This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft File: odcYUzJOsGD7r8mIIzhgSZyWxTo.mft (raw, json) Hash identifier: bVe7jhNRZAd1oveogXS09b9gnvAllOARs5R2Qnw68SY= Subject key identifier: 22:2A:E1:F2:71:E6:0F:3E:F9:CA:70:92:A5:7D:0B:3B:13:3B:01:C7 Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a Certificate serial: 019AF31BE2CD2CF354ED6DA12E50DE690EA1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft Manifest number: 1446 Signing time: Sat 06 Dec 2025 10:01:22 +0000 Manifest this update: Sat 06 Dec 2025 10:01:22 +0000 Manifest next update: Sun 07 Dec 2025 10:01:22 +0000 Files and hashes: 1: 7F1fGgeaeQSGNxeZxHKehoCFDbE.roa (hash: G34mOFPeKp5+zztRKCCmLxDUMfqD5XJqmdch8xEkSoY=) 2: C8QSMz8GNoIQm4uSFWS26QwX4TU.roa (hash: NCS38C69vxkOze1iM8evBR20KFQKimFCiPTQOaoZSEg=) 3: XJPUj_synwIHQp7bRuj9018K67k.roa (hash: nLvY6PY+U32R2cW/5HWGZNjEV3iPA1E/ctSR2ZD+DlI=) 4: XZOzWNS9uSJXxdofEgbqQ-4LX8Q.roa (hash: +R0Sy7oAn0ABCK0E7oKA/ofkAMnGgDdtdmPnmJOjdTs=) 5: YCQuqCy9NuRyU0S6FabSa0c6NJs.roa (hash: z0MGBwlcQwzapOIPDSPyZ4kB4JdwESi59TmNtwz3tdw=) 6: luxlDaP5S8ObPuSdfGG5jYy9i5M.roa (hash: 77j6FmpQDyTfoFeeOD1e16nzr03VwpDOQuhMjxPM3Tg=) 7: odcYUzJOsGD7r8mIIzhgSZyWxTo.crl (hash: E1c6TMLNptQkg3eKdovFkYLWPZEYi5cyKqjidRcFfvI=) 8: v4n00KmIPMAeaXO1e4oehEUWYOs.roa (hash: 7qEK4cAhcKMrkHzInLLOjuudGbx99FNXFdW89sFY/Us=) 9: zQz3tWtapn8qKz4rYeWGGnS9boI.roa (hash: Oet1y32LyQ4if4pkKw3gO80qX4zMy1K2uegwxuTNvQs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:e2:cd:2c:f3:54:ed:6d:a1:2e:50:de:69:0e:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a Validity Not Before: Dec 6 10:01:22 2025 GMT Not After : Dec 7 10:01:22 2025 GMT Subject: CN=222ae1f271e60f3ef9ca7092a57d0b3b133b01c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:1c:18:6f:80:5a:7d:55:0d:4c:8d:1d:7c:15: 90:7d:04:6b:68:c2:b8:b9:d3:36:ac:4b:f9:5a:cc: 8c:b1:c7:f8:88:c6:8c:9e:95:9f:59:c4:fb:d5:36: 07:d7:6c:d7:aa:3e:b7:b3:23:bd:a6:22:82:5b:d2: 23:8a:88:0c:4e:49:fa:a9:47:a9:a7:ba:d8:6c:0b: 55:59:33:c9:90:d2:92:3b:62:66:ae:6a:43:9d:23: 38:fa:17:55:ad:12:b1:09:e1:94:e9:07:cb:bc:30: 20:a7:c1:d8:d7:5f:e2:41:d1:86:d5:61:47:af:8d: a2:f8:16:1d:59:00:10:77:d3:d7:8c:22:77:cf:64: 23:18:ab:d3:90:3a:3e:2d:c1:cc:51:4b:fd:1e:07: 5c:c6:26:05:38:c0:90:b4:ff:7c:c2:f9:f9:13:26: d7:02:66:32:49:77:cd:c4:17:45:08:88:53:90:e8: 8d:b2:36:06:8b:46:ce:8e:97:99:15:b7:4b:52:cc: f6:21:03:4f:bc:fe:95:93:0e:d8:b0:40:af:5e:0f: 11:0b:c0:14:a7:a7:29:36:39:0f:76:bc:ea:df:cf: e7:93:0a:71:05:ae:6c:0f:e8:40:6c:c6:2f:bd:59: b3:e0:3b:d1:63:82:de:3c:80:68:75:55:ba:73:37: 98:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:2A:E1:F2:71:E6:0F:3E:F9:CA:70:92:A5:7D:0B:3B:13:3B:01:C7 X509v3 Authority Key Identifier: keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:f3:80:22:8d:9f:25:36:38:31:16:42:1e:4c:c2:eb:5b:ad: 99:a8:92:ac:59:96:79:84:e9:79:2a:dc:74:ea:a6:f3:d1:03: 64:2b:24:73:a1:92:97:25:12:3a:f2:7a:da:c6:8a:5e:65:00: 04:dc:54:4f:b1:76:8b:3e:e2:59:1d:dd:e0:52:f2:ee:4d:02: 1f:6f:53:29:7f:c7:a4:15:69:10:7b:09:bf:8e:f2:5d:0e:20: b7:42:65:13:85:55:d5:a4:2d:4a:13:f7:69:16:dc:01:26:08: ea:e0:ed:ef:c8:1a:4e:c3:0b:40:51:55:c1:06:e2:ef:d9:b3: 7e:42:43:9e:48:0f:44:d8:fa:0c:7d:07:a6:3f:54:65:0c:48: 6f:09:34:00:ce:f3:7e:c1:78:b5:f3:75:ed:78:31:7d:ae:46: 68:62:7c:b1:03:4d:ce:3d:c8:cf:e3:11:58:40:5d:2d:4e:cc: d2:1a:84:7e:b3:7a:0b:36:d1:1d:85:a8:97:70:6e:93:d1:bb: e5:0d:b1:7b:58:b9:ee:8a:40:b0:1c:ea:4b:0d:b1:87:51:f3: 7f:e7:45:89:bd:43:94:62:9f:83:ca:6b:ed:d7:f4:21:6f:7a: d3:2b:47:cc:89:3b:d2:3f:87:f3:96:41:25:44:09:37:a8:65: 7b:7e:8e:d7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG+LNLPNU7W2hLlDeaQ6hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExZDcxODUzMzI0ZWIwNjBmYmFmYzk4ODIzMzg2MDQ5OWM5 NmM1M2EwHhcNMjUxMjA2MTAwMTIyWhcNMjUxMjA3MTAwMTIyWjAzMTEwLwYDVQQD EygyMjJhZTFmMjcxZTYwZjNlZjljYTcwOTJhNTdkMGIzYjEzM2IwMWM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5xwYb4BafVUNTI0dfBWQfQRraMK4 udM2rEv5WsyMscf4iMaMnpWfWcT71TYH12zXqj63syO9piKCW9IjiogMTkn6qUep p7rYbAtVWTPJkNKSO2JmrmpDnSM4+hdVrRKxCeGU6QfLvDAgp8HY11/iQdGG1WFH r42i+BYdWQAQd9PXjCJ3z2QjGKvTkDo+LcHMUUv9HgdcxiYFOMCQtP98wvn5EybX AmYySXfNxBdFCIhTkOiNsjYGi0bOjpeZFbdLUsz2IQNPvP6Vkw7YsECvXg8RC8AU p6cpNjkPdrzq38/nkwpxBa5sD+hAbMYvvVmz4DvRY4LePIBodVW6czeYSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCIq4fJx5g8++cpwkqV9CzsTOwHHMB8GA1UdIwQY MBaAFKHXGFMyTrBg+6/JiCM4YEmclsU6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2RjWVV6Sk9zR0Q3cjhtSUl6aGdTWnlXeFRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy83NjU2ZGItOTRhNS00NWJlLTk0MzUt NzA2MTM1NmJlZjFiLzEvb2RjWVV6Sk9zR0Q3cjhtSUl6aGdTWnlXeFRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy83NjU2ZGItOTRhNS00NWJlLTk0MzUtNzA2MTM1NmJlZjFi LzEvb2RjWVV6Sk9zR0Q3cjhtSUl6aGdTWnlXeFRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIPOAIo2f JTY4MRZCHkzC61utmaiSrFmWeYTpeSrcdOqm89EDZCskc6GSlyUSOvJ62saKXmUA BNxUT7F2iz7iWR3d4FLy7k0CH29TKX/HpBVpEHsJv47yXQ4gt0JlE4VV1aQtShP3 aRbcASYI6uDt78gaTsMLQFFVwQbi79mzfkJDnkgPRNj6DH0Hpj9UZQxIbwk0AM7z fsF4tfN17Xgxfa5GaGJ8sQNNzj3Iz+MRWEBdLU7M0hqEfrN6CzbRHYWol3Buk9G7 5Q2xe1i57opAsBzqSw2xh1Hzf+dFib1DlGKfg8pr7df0IW960ytHzIk70j+H85ZB JUQJN6hle36O1w== -----END CERTIFICATE-----Generated at Sat Dec 6 19:08:01 2025 by rpki-client