This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft File: OxRinHZc4axPaIlW47kPatjEtYI.mft (raw, json) Hash identifier: lpzSbnJ+RuxDQzzUoGqDJZsZX3mp/CrGTr0kBOwkMrc= Subject key identifier: 12:13:63:1A:2D:5A:52:08:D3:50:FB:7B:AB:E3:9E:FC:F9:8F:5A:32 Authority key identifier: 3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82 Certificate issuer: /CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582 Certificate serial: 019B1E3C5DE780CF1DBEDB84277C72A70E15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft Manifest number: 170C Signing time: Sun 14 Dec 2025 19:00:31 +0000 Manifest this update: Sun 14 Dec 2025 19:00:31 +0000 Manifest next update: Mon 15 Dec 2025 19:00:31 +0000 Files and hashes: 1: C_zGKKe9EmjFWVKBb9utgZ7LvBo.roa (hash: DBtQlC6QblgPpVW+sAN+YH267kvW3kiRyXFujtkor/8=) 2: OxRinHZc4axPaIlW47kPatjEtYI.crl (hash: UNSDiL4CHUysjb2lWqKmjD7PsDjHNM1I1w9D/SEVV+c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 19:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1e:3c:5d:e7:80:cf:1d:be:db:84:27:7c:72:a7:0e:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582 Validity Not Before: Dec 14 19:00:31 2025 GMT Not After : Dec 15 19:00:31 2025 GMT Subject: CN=1213631a2d5a5208d350fb7babe39efcf98f5a32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:43:05:99:04:61:c0:2f:f6:c5:c0:95:85:a5: 6a:e3:3c:4a:19:66:38:8f:a5:a7:08:3e:f2:fc:68: 8c:e1:7f:a2:11:3d:99:7b:db:ae:95:bf:a7:9f:33: 18:76:91:b1:5b:08:5a:52:2e:0a:2f:1a:46:dc:3f: d2:e7:98:c0:50:43:5d:f9:25:95:22:c1:e7:d2:f3: c6:42:9a:76:96:cd:a4:4a:9a:92:7d:7c:81:87:8b: af:5b:3d:76:58:20:50:c0:7c:c1:4c:70:cd:72:cf: 0d:7c:5c:20:43:27:a1:c0:e6:13:1c:44:93:65:a2: a5:01:7c:2a:22:f3:73:c9:73:6d:43:55:4f:52:ed: f0:f5:7c:ed:46:28:b8:7e:7e:75:6e:ed:08:a5:66: 65:62:1a:bb:d1:72:87:be:32:9d:67:10:ce:a6:fd: 63:90:7c:f6:f3:d4:f4:52:74:2e:03:a5:4b:d3:67: 5d:0d:e8:be:49:5f:31:e2:56:aa:96:b7:a2:b0:38: 7e:76:6f:24:2f:86:f2:59:9e:a8:b6:1b:49:16:30: f1:9a:00:72:e0:70:70:48:f8:86:c8:eb:1e:36:e2: fc:79:65:81:31:ef:a6:d6:d9:3f:c8:6f:12:ab:c2: 41:1c:22:6f:9d:89:e0:c9:08:e9:47:41:76:67:54: 15:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:13:63:1A:2D:5A:52:08:D3:50:FB:7B:AB:E3:9E:FC:F9:8F:5A:32 X509v3 Authority Key Identifier: keyid:3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:03:08:81:a9:9b:27:f2:8a:33:d3:78:28:69:ea:99:ee:19: ee:68:4e:ba:72:8e:ee:1b:34:8e:be:f1:6c:11:fe:c8:fc:44: 83:31:30:8c:69:2a:47:b3:97:91:06:0c:e3:fe:7a:4f:d5:2e: 3d:5e:d6:25:4c:4d:ea:8b:eb:16:40:32:37:41:2b:99:0d:da: 74:82:bd:d4:85:b4:ec:0c:39:81:72:e5:fc:0f:c4:50:9c:6a: 5c:d0:3a:b1:77:31:95:e9:58:f3:14:9c:e8:18:3f:07:ed:bd: 44:e9:d1:6a:6a:52:0f:fe:91:14:c4:a3:d5:59:f1:35:b6:fb: bc:72:4d:b7:d4:8d:d5:22:8c:eb:5e:dc:9b:cd:cf:a7:3c:e1: 23:cb:e2:e6:55:ba:fc:5d:05:91:88:ec:ad:c1:3e:c9:dd:8d: 9b:84:a3:99:d3:b9:2f:08:f3:e0:b1:d7:a0:e6:c7:bd:0f:7a: 07:70:c2:ee:4c:8f:e1:84:c4:ba:df:d3:f9:b7:74:a5:0e:4d: 6c:1d:68:8c:b5:16:a8:08:8b:9f:fc:12:ef:bf:54:85:d0:4b: 4f:f7:c7:98:0d:26:54:24:03:d4:7a:64:cb:51:92:12:dc:d4: 4c:50:d0:56:60:5f:90:9c:a6:7a:9b:00:39:c2:b0:30:3b:88: df:1f:39:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsePF3ngM8dvtuEJ3xypw4VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiMTQ2MjljNzY1Y2UxYWM0ZjY4ODk1NmUzYjkwZjZhZDhj NGI1ODIwHhcNMjUxMjE0MTkwMDMxWhcNMjUxMjE1MTkwMDMxWjAzMTEwLwYDVQQD EygxMjEzNjMxYTJkNWE1MjA4ZDM1MGZiN2JhYmUzOWVmY2Y5OGY1YTMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmEMFmQRhwC/2xcCVhaVq4zxKGWY4 j6WnCD7y/GiM4X+iET2Ze9uulb+nnzMYdpGxWwhaUi4KLxpG3D/S55jAUENd+SWV IsHn0vPGQpp2ls2kSpqSfXyBh4uvWz12WCBQwHzBTHDNcs8NfFwgQyehwOYTHEST ZaKlAXwqIvNzyXNtQ1VPUu3w9XztRii4fn51bu0IpWZlYhq70XKHvjKdZxDOpv1j kHz289T0UnQuA6VL02ddDei+SV8x4laqlreisDh+dm8kL4byWZ6othtJFjDxmgBy 4HBwSPiGyOseNuL8eWWBMe+m1tk/yG8Sq8JBHCJvnYngyQjpR0F2Z1QVYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBITYxotWlII01D7e6vjnvz5j1oyMB8GA1UdIwQY MBaAFDsUYpx2XOGsT2iJVuO5D2rYxLWCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3hSaW5IWmM0YXhQYUlsVzQ3a1BhdGpFdFlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9hMzdmOWMtMWU2YS00NjY1LWEwZTIt ZmUzMTEwMGQwODFmLzEvT3hSaW5IWmM0YXhQYUlsVzQ3a1BhdGpFdFlJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9hMzdmOWMtMWU2YS00NjY1LWEwZTItZmUzMTEwMGQwODFm LzEvT3hSaW5IWmM0YXhQYUlsVzQ3a1BhdGpFdFlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAwMIgamb J/KKM9N4KGnqme4Z7mhOunKO7hs0jr7xbBH+yPxEgzEwjGkqR7OXkQYM4/56T9Uu PV7WJUxN6ovrFkAyN0ErmQ3adIK91IW07Aw5gXLl/A/EUJxqXNA6sXcxlelY8xSc 6Bg/B+29ROnRampSD/6RFMSj1VnxNbb7vHJNt9SN1SKM617cm83PpzzhI8vi5lW6 /F0FkYjsrcE+yd2Nm4SjmdO5Lwjz4LHXoObHvQ96B3DC7kyP4YTEut/T+bd0pQ5N bB1ojLUWqAiLn/wS779UhdBLT/fHmA0mVCQD1Hpky1GSEtzUTFDQVmBfkJymepsA OcKwMDuI3x85vA== -----END CERTIFICATE-----Generated at Mon Dec 15 04:51:56 2025 by rpki-client