This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft File: OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft (raw, json) Hash identifier: 0RvlgqqT1gKMIMQH6pzi3DF0fdxLqLNxIx+Wdy4Tugc= Subject key identifier: 01:BE:E9:7C:28:51:8C:73:23:E4:D2:2F:8B:D4:54:50:B5:76:10:C2 Authority key identifier: 3A:84:DF:EF:3D:51:07:B8:4F:C7:7C:56:DC:F7:9E:05:FE:9C:73:51 Certificate issuer: /CN=3a84dfef3d5107b84fc77c56dcf79e05fe9c7351 Certificate serial: 019B36E97E677A75078C2E749CC460CAD559 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft Manifest number: 119F Signing time: Fri 19 Dec 2025 14:00:30 +0000 Manifest this update: Fri 19 Dec 2025 14:00:30 +0000 Manifest next update: Sat 20 Dec 2025 14:00:30 +0000 Files and hashes: 1: OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl (hash: X0WNtBU+mNYfUNd/W7d9MC4/xOM4JyfPSvHqS2Cm2W0=) 2: fmsKsNJsScyYZyH8RUfSLeG-UJA.roa (hash: XWgPxzT1eqv4he1A7biAZG6QqWis59ng7mldQueWS0g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:e9:7e:67:7a:75:07:8c:2e:74:9c:c4:60:ca:d5:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a84dfef3d5107b84fc77c56dcf79e05fe9c7351 Validity Not Before: Dec 19 14:00:30 2025 GMT Not After : Dec 20 14:00:30 2025 GMT Subject: CN=01bee97c28518c7323e4d22f8bd45450b57610c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:43:bd:9c:8f:1c:6b:74:78:60:2a:29:5a:a3: 3f:28:71:07:b6:80:49:38:84:c2:38:e2:01:a4:14: c4:12:cf:35:d0:3b:71:7f:25:ec:1e:77:ae:7b:94: 88:56:c5:1b:8d:07:a9:c7:d6:5f:5c:ee:09:5e:98: 9b:79:a9:3f:0c:74:dd:6d:77:a4:61:06:b8:7b:c7: 6a:c3:b6:2a:6c:a6:16:8b:cc:af:bf:86:cc:c2:49: b5:d4:e4:7a:46:cb:09:f1:be:3f:4c:2e:f1:11:5e: 25:7c:1e:d0:0c:6e:d6:e0:d0:38:2b:f0:be:de:02: f6:36:3b:1f:90:88:01:59:fe:49:d8:b3:2f:63:9a: c1:66:30:64:90:3a:73:84:dc:83:ba:e7:57:d7:f4: 83:8b:44:e7:2d:61:b4:b4:8f:1b:25:a7:6d:8f:56: b3:6e:ea:4a:55:40:28:44:9b:b8:38:88:f1:41:0f: 44:96:df:db:1a:f5:6a:9f:f0:66:5e:65:55:d2:0f: d8:e5:d8:f2:e4:5b:ae:db:86:7d:ad:26:85:61:f0: 12:8c:28:f7:9f:0d:7e:33:0a:ad:93:4c:08:a4:c2: d1:56:7c:5b:60:55:8c:98:30:e5:a3:89:dd:c3:9d: 2c:d3:a7:d5:4f:6b:7c:ee:f6:21:ae:f5:2f:c5:0e: 72:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:BE:E9:7C:28:51:8C:73:23:E4:D2:2F:8B:D4:54:50:B5:76:10:C2 X509v3 Authority Key Identifier: keyid:3A:84:DF:EF:3D:51:07:B8:4F:C7:7C:56:DC:F7:9E:05:FE:9C:73:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:3d:a9:90:5d:1b:b5:e8:c3:42:9d:87:5c:79:48:be:73:7f: 93:88:3a:14:1e:71:6e:76:d5:bd:50:57:67:68:88:88:44:21: 43:df:10:f6:32:6b:f1:85:de:a3:85:80:97:1b:0e:aa:a1:6a: 02:02:5f:06:bb:9f:c6:55:f5:1c:df:04:cb:7b:17:5b:74:39: 06:aa:a1:a5:20:30:3b:41:59:5c:1d:e7:bd:7a:3a:a1:a0:21: 20:2a:3f:54:1a:d4:dc:58:b2:35:0f:93:46:58:cc:0f:a5:ef: 45:fd:b6:76:8c:76:8d:6d:be:ae:bc:fe:af:2d:47:8e:f9:04: b8:1e:3f:5e:8d:ff:be:2d:2e:97:b0:e7:3e:d6:da:d2:90:36: 0e:16:f1:4d:22:3c:65:31:d1:5b:67:c7:81:a5:a6:e4:c7:de: 02:bb:45:ec:28:04:d9:35:9b:1b:7a:7c:53:3d:7d:1c:b5:fb: 75:cb:0d:97:80:cd:1d:f3:fb:37:b1:03:b8:92:2e:ba:e5:23: 51:d1:f8:25:a5:e4:c6:d7:55:ae:e1:9e:58:eb:37:2d:7e:e6: e3:ef:99:95:30:77:20:90:7e:18:5b:20:23:9c:49:71:8e:96: 99:6f:5c:ef:60:11:b1:1d:cf:34:38:8a:be:39:39:fc:e5:48: a4:b6:80:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs26X5nenUHjC50nMRgytVZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhODRkZmVmM2Q1MTA3Yjg0ZmM3N2M1NmRjZjc5ZTA1ZmU5 YzczNTEwHhcNMjUxMjE5MTQwMDMwWhcNMjUxMjIwMTQwMDMwWjAzMTEwLwYDVQQD EygwMWJlZTk3YzI4NTE4YzczMjNlNGQyMmY4YmQ0NTQ1MGI1NzYxMGMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUO9nI8ca3R4YCopWqM/KHEHtoBJ OITCOOIBpBTEEs810DtxfyXsHneue5SIVsUbjQepx9ZfXO4JXpibeak/DHTdbXek YQa4e8dqw7YqbKYWi8yvv4bMwkm11OR6RssJ8b4/TC7xEV4lfB7QDG7W4NA4K/C+ 3gL2NjsfkIgBWf5J2LMvY5rBZjBkkDpzhNyDuudX1/SDi0TnLWG0tI8bJadtj1az bupKVUAoRJu4OIjxQQ9Elt/bGvVqn/BmXmVV0g/Y5djy5Fuu24Z9rSaFYfASjCj3 nw1+Mwqtk0wIpMLRVnxbYFWMmDDlo4ndw50s06fVT2t87vYhrvUvxQ5yowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAG+6XwoUYxzI+TSL4vUVFC1dhDCMB8GA1UdIwQY MBaAFDqE3+89UQe4T8d8Vtz3ngX+nHNRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT29UZjd6MVJCN2hQeDN4VzNQZWVCZjZjYzFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9kNGI3ZjMtNDBjZS00MmVkLWE5M2It NWU4ZGVkYWM5Y2I3LzEvT29UZjd6MVJCN2hQeDN4VzNQZWVCZjZjYzFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC9kNGI3ZjMtNDBjZS00MmVkLWE5M2ItNWU4ZGVkYWM5Y2I3 LzEvT29UZjd6MVJCN2hQeDN4VzNQZWVCZjZjYzFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASz2pkF0b tejDQp2HXHlIvnN/k4g6FB5xbnbVvVBXZ2iIiEQhQ98Q9jJr8YXeo4WAlxsOqqFq AgJfBrufxlX1HN8Ey3sXW3Q5BqqhpSAwO0FZXB3nvXo6oaAhICo/VBrU3FiyNQ+T RljMD6XvRf22dox2jW2+rrz+ry1HjvkEuB4/Xo3/vi0ul7DnPtba0pA2DhbxTSI8 ZTHRW2fHgaWm5MfeArtF7CgE2TWbG3p8Uz19HLX7dcsNl4DNHfP7N7EDuJIuuuUj UdH4JaXkxtdVruGeWOs3LX7m4++ZlTB3IJB+GFsgI5xJcY6WmW9c72ARsR3PNDiK vjk5/OVIpLaAjA== -----END CERTIFICATE-----Generated at Fri Dec 19 16:36:59 2025 by rpki-client