This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft File: oev1TQKO5HZPYveK2HHb8CYih4g.mft (raw, json) Hash identifier: 1Mq1lAlnQ+c36Q35JBep7QcsOMNghOuZD9MVFcqrBNQ= Subject key identifier: A9:5F:9C:9A:57:49:8B:8E:81:93:0D:C1:95:A0:6F:42:A5:1E:36:BD Authority key identifier: A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88 Certificate issuer: /CN=a1ebf54d028ee4764f62f78ad871dbf026228788 Certificate serial: 019B08FEBCE26140A86E0CEC1C1FEFDCB6FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft Manifest number: 04B7 Signing time: Wed 10 Dec 2025 16:01:10 +0000 Manifest this update: Wed 10 Dec 2025 16:01:10 +0000 Manifest next update: Thu 11 Dec 2025 16:01:10 +0000 Files and hashes: 1: 0BmC-81HN_hGVStiVWyBsG7yPOQ.roa (hash: 1DBUkLbwQ3sH8OPXtfdrx6wa0RdQ3lqLVqMY8QCHCK8=) 2: 58QzCphRddJsBqi71H5oisOTtGM.roa (hash: K7oZA9oPzuB3kuDmCdohN1gPlNbeKKgYedD/MB4pxbM=) 3: K5VqopWIERNLlg6XYIHxbSMQwf8.roa (hash: 6CqhTE0o4WqNXO4cXlNrVv+QBipio9ZfLg1pbcvRhvU=) 4: Qt9hOGMkdfDH8ID_bHwfLmJlE60.roa (hash: ARZiY2rT8rE43lKmT9EIHjzaS4HpYkA+YcbbFMZTS4E=) 5: oev1TQKO5HZPYveK2HHb8CYih4g.crl (hash: daVel+Yvd2Z2Wf+Fn76P/Vc0ikVqHmwZJJ2aUYK3hoo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:08:fe:bc:e2:61:40:a8:6e:0c:ec:1c:1f:ef:dc:b6:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1ebf54d028ee4764f62f78ad871dbf026228788 Validity Not Before: Dec 10 16:01:10 2025 GMT Not After : Dec 11 16:01:10 2025 GMT Subject: CN=a95f9c9a57498b8e81930dc195a06f42a51e36bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:35:02:40:25:ca:d4:ac:64:e3:41:28:eb:d2: 4c:94:cc:39:63:5f:d2:74:98:04:37:bd:90:e3:21: b9:ce:61:6c:f2:25:2b:1c:ce:8c:67:de:e4:e8:db: ae:fa:f4:ab:e2:d4:bd:ee:d6:34:85:f3:d0:f1:79: 14:fe:22:31:64:fc:ba:cf:cd:42:21:98:10:31:38: 59:21:dc:33:5a:2b:a0:82:71:0f:e1:b3:02:0c:1f: 23:ab:64:f9:af:65:cb:ad:6b:a1:f3:cd:28:85:30: a2:b3:65:85:b6:d3:9a:b7:60:7f:8f:05:8d:82:ad: aa:f2:2c:90:63:65:0a:d0:5b:c2:d4:a6:16:62:4d: 40:5a:1c:70:40:a5:8f:a4:21:e3:fb:f8:30:2b:20: 6e:6d:ca:04:ec:c6:61:5e:98:a2:84:20:ca:34:b3: e3:2d:55:0b:ce:0f:3d:11:1b:e8:c1:99:50:ff:b9: d5:b0:0b:86:cb:2e:ae:6e:63:3b:d1:66:b1:44:f1: 1c:db:aa:8a:fa:2b:55:41:9b:9c:f5:e1:ef:06:81: 73:8b:75:0b:c5:28:52:1a:4c:3d:3c:1f:32:fc:30: f1:90:9a:e3:fc:c5:6e:07:92:48:a1:e5:11:05:64: 46:b3:a9:47:13:28:c3:50:40:bb:a4:8c:c2:1c:50: 60:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:5F:9C:9A:57:49:8B:8E:81:93:0D:C1:95:A0:6F:42:A5:1E:36:BD X509v3 Authority Key Identifier: keyid:A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:e0:6c:15:92:30:a3:4f:47:d6:ba:52:74:e5:eb:60:6e:80: 70:41:61:98:a5:69:6b:0a:71:46:03:87:2a:27:68:17:f3:b8: 9c:10:31:44:fe:f7:f2:52:ed:c7:58:db:4c:ca:b8:94:c3:9f: f2:0f:96:61:e7:6e:5a:2c:6d:cb:ca:6f:b5:fe:11:a5:99:39: ca:45:96:00:55:9a:11:3c:ca:86:11:2e:93:8c:a5:06:64:38: f2:f2:9b:76:e4:79:8a:32:58:b4:ec:07:94:26:c4:a5:f8:0e: e7:1e:79:f2:ca:0e:e4:00:e3:12:62:39:35:c3:4c:cb:e5:a2: a0:50:3d:1f:c4:1e:eb:65:f8:e5:98:9d:33:41:90:75:98:bc: 80:c4:05:a8:cf:52:ac:38:b8:d3:29:87:86:e9:1f:91:15:27: dc:fc:4c:fa:66:89:67:f1:38:45:c3:3b:8b:81:a1:fb:46:0a: 7f:7a:29:a5:20:ae:9d:1e:0b:eb:20:d5:9f:3d:24:33:8d:5c: da:44:74:28:d4:50:a6:8b:b2:53:25:25:e4:e4:01:22:cb:d7: c3:6e:0d:26:53:ac:8f:57:6f:c1:59:20:87:2d:4a:9f:a3:5b: ff:3f:60:a4:91:32:aa:de:2e:0a:c8:60:b8:db:85:91:14:2e: b8:ef:5e:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsI/rziYUCobgzsHB/v3Lb7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExZWJmNTRkMDI4ZWU0NzY0ZjYyZjc4YWQ4NzFkYmYwMjYy Mjg3ODgwHhcNMjUxMjEwMTYwMTEwWhcNMjUxMjExMTYwMTEwWjAzMTEwLwYDVQQD EyhhOTVmOWM5YTU3NDk4YjhlODE5MzBkYzE5NWEwNmY0MmE1MWUzNmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7TUCQCXK1Kxk40Eo69JMlMw5Y1/S dJgEN72Q4yG5zmFs8iUrHM6MZ97k6Nuu+vSr4tS97tY0hfPQ8XkU/iIxZPy6z81C IZgQMThZIdwzWiuggnEP4bMCDB8jq2T5r2XLrWuh880ohTCis2WFttOat2B/jwWN gq2q8iyQY2UK0FvC1KYWYk1AWhxwQKWPpCHj+/gwKyBubcoE7MZhXpiihCDKNLPj LVULzg89ERvowZlQ/7nVsAuGyy6ubmM70WaxRPEc26qK+itVQZuc9eHvBoFzi3UL xShSGkw9PB8y/DDxkJrj/MVuB5JIoeURBWRGs6lHEyjDUEC7pIzCHFBgKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKlfnJpXSYuOgZMNwZWgb0KlHja9MB8GA1UdIwQY MBaAFKHr9U0CjuR2T2L3ithx2/AmIoeIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2V2MVRRS081SFpQWXZlSzJISGI4Q1lpaDRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS8xYjE3MmEtNjFkMS00MjBjLWEzZGQt NDdhNWJmNWIzMTNkLzEvb2V2MVRRS081SFpQWXZlSzJISGI4Q1lpaDRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NS8xYjE3MmEtNjFkMS00MjBjLWEzZGQtNDdhNWJmNWIzMTNk LzEvb2V2MVRRS081SFpQWXZlSzJISGI4Q1lpaDRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiuBsFZIw o09H1rpSdOXrYG6AcEFhmKVpawpxRgOHKidoF/O4nBAxRP738lLtx1jbTMq4lMOf 8g+WYeduWixty8pvtf4RpZk5ykWWAFWaETzKhhEuk4ylBmQ48vKbduR5ijJYtOwH lCbEpfgO5x558soO5ADjEmI5NcNMy+WioFA9H8Qe62X45ZidM0GQdZi8gMQFqM9S rDi40ymHhukfkRUn3PxM+maJZ/E4RcM7i4Gh+0YKf3oppSCunR4L6yDVnz0kM41c 2kR0KNRQpouyUyUl5OQBIsvXw24NJlOsj1dvwVkghy1Kn6Nb/z9gpJEyqt4uCshg uNuFkRQuuO9e5Q== -----END CERTIFICATE-----Generated at Wed Dec 10 19:55:09 2025 by rpki-client