This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft File: oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft (raw, json) Hash identifier: vr/Xm6R6hyf6B8Z1stQHLtOXH7c70gO4e9OYDZZ5eZ4= Subject key identifier: 54:D8:4E:C6:A4:65:FB:0F:33:73:1F:84:7A:48:2E:48:01:FB:07:5F Authority key identifier: A3:23:E0:41:DD:45:96:53:33:E2:B1:47:4F:C5:0B:E2:F0:FA:95:0E Certificate issuer: /CN=a323e041dd45965333e2b1474fc50be2f0fa950e Certificate serial: 019B1EE187910377962E810EBD5F0142E41D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oyPgQd1FllMz4rFHT8UL4vD6lQ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft Manifest number: 0B89 Signing time: Sun 14 Dec 2025 22:00:55 +0000 Manifest this update: Sun 14 Dec 2025 22:00:55 +0000 Manifest next update: Mon 15 Dec 2025 22:00:55 +0000 Files and hashes: 1: oyPgQd1FllMz4rFHT8UL4vD6lQ4.crl (hash: 0YxXE+M6BtgBhgQLIG9AbZmItmF75Cgmb4/Pm6XRxlw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.crl rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft rsync://rpki.ripe.net/repository/DEFAULT/oyPgQd1FllMz4rFHT8UL4vD6lQ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 22:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1e:e1:87:91:03:77:96:2e:81:0e:bd:5f:01:42:e4:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a323e041dd45965333e2b1474fc50be2f0fa950e Validity Not Before: Dec 14 22:00:55 2025 GMT Not After : Dec 15 22:00:55 2025 GMT Subject: CN=54d84ec6a465fb0f33731f847a482e4801fb075f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0f:3e:a6:f5:d4:eb:e5:ff:1f:18:a3:06:26: ce:63:d0:d4:50:67:65:7d:30:63:52:2b:25:d7:f4: 60:4e:f9:90:8c:26:29:08:6d:b6:bc:a9:a7:74:14: db:9d:d5:d5:91:bd:0c:0d:fb:98:be:8a:c5:62:9b: e7:e5:ae:d1:88:41:fb:7c:1a:cc:be:39:94:c0:63: 8c:00:49:0b:d5:75:53:0f:1e:f3:29:c4:e0:f6:ac: c2:ad:31:ea:ee:ec:5c:d9:99:ce:b3:9c:21:cd:94: 3d:3f:32:f9:95:ae:20:62:42:ea:33:43:74:ea:16: 88:1e:67:c2:04:17:95:b9:4f:2a:b5:0a:a5:73:f7: 36:4d:c3:58:72:6c:51:6a:eb:e7:c1:fd:2c:ad:f6: 82:5a:50:e7:08:4b:4e:28:d5:62:e0:3e:a6:03:d3: 6c:3a:43:52:d2:34:a9:dd:ae:34:75:ca:77:88:d9: d9:10:cb:95:e0:d9:af:a7:32:66:ed:b9:bf:2b:5d: e1:08:2a:54:b5:00:f0:5c:ba:d5:e6:be:33:2d:fc: 77:f5:13:a6:34:4f:09:4a:db:16:ed:08:a8:b1:3d: 96:c4:f2:d9:60:0c:3d:a0:84:3a:34:1c:9a:59:28: 68:c9:aa:eb:be:af:31:8f:95:ae:32:db:ab:1d:11: 47:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:D8:4E:C6:A4:65:FB:0F:33:73:1F:84:7A:48:2E:48:01:FB:07:5F X509v3 Authority Key Identifier: keyid:A3:23:E0:41:DD:45:96:53:33:E2:B1:47:4F:C5:0B:E2:F0:FA:95:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oyPgQd1FllMz4rFHT8UL4vD6lQ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:de:af:57:ee:0f:ec:75:22:8d:21:ad:29:b3:90:7e:8a:21: e9:54:c8:fb:04:13:5f:01:a9:85:aa:7f:bd:8d:7b:cf:12:8f: f3:f1:db:ba:96:b9:30:d6:4f:f7:29:20:38:19:c0:e1:ac:c2: fa:9f:91:7a:3a:dc:d3:d1:00:e8:40:4f:d4:40:96:ca:e2:86: 80:9d:b1:75:12:6d:88:4d:2c:3f:d3:8a:0b:96:91:66:3f:bf: 22:76:22:01:e4:7b:14:53:9a:44:fb:1b:49:05:43:c8:dc:9f: 68:6e:c6:d5:3d:21:1c:8f:b6:8c:2e:ad:1c:30:5d:66:ff:cc: ad:04:33:8c:54:6e:9a:4d:f4:f4:1b:c1:a3:15:c2:54:f5:90: ba:bb:55:31:ed:44:f1:b0:85:bf:4c:57:8d:ac:79:41:67:97: 25:68:16:f5:71:21:5b:8a:d3:58:83:19:1f:1e:2b:ae:10:9a: db:a1:67:b6:3a:4d:e4:7d:2f:00:82:8d:8e:a6:b0:00:0d:a2: 24:ce:ad:9f:7a:46:c1:f3:26:4b:19:40:23:89:ca:59:bf:42: 14:79:17:8a:02:8f:98:6a:8f:df:a0:a3:aa:7f:ee:46:e6:84: fc:e3:04:13:30:12:43:37:cd:74:90:24:bb:57:32:79:0f:48: 4f:23:81:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZse4YeRA3eWLoEOvV8BQuQdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzMjNlMDQxZGQ0NTk2NTMzM2UyYjE0NzRmYzUwYmUyZjBm YTk1MGUwHhcNMjUxMjE0MjIwMDU1WhcNMjUxMjE1MjIwMDU1WjAzMTEwLwYDVQQD Eyg1NGQ4NGVjNmE0NjVmYjBmMzM3MzFmODQ3YTQ4MmU0ODAxZmIwNzVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyw8+pvXU6+X/HxijBibOY9DUUGdl fTBjUisl1/RgTvmQjCYpCG22vKmndBTbndXVkb0MDfuYvorFYpvn5a7RiEH7fBrM vjmUwGOMAEkL1XVTDx7zKcTg9qzCrTHq7uxc2ZnOs5whzZQ9PzL5la4gYkLqM0N0 6haIHmfCBBeVuU8qtQqlc/c2TcNYcmxRauvnwf0srfaCWlDnCEtOKNVi4D6mA9Ns OkNS0jSp3a40dcp3iNnZEMuV4NmvpzJm7bm/K13hCCpUtQDwXLrV5r4zLfx39ROm NE8JStsW7QiosT2WxPLZYAw9oIQ6NByaWShoyarrvq8xj5WuMturHRFHTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFTYTsakZfsPM3MfhHpILkgB+wdfMB8GA1UdIwQY MBaAFKMj4EHdRZZTM+KxR0/FC+Lw+pUOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3lQZ1FkMUZsbE16NHJGSFQ4VUw0dkQ2bFE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9lODMzOWUtZmQ2ZC00MDRkLWE2NGMt Y2FkYzUxNGFjZTcyLzEvb3lQZ1FkMUZsbE16NHJGSFQ4VUw0dkQ2bFE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9lODMzOWUtZmQ2ZC00MDRkLWE2NGMtY2FkYzUxNGFjZTcy LzEvb3lQZ1FkMUZsbE16NHJGSFQ4VUw0dkQ2bFE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATt6vV+4P 7HUijSGtKbOQfooh6VTI+wQTXwGphap/vY17zxKP8/Hbupa5MNZP9ykgOBnA4azC +p+Rejrc09EA6EBP1ECWyuKGgJ2xdRJtiE0sP9OKC5aRZj+/InYiAeR7FFOaRPsb SQVDyNyfaG7G1T0hHI+2jC6tHDBdZv/MrQQzjFRumk309BvBoxXCVPWQurtVMe1E 8bCFv0xXjax5QWeXJWgW9XEhW4rTWIMZHx4rrhCa26FntjpN5H0vAIKNjqawAA2i JM6tn3pGwfMmSxlAI4nKWb9CFHkXigKPmGqP36Cjqn/uRuaE/OMEEzASQzfNdJAk u1cyeQ9ITyOBow== -----END CERTIFICATE-----Generated at Mon Dec 15 04:59:40 2025 by rpki-client