This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft File: of0WwkfPRm7tMaMEu48X-jIVqqo.mft (raw, json) Hash identifier: /pAPZM0Xt2qFs8OgEskHtLOvO2OHQJxYV01HYHIRTD8= Subject key identifier: FD:67:14:F9:54:48:C2:68:C4:ED:93:22:11:31:9E:24:BC:B3:36:91 Authority key identifier: A1:FD:16:C2:47:CF:46:6E:ED:31:A3:04:BB:8F:17:FA:32:15:AA:AA Certificate issuer: /CN=a1fd16c247cf466eed31a304bb8f17fa3215aaaa Certificate serial: 019B3C7F00783C3CFEB75DBFDFCDC90D77CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/of0WwkfPRm7tMaMEu48X-jIVqqo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft Manifest number: 1787 Signing time: Sat 20 Dec 2025 16:01:54 +0000 Manifest this update: Sat 20 Dec 2025 16:01:54 +0000 Manifest next update: Sun 21 Dec 2025 16:01:54 +0000 Files and hashes: 1: PIjwt9cncSl25mT3dJ9vyyH9P2g.roa (hash: AHd8tSkEey/Gb5PQrQUs/SSKNf7k6H4ql5Wspc/zuFo=) 2: of0WwkfPRm7tMaMEu48X-jIVqqo.crl (hash: m7c13LwSfezXJnGu3SqisaG8++irFTKK4R8hfijXPm4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.crl rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft rsync://rpki.ripe.net/repository/DEFAULT/of0WwkfPRm7tMaMEu48X-jIVqqo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:7f:00:78:3c:3c:fe:b7:5d:bf:df:cd:c9:0d:77:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1fd16c247cf466eed31a304bb8f17fa3215aaaa Validity Not Before: Dec 20 16:01:54 2025 GMT Not After : Dec 21 16:01:54 2025 GMT Subject: CN=fd6714f95448c268c4ed932211319e24bcb33691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a6:00:c2:3e:80:96:68:db:54:13:a5:9d:0f: 0e:2b:8a:c7:da:0a:b6:ef:be:07:1c:af:5e:28:94: 07:fd:7b:52:94:b9:ec:a3:32:8c:88:98:69:86:66: 9f:2b:46:3f:bb:84:ab:1a:7c:26:ae:8f:25:0f:75: 63:b2:eb:f8:f8:2a:de:ac:b8:94:62:6b:43:0b:ff: 73:95:69:7a:5e:9f:b2:ec:91:f8:81:28:0d:04:6c: 09:07:c8:5f:6d:37:21:42:59:d8:d3:4d:2e:2c:74: 58:55:0c:84:da:68:d3:1e:ac:96:34:2b:3c:7c:a7: 09:6d:5d:23:bc:e0:14:ed:19:28:68:29:bc:22:30: 5d:73:c3:12:92:8b:1d:f1:7a:df:13:07:df:7c:6f: f1:22:6a:b8:2d:03:7d:f4:f7:d0:de:8b:b2:fb:6a: e0:05:18:67:6e:0d:56:f9:ac:26:e8:0c:94:ee:5e: f7:c8:87:cd:85:f9:b1:67:67:4b:6d:4a:4a:d8:d1: ae:82:70:09:14:7a:e3:cd:53:fc:a7:e9:3a:34:b5: 18:bb:9c:c4:0c:d7:6c:07:ea:7f:ae:31:ee:8e:69: 6a:b7:ab:71:a1:65:88:8f:b1:4f:5b:b4:1f:3b:e2: df:37:6c:f1:c0:31:b7:2e:b9:1d:40:1e:9e:fe:bc: 13:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:67:14:F9:54:48:C2:68:C4:ED:93:22:11:31:9E:24:BC:B3:36:91 X509v3 Authority Key Identifier: keyid:A1:FD:16:C2:47:CF:46:6E:ED:31:A3:04:BB:8F:17:FA:32:15:AA:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/of0WwkfPRm7tMaMEu48X-jIVqqo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:f8:cd:f3:43:f1:0e:dc:a3:48:ab:9c:ca:77:dd:72:cf:90: 0e:a6:1c:b6:7b:9f:41:42:a9:38:58:95:ca:6a:20:11:9d:68: 53:a3:b5:34:99:d8:3b:ad:39:0e:26:87:e2:d5:fc:f3:53:62: bc:2b:6e:f9:e2:68:17:7c:89:5f:12:c4:9c:7a:45:18:fc:1f: c5:04:06:bc:ee:e2:a0:8b:18:56:c1:13:d8:47:47:0c:84:61: 6b:9a:5f:51:5b:99:bc:40:1b:9f:49:dc:71:6c:4c:2e:2c:5b: 93:05:68:ba:10:ab:5e:68:df:24:8e:16:62:20:59:2e:25:e6: ae:0e:5c:21:3b:5c:0b:fa:1a:e4:5c:24:4b:e8:2c:3d:57:b8: ca:af:8c:08:60:e1:91:3b:52:01:fc:7a:54:75:de:51:06:1a: 72:9c:31:39:19:a8:66:8f:33:18:89:9a:5b:a5:b4:aa:1e:8b: 09:91:94:ec:24:60:20:b1:5b:25:17:65:79:6f:8c:9a:34:29: 3c:a8:5e:36:15:61:38:24:be:e7:44:a4:7b:b5:68:13:85:fd: a1:fe:54:62:43:3f:8a:91:59:bf:cd:69:86:00:11:02:1d:4e: 43:69:b8:bb:cd:91:90:1b:44:ae:d4:22:90:9a:80:73:e5:d0: 61:21:28:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8fwB4PDz+t12/383JDXfLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExZmQxNmMyNDdjZjQ2NmVlZDMxYTMwNGJiOGYxN2ZhMzIx NWFhYWEwHhcNMjUxMjIwMTYwMTU0WhcNMjUxMjIxMTYwMTU0WjAzMTEwLwYDVQQD EyhmZDY3MTRmOTU0NDhjMjY4YzRlZDkzMjIxMTMxOWUyNGJjYjMzNjkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKYAwj6AlmjbVBOlnQ8OK4rH2gq2 774HHK9eKJQH/XtSlLnsozKMiJhphmafK0Y/u4SrGnwmro8lD3Vjsuv4+CrerLiU YmtDC/9zlWl6Xp+y7JH4gSgNBGwJB8hfbTchQlnY000uLHRYVQyE2mjTHqyWNCs8 fKcJbV0jvOAU7RkoaCm8IjBdc8MSkosd8XrfEwfffG/xImq4LQN99PfQ3ouy+2rg BRhnbg1W+awm6AyU7l73yIfNhfmxZ2dLbUpK2NGugnAJFHrjzVP8p+k6NLUYu5zE DNdsB+p/rjHujmlqt6txoWWIj7FPW7QfO+LfN2zxwDG3LrkdQB6e/rwTHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP1nFPlUSMJoxO2TIhExniS8szaRMB8GA1UdIwQY MBaAFKH9FsJHz0Zu7TGjBLuPF/oyFaqqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2YwV3drZlBSbTd0TWFNRXU0OFgtaklWcXFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9lMzAzN2YtMzM4Yi00NmYyLThmOTct NmNlZjFhYmFiM2ZjLzEvb2YwV3drZlBSbTd0TWFNRXU0OFgtaklWcXFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC9lMzAzN2YtMzM4Yi00NmYyLThmOTctNmNlZjFhYmFiM2Zj LzEvb2YwV3drZlBSbTd0TWFNRXU0OFgtaklWcXFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJPjN80Px DtyjSKucynfdcs+QDqYctnufQUKpOFiVymogEZ1oU6O1NJnYO605DiaH4tX881Ni vCtu+eJoF3yJXxLEnHpFGPwfxQQGvO7ioIsYVsET2EdHDIRha5pfUVuZvEAbn0nc cWxMLixbkwVouhCrXmjfJI4WYiBZLiXmrg5cITtcC/oa5FwkS+gsPVe4yq+MCGDh kTtSAfx6VHXeUQYacpwxORmoZo8zGImaW6W0qh6LCZGU7CRgILFbJRdleW+MmjQp PKheNhVhOCS+50Ske7VoE4X9of5UYkM/ipFZv81phgARAh1OQ2m4u82RkBtErtQi kJqAc+XQYSEoCw== -----END CERTIFICATE-----Generated at Sat Dec 20 18:11:51 2025 by rpki-client