This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft File: OUKesL2HA74uXwrMwoG_IhYEsM4.mft (raw, json) Hash identifier: xgiZ3caoTi5J1T859II+JqzyQuTiny9SB2oRY02zbLM= Subject key identifier: 25:7E:53:6E:1B:59:46:63:F5:1F:8B:A5:7D:07:6A:80:77:73:A8:9D Authority key identifier: 39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE Certificate issuer: /CN=39429eb0bd8703be2e5f0accc281bf221604b0ce Certificate serial: 019B59AC95E084913E66BA071FF50E6FCA45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft Manifest number: 08B3 Signing time: Fri 26 Dec 2025 08:00:41 +0000 Manifest this update: Fri 26 Dec 2025 08:00:41 +0000 Manifest next update: Sat 27 Dec 2025 08:00:41 +0000 Files and hashes: 1: AspvYduc_Jb9y8GXYBDLcC-_8EE.roa (hash: ensOUkmx91RQ9/R5jlP5oQpNE74zuacX+6PWKXjdOOE=) 2: OUKesL2HA74uXwrMwoG_IhYEsM4.crl (hash: FzfrzQsJWH18ESMM0wA7opmn4KZytvW8i9bGgDQbowc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ac:95:e0:84:91:3e:66:ba:07:1f:f5:0e:6f:ca:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39429eb0bd8703be2e5f0accc281bf221604b0ce Validity Not Before: Dec 26 08:00:41 2025 GMT Not After : Dec 27 08:00:41 2025 GMT Subject: CN=257e536e1b594663f51f8ba57d076a807773a89d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6a:05:45:92:01:79:e5:19:d0:6b:69:62:5b: ca:d5:14:99:71:bf:33:dd:71:16:1d:ee:eb:33:03: 0f:32:4b:80:f3:81:08:52:65:6f:39:ed:d2:13:b9: d9:03:4f:e8:63:4f:39:34:c7:ba:86:fe:d9:52:65: e3:df:4c:af:f8:86:0e:4b:ee:d8:14:01:51:bd:17: b0:d0:7a:47:2b:ad:b0:d4:b9:b0:31:37:c9:20:9b: 8e:fb:f6:77:55:91:e4:53:1b:6b:2b:a8:0d:ef:36: 66:62:58:c0:e3:96:8d:5a:0b:a3:37:0d:0d:86:7a: 90:b7:e5:a8:04:66:51:63:4a:f4:7a:5a:f8:eb:50: 5e:d5:42:12:09:cd:6d:e2:55:c5:9b:5b:d3:d9:94: 2d:07:42:28:c2:94:33:5c:02:26:8c:52:5e:13:56: 57:0a:16:f0:6d:b6:5b:34:9f:17:ba:6f:8f:5e:01: 6b:2b:a9:c6:8f:00:4e:00:11:b7:ab:49:f2:c0:8e: a9:4a:91:c7:a2:4a:b3:7c:c7:e0:32:2b:75:34:1a: de:49:b7:0e:57:45:91:da:20:14:7f:c3:d6:e9:bc: 7e:9b:6e:7a:d6:d1:f9:23:e6:ef:15:ef:a1:e6:58: c9:be:27:fd:37:cb:25:50:4d:0f:10:06:eb:f5:85: cd:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:7E:53:6E:1B:59:46:63:F5:1F:8B:A5:7D:07:6A:80:77:73:A8:9D X509v3 Authority Key Identifier: keyid:39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:a7:73:9b:9a:2d:81:3f:ea:6a:9d:6f:6a:0e:76:0d:47:1f: 5c:19:2b:9d:fd:05:52:9b:87:62:49:89:05:78:dc:66:27:3c: 2e:80:49:45:01:38:fc:7f:29:c0:19:b5:1c:f4:98:3c:6a:34: 14:c7:b1:2a:2d:32:b8:cb:a3:8c:47:1b:d9:8b:a0:84:92:f7: 39:78:45:85:9c:aa:30:2c:91:72:6d:88:90:7f:6e:a1:47:0a: 6c:6b:93:71:7f:91:a2:2e:f0:1d:f5:52:58:38:e5:be:0c:0d: 78:7d:67:6d:e0:35:2c:5a:11:cf:cf:7e:d7:25:c6:81:31:0a: a0:1a:fa:56:76:7b:84:34:04:cc:8f:5c:ae:5f:24:6d:09:fd: 4c:68:bc:d4:04:1b:78:89:28:19:24:2b:fb:af:aa:0b:c2:d1: 04:0f:cf:7a:e2:3b:25:7e:5a:00:42:ff:18:24:07:e6:b0:3f: 53:09:c0:b1:56:18:06:8b:aa:74:76:8c:ed:08:a5:40:45:7a: 11:6b:a8:20:1a:59:fa:03:7a:74:2e:f2:33:ae:90:33:75:80: 16:1c:39:b8:71:d2:69:e3:6c:74:3e:92:f6:62:19:34:18:34: 3a:84:df:ad:be:d9:8d:c3:3c:63:ff:5d:70:ab:88:64:e9:2a: 25:77:f7:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZrJXghJE+ZroHH/UOb8pFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5NDI5ZWIwYmQ4NzAzYmUyZTVmMGFjY2MyODFiZjIyMTYw NGIwY2UwHhcNMjUxMjI2MDgwMDQxWhcNMjUxMjI3MDgwMDQxWjAzMTEwLwYDVQQD EygyNTdlNTM2ZTFiNTk0NjYzZjUxZjhiYTU3ZDA3NmE4MDc3NzNhODlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWoFRZIBeeUZ0GtpYlvK1RSZcb8z 3XEWHe7rMwMPMkuA84EIUmVvOe3SE7nZA0/oY085NMe6hv7ZUmXj30yv+IYOS+7Y FAFRvRew0HpHK62w1LmwMTfJIJuO+/Z3VZHkUxtrK6gN7zZmYljA45aNWgujNw0N hnqQt+WoBGZRY0r0elr461Be1UISCc1t4lXFm1vT2ZQtB0IowpQzXAImjFJeE1ZX ChbwbbZbNJ8Xum+PXgFrK6nGjwBOABG3q0nywI6pSpHHokqzfMfgMit1NBreSbcO V0WR2iAUf8PW6bx+m2561tH5I+bvFe+h5ljJvif9N8slUE0PEAbr9YXNMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCV+U24bWUZj9R+LpX0HaoB3c6idMB8GA1UdIwQY MBaAFDlCnrC9hwO+Ll8KzMKBvyIWBLDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1VLZXNMMkhBNzR1WHdyTXdvR19JaFlFc000LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8wMWVhZmMtZDY1YS00YTc3LWJhNzMt ZjJjNDhmYWY3ZjNkLzEvT1VLZXNMMkhBNzR1WHdyTXdvR19JaFlFc000Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy8wMWVhZmMtZDY1YS00YTc3LWJhNzMtZjJjNDhmYWY3ZjNk LzEvT1VLZXNMMkhBNzR1WHdyTXdvR19JaFlFc000LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgqdzm5ot gT/qap1vag52DUcfXBkrnf0FUpuHYkmJBXjcZic8LoBJRQE4/H8pwBm1HPSYPGo0 FMexKi0yuMujjEcb2YughJL3OXhFhZyqMCyRcm2IkH9uoUcKbGuTcX+Roi7wHfVS WDjlvgwNeH1nbeA1LFoRz89+1yXGgTEKoBr6VnZ7hDQEzI9crl8kbQn9TGi81AQb eIkoGSQr+6+qC8LRBA/PeuI7JX5aAEL/GCQH5rA/UwnAsVYYBouqdHaM7QilQEV6 EWuoIBpZ+gN6dC7yM66QM3WAFhw5uHHSaeNsdD6S9mIZNBg0OoTfrb7ZjcM8Y/9d cKuIZOkqJXf3NA== -----END CERTIFICATE-----Generated at Fri Dec 26 15:46:35 2025 by rpki-client