This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft File: oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft (raw, json) Hash identifier: uJU4sA4p9ND8P6p3+/TqqydmvIOnciqsdaQwBFsVOno= Subject key identifier: CF:B4:9B:02:27:BD:1E:64:62:8A:75:8B:7D:56:21:68:C2:AE:B7:B0 Authority key identifier: A0:96:08:F1:5B:36:7A:EE:48:6B:85:6D:9E:40:4C:3D:1E:0A:5F:D4 Certificate issuer: /CN=a09608f15b367aee486b856d9e404c3d1e0a5fd4 Certificate serial: 019AF35257B5732CF277ED7C3BC016C9009F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft Manifest number: 149C Signing time: Sat 06 Dec 2025 11:00:51 +0000 Manifest this update: Sat 06 Dec 2025 11:00:51 +0000 Manifest next update: Sun 07 Dec 2025 11:00:51 +0000 Files and hashes: 1: EZbYUKlbHnDupSiI6vHg0ScrIQc.roa (hash: yrslRTQqqMutFqrXn7kHXajy2V9WRPNQRVUgaXrJw9E=) 2: oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl (hash: mKMe1vgpVVVzBqRM6Iq8JBBQ7i5X1soFjlplKntxtdI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:57:b5:73:2c:f2:77:ed:7c:3b:c0:16:c9:00:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a09608f15b367aee486b856d9e404c3d1e0a5fd4 Validity Not Before: Dec 6 11:00:51 2025 GMT Not After : Dec 7 11:00:51 2025 GMT Subject: CN=cfb49b0227bd1e64628a758b7d562168c2aeb7b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:90:ca:25:1f:1b:0f:5a:7a:7c:d8:55:1a:2b: 61:fe:50:b3:d7:73:d8:9b:73:5d:8a:f1:ab:d9:44: 37:12:4d:d3:ff:b1:85:ab:b6:69:b8:83:77:ec:8c: c6:47:66:43:13:e4:98:81:a0:bb:97:3d:a9:d9:5f: 0d:49:88:44:46:4e:ec:b4:0f:dc:4d:2b:85:aa:ac: d6:a0:0b:76:82:e8:7d:f2:bc:fa:29:eb:78:2b:bd: e6:c9:66:1c:ab:64:e0:9f:9f:82:63:39:bf:76:c5: 47:fa:ee:62:34:a8:ba:94:57:10:55:55:16:54:f3: 18:6e:74:07:57:f9:86:df:ad:87:ab:1f:da:0d:49: 4e:d1:40:35:f4:3b:bb:0e:38:b6:b6:33:53:c6:c4: ec:23:dd:06:f6:e6:5f:63:d5:43:03:44:62:9d:ae: 13:54:f8:8b:1f:21:00:dd:ec:f2:c6:29:7f:06:02: 38:c8:5f:71:da:dc:7d:63:07:c2:db:d5:45:52:51: 8e:b1:02:d0:d4:96:52:ae:40:96:52:c1:b3:44:22: 26:97:71:91:75:7c:8a:f4:a1:09:d7:3a:5b:7b:f7: 52:e7:5e:6b:d7:23:d3:73:12:ed:f6:4c:2a:bf:ed: 70:08:3f:d9:1e:24:3d:55:22:d1:f5:d3:45:7e:74: a6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B4:9B:02:27:BD:1E:64:62:8A:75:8B:7D:56:21:68:C2:AE:B7:B0 X509v3 Authority Key Identifier: keyid:A0:96:08:F1:5B:36:7A:EE:48:6B:85:6D:9E:40:4C:3D:1E:0A:5F:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:3b:2a:39:c2:e9:c1:13:b5:26:a6:fc:5d:03:57:ce:2a:05: 97:1b:6e:dc:df:0b:63:c7:11:1b:ea:ee:6f:20:41:19:2a:b4: 47:fe:1d:78:15:06:94:be:d9:20:12:e1:65:8c:0d:07:41:31: 72:11:fd:a3:3d:e3:da:f7:0f:fd:fd:37:52:db:00:7a:6b:2a: c4:43:32:d9:67:08:cb:3d:0a:e8:5e:1d:51:ee:13:61:3b:fe: a8:fb:82:1e:ae:7b:3a:48:23:29:dd:1a:ab:4c:36:f1:30:9f: 26:94:f4:ad:a9:0c:fb:5e:5e:1d:a6:1f:82:03:9e:eb:28:6f: 95:52:3d:3d:2d:af:c6:61:45:dc:a5:eb:da:ed:74:0a:52:0d: bd:e8:83:4b:eb:61:31:5f:cd:43:5a:3f:f5:90:24:78:18:ed: a3:01:3e:ec:ea:fb:ae:45:13:85:e8:7a:5f:13:39:da:1b:24: 9e:90:cd:b7:dc:f4:dc:ad:8f:1e:9f:bd:61:c3:e2:a3:29:7d: 62:aa:5a:8d:4d:14:8e:ea:f6:81:7d:8e:26:40:74:71:b9:6f: 5e:f3:ac:9e:76:f2:86:b7:a4:14:25:eb:00:b0:a3:4b:b4:60: 10:1d:12:93:db:c2:10:39:8e:07:59:87:9e:61:01:fa:e3:20: 5c:7f:4e:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUle1cyzyd+18O8AWyQCfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwOTYwOGYxNWIzNjdhZWU0ODZiODU2ZDllNDA0YzNkMWUw YTVmZDQwHhcNMjUxMjA2MTEwMDUxWhcNMjUxMjA3MTEwMDUxWjAzMTEwLwYDVQQD EyhjZmI0OWIwMjI3YmQxZTY0NjI4YTc1OGI3ZDU2MjE2OGMyYWViN2IwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZDKJR8bD1p6fNhVGith/lCz13PY m3NdivGr2UQ3Ek3T/7GFq7ZpuIN37IzGR2ZDE+SYgaC7lz2p2V8NSYhERk7stA/c TSuFqqzWoAt2guh98rz6Ket4K73myWYcq2Tgn5+CYzm/dsVH+u5iNKi6lFcQVVUW VPMYbnQHV/mG362Hqx/aDUlO0UA19Du7Dji2tjNTxsTsI90G9uZfY9VDA0Rina4T VPiLHyEA3ezyxil/BgI4yF9x2tx9YwfC29VFUlGOsQLQ1JZSrkCWUsGzRCIml3GR dXyK9KEJ1zpbe/dS515r1yPTcxLt9kwqv+1wCD/ZHiQ9VSLR9dNFfnSm9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM+0mwInvR5kYop1i31WIWjCrrewMB8GA1UdIwQY MBaAFKCWCPFbNnruSGuFbZ5ATD0eCl/UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0pZSThWczJldTVJYTRWdG5rQk1QUjRLWDlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi84MTA2NmQtMjEyMy00YjZkLThiY2Yt YjhlZDY2ZDQyNzgyLzEvb0pZSThWczJldTVJYTRWdG5rQk1QUjRLWDlRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi84MTA2NmQtMjEyMy00YjZkLThiY2YtYjhlZDY2ZDQyNzgy LzEvb0pZSThWczJldTVJYTRWdG5rQk1QUjRLWDlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiDsqOcLp wRO1Jqb8XQNXzioFlxtu3N8LY8cRG+rubyBBGSq0R/4deBUGlL7ZIBLhZYwNB0Ex chH9oz3j2vcP/f03UtsAemsqxEMy2WcIyz0K6F4dUe4TYTv+qPuCHq57OkgjKd0a q0w28TCfJpT0rakM+15eHaYfggOe6yhvlVI9PS2vxmFF3KXr2u10ClINveiDS+th MV/NQ1o/9ZAkeBjtowE+7Or7rkUTheh6XxM52hsknpDNt9z03K2PHp+9YcPioyl9 YqpajU0Ujur2gX2OJkB0cblvXvOsnnbyhrekFCXrALCjS7RgEB0Sk9vCEDmOB1mH nmEB+uMgXH9Ouw== -----END CERTIFICATE-----Generated at Sat Dec 6 18:51:42 2025 by rpki-client