This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/3eaeb4-fb99-4993-8122-e45350414ddf/1/OXBHadCH2f6PeQplVctPvvzSTTg.mft File: OXBHadCH2f6PeQplVctPvvzSTTg.mft (raw, json) Hash identifier: ktHrWTlVgtF8QQyQmc3bfiQyI5Hhsr+9LkWYjR1G08o= Subject key identifier: 92:F4:56:19:DF:D7:1B:9B:A8:B9:17:CD:B0:1C:B5:C5:6A:23:13:AA Authority key identifier: 39:70:47:69:D0:87:D9:FE:8F:79:0A:65:55:CB:4F:BE:FC:D2:4D:38 Certificate issuer: /CN=39704769d087d9fe8f790a6555cb4fbefcd24d38 Certificate serial: 019B378F202340B80F0A8C1C8CACCAEC7D2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXBHadCH2f6PeQplVctPvvzSTTg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/3eaeb4-fb99-4993-8122-e45350414ddf/1/OXBHadCH2f6PeQplVctPvvzSTTg.mft Manifest number: 043A Signing time: Fri 19 Dec 2025 17:01:25 +0000 Manifest this update: Fri 19 Dec 2025 17:01:25 +0000 Manifest next update: Sat 20 Dec 2025 17:01:25 +0000 Files and hashes: 1: 0Q3uyZY8RsqjLoJW6u1RmMpyPuo.roa (hash: pCjrPkrrHgp4o152zVnRaCrn6ENjsnKf49PVkjj9gyg=) 2: GvH_ld4kbG2WgWcG2cx_5y70SCI.roa (hash: aThEESBkBgawQBBj+8NWP1oT0rEWoC0jxTnO1rDLqhk=) 3: OXBHadCH2f6PeQplVctPvvzSTTg.crl (hash: iVVgFnHn7mFRkDMdmThb6tNf370c9I5ocLGx4wW9TRg=) 4: QMLVKgwADSsNbZRXcMe0xSA9x_A.roa (hash: Ml4zII8fhmnXo4EJyRA+v+Cfzf2PU3hifJXp1ALUjlM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/3eaeb4-fb99-4993-8122-e45350414ddf/1/OXBHadCH2f6PeQplVctPvvzSTTg.crl rsync://rpki.ripe.net/repository/DEFAULT/52/3eaeb4-fb99-4993-8122-e45350414ddf/1/OXBHadCH2f6PeQplVctPvvzSTTg.mft rsync://rpki.ripe.net/repository/DEFAULT/OXBHadCH2f6PeQplVctPvvzSTTg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:8f:20:23:40:b8:0f:0a:8c:1c:8c:ac:ca:ec:7d:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39704769d087d9fe8f790a6555cb4fbefcd24d38 Validity Not Before: Dec 19 17:01:25 2025 GMT Not After : Dec 20 17:01:25 2025 GMT Subject: CN=92f45619dfd71b9ba8b917cdb01cb5c56a2313aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:38:08:ef:72:f2:bf:a6:b1:17:16:8d:3e:62: 26:b6:e6:dd:e6:9a:3c:5a:22:47:7d:6c:84:8e:58: 3d:20:70:c6:5f:69:82:9d:15:4f:9a:2a:51:8f:80: fb:80:13:1c:98:3e:43:1a:78:1c:42:1a:da:2d:51: 28:57:f7:2e:d9:0a:35:99:41:4b:ea:55:e8:b4:90: e0:2a:4c:f2:22:e2:b9:0f:3d:75:7f:49:19:71:6c: 88:e0:63:6a:3e:aa:23:d3:c9:ff:76:ca:1f:c9:83: 86:70:a5:78:d0:bc:50:a4:c2:93:ce:04:c3:b6:76: f2:c0:11:34:55:50:16:95:fa:08:6e:79:6d:6e:f6: b0:c2:a6:ad:95:0f:5d:86:19:82:5b:56:48:df:80: 4f:0e:98:59:92:53:a9:aa:94:79:0f:bd:51:98:e4: 31:49:8d:e7:5d:65:ff:e2:02:71:56:2a:d5:12:4e: 6a:9c:e0:03:a5:22:fe:6e:7c:a8:db:6c:3b:9a:18: e7:16:52:84:c8:ff:6f:ea:a8:c1:b1:68:f5:10:1a: c6:53:7a:03:35:c4:25:74:75:89:15:cd:2a:e2:bc: 83:1e:09:60:93:e5:e4:85:f7:c2:31:71:e1:9a:12: 74:4f:31:7f:45:2d:d7:09:f5:bb:32:e1:f5:4b:2f: 8a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F4:56:19:DF:D7:1B:9B:A8:B9:17:CD:B0:1C:B5:C5:6A:23:13:AA X509v3 Authority Key Identifier: keyid:39:70:47:69:D0:87:D9:FE:8F:79:0A:65:55:CB:4F:BE:FC:D2:4D:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXBHadCH2f6PeQplVctPvvzSTTg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/3eaeb4-fb99-4993-8122-e45350414ddf/1/OXBHadCH2f6PeQplVctPvvzSTTg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/3eaeb4-fb99-4993-8122-e45350414ddf/1/OXBHadCH2f6PeQplVctPvvzSTTg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:53:03:30:47:88:13:f0:a0:27:4a:36:00:09:69:7a:90:54: 87:4a:0b:76:5b:b9:2e:7e:73:00:27:04:8c:8e:90:11:8f:7a: dd:24:0c:8e:2b:f8:b3:f8:4d:f1:89:4b:61:87:fb:d8:48:eb: 81:e3:0f:9e:0d:64:bc:a8:e3:71:44:7a:9f:00:e9:f7:d6:18: 0c:94:17:fc:c7:ca:b5:5b:cc:8f:66:de:dc:8e:70:00:bd:e5: df:d5:91:25:aa:13:e5:21:94:ec:22:64:74:5e:27:66:9e:51: 9c:8d:bc:f4:f4:54:06:b5:e0:98:47:7a:5c:13:e2:72:85:30: 0d:c7:8f:23:5a:d1:7f:0b:f9:43:dd:fd:c6:8d:86:ba:f7:73: c3:7d:62:2c:b3:9a:fc:78:d7:b7:d2:f2:72:b6:eb:fb:78:0b: 78:71:23:da:77:c9:e6:56:57:6b:5e:4b:7f:2c:b7:76:af:0b: 7c:86:b0:36:7d:5d:2c:ee:93:4c:cc:48:2d:b7:0f:93:5f:3f: 2a:b3:a2:3b:f0:0c:6e:0d:40:55:15:e3:8d:f8:33:52:1b:cf: f2:bd:05:71:92:4a:38:7d:b6:69:15:c8:05:af:f8:f3:0b:75: 03:27:65:e3:45:4d:02:68:64:f0:05:ed:1c:f3:84:0d:6a:9c: cb:f7:76:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3jyAjQLgPCowcjKzK7H0vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5NzA0NzY5ZDA4N2Q5ZmU4Zjc5MGE2NTU1Y2I0ZmJlZmNk MjRkMzgwHhcNMjUxMjE5MTcwMTI1WhcNMjUxMjIwMTcwMTI1WjAzMTEwLwYDVQQD Eyg5MmY0NTYxOWRmZDcxYjliYThiOTE3Y2RiMDFjYjVjNTZhMjMxM2FhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqTgI73Lyv6axFxaNPmImtubd5po8 WiJHfWyEjlg9IHDGX2mCnRVPmipRj4D7gBMcmD5DGngcQhraLVEoV/cu2Qo1mUFL 6lXotJDgKkzyIuK5Dz11f0kZcWyI4GNqPqoj08n/dsofyYOGcKV40LxQpMKTzgTD tnbywBE0VVAWlfoIbnltbvawwqatlQ9dhhmCW1ZI34BPDphZklOpqpR5D71RmOQx SY3nXWX/4gJxVirVEk5qnOADpSL+bnyo22w7mhjnFlKEyP9v6qjBsWj1EBrGU3oD NcQldHWJFc0q4ryDHglgk+XkhffCMXHhmhJ0TzF/RS3XCfW7MuH1Sy+KuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJL0Vhnf1xubqLkXzbActcVqIxOqMB8GA1UdIwQY MBaAFDlwR2nQh9n+j3kKZVXLT7780k04MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1hCSGFkQ0gyZjZQZVFwbFZjdFB2dnpTVFRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8zZWFlYjQtZmI5OS00OTkzLTgxMjIt ZTQ1MzUwNDE0ZGRmLzEvT1hCSGFkQ0gyZjZQZVFwbFZjdFB2dnpTVFRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi8zZWFlYjQtZmI5OS00OTkzLTgxMjItZTQ1MzUwNDE0ZGRm LzEvT1hCSGFkQ0gyZjZQZVFwbFZjdFB2dnpTVFRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp1MDMEeI E/CgJ0o2AAlpepBUh0oLdlu5Ln5zACcEjI6QEY963SQMjiv4s/hN8YlLYYf72Ejr geMPng1kvKjjcUR6nwDp99YYDJQX/MfKtVvMj2be3I5wAL3l39WRJaoT5SGU7CJk dF4nZp5RnI289PRUBrXgmEd6XBPicoUwDcePI1rRfwv5Q939xo2Guvdzw31iLLOa /HjXt9Lycrbr+3gLeHEj2nfJ5lZXa15Lfyy3dq8LfIawNn1dLO6TTMxILbcPk18/ KrOiO/AMbg1AVRXjjfgzUhvP8r0FcZJKOH22aRXIBa/48wt1Aydl40VNAmhk8AXt HPOEDWqcy/d23A== -----END CERTIFICATE-----Generated at Fri Dec 19 20:28:13 2025 by rpki-client