This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft File: oVHP748-2G0RrqutTRngal0HDTA.mft (raw, json) Hash identifier: CyC98X2CRXlCBfUqQVmyRVTFfNijPWA87mjduh6wZ1I= Subject key identifier: C2:1D:90:A9:5A:38:01:DD:C4:3F:03:7F:D9:11:83:EE:7C:92:37:D7 Authority key identifier: A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30 Certificate issuer: /CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30 Certificate serial: 019B3A90EDBD1D5F113C8E9D119EEE7B8CEB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft Manifest number: 1786 Signing time: Sat 20 Dec 2025 07:02:15 +0000 Manifest this update: Sat 20 Dec 2025 07:02:15 +0000 Manifest next update: Sun 21 Dec 2025 07:02:15 +0000 Files and hashes: 1: cURozdoKIb78CE26-wMYNNQ7Uyc.roa (hash: dA/x8vNS0uSWiGck2vmKHPyuh1JLESwmF1FR0wRZ1Jw=) 2: oVHP748-2G0RrqutTRngal0HDTA.crl (hash: be8fI1PplfpAk8Tx0K7HKXRLc5IatO+TkkK/Sw8HlNY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 07:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:90:ed:bd:1d:5f:11:3c:8e:9d:11:9e:ee:7b:8c:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30 Validity Not Before: Dec 20 07:02:15 2025 GMT Not After : Dec 21 07:02:15 2025 GMT Subject: CN=c21d90a95a3801ddc43f037fd91183ee7c9237d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:43:44:05:cb:a0:ff:aa:da:83:8d:a4:1e:95: b9:d9:3e:70:b0:48:c1:29:aa:88:72:44:20:4d:1a: dc:7c:23:e4:79:d7:56:f8:f2:16:d5:bd:bc:9e:32: 5a:53:b5:a1:54:9e:fb:31:9d:63:62:3d:7e:5f:d5: d5:df:8e:71:ed:1d:e8:9e:21:43:34:b8:45:9c:e5: be:9b:2e:5b:8b:16:17:b5:b1:f6:b8:f2:c6:a2:f6: df:c6:aa:59:0d:b1:6e:b5:57:1a:14:de:25:e9:2a: e7:14:35:12:33:0c:8a:e9:27:3f:10:65:35:3a:df: ba:a2:b7:3f:a1:44:46:d2:cd:9e:a2:27:56:3b:22: ca:cb:c2:64:40:8b:0d:06:f7:56:df:24:d2:ac:6a: 2e:85:a3:a7:33:5d:cd:d5:be:df:ee:30:51:af:5f: 29:b1:29:01:17:8a:3b:7f:73:58:49:eb:e9:c3:9b: 1c:72:9b:52:69:74:dd:c8:be:3c:03:5d:58:5c:96: d8:71:ff:6c:52:d4:62:1c:fd:e1:2c:e9:2f:06:c7: 08:bf:0c:1a:67:56:c6:f3:20:51:a1:88:53:d2:d1: e7:8e:15:73:43:ce:0d:d1:6e:3c:be:a7:06:c7:33: 85:18:29:6a:0f:61:3c:f7:0c:45:33:d5:e6:8c:a8: 7b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:1D:90:A9:5A:38:01:DD:C4:3F:03:7F:D9:11:83:EE:7C:92:37:D7 X509v3 Authority Key Identifier: keyid:A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:22:c0:59:0c:91:c6:7e:eb:1e:43:8c:0a:41:a4:2d:15:21: ea:15:73:bd:95:e6:46:97:66:03:50:e1:20:6f:eb:d7:a6:c1: 72:f4:40:02:17:7d:2a:35:b5:1e:b3:5f:95:f1:c3:0f:2b:a7: 98:4d:98:1b:eb:19:38:3a:4e:b2:e3:16:63:c0:69:27:4b:32: 26:d5:17:15:d6:4c:ea:8c:7a:59:b7:79:cd:3e:81:3e:7f:1a: af:34:b0:47:d0:78:d6:4d:b0:83:fa:1b:f4:0f:a3:be:47:e7: f1:2a:3a:a0:d3:dd:80:0c:e2:9a:4e:8e:0f:42:d4:7e:40:c6: cd:68:fd:f1:21:db:ec:d2:48:52:24:38:f2:76:b2:64:c0:db: 9b:5b:8a:f6:fb:c1:75:2f:9a:cf:b7:90:fb:57:c3:2d:9f:c4: 99:3a:0c:bc:96:5d:4e:9b:b4:69:f1:b4:b6:15:f8:d0:6b:48: 71:2a:3f:63:0b:06:d1:4d:ef:e3:e7:1f:a9:d6:d8:ea:bc:31: 62:f5:67:8c:d3:9a:55:a5:a8:5d:30:af:14:0b:02:fa:12:31: 82:3f:db:51:55:18:c8:8d:0d:f7:e7:bc:f2:b4:bc:de:49:a3: bb:dc:7b:ae:21:21:a9:0d:7b:06:d7:99:c6:fc:57:e3:f7:cc: 33:ec:aa:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6kO29HV8RPI6dEZ7ue4zrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExNTFjZmVmOGYzZWQ4NmQxMWFlYWJhZDRkMTllMDZhNWQw NzBkMzAwHhcNMjUxMjIwMDcwMjE1WhcNMjUxMjIxMDcwMjE1WjAzMTEwLwYDVQQD EyhjMjFkOTBhOTVhMzgwMWRkYzQzZjAzN2ZkOTExODNlZTdjOTIzN2Q3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1UNEBcug/6rag42kHpW52T5wsEjB KaqIckQgTRrcfCPkeddW+PIW1b28njJaU7WhVJ77MZ1jYj1+X9XV345x7R3oniFD NLhFnOW+my5bixYXtbH2uPLGovbfxqpZDbFutVcaFN4l6SrnFDUSMwyK6Sc/EGU1 Ot+6orc/oURG0s2eoidWOyLKy8JkQIsNBvdW3yTSrGouhaOnM13N1b7f7jBRr18p sSkBF4o7f3NYSevpw5sccptSaXTdyL48A11YXJbYcf9sUtRiHP3hLOkvBscIvwwa Z1bG8yBRoYhT0tHnjhVzQ84N0W48vqcGxzOFGClqD2E89wxFM9XmjKh73wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMIdkKlaOAHdxD8Df9kRg+58kjfXMB8GA1UdIwQY MBaAFKFRz++PPthtEa6rrU0Z4GpdBw0wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1ZIUDc0OC0yRzBScnF1dFRSbmdhbDBIRFRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS85NTliOWYtMTQwOC00Y2Y3LThlNzUt NDA0NmEzMmQyN2E0LzEvb1ZIUDc0OC0yRzBScnF1dFRSbmdhbDBIRFRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS85NTliOWYtMTQwOC00Y2Y3LThlNzUtNDA0NmEzMmQyN2E0 LzEvb1ZIUDc0OC0yRzBScnF1dFRSbmdhbDBIRFRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKCLAWQyR xn7rHkOMCkGkLRUh6hVzvZXmRpdmA1DhIG/r16bBcvRAAhd9KjW1HrNflfHDDyun mE2YG+sZODpOsuMWY8BpJ0syJtUXFdZM6ox6Wbd5zT6BPn8arzSwR9B41k2wg/ob 9A+jvkfn8So6oNPdgAzimk6OD0LUfkDGzWj98SHb7NJIUiQ48nayZMDbm1uK9vvB dS+az7eQ+1fDLZ/EmToMvJZdTpu0afG0thX40GtIcSo/YwsG0U3v4+cfqdbY6rwx YvVnjNOaVaWoXTCvFAsC+hIxgj/bUVUYyI0N9+e88rS83kmju9x7riEhqQ17BteZ xvxX4/fMM+yqkw== -----END CERTIFICATE-----Generated at Sat Dec 20 14:10:43 2025 by rpki-client