This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.mft File: ojIkxQF9NOzcKNDPNkQtZb754KA.mft (raw, json) Hash identifier: eRT7NYvYvrKL7KQsUmoDA0NFtXERLhB0ocN2I7SsuQ4= Subject key identifier: DC:5D:4B:6B:BE:8C:A0:07:A4:C3:5A:27:9C:75:06:44:04:53:01:7F Authority key identifier: A2:32:24:C5:01:7D:34:EC:DC:28:D0:CF:36:44:2D:65:BE:F9:E0:A0 Certificate issuer: /CN=a23224c5017d34ecdc28d0cf36442d65bef9e0a0 Certificate serial: 019B32687E6C93E389F95963D4DD4A566458 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ojIkxQF9NOzcKNDPNkQtZb754KA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.mft Manifest number: 178C Signing time: Thu 18 Dec 2025 17:01:07 +0000 Manifest this update: Thu 18 Dec 2025 17:01:07 +0000 Manifest next update: Fri 19 Dec 2025 17:01:07 +0000 Files and hashes: 1: bEhBHj_5ND7DPkcxJc-eHtfnjVE.roa (hash: q7DP36VzuoeI79R3/z9nukbV52RDnraBhFmpjcuFOJ0=) 2: fUWog8dQyKlZmDz3Jt4aoMe12ZM.roa (hash: m7C2vWzzKK+0unJuovK786RQ7kI+1mqtBwzlHAjE+E0=) 3: ojIkxQF9NOzcKNDPNkQtZb754KA.crl (hash: SYBYPDJVbSQ8c+ewFCgsEKVC2eMtVI5KXxHLivBroYs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.mft rsync://rpki.ripe.net/repository/DEFAULT/ojIkxQF9NOzcKNDPNkQtZb754KA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 17:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:68:7e:6c:93:e3:89:f9:59:63:d4:dd:4a:56:64:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a23224c5017d34ecdc28d0cf36442d65bef9e0a0 Validity Not Before: Dec 18 17:01:07 2025 GMT Not After : Dec 19 17:01:07 2025 GMT Subject: CN=dc5d4b6bbe8ca007a4c35a279c7506440453017f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c5:de:d7:b8:67:17:4f:ca:c7:b8:f8:79:5c: 01:2a:4f:d8:47:04:ba:ef:9d:7b:e9:c9:31:7e:6e: 5d:40:43:3e:2f:b6:a2:bb:b7:9d:33:43:f6:3b:d0: 0d:0e:38:1b:31:4a:94:9a:45:63:dd:67:80:54:e3: ef:fd:f4:7c:f9:b3:8b:d5:94:ad:3f:50:98:36:d0: c4:0d:46:26:aa:55:e9:bb:d3:0d:1b:d5:48:2d:7b: fa:a0:d7:6d:2a:4f:21:78:92:74:11:d9:23:08:70: 8c:50:15:83:2d:36:f0:0e:1e:47:cb:c7:34:47:f4: 50:98:ef:3d:e1:3c:7c:e8:47:c9:ba:cb:0c:ae:6b: e1:1e:f2:8d:1c:b1:51:e0:4a:2e:2c:7d:13:a3:61: e9:6c:e0:f8:52:47:56:b2:ee:2b:01:1b:06:ec:ec: 20:da:a0:f1:36:87:9e:b2:d4:0d:ca:83:f1:8d:e6: cb:db:5b:22:98:a7:95:8e:29:17:63:8b:f0:fb:f7: 45:99:05:97:0d:93:eb:d5:4e:49:bb:df:61:da:9d: 86:ab:62:3b:da:e3:e5:6c:26:c1:82:64:00:d3:52: c5:68:2a:e8:d6:c4:30:b0:fd:1f:81:70:13:91:7f: 9f:33:9d:4e:a4:87:10:46:db:ff:3a:10:a1:f8:a5: 8a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:5D:4B:6B:BE:8C:A0:07:A4:C3:5A:27:9C:75:06:44:04:53:01:7F X509v3 Authority Key Identifier: keyid:A2:32:24:C5:01:7D:34:EC:DC:28:D0:CF:36:44:2D:65:BE:F9:E0:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ojIkxQF9NOzcKNDPNkQtZb754KA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/227d14-d751-4573-9919-fec8a80ed233/1/ojIkxQF9NOzcKNDPNkQtZb754KA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:71:1a:0d:1a:6c:c4:aa:27:fb:60:57:db:29:68:31:91:9f: a7:bd:c4:a4:78:86:70:d1:4b:60:4f:50:45:81:9b:68:fa:63: e1:39:ee:3b:3b:75:71:7d:22:d7:f3:cc:8c:0c:d2:0c:5e:eb: 60:3b:c8:d2:4d:e1:7d:35:29:c9:f9:8f:52:5b:c1:23:a3:85: 22:6d:b3:c0:08:0f:b5:17:98:f3:ff:e6:1c:c3:05:4d:30:34: 0d:f4:b5:90:80:cd:4a:b4:9f:ca:30:18:ed:d6:63:6e:e1:c0: 02:84:b4:b9:7a:02:32:0d:3d:58:d9:19:aa:76:4c:be:11:02: 15:00:aa:75:97:7e:1c:ee:a3:96:75:c7:f2:47:d8:25:7f:a2: 2e:fc:db:02:40:8d:5f:c2:9e:03:e8:39:c4:b9:a5:6c:87:c3: af:ac:a4:17:2e:c2:c1:29:5e:2c:ad:ac:19:88:81:a5:66:7c: 35:55:06:72:29:77:ec:59:18:d0:26:23:7d:22:50:8b:68:bb: e7:33:c4:25:29:89:2c:23:a7:bf:d5:24:68:00:90:ab:df:b7: 35:f3:d8:e7:a6:76:82:70:36:d8:4b:5c:64:05:89:1e:4e:7e: 8f:66:5a:2b:ad:d2:61:b4:87:40:31:cd:68:16:af:58:79:95: 09:01:ae:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsyaH5sk+OJ+Vlj1N1KVmRYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyMzIyNGM1MDE3ZDM0ZWNkYzI4ZDBjZjM2NDQyZDY1YmVm OWUwYTAwHhcNMjUxMjE4MTcwMTA3WhcNMjUxMjE5MTcwMTA3WjAzMTEwLwYDVQQD EyhkYzVkNGI2YmJlOGNhMDA3YTRjMzVhMjc5Yzc1MDY0NDA0NTMwMTdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApsXe17hnF0/Kx7j4eVwBKk/YRwS6 75176ckxfm5dQEM+L7aiu7edM0P2O9ANDjgbMUqUmkVj3WeAVOPv/fR8+bOL1ZSt P1CYNtDEDUYmqlXpu9MNG9VILXv6oNdtKk8heJJ0EdkjCHCMUBWDLTbwDh5Hy8c0 R/RQmO894Tx86EfJussMrmvhHvKNHLFR4EouLH0To2HpbOD4UkdWsu4rARsG7Owg 2qDxNoeestQNyoPxjebL21simKeVjikXY4vw+/dFmQWXDZPr1U5Ju99h2p2Gq2I7 2uPlbCbBgmQA01LFaCro1sQwsP0fgXATkX+fM51OpIcQRtv/OhCh+KWKWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNxdS2u+jKAHpMNaJ5x1BkQEUwF/MB8GA1UdIwQY MBaAFKIyJMUBfTTs3CjQzzZELWW++eCgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2pJa3hRRjlOT3pjS05EUE5rUXRaYjc1NEtBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8yMjdkMTQtZDc1MS00NTczLTk5MTkt ZmVjOGE4MGVkMjMzLzEvb2pJa3hRRjlOT3pjS05EUE5rUXRaYjc1NEtBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi8yMjdkMTQtZDc1MS00NTczLTk5MTktZmVjOGE4MGVkMjMz LzEvb2pJa3hRRjlOT3pjS05EUE5rUXRaYjc1NEtBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE3EaDRps xKon+2BX2yloMZGfp73EpHiGcNFLYE9QRYGbaPpj4TnuOzt1cX0i1/PMjAzSDF7r YDvI0k3hfTUpyfmPUlvBI6OFIm2zwAgPtReY8//mHMMFTTA0DfS1kIDNSrSfyjAY 7dZjbuHAAoS0uXoCMg09WNkZqnZMvhECFQCqdZd+HO6jlnXH8kfYJX+iLvzbAkCN X8KeA+g5xLmlbIfDr6ykFy7CwSleLK2sGYiBpWZ8NVUGcil37FkY0CYjfSJQi2i7 5zPEJSmJLCOnv9UkaACQq9+3NfPY56Z2gnA22EtcZAWJHk5+j2ZaK63SYbSHQDHN aBavWHmVCQGuZw== -----END CERTIFICATE-----Generated at Fri Dec 19 01:56:13 2025 by rpki-client