This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft File: OA-TW80EhiXnAVXPLMKCniwgcqY.mft (raw, json) Hash identifier: Q5nP/LBCJJkdiIhD4bmRi7ZlNR04aiZdviI6UHG0hKo= Subject key identifier: 1E:F1:F6:22:4C:22:C7:F3:98:1F:22:82:78:21:C4:34:59:B1:53:EA Authority key identifier: 38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6 Certificate issuer: /CN=380f935bcd048625e70155cf2cc2829e2c2072a6 Certificate serial: 019AF6534A774C58D5F810DC106707B95F56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft Manifest number: 0449 Signing time: Sun 07 Dec 2025 01:00:44 +0000 Manifest this update: Sun 07 Dec 2025 01:00:44 +0000 Manifest next update: Mon 08 Dec 2025 01:00:44 +0000 Files and hashes: 1: OA-TW80EhiXnAVXPLMKCniwgcqY.crl (hash: tM4Yjrc2B7XHHqIHIXRm9O3IXGOiVfcuzq6IiRLqauQ=) 2: Q5qSxQZ6AuTJXsJJ-9RRWDA26wA.roa (hash: 64WIeN1+JBWLPlD+mMTcZ54izCFjiXRNJWE/ls/16OM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:53:4a:77:4c:58:d5:f8:10:dc:10:67:07:b9:5f:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=380f935bcd048625e70155cf2cc2829e2c2072a6 Validity Not Before: Dec 7 01:00:44 2025 GMT Not After : Dec 8 01:00:44 2025 GMT Subject: CN=1ef1f6224c22c7f3981f22827821c43459b153ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:22:91:45:18:59:bf:0a:09:1b:6e:b9:f8:13: b8:9c:f0:3e:01:65:a8:d3:30:6f:d6:a7:d7:28:eb: c8:45:f0:12:f3:33:7c:9f:4c:35:b0:02:70:59:2a: 3c:b6:76:34:dd:3b:c2:b1:9b:8f:18:97:0e:86:65: 8c:00:8e:93:bb:38:12:9d:e0:76:a8:c9:29:a4:58: 10:58:5c:15:14:54:2b:56:21:fb:1f:3f:03:c6:e3: 06:18:80:e5:c0:d9:6e:fb:0b:d1:e3:8e:dc:e4:c1: 14:80:d9:5a:2f:37:2e:eb:a0:ee:fe:86:1a:cc:76: 00:26:22:ca:10:3e:58:4f:7c:9e:1e:d8:b4:d3:e9: 72:91:55:23:f7:fc:b9:c6:38:5f:1d:b2:3a:d0:f7: d2:05:4b:91:2c:fc:cc:ae:0e:27:76:b6:cf:52:a9: 96:44:28:3d:8c:8b:bb:7b:d2:bf:b0:af:ad:5c:43: 8e:00:41:10:a6:d7:68:29:b4:3e:fd:47:40:96:7f: a9:9d:fa:bf:69:41:64:fa:63:f9:a0:84:8b:32:d5: c3:3b:02:7d:71:c5:93:61:36:bd:ce:2e:38:60:d1: 9d:c7:4c:c0:7d:66:d2:57:23:8b:1a:0d:db:ab:a9: 73:0c:51:0a:1c:e3:a5:53:5b:cb:f1:b7:1f:9b:16: 6a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:F1:F6:22:4C:22:C7:F3:98:1F:22:82:78:21:C4:34:59:B1:53:EA X509v3 Authority Key Identifier: keyid:38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:87:85:2e:d5:46:c4:fe:82:ff:68:e2:4d:f3:c6:3b:43:5a: ae:59:a9:aa:21:c3:3e:94:89:07:36:cb:21:1a:6d:6e:8b:60: 27:31:be:f6:25:2e:f1:28:ac:22:cc:3e:6c:6d:0a:85:02:79: b7:f4:fe:f4:0e:7e:6f:45:65:a7:89:b2:f0:23:ee:73:53:37: 4a:b3:6b:49:f2:43:fe:f6:6e:ec:32:81:c3:d5:32:6f:d8:4f: 3d:fd:81:62:6e:48:3b:96:eb:ef:7e:d2:08:ef:75:67:7c:c0: 23:66:8c:fd:62:ba:77:e5:a9:c4:79:0a:e5:3d:76:f8:38:b7: 06:da:eb:a7:3e:cb:36:b1:7e:5c:a8:1a:78:af:bb:cb:3c:9d: 2f:d4:49:b3:f3:6e:e2:db:13:c0:46:5e:2a:92:4c:4e:a3:f2: ec:3b:d6:c0:dd:8d:cd:96:ac:05:2a:76:b5:90:2c:87:e0:ec: ac:31:87:25:36:37:70:8a:08:2b:a8:34:89:25:b4:a3:4a:36: 5c:9c:fe:8b:27:25:9b:63:e8:e7:a6:a3:05:17:37:18:83:fa: af:e4:6c:30:01:59:d4:83:8c:a2:4d:40:d4:06:d6:18:dc:f3: e7:ef:46:f1:88:38:84:04:d9:f4:9c:2b:67:21:3a:57:2d:6a: 6a:2c:26:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2U0p3TFjV+BDcEGcHuV9WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MGY5MzViY2QwNDg2MjVlNzAxNTVjZjJjYzI4MjllMmMy MDcyYTYwHhcNMjUxMjA3MDEwMDQ0WhcNMjUxMjA4MDEwMDQ0WjAzMTEwLwYDVQQD EygxZWYxZjYyMjRjMjJjN2YzOTgxZjIyODI3ODIxYzQzNDU5YjE1M2VhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8iKRRRhZvwoJG265+BO4nPA+AWWo 0zBv1qfXKOvIRfAS8zN8n0w1sAJwWSo8tnY03TvCsZuPGJcOhmWMAI6TuzgSneB2 qMkppFgQWFwVFFQrViH7Hz8DxuMGGIDlwNlu+wvR447c5MEUgNlaLzcu66Du/oYa zHYAJiLKED5YT3yeHti00+lykVUj9/y5xjhfHbI60PfSBUuRLPzMrg4ndrbPUqmW RCg9jIu7e9K/sK+tXEOOAEEQptdoKbQ+/UdAln+pnfq/aUFk+mP5oISLMtXDOwJ9 ccWTYTa9zi44YNGdx0zAfWbSVyOLGg3bq6lzDFEKHOOlU1vL8bcfmxZqRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB7x9iJMIsfzmB8ignghxDRZsVPqMB8GA1UdIwQY MBaAFDgPk1vNBIYl5wFVzyzCgp4sIHKmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0EtVFc4MEVoaVhuQVZYUExNS0NuaXdnY3FZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8yMjc0NGEtODU4OC00MjkwLWIyM2Mt NmMwNzcxZjI1Mzk2LzEvT0EtVFc4MEVoaVhuQVZYUExNS0NuaXdnY3FZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8yMjc0NGEtODU4OC00MjkwLWIyM2MtNmMwNzcxZjI1Mzk2 LzEvT0EtVFc4MEVoaVhuQVZYUExNS0NuaXdnY3FZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnoeFLtVG xP6C/2jiTfPGO0NarlmpqiHDPpSJBzbLIRptbotgJzG+9iUu8SisIsw+bG0KhQJ5 t/T+9A5+b0Vlp4my8CPuc1M3SrNrSfJD/vZu7DKBw9Uyb9hPPf2BYm5IO5br737S CO91Z3zAI2aM/WK6d+WpxHkK5T12+Di3Btrrpz7LNrF+XKgaeK+7yzydL9RJs/Nu 4tsTwEZeKpJMTqPy7DvWwN2NzZasBSp2tZAsh+DsrDGHJTY3cIoIK6g0iSW0o0o2 XJz+iyclm2Po56ajBRc3GIP6r+RsMAFZ1IOMok1A1AbWGNzz5+9G8Yg4hATZ9Jwr ZyE6Vy1qaiwmyw== -----END CERTIFICATE-----Generated at Sun Dec 7 02:47:32 2025 by rpki-client