This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft File: rkopxhOOLZPVSjYyi5TLH4o4Kms.mft (raw, json) Hash identifier: Fgeb54ngzHz7z0k8l6BL/j9EdeROM2YXpTx9gfSy/Tk= Subject key identifier: AA:32:D5:3B:8F:5F:7B:9E:68:CC:7B:73:2D:F2:03:9A:2D:4F:D1:BB Authority key identifier: AE:4A:29:C6:13:8E:2D:93:D5:4A:36:32:8B:94:CB:1F:8A:38:2A:6B Certificate issuer: /CN=ae4a29c6138e2d93d54a36328b94cb1f8a382a6b Certificate serial: 019ABB50A3EA13B5ED37BA12A5E3EA9235E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft Manifest number: 0C04 Signing time: Tue 25 Nov 2025 14:00:15 +0000 Manifest this update: Tue 25 Nov 2025 14:00:15 +0000 Manifest next update: Wed 26 Nov 2025 14:00:15 +0000 Files and hashes: 1: BrYhHrEUiC6KPPt0z5zIenofLis.roa (hash: DE5/RvrYo8fEFuVG34PaeU1d6iLiNdb+LH6pRfnNAg0=) 2: M2qfiHxlvyqX5khJIeCk4BAzw-M.roa (hash: 2wSt8AsR9BQPYP7f67EqXqK56sykUCRKKl1aHVsfKpw=) 3: rkopxhOOLZPVSjYyi5TLH4o4Kms.crl (hash: Iyg/SajAYPR2WVPmCimMKwLqHAKwyfo7qP/+UVYUQnk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 26 Nov 2025 14:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:bb:50:a3:ea:13:b5:ed:37:ba:12:a5:e3:ea:92:35:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae4a29c6138e2d93d54a36328b94cb1f8a382a6b Validity Not Before: Nov 25 14:00:15 2025 GMT Not After : Nov 26 14:00:15 2025 GMT Subject: CN=aa32d53b8f5f7b9e68cc7b732df2039a2d4fd1bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0e:de:95:1f:87:1b:8b:0a:07:91:cc:ed:d5: c3:89:f5:9a:81:c5:f4:61:b4:f5:e3:3e:c9:3e:b4: 21:7a:7b:4a:7f:9f:55:b5:7c:f8:b5:f1:b4:00:97: be:f4:24:f3:c0:5e:0c:ea:b0:39:36:b9:c8:38:44: 44:83:1f:d0:c6:c2:3a:d9:ce:e7:63:13:82:ad:95: b0:06:03:94:c4:93:e7:42:c5:7d:03:bd:38:c1:b6: d1:bc:e6:d4:da:41:69:42:12:58:90:f5:95:fe:fc: 44:da:1e:c6:0c:58:c8:ac:f2:cd:66:a6:3a:36:8e: 7e:ff:75:5f:56:cb:e9:f7:45:e7:5c:b0:77:84:9f: c5:c1:a1:8c:40:47:e3:75:8a:71:b9:cc:18:3f:af: 0c:07:d1:e9:29:ef:88:28:fb:42:dc:6a:03:97:67: 87:04:bd:f3:bc:0b:e4:22:5f:08:7a:88:36:77:c8: d9:80:c6:f5:fb:73:55:97:38:a7:4c:01:5e:e2:ed: 33:e2:46:8a:de:d8:80:ef:28:ea:4c:7a:24:73:ca: 69:47:af:f8:af:2b:7d:7c:8b:17:d1:4e:fd:9f:64: 86:f4:c1:42:cb:74:b6:05:c9:40:1e:3a:e1:43:ac: 34:5a:fe:94:1a:1f:b8:5e:27:9a:84:cd:9f:50:54: ce:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:32:D5:3B:8F:5F:7B:9E:68:CC:7B:73:2D:F2:03:9A:2D:4F:D1:BB X509v3 Authority Key Identifier: keyid:AE:4A:29:C6:13:8E:2D:93:D5:4A:36:32:8B:94:CB:1F:8A:38:2A:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:ca:d6:3e:f6:f2:37:6c:38:f2:1b:ef:fd:d2:43:87:68:f0: c4:a4:af:ac:24:6e:94:43:9c:46:d4:31:59:4e:f0:9b:e1:0c: 19:34:8a:44:e3:16:83:2f:0c:56:71:11:d2:35:3b:07:16:22: a0:1c:01:eb:75:30:d9:b3:53:a9:cb:27:96:89:e3:49:f7:cd: b6:ff:6f:59:59:9e:0b:2a:38:0b:3f:51:57:dd:10:50:ef:06: 5f:88:86:c8:0a:48:14:6a:a7:39:d9:a3:21:ab:60:91:c2:4c: 51:a2:d8:8d:bc:2b:c6:92:93:80:bd:12:16:07:72:82:ab:7c: 8d:66:34:77:bd:bd:9e:10:45:b9:4a:c6:2f:91:fb:5c:6d:6e: b8:e4:8e:58:7c:bf:92:ce:d1:d7:f1:64:bd:86:28:30:68:76: 3c:87:7d:0c:38:dc:88:c4:01:35:c3:32:be:8e:e5:23:80:0e: 3b:ef:a0:df:2d:16:32:a7:dc:08:ca:da:e6:f2:fc:8a:59:56: cf:b0:74:6a:c4:5b:d9:4c:ec:40:2a:a4:19:45:01:cc:34:3b: 97:ff:92:7c:a8:05:0d:57:e1:ec:59:9d:1f:c6:15:67:0e:b1: 1f:c1:98:f4:e4:8a:91:e1:05:a5:5f:85:0b:7a:8f:e8:7a:7e: 18:69:2a:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZq7UKPqE7XtN7oSpePqkjXhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNGEyOWM2MTM4ZTJkOTNkNTRhMzYzMjhiOTRjYjFmOGEz ODJhNmIwHhcNMjUxMTI1MTQwMDE1WhcNMjUxMTI2MTQwMDE1WjAzMTEwLwYDVQQD EyhhYTMyZDUzYjhmNWY3YjllNjhjYzdiNzMyZGYyMDM5YTJkNGZkMWJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2A7elR+HG4sKB5HM7dXDifWagcX0 YbT14z7JPrQhentKf59VtXz4tfG0AJe+9CTzwF4M6rA5NrnIOEREgx/QxsI62c7n YxOCrZWwBgOUxJPnQsV9A704wbbRvObU2kFpQhJYkPWV/vxE2h7GDFjIrPLNZqY6 No5+/3VfVsvp90XnXLB3hJ/FwaGMQEfjdYpxucwYP68MB9HpKe+IKPtC3GoDl2eH BL3zvAvkIl8Ieog2d8jZgMb1+3NVlzinTAFe4u0z4kaK3tiA7yjqTHokc8ppR6/4 ryt9fIsX0U79n2SG9MFCy3S2BclAHjrhQ6w0Wv6UGh+4XieahM2fUFTO9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKoy1TuPX3ueaMx7cy3yA5otT9G7MB8GA1UdIwQY MBaAFK5KKcYTji2T1Uo2MouUyx+KOCprMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmtvcHhoT09MWlBWU2pZeWk1VExING80S21zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi8zNWJlMDQtZDViNy00NGFhLWFkZTQt MTM0MDFkMWYyMmQyLzEvcmtvcHhoT09MWlBWU2pZeWk1VExING80S21zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi8zNWJlMDQtZDViNy00NGFhLWFkZTQtMTM0MDFkMWYyMmQy LzEvcmtvcHhoT09MWlBWU2pZeWk1VExING80S21zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXMrWPvby N2w48hvv/dJDh2jwxKSvrCRulEOcRtQxWU7wm+EMGTSKROMWgy8MVnER0jU7BxYi oBwB63Uw2bNTqcsnlonjSffNtv9vWVmeCyo4Cz9RV90QUO8GX4iGyApIFGqnOdmj IatgkcJMUaLYjbwrxpKTgL0SFgdygqt8jWY0d729nhBFuUrGL5H7XG1uuOSOWHy/ ks7R1/FkvYYoMGh2PId9DDjciMQBNcMyvo7lI4AOO++g3y0WMqfcCMra5vL8illW z7B0asRb2UzsQCqkGUUBzDQ7l/+SfKgFDVfh7FmdH8YVZw6xH8GY9OSKkeEFpV+F C3qP6Hp+GGkq7w== -----END CERTIFICATE-----Generated at Tue Nov 25 22:43:33 2025 by rpki-client