This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft File: oJfWos9CiA2-v0KjJRkHohyRpKU.mft (raw, json) Hash identifier: +x5JIKut+Fjq7dgjLHZhSgKCGuACxEC3wKwvgTOgz0I= Subject key identifier: 2C:62:D6:77:27:B5:80:91:A2:4B:DC:69:C2:5C:3F:1E:03:98:6D:9C Authority key identifier: A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5 Certificate issuer: /CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5 Certificate serial: 019AF1D1FC2D6B106FFE1A0472295651EFE6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 04:01:01 +0000 Manifest this update: Sat 06 Dec 2025 04:01:01 +0000 Manifest next update: Sun 07 Dec 2025 04:01:01 +0000 Files and hashes: 1: 9xc32CvuOjNWHQB-PWYWWQOY_yA.roa (hash: PjbNQ/Rs2a2yPfO42XDBv2ntO3mtq/Wj2Yqgz9eO9jA=) 2: oJfWos9CiA2-v0KjJRkHohyRpKU.crl (hash: me0oUNxulBveNDl1Haeg9eR3H6oTTHzZH9Rmu2LBX1g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:fc:2d:6b:10:6f:fe:1a:04:72:29:56:51:ef:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5 Validity Not Before: Dec 6 04:01:01 2025 GMT Not After : Dec 7 04:01:01 2025 GMT Subject: CN=2c62d67727b58091a24bdc69c25c3f1e03986d9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:7a:5e:c0:e1:20:35:85:13:bc:bf:f5:f2:9b: bd:de:7a:1b:45:7c:bf:8b:8e:9b:e9:c6:d5:8c:f3: 5b:83:f9:b2:05:dc:17:18:ff:00:8e:f8:e6:c9:ab: 9a:af:4b:ca:4d:63:a5:d0:90:5b:b1:b9:34:c7:08: cc:12:fc:2d:92:db:c6:97:ad:36:7b:d9:ce:33:ad: fc:08:7f:fc:f5:08:35:3a:bc:9a:08:a6:67:51:66: ff:5e:3f:b8:b9:06:c4:4f:78:7b:f9:40:f8:a4:58: 30:71:fb:c6:ec:2a:6c:f3:ea:ba:fb:c8:16:bd:32: e9:ba:22:da:b2:bc:11:4c:d2:68:f0:a2:69:e1:48: 59:15:d9:57:91:08:aa:55:dd:a0:68:81:43:96:d7: d1:73:0b:1f:b3:74:15:6a:09:bb:5f:ea:6e:c0:cb: a7:53:02:ad:be:2e:94:98:2b:12:13:29:5b:46:8f: 73:84:81:ac:e2:88:1a:32:d4:59:da:00:49:44:81: 88:f3:9a:da:62:d5:7c:44:d9:94:c5:36:54:e3:4b: a1:5a:3d:85:20:25:bc:1a:c1:eb:e8:ee:7b:09:9e: 03:a4:fa:0b:42:c5:c2:94:69:69:43:b8:e4:62:28: 0b:5f:ae:d1:ca:20:87:d3:71:12:1e:ff:d0:dc:22: d8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:62:D6:77:27:B5:80:91:A2:4B:DC:69:C2:5C:3F:1E:03:98:6D:9C X509v3 Authority Key Identifier: keyid:A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:47:92:2a:89:cd:7b:d2:2c:ec:38:c6:48:36:0c:16:57:98: cb:23:81:5c:ce:a3:a9:1d:cb:80:c0:ca:e6:01:bf:bb:70:a0: 43:0d:85:de:f2:62:c2:05:99:49:35:c7:fc:b9:88:fb:35:8a: e8:c0:59:7c:2b:32:52:37:4b:a4:c0:4d:09:39:21:cc:f0:a2: 5f:42:c0:90:7b:7b:81:2c:56:01:dc:ed:ff:0f:cf:af:fe:96: 05:a3:04:96:fb:2e:87:f7:2b:92:31:4c:1c:e5:7e:1a:df:6c: 0e:f7:d9:de:4f:04:60:35:3f:da:c3:ac:ff:d2:cb:02:ad:cc: 59:26:97:2c:bb:41:da:e3:12:99:a9:a6:92:e4:4b:a7:70:d4: 7e:28:ad:4c:25:eb:98:b2:d8:12:3b:27:1e:fd:d4:87:62:13: 1b:5f:1f:00:8e:0e:8d:59:4e:1c:57:05:64:69:6b:4c:c8:0b: bb:99:1d:a9:e4:e2:1a:37:31:e4:81:63:11:c2:44:f7:85:01: 19:0e:9c:ef:81:72:11:f6:9e:93:cf:b8:16:a5:79:f3:18:11: fb:95:57:5e:3f:e3:d9:7b:63:1e:a2:1b:9f:4d:51:7e:46:24: 8b:65:91:a6:f1:b2:5c:8b:20:8c:47:8a:5e:68:d8:4b:56:cc: 01:ee:f7:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0fwtaxBv/hoEcilWUe/mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwOTdkNmEyY2Y0Mjg4MGRiZWJmNDJhMzI1MTkwN2EyMWM5 MWE0YTUwHhcNMjUxMjA2MDQwMTAxWhcNMjUxMjA3MDQwMTAxWjAzMTEwLwYDVQQD EygyYzYyZDY3NzI3YjU4MDkxYTI0YmRjNjljMjVjM2YxZTAzOTg2ZDljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmHpewOEgNYUTvL/18pu93nobRXy/ i46b6cbVjPNbg/myBdwXGP8Ajvjmyauar0vKTWOl0JBbsbk0xwjMEvwtktvGl602 e9nOM638CH/89Qg1OryaCKZnUWb/Xj+4uQbET3h7+UD4pFgwcfvG7Cps8+q6+8gW vTLpuiLasrwRTNJo8KJp4UhZFdlXkQiqVd2gaIFDltfRcwsfs3QVagm7X+puwMun UwKtvi6UmCsSEylbRo9zhIGs4ogaMtRZ2gBJRIGI85raYtV8RNmUxTZU40uhWj2F ICW8GsHr6O57CZ4DpPoLQsXClGlpQ7jkYigLX67RyiCH03ESHv/Q3CLYWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCxi1ncntYCRokvcacJcPx4DmG2cMB8GA1UdIwQY MBaAFKCX1qLPQogNvr9CoyUZB6IckaSlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0pmV29zOUNpQTItdjBLakpSa0hvaHlScEtVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS80YzJiNjgtODE4Yi00OTAyLWI0MmYt NmZjYWYyNzI5YmU1LzEvb0pmV29zOUNpQTItdjBLakpSa0hvaHlScEtVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS80YzJiNjgtODE4Yi00OTAyLWI0MmYtNmZjYWYyNzI5YmU1 LzEvb0pmV29zOUNpQTItdjBLakpSa0hvaHlScEtVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWUeSKonN e9Is7DjGSDYMFleYyyOBXM6jqR3LgMDK5gG/u3CgQw2F3vJiwgWZSTXH/LmI+zWK 6MBZfCsyUjdLpMBNCTkhzPCiX0LAkHt7gSxWAdzt/w/Pr/6WBaMElvsuh/crkjFM HOV+Gt9sDvfZ3k8EYDU/2sOs/9LLAq3MWSaXLLtB2uMSmammkuRLp3DUfiitTCXr mLLYEjsnHv3Uh2ITG18fAI4OjVlOHFcFZGlrTMgLu5kdqeTiGjcx5IFjEcJE94UB GQ6c74FyEfaek8+4FqV58xgR+5VXXj/j2XtjHqIbn01RfkYki2WRpvGyXIsgjEeK XmjYS1bMAe73fg== -----END CERTIFICATE-----Generated at Sat Dec 6 12:31:45 2025 by rpki-client