This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft File: OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft (raw, json) Hash identifier: uMtvL6/aed3PfLmF4VeK7Ou+eBw6JqWZ6onoSa7ju1Y= Subject key identifier: 99:FC:64:C3:57:3E:87:6D:DC:3A:9C:C3:3D:D8:F8:0E:C8:68:0C:C6 Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b Certificate serial: 019AF19B2D886371CBF8CA4F04ECF67BCEFB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft Manifest number: 0E47 Signing time: Sat 06 Dec 2025 03:01:10 +0000 Manifest this update: Sat 06 Dec 2025 03:01:10 +0000 Manifest next update: Sun 07 Dec 2025 03:01:10 +0000 Files and hashes: 1: 0wAgKVyytNbhNR-_RR1IsIpFFy0.roa (hash: hGr01I8nbqs/LJEbN09Cfzd/lbJVo6JwWOtLmEfD1wA=) 2: OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl (hash: xaZPkev0IElu6PxafcyyW4wndZJMcIF8H5Sw9jmNvnQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:2d:88:63:71:cb:f8:ca:4f:04:ec:f6:7b:ce:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b Validity Not Before: Dec 6 03:01:10 2025 GMT Not After : Dec 7 03:01:10 2025 GMT Subject: CN=99fc64c3573e876ddc3a9cc33dd8f80ec8680cc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:16:0f:9e:84:9a:88:c0:f2:5e:6c:bf:eb:81: b9:71:4e:34:87:29:d9:b3:90:65:2a:c4:65:83:44: 54:cf:2f:86:1f:52:b2:07:1e:b8:11:1d:0f:f4:ed: b9:0e:57:7a:84:1f:1e:fe:b2:9b:a0:a5:d5:61:7c: 0f:a0:e5:ea:2d:f1:bc:42:bc:c5:f8:1d:56:18:a0: c9:d7:27:ee:f6:55:14:42:65:12:ea:79:e6:7f:15: fc:51:d8:3f:25:7b:09:0c:5a:66:ac:4a:4c:23:98: 6d:ae:ba:ba:a8:f9:36:f9:da:ce:8b:d4:ef:d9:a6: 1a:69:7c:c9:92:f2:9d:c3:54:47:bd:a7:8a:fd:b2: 31:a2:74:de:20:8b:07:96:83:63:69:38:2d:4b:18: 16:4d:37:a4:a8:a6:8d:6c:ef:07:df:33:55:18:84: a0:42:a4:9a:c2:b2:08:82:9f:9f:08:95:bf:b4:58: 46:4d:8f:af:37:3f:d5:24:11:7b:47:d8:f6:2a:eb: 22:e2:a0:67:2d:95:34:dd:1c:3a:b4:d1:03:29:09: 82:ee:d2:38:25:08:c2:17:e0:ce:83:33:72:5b:da: 4d:89:99:88:d2:1f:49:61:e8:05:ce:10:41:60:c2: 64:61:bf:48:50:de:b4:22:42:26:bb:17:4d:6d:be: 02:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:FC:64:C3:57:3E:87:6D:DC:3A:9C:C3:3D:D8:F8:0E:C8:68:0C:C6 X509v3 Authority Key Identifier: keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:55:8b:93:81:fc:d8:48:68:08:77:7f:69:57:f1:77:6e:1a: 78:cb:60:17:79:21:2b:8b:6c:4c:fd:66:fc:47:ee:fe:bd:4e: 8a:5e:b0:86:5e:60:86:2f:5e:ae:cd:87:53:62:ef:de:71:06: 61:e4:48:19:6d:5c:76:fe:bd:72:92:2e:1d:95:24:82:d4:c4: 7a:d1:19:21:e5:89:a4:57:b0:3a:ed:a7:1f:8d:29:ef:a5:b8: 4a:ec:0e:19:ad:5c:78:13:f9:97:be:e5:dc:4e:9e:5c:a4:b7: 05:a0:73:d8:0e:fa:e9:58:1e:83:e1:31:82:f0:75:13:4f:fd: e5:db:54:14:43:98:bd:23:a8:cb:a0:02:7a:d8:b5:5b:a1:26: 2a:86:a8:bc:a3:19:36:f1:b6:c9:9e:5a:6f:96:c5:e9:23:87: 05:74:f0:d1:0b:19:cc:09:6d:bc:1d:cd:fc:5a:9b:59:5a:56: 2b:b7:70:77:e6:e5:3c:14:e7:c0:ca:a6:bc:13:d0:38:8e:ee: dc:c9:fe:2e:62:60:af:0c:5f:25:1f:3b:1e:bf:ad:e6:f6:07: 1f:80:12:0d:54:03:02:0c:95:b4:84:b7:a5:76:5b:29:8b:7f: 4f:f9:b3:96:b1:f6:da:3d:f9:a0:0a:1f:a0:fb:bb:39:56:de: a4:76:0d:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmy2IY3HL+MpPBOz2e877MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNDBmZjE1NGM0NTM5NDNhMGIwMmFhNjUwMjFjOWMyNjQ5 NDdjMmIwHhcNMjUxMjA2MDMwMTEwWhcNMjUxMjA3MDMwMTEwWjAzMTEwLwYDVQQD Eyg5OWZjNjRjMzU3M2U4NzZkZGMzYTljYzMzZGQ4ZjgwZWM4NjgwY2M2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhYPnoSaiMDyXmy/64G5cU40hynZ s5BlKsRlg0RUzy+GH1KyBx64ER0P9O25Dld6hB8e/rKboKXVYXwPoOXqLfG8QrzF +B1WGKDJ1yfu9lUUQmUS6nnmfxX8Udg/JXsJDFpmrEpMI5htrrq6qPk2+drOi9Tv 2aYaaXzJkvKdw1RHvaeK/bIxonTeIIsHloNjaTgtSxgWTTekqKaNbO8H3zNVGISg QqSawrIIgp+fCJW/tFhGTY+vNz/VJBF7R9j2Kusi4qBnLZU03Rw6tNEDKQmC7tI4 JQjCF+DOgzNyW9pNiZmI0h9JYegFzhBBYMJkYb9IUN60IkImuxdNbb4CZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJn8ZMNXPodt3Dqcwz3Y+A7IaAzGMB8GA1UdIwQY MBaAFDpA/xVMRTlDoLAqplAhycJklHwrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi80ZWZjYWUtYWZjOS00MjJiLWFhZGQt ODJiYjBiYjExZTNlLzEvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi80ZWZjYWUtYWZjOS00MjJiLWFhZGQtODJiYjBiYjExZTNl LzEvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAClWLk4H8 2EhoCHd/aVfxd24aeMtgF3khK4tsTP1m/Efu/r1Oil6whl5ghi9ers2HU2Lv3nEG YeRIGW1cdv69cpIuHZUkgtTEetEZIeWJpFewOu2nH40p76W4SuwOGa1ceBP5l77l 3E6eXKS3BaBz2A766Vgeg+ExgvB1E0/95dtUFEOYvSOoy6ACeti1W6EmKoaovKMZ NvG2yZ5ab5bF6SOHBXTw0QsZzAltvB3N/FqbWVpWK7dwd+blPBTnwMqmvBPQOI7u 3Mn+LmJgrwxfJR87Hr+t5vYHH4ASDVQDAgyVtIS3pXZbKYt/T/mzlrH22j35oAof oPu7OVbepHYNNw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:10 2025 by rpki-client