This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft File: oiw84jcbnyHFfgw6V4fZWnNctQA.mft (raw, json) Hash identifier: xEu97RQTMt/4oIB4NLFcrV6csl+AR338Eqytpxv+uEM= Subject key identifier: 56:7C:6F:23:E6:58:68:F2:61:1E:59:23:47:83:DC:03:F8:0D:48:DB Authority key identifier: A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00 Certificate issuer: /CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500 Certificate serial: 019B5AF69DB255BBD63DB7C4F44F5956BDBE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft Manifest number: 1192 Signing time: Fri 26 Dec 2025 14:01:10 +0000 Manifest this update: Fri 26 Dec 2025 14:01:10 +0000 Manifest next update: Sat 27 Dec 2025 14:01:10 +0000 Files and hashes: 1: U4H4DXiB1R3t2sbazcIxIzp8LJM.roa (hash: d9YRAg9H/qZYSSHmjXFBkp2EkGuj36QH5Z/4fdmKOEA=) 2: oiw84jcbnyHFfgw6V4fZWnNctQA.crl (hash: IubIC37t8sxVoINs5HCRFu3ORP4qxErjmQapVYT9gNY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:f6:9d:b2:55:bb:d6:3d:b7:c4:f4:4f:59:56:bd:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500 Validity Not Before: Dec 26 14:01:10 2025 GMT Not After : Dec 27 14:01:10 2025 GMT Subject: CN=567c6f23e65868f2611e59234783dc03f80d48db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d9:84:c1:13:44:00:01:59:25:f2:88:a0:c9: 98:02:ad:bd:0e:ca:33:c9:2b:e3:7e:d2:06:a5:db: c1:25:76:a5:25:e5:36:6a:84:17:c6:62:47:0f:38: 6b:28:4e:6b:21:0c:77:37:60:ac:48:14:8b:9f:6b: 9f:58:64:16:54:23:16:59:ee:ee:84:67:3b:45:0c: e0:d5:fe:ec:07:3e:6b:1b:a0:cc:18:5b:d9:57:43: 76:38:df:03:94:86:e2:53:1c:87:25:bf:60:63:ce: ad:6f:7d:32:4e:d5:e5:ba:d1:44:cd:2d:25:c2:fd: 9e:16:f0:28:85:cd:7a:2b:2c:9b:ef:e4:8e:6c:21: 40:72:32:06:51:1d:bf:66:fe:ed:e7:19:ce:21:1f: 53:4b:3c:88:3d:be:1a:37:f7:00:d1:f5:a5:ed:d4: 2f:49:3b:d1:db:d3:0d:85:1b:c0:de:d5:45:a3:72: 9f:0a:29:6d:c0:f3:b7:a3:60:29:96:61:a9:39:81: 03:8c:84:0d:05:fa:9c:68:76:a4:ad:66:d6:c2:2c: f7:b9:45:96:6f:5e:de:e2:db:97:f1:69:52:4a:1a: 5a:2e:84:25:b7:a9:7e:d3:e9:c5:f3:fa:19:d3:6a: 7c:39:5f:eb:14:2c:f6:e3:cb:39:c4:fc:76:dd:32: b3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:7C:6F:23:E6:58:68:F2:61:1E:59:23:47:83:DC:03:F8:0D:48:DB X509v3 Authority Key Identifier: keyid:A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:a7:4c:c1:1d:c9:bd:85:3d:2e:ac:f5:f4:e5:68:b3:92:a9: f4:84:77:db:d9:a8:34:99:02:c9:a1:1c:5f:e2:13:83:0b:02: 72:d5:d1:81:05:37:c5:e2:a9:23:32:88:32:32:8a:ca:1b:40: 12:06:0a:ff:b8:11:4d:af:c2:13:91:3f:75:be:54:70:3b:29: 09:a7:62:76:b7:f4:28:1f:fe:53:94:86:b1:cc:ae:22:f8:7e: 9d:15:cc:ae:95:0e:e5:70:68:3c:3a:e5:25:3a:95:10:78:cc: df:cf:f1:c4:ac:a8:cf:31:bd:8d:fc:2c:dc:a8:aa:24:2f:96: ea:0c:aa:ca:f7:50:15:5c:4d:11:88:3a:be:62:9f:07:42:4a: 0f:af:89:df:3b:37:cc:18:2d:47:59:0a:8a:de:d9:b7:7c:da: 13:47:4e:b6:0a:cd:58:b5:f7:44:21:a8:ee:9d:e1:ff:29:af: d4:a6:be:a8:5b:a4:79:e4:10:f2:95:dd:84:64:34:3e:da:02: 23:aa:34:80:b3:1f:ee:14:72:48:97:95:43:cf:fb:0d:af:4e: cb:b5:6f:57:a5:7f:77:ee:99:fe:42:72:cb:28:b1:f4:0b:b8: 72:59:98:f4:bf:7c:e4:8d:5d:82:8a:0a:85:8b:f8:aa:33:38: f9:49:15:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZta9p2yVbvWPbfE9E9ZVr2+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyMmMzY2UyMzcxYjlmMjFjNTdlMGMzYTU3ODdkOTVhNzM1 Y2I1MDAwHhcNMjUxMjI2MTQwMTEwWhcNMjUxMjI3MTQwMTEwWjAzMTEwLwYDVQQD Eyg1NjdjNmYyM2U2NTg2OGYyNjExZTU5MjM0NzgzZGMwM2Y4MGQ0OGRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo9mEwRNEAAFZJfKIoMmYAq29Dsoz ySvjftIGpdvBJXalJeU2aoQXxmJHDzhrKE5rIQx3N2CsSBSLn2ufWGQWVCMWWe7u hGc7RQzg1f7sBz5rG6DMGFvZV0N2ON8DlIbiUxyHJb9gY86tb30yTtXlutFEzS0l wv2eFvAohc16Kyyb7+SObCFAcjIGUR2/Zv7t5xnOIR9TSzyIPb4aN/cA0fWl7dQv STvR29MNhRvA3tVFo3KfCiltwPO3o2AplmGpOYEDjIQNBfqcaHakrWbWwiz3uUWW b17e4tuX8WlSShpaLoQlt6l+0+nF8/oZ02p8OV/rFCz248s5xPx23TKzHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFZ8byPmWGjyYR5ZI0eD3AP4DUjbMB8GA1UdIwQY MBaAFKIsPOI3G58hxX4MOleH2VpzXLUAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2l3ODRqY2JueUhGZmd3NlY0ZlpXbk5jdFFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy81MDZlYzgtMTUwZi00Mjc1LWFjMDUt MDUzOTNmMmIzYTQ3LzEvb2l3ODRqY2JueUhGZmd3NlY0ZlpXbk5jdFFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy81MDZlYzgtMTUwZi00Mjc1LWFjMDUtMDUzOTNmMmIzYTQ3 LzEvb2l3ODRqY2JueUhGZmd3NlY0ZlpXbk5jdFFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoadMwR3J vYU9Lqz19OVos5Kp9IR329moNJkCyaEcX+ITgwsCctXRgQU3xeKpIzKIMjKKyhtA EgYK/7gRTa/CE5E/db5UcDspCadidrf0KB/+U5SGscyuIvh+nRXMrpUO5XBoPDrl JTqVEHjM38/xxKyozzG9jfws3KiqJC+W6gyqyvdQFVxNEYg6vmKfB0JKD6+J3zs3 zBgtR1kKit7Zt3zaE0dOtgrNWLX3RCGo7p3h/ymv1Ka+qFukeeQQ8pXdhGQ0PtoC I6o0gLMf7hRySJeVQ8/7Da9Oy7VvV6V/d+6Z/kJyyyix9Au4clmY9L985I1dgooK hYv4qjM4+UkVaQ== -----END CERTIFICATE-----Generated at Fri Dec 26 16:03:51 2025 by rpki-client