This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft File: oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft (raw, json) Hash identifier: LfUdJ2nipYY0+EMTDpSWgG67wCZcEAOtgMHCL5xPRno= Subject key identifier: EA:94:8C:99:3E:61:B7:A7:36:20:E1:27:70:12:4A:A2:28:D6:00:A2 Authority key identifier: A0:F2:7D:4F:06:76:14:BC:BC:27:03:46:FA:0D:44:B1:5F:80:51:63 Certificate issuer: /CN=a0f27d4f067614bcbc270346fa0d44b15f805163 Certificate serial: 019B21760D2E7BC0826820BCA042BBA92731 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft Manifest number: 1777 Signing time: Mon 15 Dec 2025 10:02:23 +0000 Manifest this update: Mon 15 Dec 2025 10:02:23 +0000 Manifest next update: Tue 16 Dec 2025 10:02:23 +0000 Files and hashes: 1: VpVmsYSCQdNXwRHKQt0NXlzsSG0.roa (hash: E6B6Bl1mDcetd5EsaNvc0boHcTeWIhqXRqGoFPj9kUc=) 2: oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.crl (hash: gyFsxUTkRnZFcv6usJgBlbzlrz8fbJAEziKKXDDsenM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.crl rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft rsync://rpki.ripe.net/repository/DEFAULT/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 10:02:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:76:0d:2e:7b:c0:82:68:20:bc:a0:42:bb:a9:27:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0f27d4f067614bcbc270346fa0d44b15f805163 Validity Not Before: Dec 15 10:02:23 2025 GMT Not After : Dec 16 10:02:23 2025 GMT Subject: CN=ea948c993e61b7a73620e12770124aa228d600a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:71:eb:c7:8d:57:6d:09:7b:0e:16:41:93:df: 8d:2a:5e:24:e2:a8:3a:15:70:a1:7e:62:c8:40:73: bc:84:a2:b2:54:ca:3c:47:22:40:5d:e4:97:ef:de: 58:32:e4:9a:1d:84:77:da:d8:c9:9b:e7:0d:00:2c: ba:4a:88:c5:1e:44:16:00:e3:d2:60:45:0e:e1:2d: f6:be:1b:ed:4d:35:8a:ed:ea:2a:78:d8:ba:4f:0f: 4b:cb:b4:eb:b6:92:ea:ba:7e:52:3e:fe:89:c5:9a: 60:ef:48:26:39:5a:70:5e:9b:57:68:e2:f6:dc:5c: 8b:0d:e9:7c:4a:32:fe:0b:e5:51:05:27:c3:95:1a: bb:47:65:f3:37:98:90:5c:0a:da:c5:19:81:38:43: 42:d6:fb:62:d2:d2:d9:5a:e7:80:ee:54:61:49:f3: 9f:fc:ea:10:34:63:8d:51:cb:44:2e:99:c9:14:8e: 63:37:ab:0f:08:7a:b4:ea:00:2b:cf:48:bb:a1:f0: d5:10:73:b8:4a:e1:c9:93:6d:65:24:cc:74:ec:73: 40:94:0f:e8:8a:be:e4:75:cc:d9:34:fe:d4:75:0d: d1:5c:f1:5f:6d:ca:1a:5d:25:37:83:25:dd:88:67: df:28:48:3c:5c:84:10:55:2a:2e:46:08:27:79:13: 20:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:94:8C:99:3E:61:B7:A7:36:20:E1:27:70:12:4A:A2:28:D6:00:A2 X509v3 Authority Key Identifier: keyid:A0:F2:7D:4F:06:76:14:BC:BC:27:03:46:FA:0D:44:B1:5F:80:51:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f732a0-dc62-4326-85e2-936598e00cfe/1/oPJ9TwZ2FLy8JwNG-g1EsV-AUWM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:ed:52:dd:69:ea:d0:e4:d2:0b:67:a2:8e:15:05:bb:76:68: 0c:b8:7b:03:5d:d0:42:1f:a4:86:72:8e:bd:82:49:11:9f:3b: 62:02:ca:a0:b4:cf:dc:2f:30:1f:49:44:7a:48:4f:25:65:46: cf:50:a3:09:21:86:9d:e6:8e:0e:2d:f1:8c:b1:55:87:93:a9: 17:74:66:5a:0a:9a:d6:73:b9:ad:de:43:24:bd:51:9d:a7:db: 51:0d:54:62:00:c6:a7:b2:f0:58:e8:e4:25:ee:76:f4:7d:9e: 0e:5e:a1:cc:8b:41:5e:b5:a0:f5:6b:98:91:a5:f9:3a:43:a7: db:24:6b:62:53:84:c1:fc:fe:c9:da:da:79:b8:58:e7:7e:d2: e6:1b:de:ca:7f:0c:21:5b:70:dc:25:d9:d7:4e:d4:2d:02:7a: d4:2e:37:a6:e5:b8:4d:12:98:4f:7a:0a:9a:70:f9:8f:6b:3d: 80:05:1d:a6:c0:48:14:91:34:33:86:5f:f9:0e:cf:67:ea:d6: 5c:ab:fb:da:e0:6c:81:e5:be:f8:fe:5a:9f:1f:47:18:91:60: 1d:c0:17:51:ac:92:ae:e4:cb:51:81:06:28:61:60:1d:09:0a: c8:d3:76:32:6d:b6:8a:7d:3c:bd:9b:54:90:6d:7d:22:08:e2: e9:f5:58:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZshdg0ue8CCaCC8oEK7qScxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwZjI3ZDRmMDY3NjE0YmNiYzI3MDM0NmZhMGQ0NGIxNWY4 MDUxNjMwHhcNMjUxMjE1MTAwMjIzWhcNMjUxMjE2MTAwMjIzWjAzMTEwLwYDVQQD EyhlYTk0OGM5OTNlNjFiN2E3MzYyMGUxMjc3MDEyNGFhMjI4ZDYwMGEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjHHrx41XbQl7DhZBk9+NKl4k4qg6 FXChfmLIQHO8hKKyVMo8RyJAXeSX795YMuSaHYR32tjJm+cNACy6SojFHkQWAOPS YEUO4S32vhvtTTWK7eoqeNi6Tw9Ly7TrtpLqun5SPv6JxZpg70gmOVpwXptXaOL2 3FyLDel8SjL+C+VRBSfDlRq7R2XzN5iQXAraxRmBOENC1vti0tLZWueA7lRhSfOf /OoQNGONUctELpnJFI5jN6sPCHq06gArz0i7ofDVEHO4SuHJk21lJMx07HNAlA/o ir7kdczZNP7UdQ3RXPFfbcoaXSU3gyXdiGffKEg8XIQQVSouRggneRMggQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOqUjJk+YbenNiDhJ3ASSqIo1gCiMB8GA1UdIwQY MBaAFKDyfU8GdhS8vCcDRvoNRLFfgFFjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1BKOVR3WjJGTHk4SndORy1nMUVzVi1BVVdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9mNzMyYTAtZGM2Mi00MzI2LTg1ZTIt OTM2NTk4ZTAwY2ZlLzEvb1BKOVR3WjJGTHk4SndORy1nMUVzVi1BVVdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS9mNzMyYTAtZGM2Mi00MzI2LTg1ZTItOTM2NTk4ZTAwY2Zl LzEvb1BKOVR3WjJGTHk4SndORy1nMUVzVi1BVVdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjO1S3Wnq 0OTSC2eijhUFu3ZoDLh7A13QQh+khnKOvYJJEZ87YgLKoLTP3C8wH0lEekhPJWVG z1CjCSGGneaODi3xjLFVh5OpF3RmWgqa1nO5rd5DJL1RnafbUQ1UYgDGp7LwWOjk Je529H2eDl6hzItBXrWg9WuYkaX5OkOn2yRrYlOEwfz+ydraebhY537S5hveyn8M IVtw3CXZ107ULQJ61C43puW4TRKYT3oKmnD5j2s9gAUdpsBIFJE0M4Zf+Q7PZ+rW XKv72uBsgeW++P5anx9HGJFgHcAXUaySruTLUYEGKGFgHQkKyNN2Mm22in08vZtU kG19Igji6fVYdA== -----END CERTIFICATE-----Generated at Mon Dec 15 19:56:42 2025 by rpki-client