This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
File: OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft (raw, json)
Hash identifier: 83yfZAoPX3+EJNJFVAZTfGgHBCHLkq/Fjp4OITIBBTg=
Subject key identifier: F1:33:DB:43:72:85:3F:D7:04:28:6A:0B:B2:3A:FC:66:34:C5:34:56
Authority key identifier: 3A:84:DF:EF:3D:51:07:B8:4F:C7:7C:56:DC:F7:9E:05:FE:9C:73:51
Certificate issuer: /CN=3a84dfef3d5107b84fc77c56dcf79e05fe9c7351
Certificate serial: 019B34FB4DB2A59782D1282AE7C008A380E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
Manifest number: 119E
Signing time: Fri 19 Dec 2025 05:00:43 +0000
Manifest this update: Fri 19 Dec 2025 05:00:43 +0000
Manifest next update: Sat 20 Dec 2025 05:00:43 +0000
Files and hashes: 1: OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl (hash: NwLPoGfftZT4X7+mo4g96gBX6FUZFIMi2fh8YWGQNfg=)
2: fmsKsNJsScyYZyH8RUfSLeG-UJA.roa (hash: XWgPxzT1eqv4he1A7biAZG6QqWis59ng7mldQueWS0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Dec 2025 05:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:34:fb:4d:b2:a5:97:82:d1:28:2a:e7:c0:08:a3:80:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a84dfef3d5107b84fc77c56dcf79e05fe9c7351
Validity
Not Before: Dec 19 05:00:43 2025 GMT
Not After : Dec 20 05:00:43 2025 GMT
Subject: CN=f133db4372853fd704286a0bb23afc6634c53456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:65:71:e6:25:d4:39:ab:04:da:ab:1d:67:05:
d0:b4:cc:69:2f:99:61:12:38:2f:b1:bb:cd:2f:a0:
75:78:0a:5c:70:97:c8:f8:f5:8b:6c:53:83:75:6e:
52:0c:9a:f2:6c:45:e2:61:53:69:6d:1c:ef:cb:74:
1b:7c:4e:80:a9:f4:51:63:7c:1e:31:8c:71:42:fb:
9e:ed:fd:50:6d:ec:fd:4c:08:3c:15:e3:8b:24:30:
e4:e4:73:f5:d5:9c:e4:80:72:1e:66:8c:47:a8:fe:
5b:f5:fb:96:5a:c7:43:08:68:51:0c:c1:24:7d:05:
0d:05:e2:ed:4b:fb:00:fb:c6:5f:e8:a2:65:2a:19:
c2:b9:88:5d:45:54:49:d5:85:b2:15:50:46:1e:7a:
45:c5:f5:eb:87:54:ed:b2:c6:40:21:fb:bd:52:33:
96:b9:f5:5b:5c:53:bb:80:3e:69:39:70:25:80:a2:
8b:4b:f3:66:bd:80:8b:81:6b:01:26:02:32:60:9e:
44:9d:dd:d4:29:0c:80:6b:ad:97:da:23:36:7b:80:
e1:4c:ef:b6:af:ad:f4:61:1b:c9:62:eb:35:e8:1a:
f1:11:1f:bf:8d:eb:9e:60:89:54:65:16:73:77:96:
53:eb:74:ed:db:2a:60:65:15:b5:43:72:25:e8:b8:
25:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:33:DB:43:72:85:3F:D7:04:28:6A:0B:B2:3A:FC:66:34:C5:34:56
X509v3 Authority Key Identifier:
keyid:3A:84:DF:EF:3D:51:07:B8:4F:C7:7C:56:DC:F7:9E:05:FE:9C:73:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:a5:43:53:b8:80:37:d3:4b:cf:6e:45:2b:a3:f3:4a:94:6d:
85:3c:d3:e9:fe:5f:46:aa:f4:6d:cc:fd:2a:c6:3d:c3:28:56:
ba:b2:6b:d7:95:ca:cd:f0:3b:62:c8:5a:1f:e8:fd:9f:48:df:
5b:40:13:17:6d:5d:53:8e:46:66:29:61:63:cb:41:c5:dc:0b:
a3:8b:06:a7:8c:3d:8b:d0:85:64:2e:49:b2:8b:c9:f1:c0:08:
92:7d:33:0b:6a:02:bf:ca:4a:e6:ec:46:dd:eb:3b:2c:67:ef:
ad:40:5e:8a:f5:a2:e7:1a:db:aa:68:cc:f3:f5:49:3a:9d:85:
a1:07:5d:95:f0:38:49:13:70:27:a1:cf:1f:e8:ad:48:30:b3:
48:4e:a8:66:2c:a9:3b:c0:a3:45:07:0d:6a:41:15:49:85:bb:
14:01:86:47:0b:59:81:b6:f6:50:bb:e9:45:0a:3b:6f:d5:ca:
82:2f:23:32:f9:a4:b8:f9:cb:09:0d:3c:df:4f:98:e8:6d:3f:
cf:a7:c3:2b:a1:e0:64:41:31:5a:b2:47:4c:8a:25:1a:a5:67:
25:6b:f0:00:a8:fa:81:47:7d:c3:af:74:ff:9b:0b:ef:b7:33:
8c:f4:8b:28:0b:a4:ae:ea:2d:8b:96:c2:46:b0:12:11:8e:26:
d2:73:c1:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 19 13:25:50 2025 by rpki-client