This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft File: OQGfnAqym0Lg2xLprIezJ7_FWvk.mft (raw, json) Hash identifier: 2lQfbppzqST4dGYpvzUbbCH9R0qy6y6FIx+3Mkvl5jY= Subject key identifier: 28:53:6A:A9:B2:98:08:59:05:36:FE:4A:12:7F:DB:B2:80:AD:29:D6 Authority key identifier: 39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9 Certificate issuer: /CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9 Certificate serial: 019AF12CE74D14D4E2EF6E0E27B9E55E7F9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 01:00:43 +0000 Manifest this update: Sat 06 Dec 2025 01:00:43 +0000 Manifest next update: Sun 07 Dec 2025 01:00:43 +0000 Files and hashes: 1: OQGfnAqym0Lg2xLprIezJ7_FWvk.crl (hash: 8rq1CX9lbfpmFCJzu4mR9ltrDmJuCApFog25j16C05g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:e7:4d:14:d4:e2:ef:6e:0e:27:b9:e5:5e:7f:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9 Validity Not Before: Dec 6 01:00:43 2025 GMT Not After : Dec 7 01:00:43 2025 GMT Subject: CN=28536aa9b29808590536fe4a127fdbb280ad29d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:da:38:e6:78:13:f2:42:8d:6a:35:4d:5d:50: d8:38:78:a7:b0:5e:6e:d5:43:71:b7:d2:63:05:dc: d8:80:f0:aa:8c:c2:38:0e:af:cd:e5:4b:62:d8:a3: c6:82:78:77:2a:67:3a:31:22:87:67:32:f6:58:a5: 60:94:86:ea:80:d9:db:7d:2e:9b:49:fa:60:f3:01: 17:b5:08:c0:7c:5e:44:fb:20:49:05:43:6b:05:2a: e8:57:6b:52:c5:a8:fd:fe:19:7e:27:1a:82:0f:90: 03:5e:9e:95:62:48:5d:de:40:20:23:6f:36:61:a2: a1:2b:2c:5e:be:df:5d:82:6b:d1:d5:cc:6e:0a:bd: 51:c8:8c:76:11:e4:4f:0d:e2:4a:53:0b:42:0b:5a: cf:7e:a4:d0:16:c8:b0:92:33:44:d7:13:05:f4:2b: 8f:2f:79:85:5e:5c:9a:9e:17:20:15:f4:75:fe:9d: 2a:98:77:a8:77:c9:dd:b1:35:84:3e:5e:64:2d:8a: c7:df:59:b5:35:22:12:64:d1:49:52:73:e6:ec:03: 87:79:c2:50:da:9c:90:44:88:04:f5:6d:d7:f1:56: 2c:0c:07:de:2d:f4:f2:c0:55:a8:e3:38:11:c1:6b: 99:13:5b:03:f3:3e:f0:41:d5:af:10:52:1f:3f:c1: 83:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:53:6A:A9:B2:98:08:59:05:36:FE:4A:12:7F:DB:B2:80:AD:29:D6 X509v3 Authority Key Identifier: keyid:39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:9f:3a:8b:ae:56:a2:12:bc:d5:ca:93:c5:59:ba:38:08:65: bd:56:3c:83:36:2f:ee:5a:c4:b0:a7:93:98:79:b2:02:83:49: ee:1a:e3:cf:f9:98:5f:72:25:08:cf:b8:84:07:8c:9e:ea:3e: a1:63:73:22:57:a1:98:c0:ba:0e:e0:8d:d9:ad:24:2c:28:2e: ef:d5:5b:41:56:25:ec:6c:4e:35:92:f8:79:d4:3a:9d:c3:6c: 77:8a:28:f8:8d:45:b0:1c:2f:ed:12:6f:bf:94:eb:36:f9:a8: 63:72:92:6a:0e:1e:a2:28:63:dd:71:24:12:db:02:74:7a:17: d6:9a:da:45:c2:93:47:ac:47:7e:fd:1d:02:aa:65:01:21:6c: 77:df:ee:a9:21:36:00:cd:3c:a1:d4:f1:11:77:e5:1a:4d:ae: 79:5d:6e:96:ed:b8:e6:2c:e9:a1:79:8f:b0:8d:9e:d3:27:75: a8:43:ac:7c:50:51:8f:68:14:ae:61:b2:28:c4:0e:68:2d:3a: 78:1c:6d:c7:3e:27:42:60:bf:d4:c7:85:c7:9b:99:66:97:61: 5e:c7:1a:ae:2b:3a:3e:31:37:bd:16:33:db:c9:17:70:19:d2: 7c:f3:7a:05:15:a8:2c:b9:bf:83:2a:37:14:36:31:fa:e6:9e: 8c:78:e1:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLOdNFNTi724OJ7nlXn+bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5MDE5ZjljMGFiMjliNDJlMGRiMTJlOWFjODdiMzI3YmZj NTVhZjkwHhcNMjUxMjA2MDEwMDQzWhcNMjUxMjA3MDEwMDQzWjAzMTEwLwYDVQQD EygyODUzNmFhOWIyOTgwODU5MDUzNmZlNGExMjdmZGJiMjgwYWQyOWQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNo45ngT8kKNajVNXVDYOHinsF5u 1UNxt9JjBdzYgPCqjMI4Dq/N5Uti2KPGgnh3Kmc6MSKHZzL2WKVglIbqgNnbfS6b Sfpg8wEXtQjAfF5E+yBJBUNrBSroV2tSxaj9/hl+JxqCD5ADXp6VYkhd3kAgI282 YaKhKyxevt9dgmvR1cxuCr1RyIx2EeRPDeJKUwtCC1rPfqTQFsiwkjNE1xMF9CuP L3mFXlyanhcgFfR1/p0qmHeod8ndsTWEPl5kLYrH31m1NSISZNFJUnPm7AOHecJQ 2pyQRIgE9W3X8VYsDAfeLfTywFWo4zgRwWuZE1sD8z7wQdWvEFIfP8GDcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFChTaqmymAhZBTb+ShJ/27KArSnWMB8GA1UdIwQY MBaAFDkBn5wKsptC4NsS6ayHsye/xVr5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1FHZm5BcXltMExnMnhMcHJJZXpKN19GV3ZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi80MzBjODEtZWU0Yi00ZTg4LWEzNmYt Nzg4ZjVhNTgwNDRmLzEvT1FHZm5BcXltMExnMnhMcHJJZXpKN19GV3ZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi80MzBjODEtZWU0Yi00ZTg4LWEzNmYtNzg4ZjVhNTgwNDRm LzEvT1FHZm5BcXltMExnMnhMcHJJZXpKN19GV3ZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeZ86i65W ohK81cqTxVm6OAhlvVY8gzYv7lrEsKeTmHmyAoNJ7hrjz/mYX3IlCM+4hAeMnuo+ oWNzIlehmMC6DuCN2a0kLCgu79VbQVYl7GxONZL4edQ6ncNsd4oo+I1FsBwv7RJv v5TrNvmoY3KSag4eoihj3XEkEtsCdHoX1praRcKTR6xHfv0dAqplASFsd9/uqSE2 AM08odTxEXflGk2ueV1ulu245izpoXmPsI2e0yd1qEOsfFBRj2gUrmGyKMQOaC06 eBxtxz4nQmC/1MeFx5uZZpdhXscaris6PjE3vRYz28kXcBnSfPN6BRWoLLm/gyo3 FDYx+uaejHjhRA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:19:59 2025 by rpki-client