a:92:94:c3:59:ba:88:4c:be:34:4d: 9d:f1:cc:a7:1d:15:da:39:46:3a:3b:b9:de:e2:ec:5d:58:86: 60:3f:9f:e6:bc:b0:b9:f5:68:27:b2:47:2c:41:9d:9e:a3:52: ff:16:50:29:ac:e7:44:5d:6d:ac:83:cc:1b:ec:f7:36:3a:3e: 17:3c:65:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwC959FkjVmjqCZ223t9cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhOTM2ZDJmMjk4ZTZjZmQ1NjYwNDU3M2QxZWY5ZTBlODI5 OWI1MjkwHhcNMjUxMjA2MTMwMDQ5WhcNMjUxMjA3MTMwMDQ5WjAzMTEwLwYDVQQD EyhhMDgzYzU1ZmY0Njc1NWFkZmJiMjE2YWU3OGFkMDI1MTM5M2Q1NDc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAokrjj8Fe1FSZFrrnJAK1r9flo/5H NhQJGxWV4ROVbTc2Wd1QouXCpQgWU/F09cWfUwIYi3ohV1F/y/h/me5Ja2A5o3Ql xINFdEGNPJdfFBeoxYBwFjqlMJPEnRmHap2poO1+qBxE7zqcznWrHCk81LNw8ukN zx9/5+0EFPJJgXapp8ht0JdvTDoHaeAJKyBX7dlF5WhZVPxuQ0V93+7k2QzR0kKe pzLBi5AZ39Crg2QrIr0zSYV+OFknR/KXiqS4kLEB6+doD05ENeqaeVnh705zBJih yaFNTFo8JhQvymrYEP9QdMufUCaFlYEizi3aM6yAsi8jFkuylBp0QZVtqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKCDxV/0Z1Wt+7IWrnitAlE5PVR4MB8GA1UdIwQY MBaAFDqTbS8pjmz9VmBFc9Hvng6CmbUpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3BOdEx5bU9iUDFXWUVWejBlLWVEb0tadFNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy83MDQ5NzMtMTg2Ni00MGQxLTlhMWQt YjVmOGVjMGFhZDdjLzEvT3BOdEx5bU9iUDFXWUVWejBlLWVEb0tadFNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy83MDQ5NzMtMTg2Ni00MGQxLTlhMWQtYjVmOGVjMGFhZDdj LzEvT3BOdEx5bU9iUDFXWUVWejBlLWVEb0tadFNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArDmDcOmH EeHGVc+HtdVNzfHeer+7qdDkG5YjD5S/SCi0H2WkL+ySkUm8WwLKDXKKH7oEBtto UUckUYlCrwhp5f3aZSgjAjOpY3n5i7rQXDLM1w6Rke51q1PMblGkBWWPNiB4HesU g96oz2XQkrJGDVmSB2CxKaxvCrk4Fc+NLV2zf/dDzV0rFw1FABPvCvIq3BnoNzB/ RWwSrr7D7aHZVoaeL0fZifAzRXUIs5JslIX4Dnbe1Q+P3xjuXTqSlMNZuohMvjRN nfHMpx0V2jlGOju53uLsXViGYD+f5rywufVoJ7JHLEGdnqNS/xZQKaznRF1trIPM G+z3Njo+FzxlMw== -----END CERTIFICATE-----Generated at Sat Dec 6 19:56:21 2025 by rpki-client