This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft File: oFa0I4Othizmo3StLKbTbCVNx7E.mft (raw, json) Hash identifier: qKLJx1+btqyFi9LWOGd3S5oygyRBw811NGvdqL7p6nU= Subject key identifier: BE:9A:4E:24:4F:37:C8:A4:0C:EF:CE:13:7C:86:F3:3F:A2:66:60:E3 Authority key identifier: A0:56:B4:23:83:AD:86:2C:E6:A3:74:AD:2C:A6:D3:6C:25:4D:C7:B1 Certificate issuer: /CN=a056b42383ad862ce6a374ad2ca6d36c254dc7b1 Certificate serial: 019AF23F813E6D247E2DE7A68C05A81A8BB2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft Manifest number: 1686 Signing time: Sat 06 Dec 2025 06:00:39 +0000 Manifest this update: Sat 06 Dec 2025 06:00:39 +0000 Manifest next update: Sun 07 Dec 2025 06:00:39 +0000 Files and hashes: 1: 4GMh7fIw13Bz3DUcceuO2FBtK6M.roa (hash: E9IDQ7QjcqjZJIn5bDeaHNVCqS2wv2WqYXLU0FEPSXU=) 2: XJGEpCzB4loh5ef0k98ZvXtkA5A.roa (hash: ln2eCgW4Lb0/Z2WnRMYRLGIC+qtaz3YxPhhlJZ12csI=) 3: oFa0I4Othizmo3StLKbTbCVNx7E.crl (hash: DBvqPz3/WPgd63bZCMGnkYoGL82pycL5Bd09WE4kIdk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:81:3e:6d:24:7e:2d:e7:a6:8c:05:a8:1a:8b:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a056b42383ad862ce6a374ad2ca6d36c254dc7b1 Validity Not Before: Dec 6 06:00:39 2025 GMT Not After : Dec 7 06:00:39 2025 GMT Subject: CN=be9a4e244f37c8a40cefce137c86f33fa26660e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a7:8c:e5:ae:aa:b5:65:5f:0d:70:aa:68:b8: 99:7a:0e:a6:79:5c:86:22:9a:4c:8f:f4:d8:84:61: 95:5f:b4:8e:bc:d4:11:07:8a:68:ec:37:67:a2:95: 91:21:17:e7:c1:7e:ee:7d:69:66:13:c3:56:85:51: e0:47:be:8c:72:14:4d:40:7c:e8:c0:64:a2:6d:7b: d4:96:d3:bb:5b:b1:92:2a:b1:c7:94:a4:9a:40:78: 90:45:16:d7:4c:9d:74:b2:90:3f:e3:17:3b:b4:55: e1:ef:25:e1:41:ce:21:d9:9e:1b:c3:49:db:c8:bd: 32:32:9a:27:03:d5:d6:08:19:62:68:20:f4:8a:cd: a8:af:43:18:06:38:59:a1:f8:a1:8d:3d:32:73:17: 6b:a1:eb:83:6b:f8:35:af:94:42:3b:81:fb:14:26: 3a:f2:0a:f4:e0:36:2c:23:6e:24:21:66:16:2e:7e: 03:db:f9:d4:a1:d5:59:26:f5:d4:37:72:83:59:dc: 10:c7:ac:e3:f4:68:b9:63:8f:e7:a3:11:4e:ca:8b: c9:5d:3e:4d:1b:27:99:4c:d9:a7:b0:8a:63:15:fb: 3e:5c:2e:dd:de:ae:f5:14:c9:0f:69:35:ef:bb:00: bd:87:ab:88:a5:d6:90:12:a0:b8:7f:83:39:f1:90: 98:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:9A:4E:24:4F:37:C8:A4:0C:EF:CE:13:7C:86:F3:3F:A2:66:60:E3 X509v3 Authority Key Identifier: keyid:A0:56:B4:23:83:AD:86:2C:E6:A3:74:AD:2C:A6:D3:6C:25:4D:C7:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:9f:32:1e:23:61:05:87:a1:50:42:d5:cf:7a:d3:cf:64:62: 44:15:43:45:69:d4:8e:cc:20:aa:56:74:fd:fc:53:9a:60:ca: 52:a4:48:16:ab:64:e1:73:fb:3a:40:3e:67:1f:0c:ab:7f:ac: 67:80:d1:01:3d:5c:23:a3:e9:d0:e5:a3:0e:a2:2f:49:ae:43: 4b:63:9d:e1:4d:4c:30:66:8d:06:40:0f:99:db:db:75:2c:2a: f0:59:44:ec:b7:78:3d:ea:3c:25:82:6f:7b:86:4a:c7:a2:e3: d8:20:e8:ed:ca:88:f5:d9:c8:99:32:a6:d0:5e:6f:5a:91:be: 30:0e:c4:30:06:d6:8f:1e:52:b4:e3:38:90:83:dc:62:70:8d: 0b:d6:88:3a:02:ac:11:e7:bd:ac:48:22:73:01:18:42:35:1f: 12:54:01:28:f8:58:33:b3:24:bf:25:ee:03:73:41:4b:51:d0: ca:34:a2:be:40:bd:b4:8c:cb:dc:ab:2a:c3:c8:ff:0a:7b:aa: 55:46:34:d4:e3:17:97:4d:69:26:65:f0:36:30:db:f8:d5:8a: e9:88:53:98:03:b4:90:60:31:86:e6:ef:c2:1e:33:ba:e5:f3: 2c:fc:96:46:cd:1e:6d:88:5b:74:00:45:4c:63:ab:d9:18:48: e8:34:78:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP4E+bSR+LeemjAWoGouyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwNTZiNDIzODNhZDg2MmNlNmEzNzRhZDJjYTZkMzZjMjU0 ZGM3YjEwHhcNMjUxMjA2MDYwMDM5WhcNMjUxMjA3MDYwMDM5WjAzMTEwLwYDVQQD EyhiZTlhNGUyNDRmMzdjOGE0MGNlZmNlMTM3Yzg2ZjMzZmEyNjY2MGUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6eM5a6qtWVfDXCqaLiZeg6meVyG IppMj/TYhGGVX7SOvNQRB4po7DdnopWRIRfnwX7ufWlmE8NWhVHgR76MchRNQHzo wGSibXvUltO7W7GSKrHHlKSaQHiQRRbXTJ10spA/4xc7tFXh7yXhQc4h2Z4bw0nb yL0yMponA9XWCBliaCD0is2or0MYBjhZofihjT0ycxdroeuDa/g1r5RCO4H7FCY6 8gr04DYsI24kIWYWLn4D2/nUodVZJvXUN3KDWdwQx6zj9Gi5Y4/noxFOyovJXT5N GyeZTNmnsIpjFfs+XC7d3q71FMkPaTXvuwC9h6uIpdaQEqC4f4M58ZCYVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL6aTiRPN8ikDO/OE3yG8z+iZmDjMB8GA1UdIwQY MBaAFKBWtCODrYYs5qN0rSym02wlTcexMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0ZhMEk0T3RoaXptbzNTdExLYlRiQ1ZOeDdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC8zZThkY2MtYTc2NC00NGJlLWI1MDct OWIzZGQ0MTdjMzA4LzEvb0ZhMEk0T3RoaXptbzNTdExLYlRiQ1ZOeDdFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC8zZThkY2MtYTc2NC00NGJlLWI1MDctOWIzZGQ0MTdjMzA4 LzEvb0ZhMEk0T3RoaXptbzNTdExLYlRiQ1ZOeDdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcJ8yHiNh BYehUELVz3rTz2RiRBVDRWnUjswgqlZ0/fxTmmDKUqRIFqtk4XP7OkA+Zx8Mq3+s Z4DRAT1cI6Pp0OWjDqIvSa5DS2Od4U1MMGaNBkAPmdvbdSwq8FlE7Ld4Peo8JYJv e4ZKx6Lj2CDo7cqI9dnImTKm0F5vWpG+MA7EMAbWjx5StOM4kIPcYnCNC9aIOgKs Eee9rEgicwEYQjUfElQBKPhYM7MkvyXuA3NBS1HQyjSivkC9tIzL3Ksqw8j/Cnuq VUY01OMXl01pJmXwNjDb+NWK6YhTmAO0kGAxhubvwh4zuuXzLPyWRs0ebYhbdABF TGOr2RhI6DR49Q== -----END CERTIFICATE-----Generated at Sat Dec 6 09:03:25 2025 by rpki-client