This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/999eaf-1cf0-4f48-8791-d1e4a5376510/1/Oh7rvRjfqoBV4TVRugJBZV2qo1I.mft File: Oh7rvRjfqoBV4TVRugJBZV2qo1I.mft (raw, json) Hash identifier: 1rTnsh6viy7djlWC9QgK4nX+aOYBIXe0G5rmK0b9f9I= Subject key identifier: 99:88:17:FA:05:20:7C:46:CF:DB:EB:B2:7C:0A:89:EF:77:CA:EB:1E Authority key identifier: 3A:1E:EB:BD:18:DF:AA:80:55:E1:35:51:BA:02:41:65:5D:AA:A3:52 Certificate issuer: /CN=3a1eebbd18dfaa8055e13551ba0241655daaa352 Certificate serial: 019B5AF69690229C98829E911B22F6F6EDFA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oh7rvRjfqoBV4TVRugJBZV2qo1I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/999eaf-1cf0-4f48-8791-d1e4a5376510/1/Oh7rvRjfqoBV4TVRugJBZV2qo1I.mft Manifest number: 4D Signing time: Fri 26 Dec 2025 14:01:08 +0000 Manifest this update: Fri 26 Dec 2025 14:01:08 +0000 Manifest next update: Sat 27 Dec 2025 14:01:08 +0000 Files and hashes: 1: Mk4jN06mQ4fVbma_igKuXpQG3ps.roa (hash: 1RFESF+6Wti5ZNCZfHX28B3nSvTgVPMqHfySrz2lqWE=) 2: Oh7rvRjfqoBV4TVRugJBZV2qo1I.crl (hash: oGG8bEiwIc47ijB5etRezcyqPOczYbAULGf18hgqKyU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/999eaf-1cf0-4f48-8791-d1e4a5376510/1/Oh7rvRjfqoBV4TVRugJBZV2qo1I.crl rsync://rpki.ripe.net/repository/DEFAULT/76/999eaf-1cf0-4f48-8791-d1e4a5376510/1/Oh7rvRjfqoBV4TVRugJBZV2qo1I.mft rsync://rpki.ripe.net/repository/DEFAULT/Oh7rvRjfqoBV4TVRugJBZV2qo1I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:f6:96:90:22:9c:98:82:9e:91:1b:22:f6:f6:ed:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a1eebbd18dfaa8055e13551ba0241655daaa352 Validity Not Before: Dec 26 14:01:08 2025 GMT Not After : Dec 27 14:01:08 2025 GMT Subject: CN=998817fa05207c46cfdbebb27c0a89ef77caeb1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e1:ae:62:a8:12:4e:1a:fa:54:79:91:33:f8: 64:5f:c7:f8:69:df:5f:78:f7:db:ca:7f:84:9f:ef: 7f:e2:8c:0a:91:7d:0a:32:d3:a0:89:f0:8b:26:71: 20:4d:c9:bb:a5:a5:27:46:d0:32:76:70:d2:cd:d0: f0:ef:ac:a5:90:9b:68:7c:df:d3:f7:7b:88:62:b6: 7f:f9:52:e7:6c:1e:0d:e0:a8:94:d6:b9:ef:cc:1b: f1:fc:26:77:24:15:75:5c:be:37:dd:cb:11:cb:c3: ae:2f:f7:49:06:6b:e4:cb:bd:c8:74:70:36:43:e6: 7f:cd:06:c2:25:a8:77:2a:b3:82:6e:66:fc:b7:4e: dd:3c:1e:57:ef:14:3d:9c:e7:ec:be:43:6c:f8:a6: de:06:50:12:66:e4:bf:38:74:cb:19:79:3c:ea:3c: bb:27:14:96:5f:3f:3d:c3:3a:2e:2a:6b:8e:51:9d: 0d:63:f7:b8:46:e2:20:8b:a8:7c:90:4b:b2:4d:24: 21:8d:e3:c2:e1:db:43:c2:95:24:70:b4:ea:1f:09: 5d:4a:fb:54:75:59:e8:1f:49:53:d1:55:52:9d:3e: b0:27:24:1c:16:46:86:04:47:8a:f4:22:38:62:aa: 26:d2:82:b1:1e:4b:12:41:05:ec:24:df:8b:b5:e6: 65:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:88:17:FA:05:20:7C:46:CF:DB:EB:B2:7C:0A:89:EF:77:CA:EB:1E X509v3 Authority Key Identifier: keyid:3A:1E:EB:BD:18:DF:AA:80:55:E1:35:51:BA:02:41:65:5D:AA:A3:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oh7rvRjfqoBV4TVRugJBZV2qo1I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/999eaf-1cf0-4f48-8791-d1e4a5376510/1/Oh7rvRjfqoBV4TVRugJBZV2qo1I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/999eaf-1cf0-4f48-8791-d1e4a5376510/1/Oh7rvRjfqoBV4TVRugJBZV2qo1I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:25:dc:f5:98:42:5d:be:a8:4d:d0:b9:a4:85:74:d7:e3:b0: da:ec:e5:59:9b:0d:c2:40:f7:49:30:b2:5a:9c:6c:e6:b3:c0: 76:8a:83:ae:63:3d:14:cf:68:a7:aa:91:26:1b:83:16:f7:a0: 51:af:cc:b9:2b:93:df:07:2d:b0:c1:98:5c:c3:20:cc:5b:2c: ed:2e:00:4e:5d:56:38:a5:51:d4:85:2a:58:59:b0:30:1c:b4: eb:06:f0:11:30:de:79:2d:03:46:12:7e:0a:58:14:a8:a4:94: 04:1a:01:b0:2d:9b:27:8d:6e:6a:64:e7:86:1b:1f:5c:53:42: b5:ff:c2:8b:c6:1a:c0:a4:1e:4f:e7:7e:01:50:d2:76:6b:9a: 6a:de:75:43:27:21:76:10:f5:33:53:6e:bd:b0:13:db:0f:ae: 87:28:d2:d7:13:4e:42:eb:ec:bc:52:03:d7:e0:2d:d0:8d:3f: a8:2e:67:84:0c:e5:09:ef:01:3a:9d:55:c4:db:74:b5:c3:68: 64:d9:9b:c2:0e:cd:90:3e:34:39:e8:89:55:78:dc:53:19:6c: 97:c3:62:b5:5e:a3:f5:d4:12:26:40:61:03:1f:db:c5:6a:9a: 0b:7b:7f:45:41:20:1b:d2:9c:3f:3f:24:c6:a3:2d:74:ee:28: 3f:83:ab:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZta9paQIpyYgp6RGyL29u36MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhMWVlYmJkMThkZmFhODA1NWUxMzU1MWJhMDI0MTY1NWRh YWEzNTIwHhcNMjUxMjI2MTQwMTA4WhcNMjUxMjI3MTQwMTA4WjAzMTEwLwYDVQQD Eyg5OTg4MTdmYTA1MjA3YzQ2Y2ZkYmViYjI3YzBhODllZjc3Y2FlYjFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyuGuYqgSThr6VHmRM/hkX8f4ad9f ePfbyn+En+9/4owKkX0KMtOgifCLJnEgTcm7paUnRtAydnDSzdDw76ylkJtofN/T 93uIYrZ/+VLnbB4N4KiU1rnvzBvx/CZ3JBV1XL433csRy8OuL/dJBmvky73IdHA2 Q+Z/zQbCJah3KrOCbmb8t07dPB5X7xQ9nOfsvkNs+KbeBlASZuS/OHTLGXk86jy7 JxSWXz89wzouKmuOUZ0NY/e4RuIgi6h8kEuyTSQhjePC4dtDwpUkcLTqHwldSvtU dVnoH0lT0VVSnT6wJyQcFkaGBEeK9CI4Yqom0oKxHksSQQXsJN+LteZlzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJmIF/oFIHxGz9vrsnwKie93yuseMB8GA1UdIwQY MBaAFDoe670Y36qAVeE1UboCQWVdqqNSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2g3cnZSamZxb0JWNFRWUnVnSkJaVjJxbzFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni85OTllYWYtMWNmMC00ZjQ4LTg3OTEt ZDFlNGE1Mzc2NTEwLzEvT2g3cnZSamZxb0JWNFRWUnVnSkJaVjJxbzFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni85OTllYWYtMWNmMC00ZjQ4LTg3OTEtZDFlNGE1Mzc2NTEw LzEvT2g3cnZSamZxb0JWNFRWUnVnSkJaVjJxbzFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlSXc9ZhC Xb6oTdC5pIV01+Ow2uzlWZsNwkD3STCyWpxs5rPAdoqDrmM9FM9op6qRJhuDFveg Ua/MuSuT3wctsMGYXMMgzFss7S4ATl1WOKVR1IUqWFmwMBy06wbwETDeeS0DRhJ+ ClgUqKSUBBoBsC2bJ41uamTnhhsfXFNCtf/Ci8YawKQeT+d+AVDSdmuaat51Qych dhD1M1NuvbAT2w+uhyjS1xNOQuvsvFID1+At0I0/qC5nhAzlCe8BOp1VxNt0tcNo ZNmbwg7NkD40OeiJVXjcUxlsl8NitV6j9dQSJkBhAx/bxWqaC3t/RUEgG9KcPz8k xqMtdO4oP4OrXg== -----END CERTIFICATE-----Generated at Fri Dec 26 15:43:34 2025 by rpki-client