This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json) Hash identifier: mSfTujToPryHDtKYVrFEj84Gx+YeQGzgJPu+fsZ/IJQ= Subject key identifier: A9:D5:F5:54:16:77:7F:93:AF:C8:D2:52:41:1D:27:31:5F:BD:42:83 Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2 Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2 Certificate serial: 019B1DCF3B4660996211654E4CD3AE0618F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft Manifest number: 0742 Signing time: Sun 14 Dec 2025 17:01:18 +0000 Manifest this update: Sun 14 Dec 2025 17:01:18 +0000 Manifest next update: Mon 15 Dec 2025 17:01:18 +0000 Files and hashes: 1: 4sh0yYbT80cSrTPvdQEkGETfVo8.roa (hash: 7RnvvHQkkS8YaZiuCDpplhOJhAdwXKsdDZ03EF+NYdQ=) 2: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: 4lBkoHfdWbQrCEr4QoqbLLJhsEXWZaHD/ufkMZ2Ca0M=) 3: T3WVNDq5fB7durp2xzBnS3GvikA.roa (hash: yDIX+9j0VmuYreUTlBxWuulf2dZWF2rW9eLhkcZnsyo=) 4: UPULz0BbmOL6oB1Lvph6s81bIVc.roa (hash: KEGK8PJbSBsiHtUKaY1bLTWtxHt/0jD8x2QpGJMF8nk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1d:cf:3b:46:60:99:62:11:65:4e:4c:d3:ae:06:18:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2 Validity Not Before: Dec 14 17:01:18 2025 GMT Not After : Dec 15 17:01:18 2025 GMT Subject: CN=a9d5f55416777f93afc8d252411d27315fbd4283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:82:62:24:30:48:e2:b7:ef:65:b7:9a:86:67: 64:a9:c7:40:c7:14:2c:93:12:a3:d7:eb:0f:2d:49: 28:ca:1f:27:15:77:1a:c7:30:29:be:2e:cd:ba:41: c1:76:a2:4a:17:54:a6:f3:50:1a:fd:00:47:ae:ee: 49:57:21:86:d4:98:8e:2c:12:13:e0:bc:89:20:43: 3f:3c:29:22:c8:1d:32:54:7f:3b:da:bc:13:76:7b: 05:60:de:d0:2a:12:02:9f:ba:cf:a5:1b:e1:b4:3b: d3:d8:0d:e9:74:93:47:2f:b3:bf:9d:bb:1e:c5:59: 6a:97:39:13:bd:f6:b8:57:06:ad:d7:78:eb:58:5f: e2:17:1f:55:95:5e:98:4f:a2:c9:20:dd:04:78:13: 2e:85:d2:b9:9b:17:02:c0:e1:4c:50:2a:cf:52:e3: 92:72:c3:f5:06:51:b5:db:98:49:c1:64:9d:ef:9f: 71:ec:e7:19:4d:02:6d:95:07:3d:4f:15:90:9d:fa: 33:ab:64:02:84:1d:7e:b6:2d:d4:26:a8:9f:c1:89: 19:c9:a2:f4:09:af:e6:bb:fa:ad:8e:35:08:d4:ff: 8b:d3:7d:b8:43:10:a3:86:1e:d7:dc:a4:13:0a:30: 89:f0:4b:cb:7d:7a:34:71:da:3b:af:d3:56:5d:d4: 2a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:D5:F5:54:16:77:7F:93:AF:C8:D2:52:41:1D:27:31:5F:BD:42:83 X509v3 Authority Key Identifier: keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:bd:c7:e7:df:f0:fa:2d:83:4b:67:b2:66:56:d9:01:e7:1d: d8:da:c4:0c:ff:0a:9f:d5:9c:84:c1:d0:0e:ac:10:0e:38:72: 00:79:ad:9b:6f:50:6c:db:48:bf:8e:23:40:d8:9d:8d:ad:7b: 23:91:0f:68:09:43:c5:4c:1f:18:02:4b:99:a2:e0:5b:e1:f0: c7:58:70:7f:52:e6:56:79:28:2c:c5:4d:0d:fa:d4:8f:6e:92: dd:8a:e1:29:03:ae:0c:08:ca:31:64:62:c4:fd:7b:67:0d:5e: e1:10:26:9b:84:c8:28:bb:83:a3:22:12:d0:15:8a:6c:71:ad: 5c:12:c2:a6:41:df:1d:66:48:cb:a5:94:2d:d4:4c:d2:6d:1a: c0:30:6d:f2:51:57:ea:b0:f6:94:e9:df:79:63:a5:58:bd:db: 0c:2f:f3:fd:cc:8b:8c:b0:17:c5:3f:72:2a:cf:7b:6a:33:66: 19:e3:ed:05:2d:02:77:a6:77:2d:74:59:15:28:61:c8:45:22: bb:86:fa:c4:95:81:a0:89:ac:76:55:2f:f3:e2:10:91:c6:dd: 50:6b:6f:73:fb:b4:d1:c4:01:b4:36:e4:7f:13:80:3c:b5:de: 2a:fb:56:cc:65:34:b0:ec:13:b0:18:c2:e8:8b:b5:ae:b2:61: ec:a9:9b:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsdzztGYJliEWVOTNOuBhj2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhODM5OTM2YWVlZmYyODg2NzhlNzcyNjMzMDIwZmEyNTli ZDljZjIwHhcNMjUxMjE0MTcwMTE4WhcNMjUxMjE1MTcwMTE4WjAzMTEwLwYDVQQD EyhhOWQ1ZjU1NDE2Nzc3ZjkzYWZjOGQyNTI0MTFkMjczMTVmYmQ0MjgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA24JiJDBI4rfvZbeahmdkqcdAxxQs kxKj1+sPLUkoyh8nFXcaxzApvi7NukHBdqJKF1Sm81Aa/QBHru5JVyGG1JiOLBIT 4LyJIEM/PCkiyB0yVH872rwTdnsFYN7QKhICn7rPpRvhtDvT2A3pdJNHL7O/nbse xVlqlzkTvfa4Vwat13jrWF/iFx9VlV6YT6LJIN0EeBMuhdK5mxcCwOFMUCrPUuOS csP1BlG125hJwWSd759x7OcZTQJtlQc9TxWQnfozq2QChB1+ti3UJqifwYkZyaL0 Ca/mu/qtjjUI1P+L0324QxCjhh7X3KQTCjCJ8EvLfXo0cdo7r9NWXdQqIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKnV9VQWd3+Tr8jSUkEdJzFfvUKDMB8GA1UdIwQY MBaAFDqDmTau7/KIZ453JjMCD6JZvZzyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My81YzY3NDUtNzY4ZS00ZDYxLWI2MDQt ODM1ZjRlMzcyODNjLzEvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My81YzY3NDUtNzY4ZS00ZDYxLWI2MDQtODM1ZjRlMzcyODNj LzEvT29PWk5xN3Y4b2huam5jbU13SVBvbG05blBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjb3H59/w +i2DS2eyZlbZAecd2NrEDP8Kn9WchMHQDqwQDjhyAHmtm29QbNtIv44jQNidja17 I5EPaAlDxUwfGAJLmaLgW+Hwx1hwf1LmVnkoLMVNDfrUj26S3YrhKQOuDAjKMWRi xP17Zw1e4RAmm4TIKLuDoyIS0BWKbHGtXBLCpkHfHWZIy6WULdRM0m0awDBt8lFX 6rD2lOnfeWOlWL3bDC/z/cyLjLAXxT9yKs97ajNmGePtBS0Cd6Z3LXRZFShhyEUi u4b6xJWBoImsdlUv8+IQkcbdUGtvc/u00cQBtDbkfxOAPLXeKvtWzGU0sOwTsBjC 6Iu1rrJh7Kmb9Q== -----END CERTIFICATE-----Generated at Sun Dec 14 22:06:52 2025 by rpki-client