This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft File: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft (raw, json) Hash identifier: cf70EpQjiS0PHaY0/MJOo6+7AJu+lCMu0laZbqLDO3E= Subject key identifier: 5F:2D:59:A9:2C:D4:4F:96:D4:E0:13:21:27:E9:43:EE:11:CF:B8:8D Authority key identifier: 39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC Certificate issuer: /CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc Certificate serial: 019AF23FC25DB20F04AFF507F811D989D36D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft Manifest number: 04B8 Signing time: Sat 06 Dec 2025 06:00:55 +0000 Manifest this update: Sat 06 Dec 2025 06:00:55 +0000 Manifest next update: Sun 07 Dec 2025 06:00:55 +0000 Files and hashes: 1: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl (hash: RUTMW/AiTXt/j8MaCjJDbfHQNL9/gdhZ+zLz7bYCebE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:c2:5d:b2:0f:04:af:f5:07:f8:11:d9:89:d3:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc Validity Not Before: Dec 6 06:00:55 2025 GMT Not After : Dec 7 06:00:55 2025 GMT Subject: CN=5f2d59a92cd44f96d4e0132127e943ee11cfb88d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cb:3c:68:ad:a0:87:03:46:ef:96:7a:70:2d: 21:52:b6:a9:2f:f5:c3:4b:22:5d:7f:7e:55:cd:40: 0f:94:35:93:ea:a0:27:71:a8:98:d6:97:ba:45:65: 38:df:0d:25:77:63:04:43:cd:7d:4d:1a:b0:7b:6a: 62:27:ef:ec:8e:67:51:d4:6d:dc:66:0f:cb:ee:c3: 90:f6:ad:74:9f:c3:0c:96:71:1f:ae:35:70:de:3a: d4:7c:63:b5:80:64:84:4e:e3:c4:39:cb:c7:fd:42: e3:c2:41:5e:2e:b8:54:20:a8:9f:a5:c4:68:d5:ae: 05:8d:4a:86:82:a6:23:8a:c4:82:f2:34:62:ca:37: a7:84:fc:74:e2:27:a4:b7:4b:d1:8d:b4:c8:c6:4c: 61:21:09:26:c3:9c:4b:fc:73:37:5f:1d:6c:98:a0: ca:ee:d2:62:13:43:75:10:17:a2:0d:e4:4e:81:ff: 7d:7d:5b:84:dc:33:c7:50:ed:9c:2f:12:1f:db:0d: e5:50:62:16:83:67:e4:a6:50:4f:11:73:4f:94:50: 42:95:0c:6b:76:36:4d:ff:bb:7f:97:5d:32:bc:99: fe:66:f6:6d:fb:cf:18:17:a3:da:bb:38:88:64:d9: cd:9c:0e:5f:af:47:ba:25:ab:f0:f7:96:76:a1:fe: 4f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:2D:59:A9:2C:D4:4F:96:D4:E0:13:21:27:E9:43:EE:11:CF:B8:8D X509v3 Authority Key Identifier: keyid:39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:ec:22:41:02:93:58:6e:4c:ac:3c:2e:75:29:f5:70:7d:63: 4f:a7:ce:57:15:d2:de:ce:bb:a2:d0:c3:99:1d:6f:a1:a9:c8: 5d:c7:c2:7d:90:86:9a:fb:a4:87:78:24:58:85:db:e8:fa:69: e9:27:dc:95:a4:26:b7:87:ad:83:80:df:8c:73:58:20:85:2b: 81:2c:0c:c9:38:34:2e:5b:55:6b:84:ca:06:48:1e:41:41:b3: b6:a9:1a:01:f6:11:12:41:29:d8:5c:03:ec:70:5c:8a:a0:3b: 9c:bb:56:17:7b:db:ff:93:ce:7e:72:02:27:4d:2d:da:13:c1: fb:46:3a:36:20:70:5b:82:6e:e9:da:28:90:9d:2a:25:0b:61: 12:db:2a:47:5c:6e:3c:3b:c5:38:a8:8e:2e:25:1c:46:1c:04: 7e:f4:ec:a8:00:ba:35:00:e9:3c:7e:24:16:ca:cc:f3:85:cb: 5b:83:09:db:a5:30:d2:e5:d7:31:57:d6:0f:f0:25:a1:b7:22: 09:4d:78:dd:a5:5f:a8:32:75:02:a4:ed:3c:e8:fe:76:49:65: 97:0e:27:6b:4e:1e:d9:5d:b8:01:6e:b3:f7:3d:ca:ff:02:e1: fe:73:90:3e:4f:f9:a5:d3:4c:56:46:b6:4b:d7:16:e9:ae:2b: e3:f2:af:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP8Jdsg8Er/UH+BHZidNtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5ZWY0YWE1OTc3ZjFmMzcxMzNlNzMxMDgwOWZmZjg5MzVj MGM4YmMwHhcNMjUxMjA2MDYwMDU1WhcNMjUxMjA3MDYwMDU1WjAzMTEwLwYDVQQD Eyg1ZjJkNTlhOTJjZDQ0Zjk2ZDRlMDEzMjEyN2U5NDNlZTExY2ZiODhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8s8aK2ghwNG75Z6cC0hUrapL/XD SyJdf35VzUAPlDWT6qAncaiY1pe6RWU43w0ld2MEQ819TRqwe2piJ+/sjmdR1G3c Zg/L7sOQ9q10n8MMlnEfrjVw3jrUfGO1gGSETuPEOcvH/ULjwkFeLrhUIKifpcRo 1a4FjUqGgqYjisSC8jRiyjenhPx04iekt0vRjbTIxkxhIQkmw5xL/HM3Xx1smKDK 7tJiE0N1EBeiDeROgf99fVuE3DPHUO2cLxIf2w3lUGIWg2fkplBPEXNPlFBClQxr djZN/7t/l10yvJn+ZvZt+88YF6PauziIZNnNnA5fr0e6Javw95Z2of5PoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF8tWaks1E+W1OATISfpQ+4Rz7iNMB8GA1UdIwQY MBaAFDnvSqWXfx83Ez5zEICf/4k1wMi8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2U5S3BaZF9IemNUUG5NUWdKX19pVFhBeUx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xNDhmNzEtYWIyYy00NDA5LWFlMWYt ZTdkNWZjZTZiZmFjLzEvT2U5S3BaZF9IemNUUG5NUWdKX19pVFhBeUx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8xNDhmNzEtYWIyYy00NDA5LWFlMWYtZTdkNWZjZTZiZmFj LzEvT2U5S3BaZF9IemNUUG5NUWdKX19pVFhBeUx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJewiQQKT WG5MrDwudSn1cH1jT6fOVxXS3s67otDDmR1voanIXcfCfZCGmvukh3gkWIXb6Ppp 6SfclaQmt4etg4DfjHNYIIUrgSwMyTg0LltVa4TKBkgeQUGztqkaAfYREkEp2FwD 7HBciqA7nLtWF3vb/5POfnICJ00t2hPB+0Y6NiBwW4Ju6dookJ0qJQthEtsqR1xu PDvFOKiOLiUcRhwEfvTsqAC6NQDpPH4kFsrM84XLW4MJ26Uw0uXXMVfWD/Alobci CU143aVfqDJ1AqTtPOj+dklllw4na04e2V24AW6z9z3K/wLh/nOQPk/5pdNMVka2 S9cW6a4r4/Kvrg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:20:07 2025 by rpki-client