This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json) Hash identifier: rTw1Ii19TqJ4/qxhVBjH+8NOmkk13T37bHiF8tbSZsE= Subject key identifier: C5:09:A2:06:E6:EE:78:16:0C:1D:C5:F2:DC:92:F3:BA:55:16:C3:84 Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2 Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2 Certificate serial: 019B21AC40DEECDEEDF6A5FEFDEC10CC27B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft Manifest number: 0744 Signing time: Mon 15 Dec 2025 11:01:35 +0000 Manifest this update: Mon 15 Dec 2025 11:01:35 +0000 Manifest next update: Tue 16 Dec 2025 11:01:35 +0000 Files and hashes: 1: 4sh0yYbT80cSrTPvdQEkGETfVo8.roa (hash: 7RnvvHQkkS8YaZiuCDpplhOJhAdwXKsdDZ03EF+NYdQ=) 2: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: GgfkI4uEcZSzLGg+cGYPdR/RigzxG0qWq7+u7AKSnSg=) 3: T3WVNDq5fB7durp2xzBnS3GvikA.roa (hash: yDIX+9j0VmuYreUTlBxWuulf2dZWF2rW9eLhkcZnsyo=) 4: UPULz0BbmOL6oB1Lvph6s81bIVc.roa (hash: KEGK8PJbSBsiHtUKaY1bLTWtxHt/0jD8x2QpGJMF8nk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 11:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:ac:40:de:ec:de:ed:f6:a5:fe:fd:ec:10:cc:27:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2 Validity Not Before: Dec 15 11:01:35 2025 GMT Not After : Dec 16 11:01:35 2025 GMT Subject: CN=c509a206e6ee78160c1dc5f2dc92f3ba5516c384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:92:7b:7f:6d:09:8b:f7:20:60:f9:5e:07:8f: 62:11:3f:9f:e9:99:43:b6:42:a5:3b:29:76:96:c4: a0:4f:1e:de:4f:c5:40:87:40:d8:25:53:13:48:00: 9f:ab:2a:38:ed:74:ca:76:5d:dc:97:58:e5:88:bf: 30:14:ae:35:99:9a:48:cb:c0:a1:ef:a3:95:d0:ff: be:33:b0:a5:57:81:f3:43:58:6a:3e:b0:78:5b:89: bb:f4:75:2c:96:82:5c:23:63:a2:ef:49:37:ae:b5: 52:fe:36:31:7f:a8:f7:71:a1:42:aa:a0:d9:5b:a5: bc:13:1d:da:8e:21:97:5c:ca:84:8d:bd:5d:ff:03: 7b:5b:7d:82:df:e7:a1:5e:a6:56:58:e9:e7:78:e8: 9a:89:38:58:ff:68:d5:00:a5:e9:0c:06:4c:63:47: 6c:ef:f6:14:81:c1:77:15:8b:e3:96:f7:ab:57:a0: b8:ab:14:ae:1b:d9:c8:94:95:53:9f:4e:26:39:78: 89:66:17:33:25:15:a8:3e:54:5d:da:7d:7e:6b:66: 85:da:0f:fc:97:6d:34:52:f3:39:b8:47:b7:b9:50: 8e:00:e3:7b:97:fc:53:72:0b:de:ff:0c:32:17:f3: 10:75:75:fb:fc:71:9c:08:26:ef:ce:93:67:e5:39: cb:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:09:A2:06:E6:EE:78:16:0C:1D:C5:F2:DC:92:F3:BA:55:16:C3:84 X509v3 Authority Key Identifier: keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:bd:ec:fd:17:fe:66:31:85:b8:8d:bf:56:34:e4:ee:73:77: 3d:30:af:28:9d:42:36:96:f7:8b:d8:b5:3a:d5:06:8e:56:c8: 0f:a6:9e:c4:1c:9b:95:d2:4b:e0:72:46:0f:5b:01:72:49:93: ad:50:f9:a9:bc:5a:38:cb:88:9e:92:4a:74:5e:d4:fb:d2:93: 5c:6a:d2:87:e5:6d:82:53:1e:8d:fe:3d:dd:6a:38:a2:23:ed: 86:69:9b:92:50:32:07:e6:0c:9f:64:12:97:a4:6a:d6:54:77: f9:1f:36:d0:0a:bf:ea:07:27:9d:ac:13:aa:00:0d:de:45:2e: 5d:8e:45:6f:d0:36:28:eb:ed:8d:54:6d:0f:d3:81:a6:31:e4: 09:53:79:d9:f6:bf:86:91:04:d5:c7:d5:0b:c6:13:51:1e:8d: 8a:13:8c:ad:bf:a5:2b:fa:f5:6e:f9:f0:42:47:e3:cb:49:f8: 27:3c:6c:3c:01:c3:1e:e4:0e:ec:fe:b9:6f:4a:30:56:73:a5: 4e:50:41:92:72:6f:47:8c:96:96:cf:99:5d:5d:f9:3c:5a:46: f7:e5:74:40:9f:de:f8:13:57:64:d2:b7:49:7d:40:ab:46:4a: 47:0a:0e:ad:27:23:57:aa:44:cd:3f:85:f5:3d:5b:c9:3f:59: fa:69:4e:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZshrEDe7N7t9qX+/ewQzCewMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhODM5OTM2YWVlZmYyODg2NzhlNzcyNjMzMDIwZmEyNTli ZDljZjIwHhcNMjUxMjE1MTEwMTM1WhcNMjUxMjE2MTEwMTM1WjAzMTEwLwYDVQQD EyhjNTA5YTIwNmU2ZWU3ODE2MGMxZGM1ZjJkYzkyZjNiYTU1MTZjMzg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/ZJ7f20Ji/cgYPleB49iET+f6ZlD tkKlOyl2lsSgTx7eT8VAh0DYJVMTSACfqyo47XTKdl3cl1jliL8wFK41mZpIy8Ch 76OV0P++M7ClV4HzQ1hqPrB4W4m79HUsloJcI2Oi70k3rrVS/jYxf6j3caFCqqDZ W6W8Ex3ajiGXXMqEjb1d/wN7W32C3+ehXqZWWOnneOiaiThY/2jVAKXpDAZMY0ds 7/YUgcF3FYvjlverV6C4qxSuG9nIlJVTn04mOXiJZhczJRWoPlRd2n1+a2aF2g/8 l200UvM5uEe3uVCOAON7l/xTcgve/wwyF/MQdXX7/HGcCCbvzpNn5TnLHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMUJogbm7ngWDB3F8tyS87pVFsOEMB8GA1UdIwQY MBaAFDqDmTau7/KIZ453JjMCD6JZvZzyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My81YzY3NDUtNzY4ZS00ZDYxLWI2MDQt ODM1ZjRlMzcyODNjLzEvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My81YzY3NDUtNzY4ZS00ZDYxLWI2MDQtODM1ZjRlMzcyODNj LzEvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp73s/Rf+ ZjGFuI2/VjTk7nN3PTCvKJ1CNpb3i9i1OtUGjlbID6aexBybldJL4HJGD1sBckmT rVD5qbxaOMuInpJKdF7U+9KTXGrSh+VtglMejf493Wo4oiPthmmbklAyB+YMn2QS l6Rq1lR3+R820Aq/6gcnnawTqgAN3kUuXY5Fb9A2KOvtjVRtD9OBpjHkCVN52fa/ hpEE1cfVC8YTUR6NihOMrb+lK/r1bvnwQkfjy0n4JzxsPAHDHuQO7P65b0owVnOl TlBBknJvR4yWls+ZXV35PFpG9+V0QJ/e+BNXZNK3SX1Aq0ZKRwoOrScjV6pEzT+F 9T1byT9Z+mlOCw== -----END CERTIFICATE-----Generated at Mon Dec 15 19:25:52 2025 by rpki-client