This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft File: oHEAJhaNhq-46ZnPsqjonFct0vk.mft (raw, json) Hash identifier: 7Q5stjV6w3IBVnzFAqdbtQHeEt/6Zv8olfLu9kHzZRE= Subject key identifier: 3B:3B:F8:85:B1:F5:F6:70:9B:2F:EF:D9:65:FE:49:F2:C9:6B:52:AF Authority key identifier: A0:71:00:26:16:8D:86:AF:B8:E9:99:CF:B2:A8:E8:9C:57:2D:D2:F9 Certificate issuer: /CN=a0710026168d86afb8e999cfb2a8e89c572dd2f9 Certificate serial: 019AF19B8888F6623D742AA34C1DE1225FB8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft Manifest number: 14AC Signing time: Sat 06 Dec 2025 03:01:33 +0000 Manifest this update: Sat 06 Dec 2025 03:01:33 +0000 Manifest next update: Sun 07 Dec 2025 03:01:33 +0000 Files and hashes: 1: oHEAJhaNhq-46ZnPsqjonFct0vk.crl (hash: tJhio6LZ3u249q3pRckdzfHhxM1PpJTplOXH4ev1YgQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:88:88:f6:62:3d:74:2a:a3:4c:1d:e1:22:5f:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0710026168d86afb8e999cfb2a8e89c572dd2f9 Validity Not Before: Dec 6 03:01:33 2025 GMT Not After : Dec 7 03:01:33 2025 GMT Subject: CN=3b3bf885b1f5f6709b2fefd965fe49f2c96b52af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:35:47:84:7e:3e:21:86:d7:39:29:95:bd:5a: 66:41:16:06:3c:5b:40:75:91:f3:43:c9:56:f3:b0: 19:e0:03:f5:4f:ef:8b:8c:37:b6:3a:0b:79:c3:aa: 61:f0:21:30:7e:a5:be:c9:38:6a:8b:b9:f3:98:cf: be:37:ea:0d:b0:64:c2:36:e2:a3:07:6e:b1:15:20: c2:06:82:d9:78:62:8a:d3:59:37:82:30:af:11:66: ab:79:71:6a:ec:78:3f:48:33:32:22:8c:06:0b:f0: ad:42:2e:ea:dd:80:48:d3:e6:c9:bb:4b:da:40:a8: de:03:75:20:b0:d9:f1:84:38:33:85:3b:6c:af:68: 97:19:f4:dc:26:e8:a1:36:08:1b:be:c1:45:fa:e7: ec:b3:6b:27:d7:b2:0e:4e:99:05:a4:e3:3b:9a:58: 14:47:54:57:db:75:22:15:a8:91:4c:79:03:71:f8: eb:3c:87:d0:7f:a1:0c:24:4c:9e:f7:ac:66:20:3b: 58:88:ba:41:ef:06:d5:1f:76:e8:6c:8d:d2:0c:b0: 3d:48:21:b2:1f:75:0d:3a:47:ce:c0:46:1a:3c:50: a6:6a:90:b4:22:c2:0b:6c:c7:d9:07:7d:1d:dd:26: 23:10:ea:a9:f9:0e:66:c7:20:86:e0:ae:6f:66:da: c4:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:3B:F8:85:B1:F5:F6:70:9B:2F:EF:D9:65:FE:49:F2:C9:6B:52:AF X509v3 Authority Key Identifier: keyid:A0:71:00:26:16:8D:86:AF:B8:E9:99:CF:B2:A8:E8:9C:57:2D:D2:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:e9:5d:cd:af:db:0c:c0:21:27:61:d6:73:81:1a:58:df:55: 3e:30:ca:27:45:38:77:cd:de:9b:75:f0:ed:7f:fb:da:a7:47: f1:fb:05:76:44:23:66:fd:97:26:a2:c6:1b:08:87:49:32:5a: d2:5c:08:17:40:a8:9d:52:cc:85:97:5b:8b:55:08:ad:f3:66: d8:90:f8:80:84:69:bf:bf:4a:81:e0:59:b7:e9:23:7c:78:5f: 17:d4:d0:bd:52:44:55:49:ea:70:56:4f:59:98:e6:1d:39:45: 1e:6a:93:ce:df:74:43:33:96:ad:d7:dc:73:32:83:ca:24:d1: 81:95:29:d4:64:cb:67:47:9f:74:1d:f7:39:8b:ac:26:52:0b: 8d:95:8f:b1:de:6e:a4:a9:0f:07:5b:0f:53:4c:ba:cc:49:a9: 50:43:0a:06:99:1f:2a:28:d7:f2:74:01:0f:94:3a:20:e5:0c: f3:e2:38:1d:10:68:06:7c:22:b7:47:94:eb:39:99:1f:52:0f: 8a:bd:a8:39:18:bf:28:82:76:6d:48:51:47:9d:a5:19:19:d1: 71:a2:dd:82:53:04:a0:9f:13:83:4e:6f:59:36:61:57:7c:ab: 3b:18:3f:e0:d1:2b:fb:01:fe:36:62:89:f0:20:f4:d7:ac:87: 81:a8:51:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm4iI9mI9dCqjTB3hIl+4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwNzEwMDI2MTY4ZDg2YWZiOGU5OTljZmIyYThlODljNTcy ZGQyZjkwHhcNMjUxMjA2MDMwMTMzWhcNMjUxMjA3MDMwMTMzWjAzMTEwLwYDVQQD EygzYjNiZjg4NWIxZjVmNjcwOWIyZmVmZDk2NWZlNDlmMmM5NmI1MmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7DVHhH4+IYbXOSmVvVpmQRYGPFtA dZHzQ8lW87AZ4AP1T++LjDe2Ogt5w6ph8CEwfqW+yThqi7nzmM++N+oNsGTCNuKj B26xFSDCBoLZeGKK01k3gjCvEWareXFq7Hg/SDMyIowGC/CtQi7q3YBI0+bJu0va QKjeA3UgsNnxhDgzhTtsr2iXGfTcJuihNggbvsFF+ufss2sn17IOTpkFpOM7mlgU R1RX23UiFaiRTHkDcfjrPIfQf6EMJEye96xmIDtYiLpB7wbVH3bobI3SDLA9SCGy H3UNOkfOwEYaPFCmapC0IsILbMfZB30d3SYjEOqp+Q5mxyCG4K5vZtrEbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDs7+IWx9fZwmy/v2WX+SfLJa1KvMB8GA1UdIwQY MBaAFKBxACYWjYavuOmZz7Ko6JxXLdL5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0hFQUpoYU5ocS00NlpuUHNxam9uRmN0MHZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi81NzcyMTItMDhiMC00M2VkLTg5YzYt YTlhNmJmNjVlNjNhLzEvb0hFQUpoYU5ocS00NlpuUHNxam9uRmN0MHZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi81NzcyMTItMDhiMC00M2VkLTg5YzYtYTlhNmJmNjVlNjNh LzEvb0hFQUpoYU5ocS00NlpuUHNxam9uRmN0MHZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFeldza/b DMAhJ2HWc4EaWN9VPjDKJ0U4d83em3Xw7X/72qdH8fsFdkQjZv2XJqLGGwiHSTJa 0lwIF0ConVLMhZdbi1UIrfNm2JD4gIRpv79KgeBZt+kjfHhfF9TQvVJEVUnqcFZP WZjmHTlFHmqTzt90QzOWrdfcczKDyiTRgZUp1GTLZ0efdB33OYusJlILjZWPsd5u pKkPB1sPU0y6zEmpUEMKBpkfKijX8nQBD5Q6IOUM8+I4HRBoBnwit0eU6zmZH1IP ir2oORi/KIJ2bUhRR52lGRnRcaLdglMEoJ8Tg05vWTZhV3yrOxg/4NEr+wH+NmKJ 8CD016yHgahR4A== -----END CERTIFICATE-----Generated at Sat Dec 6 08:07:27 2025 by rpki-client