This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json) Hash identifier: OJzy7Ho+tXOG07snG0+uTU7O/JAuMCNxwYw2vKp5Y4g= Subject key identifier: A8:24:7C:20:89:2B:B0:15:36:27:9E:3E:07:74:3A:DD:81:F6:3B:DF Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58 Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958 Certificate serial: 019B262DAA398CDFAD37B28DF61AA78D6B38 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft Manifest number: 176D Signing time: Tue 16 Dec 2025 08:01:25 +0000 Manifest this update: Tue 16 Dec 2025 08:01:25 +0000 Manifest next update: Wed 17 Dec 2025 08:01:25 +0000 Files and hashes: 1: EQS-D1pgF9X9JxFRgbIMqF1eIP4.roa (hash: X1oH+D4EKjN/FZ/0o/XNZpi/rX7eBTsOxnwwIoAyafs=) 2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: p9sEeK6vjwrx4S99hwRw73Lyr9hfccS2JIa3yc25Nl0=) 3: VK52xwAI-aKIKTeQlztwUDOO02E.roa (hash: C9ydrT1jO/tCG0jTbHX7J5njz1R33YyX3/MyTTWyLe8=) 4: cVloRXAZs5Oo5mzrcunH3Tc2864.roa (hash: PRZbsG5bEI+5vtvix6l8s4vQ6r0jrrNQcUM/ZaoxHsc=) 5: fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa (hash: NJGE7uKTYs1I+EUOo5wFk+oBfIXQxyDxL9xtb3Bt434=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 08:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:26:2d:aa:39:8c:df:ad:37:b2:8d:f6:1a:a7:8d:6b:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958 Validity Not Before: Dec 16 08:01:25 2025 GMT Not After : Dec 17 08:01:25 2025 GMT Subject: CN=a8247c20892bb01536279e3e07743add81f63bdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:83:b9:62:ab:af:95:1f:9c:46:67:f5:b1:40: e9:e0:49:d1:d7:a9:a4:9e:f5:9f:d5:47:0e:b2:de: b7:b2:d7:4c:77:dd:9e:d0:b7:e8:c1:97:af:1c:11: de:68:2d:00:b2:f7:94:f8:c9:e5:f7:b7:ac:3c:4d: 00:89:34:98:fd:2e:ef:9e:38:ad:90:1d:79:cc:4c: cb:e0:50:cd:8c:ba:25:7e:c0:c7:c2:3d:9c:03:40: 9b:98:64:d2:aa:60:b5:65:e8:4a:5d:5c:1b:11:9c: 98:24:60:46:9c:0a:3c:55:f4:d3:77:49:f6:a7:05: b5:c2:99:63:de:bd:fd:c5:cd:e5:d3:f0:36:1d:cb: 34:7c:46:90:a1:a4:a1:ac:43:fb:98:94:52:28:f6: f6:a8:cd:df:25:5e:b2:72:e3:72:3d:35:2a:dd:68: 4b:d0:04:ee:81:d7:e5:de:17:2b:e9:5d:2f:3f:96: 6b:95:6b:7e:91:47:6b:2b:70:55:eb:38:f7:70:35: 9e:b6:cf:44:cc:c5:33:b4:2b:5d:c9:cf:fc:bb:6f: c1:36:02:9d:19:ff:de:f7:46:9d:73:ab:af:61:82: ec:40:e9:7c:0a:ca:92:91:60:5c:07:65:05:1a:a4: a5:8f:45:99:6c:cc:c0:64:3d:41:59:68:60:0e:df: d8:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:24:7C:20:89:2B:B0:15:36:27:9E:3E:07:74:3A:DD:81:F6:3B:DF X509v3 Authority Key Identifier: keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:93:20:eb:c9:03:0b:3c:33:a9:e1:fb:bf:44:45:4b:31:66: f3:89:33:27:20:44:43:22:3e:ba:2f:c2:ee:dd:25:ce:3c:31: 29:0e:d9:65:76:16:de:a5:6e:fe:af:f8:e7:75:d5:f5:10:06: 78:76:de:fd:0c:c3:c1:a9:0b:da:5f:d0:92:1a:34:41:ab:6d: 34:47:f4:bf:14:5c:0d:75:01:ee:7a:9b:a7:68:e0:3b:f0:33: eb:41:42:9c:0c:e3:75:ae:48:8a:83:24:90:98:22:4b:ec:2a: f7:f2:8c:b5:98:92:32:d6:84:5c:6c:fe:a2:d1:27:97:1f:b4: 02:82:cb:de:42:2e:8d:72:9e:b8:d3:37:bb:19:f6:e4:40:d6: 62:41:54:8c:41:65:43:34:3c:8f:d8:33:e6:1c:33:8e:e2:27: 0d:74:6d:69:e3:42:3b:33:72:31:cc:fc:6e:79:60:8d:a7:66: c0:e7:61:39:a1:ea:1a:cb:a8:ea:46:54:35:b5:3a:8e:f8:40: bd:95:37:23:5e:2f:0c:7b:ad:25:0b:7d:a3:87:24:91:c4:61: 5e:37:a7:3a:ee:a9:c5:da:fa:1c:6d:c7:98:7e:d9:7a:40:ee: f7:d3:53:10:3f:c3:8f:e9:4e:df:a3:37:4b:db:d4:8a:ff:44: 74:16:14:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsmLao5jN+tN7KN9hqnjWs4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5NzMyZGNkMGMzNTQyNjE0NGY5ZjAyNjc1NDE3OWRmYWVi ZTg5NTgwHhcNMjUxMjE2MDgwMTI1WhcNMjUxMjE3MDgwMTI1WjAzMTEwLwYDVQQD EyhhODI0N2MyMDg5MmJiMDE1MzYyNzllM2UwNzc0M2FkZDgxZjYzYmRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn4O5YquvlR+cRmf1sUDp4EnR16mk nvWf1UcOst63stdMd92e0LfowZevHBHeaC0AsveU+Mnl97esPE0AiTSY/S7vnjit kB15zEzL4FDNjLolfsDHwj2cA0CbmGTSqmC1ZehKXVwbEZyYJGBGnAo8VfTTd0n2 pwW1wplj3r39xc3l0/A2Hcs0fEaQoaShrEP7mJRSKPb2qM3fJV6ycuNyPTUq3WhL 0ATugdfl3hcr6V0vP5ZrlWt+kUdrK3BV6zj3cDWets9EzMUztCtdyc/8u2/BNgKd Gf/e90adc6uvYYLsQOl8CsqSkWBcB2UFGqSlj0WZbMzAZD1BWWhgDt/YkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKgkfCCJK7AVNieePgd0Ot2B9jvfMB8GA1UdIwQY MBaAFDlzLc0MNUJhRPnwJnVBed+uvolYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODIt ZjYwYWYyYTgyMDYwLzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODItZjYwYWYyYTgyMDYw LzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQZMg68kD CzwzqeH7v0RFSzFm84kzJyBEQyI+ui/C7t0lzjwxKQ7ZZXYW3qVu/q/453XV9RAG eHbe/QzDwakL2l/Qkho0QattNEf0vxRcDXUB7nqbp2jgO/Az60FCnAzjda5IioMk kJgiS+wq9/KMtZiSMtaEXGz+otEnlx+0AoLL3kIujXKeuNM3uxn25EDWYkFUjEFl QzQ8j9gz5hwzjuInDXRtaeNCOzNyMcz8bnlgjadmwOdhOaHqGsuo6kZUNbU6jvhA vZU3I14vDHutJQt9o4ckkcRhXjenOu6pxdr6HG3HmH7ZekDu99NTED/Dj+lO36M3 S9vUiv9EdBYUDA== -----END CERTIFICATE-----Generated at Tue Dec 16 11:41:20 2025 by rpki-client