This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.mft File: OuAJYkeoxU5d6MGw2vEFSuyMxFA.mft (raw, json) Hash identifier: sp7g6ZK/VQnY/pl6O34bh3t6qYBcTreM5EH+EkdT23M= Subject key identifier: FD:1F:B4:0B:0D:CD:51:B8:6A:44:DA:4C:00:04:17:60:8D:08:65:92 Authority key identifier: 3A:E0:09:62:47:A8:C5:4E:5D:E8:C1:B0:DA:F1:05:4A:EC:8C:C4:50 Certificate issuer: /CN=3ae0096247a8c54e5de8c1b0daf1054aec8cc450 Certificate serial: 019AF2ADC6DAFD91B510FDB892F98AC5B0C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuAJYkeoxU5d6MGw2vEFSuyMxFA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 08:01:06 +0000 Manifest this update: Sat 06 Dec 2025 08:01:06 +0000 Manifest next update: Sun 07 Dec 2025 08:01:06 +0000 Files and hashes: 1: 8b8hGUt6rzi1dlifxra-q3rgP6w.roa (hash: KASE+0wVItpUVcgXdu/CScsiZaEIchQxerFmFT5uHpo=) 2: OuAJYkeoxU5d6MGw2vEFSuyMxFA.crl (hash: wRAmawXUUxweteYfdq6YFaKyWzEaw+YLZp5TVjHLoy0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.mft rsync://rpki.ripe.net/repository/DEFAULT/OuAJYkeoxU5d6MGw2vEFSuyMxFA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:c6:da:fd:91:b5:10:fd:b8:92:f9:8a:c5:b0:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ae0096247a8c54e5de8c1b0daf1054aec8cc450 Validity Not Before: Dec 6 08:01:06 2025 GMT Not After : Dec 7 08:01:06 2025 GMT Subject: CN=fd1fb40b0dcd51b86a44da4c000417608d086592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6b:76:f6:b6:a3:54:e4:ea:e6:87:2e:2f:d8: 99:c0:52:1f:40:26:87:99:2a:72:6b:9d:fb:b7:ce: f1:e6:26:53:d9:11:22:ad:bb:68:ad:04:71:e8:b3: 3d:5f:ec:a8:61:e5:de:ea:3e:8b:13:a6:90:1b:5d: a6:39:c6:1c:d2:24:65:ad:49:01:22:9c:da:bc:a1: 69:54:4c:56:6d:44:cb:5d:73:35:6a:82:4e:a0:6b: 32:e7:d1:4b:ad:aa:ca:21:e0:6a:f8:db:5d:3b:92: c2:9f:e0:ac:3c:dd:b7:7f:2a:77:93:a8:38:69:0c: 5e:7d:0f:7d:bd:1e:ef:27:35:b4:74:80:af:d6:14: f9:d3:90:c4:17:5d:42:cd:65:cc:4d:5c:04:6a:0f: 46:33:b3:9b:ce:11:8b:8d:7b:68:4d:7e:7b:89:d8: 28:dc:1f:f7:f7:ea:ef:a4:ab:54:49:9d:4e:69:5a: 1d:4c:ff:6c:dc:fd:a4:13:19:14:ca:48:5a:53:75: a7:d1:46:90:f7:5c:b6:d4:0f:3a:41:42:77:92:50: aa:d6:6b:b5:9d:4a:ae:c7:5a:92:a5:00:32:5a:a3: 6b:63:b2:bd:ee:17:9d:21:81:a5:62:1b:86:cc:3f: b9:22:65:8d:83:8c:37:02:cc:31:73:21:9b:fb:af: 66:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:1F:B4:0B:0D:CD:51:B8:6A:44:DA:4C:00:04:17:60:8D:08:65:92 X509v3 Authority Key Identifier: keyid:3A:E0:09:62:47:A8:C5:4E:5D:E8:C1:B0:DA:F1:05:4A:EC:8C:C4:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuAJYkeoxU5d6MGw2vEFSuyMxFA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0aa494-9308-47ee-a808-b9722144513f/1/OuAJYkeoxU5d6MGw2vEFSuyMxFA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:8d:a5:14:a1:94:9a:05:ac:88:0f:bd:ea:78:ef:aa:e9:44: 20:18:8a:11:fc:62:ca:6a:aa:01:9d:23:64:fa:8e:f2:cf:49: 2f:fb:b1:cd:07:f4:a1:37:e9:1c:a4:83:1a:fa:05:24:9b:52: 0a:d8:27:be:4d:2a:12:04:c2:57:c7:5b:f0:45:c8:51:55:d4: 51:7a:0a:e7:51:0a:ab:a2:36:2a:d1:55:27:9d:87:98:ec:8a: ce:93:34:c7:fd:06:5c:6e:b6:11:3b:91:cb:60:9d:44:ac:ac: bf:41:21:da:5d:d8:05:12:f2:8d:4b:d5:bf:ca:81:56:98:34: aa:0a:19:cc:a9:40:73:c0:c0:24:44:5d:c1:f7:90:8d:95:97: 98:0c:2a:76:64:0f:46:d9:8c:e0:14:64:2e:2b:73:9c:69:62: d2:0f:71:77:4f:b1:e6:28:c9:9c:bd:00:dc:b3:45:c2:90:e3: d5:d9:97:d6:bb:94:4c:5a:04:c8:2e:f4:ae:65:66:3b:56:a2: 57:a0:51:99:fc:1d:04:83:77:71:af:20:25:16:d6:8d:84:55: 1f:b5:21:34:0f:c2:77:88:dd:7f:98:8d:82:c7:5f:7a:06:df: 87:9f:75:52:49:86:b9:df:50:a1:07:23:87:d8:e0:2f:04:93: 28:58:bd:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrcba/ZG1EP24kvmKxbDBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZTAwOTYyNDdhOGM1NGU1ZGU4YzFiMGRhZjEwNTRhZWM4 Y2M0NTAwHhcNMjUxMjA2MDgwMTA2WhcNMjUxMjA3MDgwMTA2WjAzMTEwLwYDVQQD EyhmZDFmYjQwYjBkY2Q1MWI4NmE0NGRhNGMwMDA0MTc2MDhkMDg2NTkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWt29rajVOTq5ocuL9iZwFIfQCaH mSpya537t87x5iZT2REirbtorQRx6LM9X+yoYeXe6j6LE6aQG12mOcYc0iRlrUkB IpzavKFpVExWbUTLXXM1aoJOoGsy59FLrarKIeBq+NtdO5LCn+CsPN23fyp3k6g4 aQxefQ99vR7vJzW0dICv1hT505DEF11CzWXMTVwEag9GM7ObzhGLjXtoTX57idgo 3B/39+rvpKtUSZ1OaVodTP9s3P2kExkUykhaU3Wn0UaQ91y21A86QUJ3klCq1mu1 nUqux1qSpQAyWqNrY7K97hedIYGlYhuGzD+5ImWNg4w3AswxcyGb+69mRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP0ftAsNzVG4akTaTAAEF2CNCGWSMB8GA1UdIwQY MBaAFDrgCWJHqMVOXejBsNrxBUrsjMRQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3VBSllrZW94VTVkNk1HdzJ2RUZTdXlNeEZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wYWE0OTQtOTMwOC00N2VlLWE4MDgt Yjk3MjIxNDQ1MTNmLzEvT3VBSllrZW94VTVkNk1HdzJ2RUZTdXlNeEZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi8wYWE0OTQtOTMwOC00N2VlLWE4MDgtYjk3MjIxNDQ1MTNm LzEvT3VBSllrZW94VTVkNk1HdzJ2RUZTdXlNeEZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhY2lFKGU mgWsiA+96njvqulEIBiKEfxiymqqAZ0jZPqO8s9JL/uxzQf0oTfpHKSDGvoFJJtS Ctgnvk0qEgTCV8db8EXIUVXUUXoK51EKq6I2KtFVJ52HmOyKzpM0x/0GXG62ETuR y2CdRKysv0Eh2l3YBRLyjUvVv8qBVpg0qgoZzKlAc8DAJERdwfeQjZWXmAwqdmQP RtmM4BRkLitznGli0g9xd0+x5ijJnL0A3LNFwpDj1dmX1ruUTFoEyC70rmVmO1ai V6BRmfwdBIN3ca8gJRbWjYRVH7UhNA/Cd4jdf5iNgsdfegbfh591UkmGud9QoQcj h9jgLwSTKFi9Ig== -----END CERTIFICATE-----Generated at Sat Dec 6 12:07:54 2025 by rpki-client