This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft File: OWpY9F0OyAFfoyauWP9YAzKJv50.mft (raw, json) Hash identifier: zP92QyLLed295u1kYBvglh5aPOTYR6VNxmKWB9cGQ+4= Subject key identifier: CD:84:C7:0F:C5:FC:B8:EE:20:06:92:0A:ED:E6:9A:F1:32:66:46:7E Authority key identifier: 39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D Certificate issuer: /CN=396a58f45d0ec8015fa326ae58ff58033289bf9d Certificate serial: 019AF1D1AAF744F7643D52D360E4DFB657AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 04:00:40 +0000 Manifest this update: Sat 06 Dec 2025 04:00:40 +0000 Manifest next update: Sun 07 Dec 2025 04:00:40 +0000 Files and hashes: 1: OWpY9F0OyAFfoyauWP9YAzKJv50.crl (hash: FY3I3csAsaYg2tNvpTD1HU2Rs7hyngn/6q0o7Z8Oxnc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:aa:f7:44:f7:64:3d:52:d3:60:e4:df:b6:57:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=396a58f45d0ec8015fa326ae58ff58033289bf9d Validity Not Before: Dec 6 04:00:40 2025 GMT Not After : Dec 7 04:00:40 2025 GMT Subject: CN=cd84c70fc5fcb8ee2006920aede69af13266467e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:73:c3:e3:65:ab:86:24:69:64:d5:f8:6a:64: b0:4b:f1:b4:c2:62:32:4d:e7:ae:03:7b:64:6e:eb: 10:0d:83:83:93:01:5d:ca:17:92:51:f7:49:b1:51: eb:b2:41:a9:c0:3a:c1:16:c3:1b:76:be:2f:ce:23: c4:17:4d:1d:5e:41:2b:ed:96:5e:22:25:a4:55:2f: 84:e7:7b:87:4a:51:51:03:d4:72:27:d5:7f:18:c2: 38:5d:74:38:da:f4:13:76:fa:4c:3c:ab:ba:e2:9c: a9:63:97:f9:e0:71:a3:83:a7:95:d8:22:4f:1d:8e: f4:60:6e:ad:18:b3:9b:d1:62:8b:07:e7:a3:f8:80: c7:84:c5:f8:be:a4:85:b7:88:db:3c:8e:bd:f2:7a: af:95:27:c7:5e:37:8f:6f:76:f1:aa:73:41:86:3d: 94:a1:94:1c:71:3b:69:b9:89:89:49:13:7e:c0:c2: d5:4c:84:0c:22:b2:79:4d:bd:76:f3:3b:87:85:aa: f5:1a:aa:02:94:b6:a5:ed:6d:23:6c:06:8e:f1:7d: 80:bd:41:6d:4a:5d:e9:aa:d4:39:2d:fa:a2:81:e2: 7d:74:7f:0c:13:87:17:ee:cf:ed:2a:33:be:31:19: d7:f9:45:aa:3a:3c:b2:86:b8:91:f5:32:da:bf:1c: a2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:84:C7:0F:C5:FC:B8:EE:20:06:92:0A:ED:E6:9A:F1:32:66:46:7E X509v3 Authority Key Identifier: keyid:39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:b4:68:95:fa:68:27:f1:5c:80:a4:69:06:07:b8:0f:15:61: 04:3a:39:80:4e:38:50:4a:fe:fd:c9:d7:dd:ba:ba:21:53:3b: d8:21:2d:e2:02:48:41:f3:c3:6d:f8:a8:4b:e5:e6:f3:76:25: 84:b8:39:46:a3:19:2e:47:4f:33:ab:57:79:d9:99:cd:10:e8: 50:53:23:8d:de:4f:2d:58:40:ed:5d:8f:73:25:3e:63:05:d3: 8b:46:a9:62:da:32:1c:7b:d7:52:cc:62:08:54:5f:56:ae:df: 7c:65:2b:5b:c6:f9:10:20:3b:d2:ad:f1:42:ab:63:7c:f4:6a: d2:7e:0d:54:b9:8b:11:a2:f9:1f:23:90:fc:e6:c4:54:67:3e: ed:8e:24:a8:eb:bd:1c:79:cd:3d:01:db:3e:47:75:24:ea:b5: 36:f6:d1:62:33:77:5b:f6:2c:45:fa:e4:97:83:ab:4f:13:3c: c8:fd:0a:da:c5:f3:e1:7e:da:9a:5c:72:1d:68:e7:8e:cf:3c: 5e:fa:36:28:a0:1b:e5:94:94:dd:e8:df:15:97:63:e6:5e:08: 40:f8:68:4d:b2:79:73:e2:fb:da:fa:70:55:a9:73:f2:45:fa: 51:89:2d:75:12:4e:ff:9a:de:d8:88:fb:5b:73:83:a5:c9:16: 53:51:6c:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0ar3RPdkPVLTYOTftlerMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5NmE1OGY0NWQwZWM4MDE1ZmEzMjZhZTU4ZmY1ODAzMzI4 OWJmOWQwHhcNMjUxMjA2MDQwMDQwWhcNMjUxMjA3MDQwMDQwWjAzMTEwLwYDVQQD EyhjZDg0YzcwZmM1ZmNiOGVlMjAwNjkyMGFlZGU2OWFmMTMyNjY0NjdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2HPD42WrhiRpZNX4amSwS/G0wmIy TeeuA3tkbusQDYODkwFdyheSUfdJsVHrskGpwDrBFsMbdr4vziPEF00dXkEr7ZZe IiWkVS+E53uHSlFRA9RyJ9V/GMI4XXQ42vQTdvpMPKu64pypY5f54HGjg6eV2CJP HY70YG6tGLOb0WKLB+ej+IDHhMX4vqSFt4jbPI698nqvlSfHXjePb3bxqnNBhj2U oZQccTtpuYmJSRN+wMLVTIQMIrJ5Tb128zuHhar1GqoClLal7W0jbAaO8X2AvUFt Sl3pqtQ5LfqigeJ9dH8ME4cX7s/tKjO+MRnX+UWqOjyyhriR9TLavxyiUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM2Exw/F/LjuIAaSCu3mmvEyZkZ+MB8GA1UdIwQY MBaAFDlqWPRdDsgBX6Mmrlj/WAMyib+dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1dwWTlGME95QUZmb3lhdVdQOVlBektKdjUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy80OTVjMzQtOTVmOS00OTVlLWIxYzgt NDc0ZjJjZjZlNjJhLzEvT1dwWTlGME95QUZmb3lhdVdQOVlBektKdjUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy80OTVjMzQtOTVmOS00OTVlLWIxYzgtNDc0ZjJjZjZlNjJh LzEvT1dwWTlGME95QUZmb3lhdVdQOVlBektKdjUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK7Rolfpo J/FcgKRpBge4DxVhBDo5gE44UEr+/cnX3bq6IVM72CEt4gJIQfPDbfioS+Xm83Yl hLg5RqMZLkdPM6tXedmZzRDoUFMjjd5PLVhA7V2PcyU+YwXTi0apYtoyHHvXUsxi CFRfVq7ffGUrW8b5ECA70q3xQqtjfPRq0n4NVLmLEaL5HyOQ/ObEVGc+7Y4kqOu9 HHnNPQHbPkd1JOq1NvbRYjN3W/YsRfrkl4OrTxM8yP0K2sXz4X7amlxyHWjnjs88 Xvo2KKAb5ZSU3ejfFZdj5l4IQPhoTbJ5c+L72vpwValz8kX6UYktdRJO/5re2Ij7 W3ODpckWU1Fs4g== -----END CERTIFICATE-----Generated at Sat Dec 6 10:03:17 2025 by rpki-client