This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft File: okz5AynEe6NDpmzWXTiDOjV7WVU.mft (raw, json) Hash identifier: 3Hfro9mbIpHXa/dipJDhxJ52ohq7JpxZiua2XE7Y+3s= Subject key identifier: 2F:00:F1:88:DC:87:C5:63:53:F9:DB:6C:2E:44:B5:75:1B:C9:E3:03 Authority key identifier: A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55 Certificate issuer: /CN=a24cf90329c47ba343a66cd65d38833a357b5955 Certificate serial: 019B3A90A37C7B4A2E449C75C1A330CEE271 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft Manifest number: 178A Signing time: Sat 20 Dec 2025 07:01:55 +0000 Manifest this update: Sat 20 Dec 2025 07:01:55 +0000 Manifest next update: Sun 21 Dec 2025 07:01:55 +0000 Files and hashes: 1: L_hJzZcxwJZunjzxLQL-YVG1jT0.roa (hash: /H7f2gZdXTvhI8V5NwcetnxeXbpLznW3EXechuUQFz0=) 2: RwOt6V2v9wJzu17DXTZnu1cti-k.roa (hash: pKpNRVrX80xh9DAepdCWEqDAUnRd1u2Llc+QIfnWV/Q=) 3: okz5AynEe6NDpmzWXTiDOjV7WVU.crl (hash: bJ5tBiQWqMTSgdaQAj5G+WHiALLTgglQnifOWbYWlvg=) 4: tDQAlIS1RkP7Hll5jY6GwoLQRHA.roa (hash: ZBp1qrqjsUhmRr1QqJR4LsXUqiXorK/xdRoQ9NS8bh8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.crl rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:90:a3:7c:7b:4a:2e:44:9c:75:c1:a3:30:ce:e2:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a24cf90329c47ba343a66cd65d38833a357b5955 Validity Not Before: Dec 20 07:01:55 2025 GMT Not After : Dec 21 07:01:55 2025 GMT Subject: CN=2f00f188dc87c56353f9db6c2e44b5751bc9e303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:33:45:67:36:9b:e4:47:0d:63:ca:08:e7:73: 24:bf:67:7a:ff:d8:0d:9f:e6:2e:c4:a5:77:dc:a0: ab:b1:1f:e2:13:80:bc:a2:13:03:44:7c:ec:12:46: 8d:5e:e1:a7:de:08:21:ac:0d:53:1a:60:ac:4d:c0: c4:b0:95:88:f2:e8:52:99:0f:b2:71:d1:e6:a5:60: c6:f7:75:c5:53:7f:0c:cf:77:a4:1f:64:f0:64:0d: 0f:4a:32:56:72:08:80:8e:6a:99:22:9b:37:23:28: 0d:60:c1:a2:4d:95:54:a3:75:29:bf:95:a2:4e:b4: 00:cd:74:eb:17:1c:9a:4f:02:75:c2:bf:e2:a5:b6: b4:ab:9f:47:71:cf:d2:14:74:05:f6:3f:02:ce:ab: f9:41:1b:aa:04:13:e9:72:82:4f:65:26:6e:e1:41: 97:95:8f:6f:33:23:54:9a:6f:e5:97:52:ed:ff:c7: 4a:8e:ae:71:7b:2f:a8:2b:3e:8d:2d:06:49:af:d4: e5:59:ed:9a:1e:bc:04:db:91:0d:d0:1e:6e:07:68: e6:c8:f8:d9:d1:4a:79:2a:05:53:cc:c8:50:92:fe: 1d:9d:ca:f0:de:5b:d5:49:bc:72:df:1f:74:0b:6b: c0:12:22:61:1d:69:a9:30:fb:c9:82:53:09:62:61: 45:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:00:F1:88:DC:87:C5:63:53:F9:DB:6C:2E:44:B5:75:1B:C9:E3:03 X509v3 Authority Key Identifier: keyid:A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:99:6c:d8:5c:5e:68:18:69:89:06:3c:43:08:31:9b:01:84: 97:f8:73:31:15:66:e4:20:bf:be:44:06:61:1e:24:3e:d2:c0: 45:07:3e:3f:7d:de:18:1c:b0:33:27:a0:39:35:db:9a:5d:44: 8b:b5:0b:78:da:67:8a:eb:9b:9c:16:b1:68:2b:d1:af:39:88: ae:e3:2c:52:3d:38:0a:ac:2b:68:6d:9a:27:aa:73:6c:5a:2a: c4:86:47:37:7e:c8:07:b5:0c:08:25:fa:29:d6:c1:a4:ee:8c: 33:e8:54:fa:68:a6:55:f5:22:49:9f:c6:88:29:7a:d7:32:8d: b1:7c:e3:68:ca:7a:4e:d1:68:1c:4f:29:24:52:f1:ee:a8:59: a5:44:65:ff:6a:7e:bf:07:c9:fe:bc:03:ef:f0:b1:1a:19:a1: 9c:46:9c:c3:ac:ed:5b:ea:f2:ba:42:15:af:65:b9:65:49:59: 05:68:22:eb:24:59:93:b9:07:1a:53:d5:8c:60:a9:4d:39:35: 32:08:cb:4e:fd:c2:25:e4:1d:e8:4b:c0:90:0a:2f:22:b9:4d: 4f:76:7a:26:e3:01:87:76:71:ea:12:fa:45:14:91:16:7d:3c: ec:16:e7:70:e9:56:2a:99:89:44:b9:c5:5d:7d:13:83:09:b8: b0:8e:9b:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6kKN8e0ouRJx1waMwzuJxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyNGNmOTAzMjljNDdiYTM0M2E2NmNkNjVkMzg4MzNhMzU3 YjU5NTUwHhcNMjUxMjIwMDcwMTU1WhcNMjUxMjIxMDcwMTU1WjAzMTEwLwYDVQQD EygyZjAwZjE4OGRjODdjNTYzNTNmOWRiNmMyZTQ0YjU3NTFiYzllMzAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTNFZzab5EcNY8oI53Mkv2d6/9gN n+YuxKV33KCrsR/iE4C8ohMDRHzsEkaNXuGn3gghrA1TGmCsTcDEsJWI8uhSmQ+y cdHmpWDG93XFU38Mz3ekH2TwZA0PSjJWcgiAjmqZIps3IygNYMGiTZVUo3Upv5Wi TrQAzXTrFxyaTwJ1wr/ipba0q59Hcc/SFHQF9j8Czqv5QRuqBBPpcoJPZSZu4UGX lY9vMyNUmm/ll1Lt/8dKjq5xey+oKz6NLQZJr9TlWe2aHrwE25EN0B5uB2jmyPjZ 0Up5KgVTzMhQkv4dncrw3lvVSbxy3x90C2vAEiJhHWmpMPvJglMJYmFFRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC8A8Yjch8VjU/nbbC5EtXUbyeMDMB8GA1UdIwQY MBaAFKJM+QMpxHujQ6Zs1l04gzo1e1lVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2t6NUF5bkVlNk5EcG16V1hUaURPalY3V1ZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni9kZWExNDktNGZiOC00OTc4LWE0NmIt MzM5ODVkYjgwNDdhLzEvb2t6NUF5bkVlNk5EcG16V1hUaURPalY3V1ZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni9kZWExNDktNGZiOC00OTc4LWE0NmItMzM5ODVkYjgwNDdh LzEvb2t6NUF5bkVlNk5EcG16V1hUaURPalY3V1ZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj5ls2Fxe aBhpiQY8QwgxmwGEl/hzMRVm5CC/vkQGYR4kPtLARQc+P33eGBywMyegOTXbml1E i7ULeNpniuubnBaxaCvRrzmIruMsUj04CqwraG2aJ6pzbFoqxIZHN37IB7UMCCX6 KdbBpO6MM+hU+mimVfUiSZ/GiCl61zKNsXzjaMp6TtFoHE8pJFLx7qhZpURl/2p+ vwfJ/rwD7/CxGhmhnEacw6ztW+ryukIVr2W5ZUlZBWgi6yRZk7kHGlPVjGCpTTk1 MgjLTv3CJeQd6EvAkAovIrlNT3Z6JuMBh3Zx6hL6RRSRFn087BbncOlWKpmJRLnF XX0Tgwm4sI6bCg== -----END CERTIFICATE-----Generated at Sat Dec 20 08:55:14 2025 by rpki-client