This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft File: OCvsQ90a_pemT1brhUx58WP6TuY.mft (raw, json) Hash identifier: TbVt+WycE50+8kZofGuq+n6THDzgdCAYtQY7MdaxZuk= Subject key identifier: 4F:56:70:25:70:30:3C:6D:97:3B:6C:09:A0:78:5E:49:EB:DD:D1:C5 Authority key identifier: 38:2B:EC:43:DD:1A:FE:97:A6:4F:56:EB:85:4C:79:F1:63:FA:4E:E6 Certificate issuer: /CN=382bec43dd1afe97a64f56eb854c79f163fa4ee6 Certificate serial: 019B22F532BE99A92C54C0669E3130EE0B45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft Manifest number: 177D Signing time: Mon 15 Dec 2025 17:00:53 +0000 Manifest this update: Mon 15 Dec 2025 17:00:53 +0000 Manifest next update: Tue 16 Dec 2025 17:00:53 +0000 Files and hashes: 1: OCvsQ90a_pemT1brhUx58WP6TuY.crl (hash: oddNljpn/8deHiD8O3ywAH7YY+QxUhuYDeRWkb7jUmU=) 2: ZcMWvBkTNFkQiz2yA0G8DNGlqp8.roa (hash: ElsDKcX3/AeNMZDxpF6Opg+D9XtiydscqeFlhPJCg+c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.crl rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:f5:32:be:99:a9:2c:54:c0:66:9e:31:30:ee:0b:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=382bec43dd1afe97a64f56eb854c79f163fa4ee6 Validity Not Before: Dec 15 17:00:53 2025 GMT Not After : Dec 16 17:00:53 2025 GMT Subject: CN=4f56702570303c6d973b6c09a0785e49ebddd1c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a8:ad:a3:26:66:f1:c0:04:b8:d9:53:8b:6a: 1a:94:c5:d6:be:cf:3c:9c:50:98:e8:a8:e7:64:bd: b3:1d:46:17:ab:aa:1f:13:48:d7:6d:fb:ec:db:7d: 9e:32:6d:d7:ee:87:87:cd:30:ee:b9:75:9e:34:91: fd:69:d6:bc:ff:46:b2:5f:14:46:b4:98:92:f5:01: ef:61:44:d1:01:af:22:59:8f:5e:ad:6a:d5:f5:eb: 04:1e:e6:54:3e:78:f2:2b:4a:76:b7:bb:38:5b:db: 12:6d:1f:ff:8e:37:7a:4d:2f:b9:51:0c:ac:d6:51: 87:a5:81:46:bc:32:26:97:ac:4d:f3:2d:81:16:7e: 71:b6:6e:ea:f9:f7:34:46:07:71:3c:27:d4:d3:78: 22:63:b0:17:aa:1f:54:ea:73:7d:43:a3:1d:a5:f0: 1d:43:22:86:1f:9c:04:6b:a5:b7:2c:ec:b7:f1:55: 89:ec:7b:93:2a:ce:d7:95:24:45:d0:4b:a4:e9:d1: 7b:56:03:8d:ef:c5:77:d9:65:b0:3b:c1:4c:6a:74: ad:0a:0f:8f:59:bc:a6:95:5c:78:46:0c:30:f3:6c: 95:1c:4b:e1:f7:ee:07:12:60:89:82:72:73:24:3d: f9:14:30:0c:7d:1d:79:ed:27:ac:2c:74:55:ff:85: 9f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:56:70:25:70:30:3C:6D:97:3B:6C:09:A0:78:5E:49:EB:DD:D1:C5 X509v3 Authority Key Identifier: keyid:38:2B:EC:43:DD:1A:FE:97:A6:4F:56:EB:85:4C:79:F1:63:FA:4E:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:20:b4:96:02:9b:34:a5:c2:39:50:f6:0a:d9:eb:57:01:cb: e6:79:33:e3:72:cf:c8:42:f3:d4:6b:81:b3:2c:9d:b8:68:a4: d4:3a:d8:10:29:a9:b8:19:d3:c2:a3:e0:0b:95:8c:c8:02:00: de:36:d4:93:9c:0a:90:f6:bb:f3:41:13:3e:4b:7a:a3:64:1c: 69:68:8f:e1:6f:dc:2f:d9:7b:7d:f9:6e:f2:de:75:41:e3:bb: c1:17:5e:55:d9:e7:5d:63:c3:cf:f3:fc:95:14:22:12:f5:9a: a1:e7:9c:7c:5d:99:c5:c4:be:83:b6:ee:13:24:8e:4a:91:b5: 33:59:fb:27:d4:59:d7:80:85:2e:e0:ad:bf:c6:98:ab:dc:02: ff:2d:ce:fc:bb:4f:e7:b4:82:21:8b:05:10:e2:6e:2f:6f:d1: a0:42:4b:cb:16:00:8c:6e:36:8d:a5:11:85:c4:17:83:1f:9f: 65:10:56:7b:7a:79:17:2e:97:9c:34:e6:b7:f4:16:f4:c4:a9: 19:f1:da:07:7a:3a:e4:1a:46:78:a0:a7:0b:3b:7b:b7:ac:32: 7a:47:5b:99:d6:4e:d6:48:06:f3:3f:2c:35:f4:04:28:dd:0a: 1f:25:35:45:e3:20:a4:b2:23:af:3b:8b:25:d0:69:f7:6c:15: 49:74:5b:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsi9TK+maksVMBmnjEw7gtFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MmJlYzQzZGQxYWZlOTdhNjRmNTZlYjg1NGM3OWYxNjNm YTRlZTYwHhcNMjUxMjE1MTcwMDUzWhcNMjUxMjE2MTcwMDUzWjAzMTEwLwYDVQQD Eyg0ZjU2NzAyNTcwMzAzYzZkOTczYjZjMDlhMDc4NWU0OWViZGRkMWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxKitoyZm8cAEuNlTi2oalMXWvs88 nFCY6KjnZL2zHUYXq6ofE0jXbfvs232eMm3X7oeHzTDuuXWeNJH9ada8/0ayXxRG tJiS9QHvYUTRAa8iWY9erWrV9esEHuZUPnjyK0p2t7s4W9sSbR//jjd6TS+5UQys 1lGHpYFGvDIml6xN8y2BFn5xtm7q+fc0RgdxPCfU03giY7AXqh9U6nN9Q6MdpfAd QyKGH5wEa6W3LOy38VWJ7HuTKs7XlSRF0Euk6dF7VgON78V32WWwO8FManStCg+P WbymlVx4Rgww82yVHEvh9+4HEmCJgnJzJD35FDAMfR157SesLHRV/4Wf5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE9WcCVwMDxtlztsCaB4Xknr3dHFMB8GA1UdIwQY MBaAFDgr7EPdGv6Xpk9W64VMefFj+k7mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0N2c1E5MGFfcGVtVDFicmhVeDU4V1A2VHVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9lMmE4ZjQtNzA2NS00NzRiLWEwM2Qt Mjc1MDk3MTFlMzdmLzEvT0N2c1E5MGFfcGVtVDFicmhVeDU4V1A2VHVZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny9lMmE4ZjQtNzA2NS00NzRiLWEwM2QtMjc1MDk3MTFlMzdm LzEvT0N2c1E5MGFfcGVtVDFicmhVeDU4V1A2VHVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcyC0lgKb NKXCOVD2CtnrVwHL5nkz43LPyELz1GuBsyyduGik1DrYECmpuBnTwqPgC5WMyAIA 3jbUk5wKkPa780ETPkt6o2QcaWiP4W/cL9l7fflu8t51QeO7wRdeVdnnXWPDz/P8 lRQiEvWaoeecfF2ZxcS+g7buEySOSpG1M1n7J9RZ14CFLuCtv8aYq9wC/y3O/LtP 57SCIYsFEOJuL2/RoEJLyxYAjG42jaURhcQXgx+fZRBWe3p5Fy6XnDTmt/QW9MSp GfHaB3o65BpGeKCnCzt7t6wyekdbmdZO1kgG8z8sNfQEKN0KHyU1ReMgpLIjrzuL JdBp92wVSXRb+Q== -----END CERTIFICATE-----Generated at Mon Dec 15 19:30:32 2025 by rpki-client