This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft File: owjczEdYTD-oJh23kmouQBcrP3k.mft (raw, json) Hash identifier: mlyIFwca7HOd1KaCernl/d1ke4CB8YUBMuky8BOf3i0= Subject key identifier: 4C:5E:1E:B3:0B:B8:20:91:E2:97:0F:4F:CB:87:16:BA:D2:FF:A3:BD Authority key identifier: A3:08:DC:CC:47:58:4C:3F:A8:26:1D:B7:92:6A:2E:40:17:2B:3F:79 Certificate issuer: /CN=a308dccc47584c3fa8261db7926a2e40172b3f79 Certificate serial: 019AF23F8B59E5905E6F55216D5C784F38AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/owjczEdYTD-oJh23kmouQBcrP3k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft Manifest number: 0433 Signing time: Sat 06 Dec 2025 06:00:41 +0000 Manifest this update: Sat 06 Dec 2025 06:00:41 +0000 Manifest next update: Sun 07 Dec 2025 06:00:41 +0000 Files and hashes: 1: owjczEdYTD-oJh23kmouQBcrP3k.crl (hash: V3RHoGwdu+4oKVxXPP1eGZ4UmnmfmUfs55TpFLh+eBQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft rsync://rpki.ripe.net/repository/DEFAULT/owjczEdYTD-oJh23kmouQBcrP3k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:8b:59:e5:90:5e:6f:55:21:6d:5c:78:4f:38:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a308dccc47584c3fa8261db7926a2e40172b3f79 Validity Not Before: Dec 6 06:00:41 2025 GMT Not After : Dec 7 06:00:41 2025 GMT Subject: CN=4c5e1eb30bb82091e2970f4fcb8716bad2ffa3bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ed:61:97:38:f5:f4:76:55:9f:41:38:4c:54: cb:62:b7:fa:cc:5a:d3:7d:e3:73:33:99:ec:a7:31: 30:96:7a:cb:cd:96:6b:02:f1:11:db:fc:f3:c7:0c: 50:f1:5c:76:07:7c:10:be:c5:f7:32:e3:49:28:f4: b4:94:50:90:97:d0:0a:96:04:c7:1c:42:99:58:5b: ee:04:39:76:c2:eb:a7:39:18:3b:7d:19:7d:55:c3: c2:17:57:78:b0:46:06:e1:0c:ac:d8:f4:11:b3:36: 14:96:0f:8e:45:b2:dc:25:40:4c:b9:2d:68:bf:40: 3c:ee:47:14:fd:6c:9e:b8:d9:4c:d7:eb:74:59:00: 45:12:fc:20:29:21:59:d5:0f:11:e3:5f:e2:df:00: 21:7d:0b:67:db:62:b9:34:37:8d:1b:ff:31:aa:26: 66:0a:bd:0f:a0:fc:61:ca:23:a4:3e:8c:10:8a:ec: 6e:4f:de:52:82:bb:86:81:9f:40:ab:a7:12:2f:aa: 7a:a5:df:b6:3b:6f:76:bd:ec:1a:14:ab:ad:93:3b: e7:4f:b6:55:25:de:d2:2b:37:2f:1b:5a:04:d4:fd: 47:1d:ed:a8:fb:50:e6:cd:6d:c4:a3:3e:94:db:af: 09:b9:cb:21:9b:64:f6:6e:9a:1d:ff:8b:b6:47:7a: 08:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:5E:1E:B3:0B:B8:20:91:E2:97:0F:4F:CB:87:16:BA:D2:FF:A3:BD X509v3 Authority Key Identifier: keyid:A3:08:DC:CC:47:58:4C:3F:A8:26:1D:B7:92:6A:2E:40:17:2B:3F:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/owjczEdYTD-oJh23kmouQBcrP3k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:b4:5c:23:6f:39:b4:3a:17:37:b9:64:eb:75:2b:6f:58:9c: 1f:a6:66:50:1c:4f:e5:33:a8:eb:e6:45:7d:08:aa:a9:64:2c: 15:28:b9:33:f1:4d:56:e7:00:58:90:26:59:4e:6b:70:b7:32: 4b:6f:5f:95:86:5f:19:2c:67:1d:cd:0f:b4:ee:3c:5e:70:e9: 22:45:d4:bc:02:be:38:6a:f3:20:be:2c:2f:92:b1:cf:77:82: f5:ca:8e:b3:38:d3:54:c4:9f:52:e2:7e:90:a1:b6:70:32:3c: 42:67:a0:7c:53:4e:ee:51:c4:7d:42:60:29:d8:f3:5b:38:a8: 90:42:b0:eb:82:c8:39:89:80:95:6f:d4:a0:5b:78:67:2c:5b: 6a:11:26:8a:57:4d:dd:ac:3b:13:ae:78:52:6b:31:16:bf:63: 54:fd:90:eb:83:39:58:34:dd:2e:0e:d8:6e:e3:a8:41:da:96: f3:29:7e:46:e8:81:66:d0:a3:2d:22:bc:9e:77:2c:d7:b0:75: 74:43:39:9f:7d:97:58:2d:83:d0:cf:2d:3e:1c:32:93:45:96: 09:80:61:90:db:dc:4f:40:10:4b:ea:7f:76:eb:6e:a5:62:13: 87:c9:1d:8c:3c:5d:5a:aa:af:33:44:c8:c4:27:4c:33:9d:14: 95:0b:4f:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP4tZ5ZBeb1UhbVx4TzivMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzMDhkY2NjNDc1ODRjM2ZhODI2MWRiNzkyNmEyZTQwMTcy YjNmNzkwHhcNMjUxMjA2MDYwMDQxWhcNMjUxMjA3MDYwMDQxWjAzMTEwLwYDVQQD Eyg0YzVlMWViMzBiYjgyMDkxZTI5NzBmNGZjYjg3MTZiYWQyZmZhM2JkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApu1hlzj19HZVn0E4TFTLYrf6zFrT feNzM5nspzEwlnrLzZZrAvER2/zzxwxQ8Vx2B3wQvsX3MuNJKPS0lFCQl9AKlgTH HEKZWFvuBDl2wuunORg7fRl9VcPCF1d4sEYG4Qys2PQRszYUlg+ORbLcJUBMuS1o v0A87kcU/WyeuNlM1+t0WQBFEvwgKSFZ1Q8R41/i3wAhfQtn22K5NDeNG/8xqiZm Cr0PoPxhyiOkPowQiuxuT95SgruGgZ9Aq6cSL6p6pd+2O292vewaFKutkzvnT7ZV Jd7SKzcvG1oE1P1HHe2o+1DmzW3Eoz6U268Jucshm2T2bpod/4u2R3oIbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFExeHrMLuCCR4pcPT8uHFrrS/6O9MB8GA1UdIwQY MBaAFKMI3MxHWEw/qCYdt5JqLkAXKz95MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3dqY3pFZFlURC1vSmgyM2ttb3VRQmNyUDNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9hMjAyNTgtNmRmZi00Mjk1LTlkYzEt MGFmZWIxNDUyNGJlLzEvb3dqY3pFZFlURC1vSmgyM2ttb3VRQmNyUDNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9hMjAyNTgtNmRmZi00Mjk1LTlkYzEtMGFmZWIxNDUyNGJl LzEvb3dqY3pFZFlURC1vSmgyM2ttb3VRQmNyUDNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ7RcI285 tDoXN7lk63Urb1icH6ZmUBxP5TOo6+ZFfQiqqWQsFSi5M/FNVucAWJAmWU5rcLcy S29flYZfGSxnHc0PtO48XnDpIkXUvAK+OGrzIL4sL5Kxz3eC9cqOszjTVMSfUuJ+ kKG2cDI8QmegfFNO7lHEfUJgKdjzWziokEKw64LIOYmAlW/UoFt4ZyxbahEmildN 3aw7E654UmsxFr9jVP2Q64M5WDTdLg7YbuOoQdqW8yl+RuiBZtCjLSK8nncs17B1 dEM5n32XWC2D0M8tPhwyk0WWCYBhkNvcT0AQS+p/dutupWITh8kdjDxdWqqvM0TI xCdMM50UlQtPng== -----END CERTIFICATE-----Generated at Sat Dec 6 11:41:18 2025 by rpki-client