This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft File: OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft (raw, json) Hash identifier: 83yfZAoPX3+EJNJFVAZTfGgHBCHLkq/Fjp4OITIBBTg= Subject key identifier: F1:33:DB:43:72:85:3F:D7:04:28:6A:0B:B2:3A:FC:66:34:C5:34:56 Authority key identifier: 3A:84:DF:EF:3D:51:07:B8:4F:C7:7C:56:DC:F7:9E:05:FE:9C:73:51 Certificate issuer: /CN=3a84dfef3d5107b84fc77c56dcf79e05fe9c7351 Certificate serial: 019B34FB4DB2A59782D1282AE7C008A380E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft Manifest number: 119E Signing time: Fri 19 Dec 2025 05:00:43 +0000 Manifest this update: Fri 19 Dec 2025 05:00:43 +0000 Manifest next update: Sat 20 Dec 2025 05:00:43 +0000 Files and hashes: 1: OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl (hash: NwLPoGfftZT4X7+mo4g96gBX6FUZFIMi2fh8YWGQNfg=) 2: fmsKsNJsScyYZyH8RUfSLeG-UJA.roa (hash: XWgPxzT1eqv4he1A7biAZG6QqWis59ng7mldQueWS0g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 05:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:fb:4d:b2:a5:97:82:d1:28:2a:e7:c0:08:a3:80:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a84dfef3d5107b84fc77c56dcf79e05fe9c7351 Validity Not Before: Dec 19 05:00:43 2025 GMT Not After : Dec 20 05:00:43 2025 GMT Subject: CN=f133db4372853fd704286a0bb23afc6634c53456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:65:71:e6:25:d4:39:ab:04:da:ab:1d:67:05: d0:b4:cc:69:2f:99:61:12:38:2f:b1:bb:cd:2f:a0: 75:78:0a:5c:70:97:c8:f8:f5:8b:6c:53:83:75:6e: 52:0c:9a:f2:6c:45:e2:61:53:69:6d:1c:ef:cb:74: 1b:7c:4e:80:a9:f4:51:63:7c:1e:31:8c:71:42:fb: 9e:ed:fd:50:6d:ec:fd:4c:08:3c:15:e3:8b:24:30: e4:e4:73:f5:d5:9c:e4:80:72:1e:66:8c:47:a8:fe: 5b:f5:fb:96:5a:c7:43:08:68:51:0c:c1:24:7d:05: 0d:05:e2:ed:4b:fb:00:fb:c6:5f:e8:a2:65:2a:19: c2:b9:88:5d:45:54:49:d5:85:b2:15:50:46:1e:7a: 45:c5:f5:eb:87:54:ed:b2:c6:40:21:fb:bd:52:33: 96:b9:f5:5b:5c:53:bb:80:3e:69:39:70:25:80:a2: 8b:4b:f3:66:bd:80:8b:81:6b:01:26:02:32:60:9e: 44:9d:dd:d4:29:0c:80:6b:ad:97:da:23:36:7b:80: e1:4c:ef:b6:af:ad:f4:61:1b:c9:62:eb:35:e8:1a: f1:11:1f:bf:8d:eb:9e:60:89:54:65:16:73:77:96: 53:eb:74:ed:db:2a:60:65:15:b5:43:72:25:e8:b8: 25:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:33:DB:43:72:85:3F:D7:04:28:6A:0B:B2:3A:FC:66:34:C5:34:56 X509v3 Authority Key Identifier: keyid:3A:84:DF:EF:3D:51:07:B8:4F:C7:7C:56:DC:F7:9E:05:FE:9C:73:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:a5:43:53:b8:80:37:d3:4b:cf:6e:45:2b:a3:f3:4a:94:6d: 85:3c:d3:e9:fe:5f:46:aa:f4:6d:cc:fd:2a:c6:3d:c3:28:56: ba:b2:6b:d7:95:ca:cd:f0:3b:62:c8:5a:1f:e8:fd:9f:48:df: 5b:40:13:17:6d:5d:53:8e:46:66:29:61:63:cb:41:c5:dc:0b: a3:8b:06:a7:8c:3d:8b:d0:85:64:2e:49:b2:8b:c9:f1:c0:08: 92:7d:33:0b:6a:02:bf:ca:4a:e6:ec:46:dd:eb:3b:2c:67:ef: ad:40:5e:8a:f5:a2:e7:1a:db:aa:68:cc:f3:f5:49:3a:9d:85: a1:07:5d:95:f0:38:49:13:70:27:a1:cf:1f:e8:ad:48:30:b3: 48:4e:a8:66:2c:a9:3b:c0:a3:45:07:0d:6a:41:15:49:85:bb: 14:01:86:47:0b:59:81:b6:f6:50:bb:e9:45:0a:3b:6f:d5:ca: 82:2f:23:32:f9:a4:b8:f9:cb:09:0d:3c:df:4f:98:e8:6d:3f: cf:a7:c3:2b:a1:e0:64:41:31:5a:b2:47:4c:8a:25:1a:a5:67: 25:6b:f0:00:a8:fa:81:47:7d:c3:af:74:ff:9b:0b:ef:b7:33: 8c:f4:8b:28:0b:a4:ae:ea:2d:8b:96:c2:46:b0:12:11:8e:26: d2:73:c1:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0+02ypZeC0Sgq58AIo4DjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhODRkZmVmM2Q1MTA3Yjg0ZmM3N2M1NmRjZjc5ZTA1ZmU5 YzczNTEwHhcNMjUxMjE5MDUwMDQzWhcNMjUxMjIwMDUwMDQzWjAzMTEwLwYDVQQD EyhmMTMzZGI0MzcyODUzZmQ3MDQyODZhMGJiMjNhZmM2NjM0YzUzNDU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGVx5iXUOasE2qsdZwXQtMxpL5lh EjgvsbvNL6B1eApccJfI+PWLbFODdW5SDJrybEXiYVNpbRzvy3QbfE6AqfRRY3we MYxxQvue7f1Qbez9TAg8FeOLJDDk5HP11ZzkgHIeZoxHqP5b9fuWWsdDCGhRDMEk fQUNBeLtS/sA+8Zf6KJlKhnCuYhdRVRJ1YWyFVBGHnpFxfXrh1TtssZAIfu9UjOW ufVbXFO7gD5pOXAlgKKLS/NmvYCLgWsBJgIyYJ5End3UKQyAa62X2iM2e4DhTO+2 r630YRvJYus16BrxER+/jeueYIlUZRZzd5ZT63Tt2ypgZRW1Q3Il6LglXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPEz20NyhT/XBChqC7I6/GY0xTRWMB8GA1UdIwQY MBaAFDqE3+89UQe4T8d8Vtz3ngX+nHNRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT29UZjd6MVJCN2hQeDN4VzNQZWVCZjZjYzFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9kNGI3ZjMtNDBjZS00MmVkLWE5M2It NWU4ZGVkYWM5Y2I3LzEvT29UZjd6MVJCN2hQeDN4VzNQZWVCZjZjYzFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC9kNGI3ZjMtNDBjZS00MmVkLWE5M2ItNWU4ZGVkYWM5Y2I3 LzEvT29UZjd6MVJCN2hQeDN4VzNQZWVCZjZjYzFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACKVDU7iA N9NLz25FK6PzSpRthTzT6f5fRqr0bcz9KsY9wyhWurJr15XKzfA7YshaH+j9n0jf W0ATF21dU45GZilhY8tBxdwLo4sGp4w9i9CFZC5JsovJ8cAIkn0zC2oCv8pK5uxG 3es7LGfvrUBeivWi5xrbqmjM8/VJOp2FoQddlfA4SRNwJ6HPH+itSDCzSE6oZiyp O8CjRQcNakEVSYW7FAGGRwtZgbb2ULvpRQo7b9XKgi8jMvmkuPnLCQ0830+Y6G0/ z6fDK6HgZEExWrJHTIolGqVnJWvwAKj6gUd9w690/5sL77czjPSLKAukruoti5bC RrASEY4m0nPBoQ== -----END CERTIFICATE-----Generated at Fri Dec 19 13:25:50 2025 by rpki-client