This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft File: OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft (raw, json) Hash identifier: sNW4kqEmGz34Fi5X2KVUovDSnE6Iw9cVOc4jVPZ8ge0= Subject key identifier: A2:60:79:A7:B4:B9:13:82:C7:0C:B5:E0:FF:41:69:2B:5A:DF:4A:8E Authority key identifier: 3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB Certificate issuer: /CN=3a611bc291ff1de02256f2315345680603fa4edb Certificate serial: 019B2C9DA9FE2DAE9F350FEEE39E957B89CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft Manifest number: 0645 Signing time: Wed 17 Dec 2025 14:01:28 +0000 Manifest this update: Wed 17 Dec 2025 14:01:28 +0000 Manifest next update: Thu 18 Dec 2025 14:01:28 +0000 Files and hashes: 1: OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl (hash: vtw4W5+KV0Lhz0DP19oWvxR0W0q4NZ9MdtdSg419Y7w=) 2: WMqMrN8GSXOfRqdUfWDSfGSeNoY.roa (hash: +HUvEm/zmLGsWH85M7k1xXVdXwdEmqkh5XDlJHFGu2c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2c:9d:a9:fe:2d:ae:9f:35:0f:ee:e3:9e:95:7b:89:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a611bc291ff1de02256f2315345680603fa4edb Validity Not Before: Dec 17 14:01:28 2025 GMT Not After : Dec 18 14:01:28 2025 GMT Subject: CN=a26079a7b4b91382c70cb5e0ff41692b5adf4a8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:73:0b:6a:c8:d3:a9:d6:2b:5d:6b:73:2c:75: 2d:7b:d7:f6:9b:d9:81:74:ca:39:b4:0a:91:5d:fa: b8:65:5d:16:89:78:19:76:c1:63:33:bf:35:b0:58: 73:6f:7c:ad:49:5c:e3:c8:f1:f0:26:f5:58:bd:87: 7d:9b:80:c9:f1:f0:90:73:f7:25:18:83:c0:ba:e7: 79:29:20:03:d2:6d:48:a6:86:77:d9:8e:19:25:31: 25:38:2c:e1:ac:93:c2:88:f1:57:3d:7b:8e:6f:4b: 1d:dd:9a:01:72:09:03:3e:1c:30:a2:fd:74:1a:a8: 06:2b:03:2e:a1:9f:d9:0c:cd:48:23:71:79:b0:9d: a8:fe:42:28:ef:75:4e:61:73:72:00:51:b2:ce:47: db:cc:2c:fc:7d:f5:c0:f6:92:02:a1:6e:a6:34:0a: dc:60:7e:38:60:cb:50:ea:17:99:b3:be:5d:f5:b9: 88:00:34:d0:a3:95:e0:01:2b:99:70:de:5f:bd:c9: 2b:d9:f1:89:f5:ed:7e:86:ef:6b:5c:6f:cf:ef:43: 64:ba:ce:b1:2d:84:f0:de:7e:38:43:41:20:83:8b: 33:78:02:da:66:a3:61:25:6a:ca:5e:26:41:c7:23: 77:77:b0:fa:c1:ee:44:6e:6b:38:24:08:58:89:34: cc:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:60:79:A7:B4:B9:13:82:C7:0C:B5:E0:FF:41:69:2B:5A:DF:4A:8E X509v3 Authority Key Identifier: keyid:3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:15:56:51:2f:33:86:0c:0e:02:f4:9b:e1:4c:b3:bf:1a:5f: c6:de:fe:f1:d9:54:57:0e:03:52:b0:cd:8a:11:69:cd:27:12: 24:9f:40:3e:02:fb:24:0e:f5:e9:3f:12:de:a2:1b:27:27:df: 41:2d:d0:24:2e:53:2d:3b:44:30:b1:7e:ae:dc:cf:b3:50:48: 14:55:72:57:83:a6:97:78:0b:ca:d6:6a:fd:ee:22:e5:20:42: 13:84:8f:ff:74:b8:c0:42:5b:04:62:37:4c:7f:bd:21:70:ba: a6:41:7d:65:82:ae:6d:24:3b:fc:0b:5d:7f:1f:b8:f9:64:3e: 7b:37:70:ea:23:77:20:42:18:3d:bd:06:c4:9f:e5:bb:2b:b2: 3f:ee:e0:19:a6:2b:11:bd:de:13:f7:e0:09:19:38:92:c4:6e: 07:43:81:9c:a2:9d:07:c9:87:bb:12:8d:8f:55:24:aa:58:00: cd:57:b3:7e:ae:81:f7:79:b6:7d:b0:ef:a6:72:cd:c3:b8:af: 85:f1:5d:8e:ec:2a:07:c9:a6:32:0f:e1:3e:ef:f3:50:19:f0: 19:db:3a:fe:0e:51:f6:17:61:50:05:9d:ac:35:ab:76:af:1e: 40:4e:04:eb:0c:98:fd:f4:6b:22:3c:2c:43:dc:28:c6:e6:22: 7f:24:18:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZssnan+La6fNQ/u456Ve4nNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNjExYmMyOTFmZjFkZTAyMjU2ZjIzMTUzNDU2ODA2MDNm YTRlZGIwHhcNMjUxMjE3MTQwMTI4WhcNMjUxMjE4MTQwMTI4WjAzMTEwLwYDVQQD EyhhMjYwNzlhN2I0YjkxMzgyYzcwY2I1ZTBmZjQxNjkyYjVhZGY0YThlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHMLasjTqdYrXWtzLHUte9f2m9mB dMo5tAqRXfq4ZV0WiXgZdsFjM781sFhzb3ytSVzjyPHwJvVYvYd9m4DJ8fCQc/cl GIPAuud5KSAD0m1IpoZ32Y4ZJTElOCzhrJPCiPFXPXuOb0sd3ZoBcgkDPhwwov10 GqgGKwMuoZ/ZDM1II3F5sJ2o/kIo73VOYXNyAFGyzkfbzCz8ffXA9pICoW6mNArc YH44YMtQ6heZs75d9bmIADTQo5XgASuZcN5fvckr2fGJ9e1+hu9rXG/P70Nkus6x LYTw3n44Q0Egg4szeALaZqNhJWrKXiZBxyN3d7D6we5Ebms4JAhYiTTMLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKJgeae0uROCxwy14P9BaSta30qOMB8GA1UdIwQY MBaAFDphG8KR/x3gIlbyMVNFaAYD+k7bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT21FYndwSF9IZUFpVnZJeFUwVm9CZ1A2VHRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9kMTQ3MjgtNDQyZS00NGVhLWFmZDct MWI1Y2Q1YjRkMzk5LzEvT21FYndwSF9IZUFpVnZJeFUwVm9CZ1A2VHRzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy9kMTQ3MjgtNDQyZS00NGVhLWFmZDctMWI1Y2Q1YjRkMzk5 LzEvT21FYndwSF9IZUFpVnZJeFUwVm9CZ1A2VHRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAahVWUS8z hgwOAvSb4Uyzvxpfxt7+8dlUVw4DUrDNihFpzScSJJ9APgL7JA716T8S3qIbJyff QS3QJC5TLTtEMLF+rtzPs1BIFFVyV4Oml3gLytZq/e4i5SBCE4SP/3S4wEJbBGI3 TH+9IXC6pkF9ZYKubSQ7/Atdfx+4+WQ+ezdw6iN3IEIYPb0GxJ/luyuyP+7gGaYr Eb3eE/fgCRk4ksRuB0OBnKKdB8mHuxKNj1UkqlgAzVezfq6B93m2fbDvpnLNw7iv hfFdjuwqB8mmMg/hPu/zUBnwGds6/g5R9hdhUAWdrDWrdq8eQE4E6wyY/fRrIjws Q9woxuYifyQYJA== -----END CERTIFICATE-----Generated at Wed Dec 17 19:09:43 2025 by rpki-client