This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft File: OuUFv8f9kXaGscizohj1UI9aNwo.mft (raw, json) Hash identifier: j43Vn2/SrJgZIrL9uW+VkBmFfa79ExPJoZu+9w1MGIM= Subject key identifier: 8A:A7:5B:E9:4D:FE:32:9D:00:F4:90:31:B4:1F:BF:62:DA:D9:4E:8D Authority key identifier: 3A:E5:05:BF:C7:FD:91:76:86:B1:C8:B3:A2:18:F5:50:8F:5A:37:0A Certificate issuer: /CN=3ae505bfc7fd917686b1c8b3a218f5508f5a370a Certificate serial: 019B19F22F6FA613DDD9BE414E5D342D6D5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuUFv8f9kXaGscizohj1UI9aNwo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft Manifest number: 03C6 Signing time: Sat 13 Dec 2025 23:01:00 +0000 Manifest this update: Sat 13 Dec 2025 23:01:00 +0000 Manifest next update: Sun 14 Dec 2025 23:01:00 +0000 Files and hashes: 1: OuUFv8f9kXaGscizohj1UI9aNwo.crl (hash: Iu0SWH2/jUr1uRgPSD1s3sbvTCQEH9kfjNxdnZUbe+8=) 2: lhV68OSkur6ZsAA_2dy8-L_4IL0.roa (hash: BvvVh8/fqP1HPi1uOxwh0N4UEkoJk2nM455CRrFSNec=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.crl rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft rsync://rpki.ripe.net/repository/DEFAULT/OuUFv8f9kXaGscizohj1UI9aNwo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:f2:2f:6f:a6:13:dd:d9:be:41:4e:5d:34:2d:6d:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ae505bfc7fd917686b1c8b3a218f5508f5a370a Validity Not Before: Dec 13 23:01:00 2025 GMT Not After : Dec 14 23:01:00 2025 GMT Subject: CN=8aa75be94dfe329d00f49031b41fbf62dad94e8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b0:77:9c:5a:05:40:bf:ec:94:b8:82:79:7d: a5:2b:11:ef:3a:f2:2f:50:1c:68:e1:13:96:0a:5f: 9b:e1:52:03:26:96:8d:fb:5f:8a:50:d3:a2:d7:53: ea:9d:be:a3:c2:c9:91:6a:91:c3:45:1a:1f:39:bd: 55:65:f6:b3:88:f9:d9:ec:4c:04:3b:b9:51:b3:07: 7b:8e:9b:f4:50:e0:29:1e:ef:f9:b5:ba:d2:cb:7b: a5:77:e0:62:4f:b1:32:65:1e:d4:94:f8:ed:ce:2b: 5c:a6:8c:e7:e0:5f:43:c3:7b:24:2e:2d:34:78:53: 0d:c9:8c:7f:7b:a9:0d:82:29:bc:2e:a3:85:76:e7: 39:ba:df:b9:17:8b:c3:80:ec:7d:a3:1b:d2:c9:44: aa:ba:79:66:94:5a:9d:78:35:d7:f0:7e:c3:50:72: 9f:a3:21:2a:03:d5:32:24:d8:37:6d:19:51:39:54: 20:19:10:58:a2:4c:fd:da:ac:2d:c8:12:ce:1f:1e: e9:72:21:0c:85:a7:5c:0f:08:98:b6:f0:9f:47:fa: 9e:b7:dd:f7:66:2f:3d:ce:22:33:29:84:33:3d:26: cd:c1:13:8b:f5:49:9c:1f:69:17:a1:1a:35:18:03: cc:ef:91:a0:a1:19:f7:c7:5b:ad:63:a4:8e:89:0c: ae:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:A7:5B:E9:4D:FE:32:9D:00:F4:90:31:B4:1F:BF:62:DA:D9:4E:8D X509v3 Authority Key Identifier: keyid:3A:E5:05:BF:C7:FD:91:76:86:B1:C8:B3:A2:18:F5:50:8F:5A:37:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuUFv8f9kXaGscizohj1UI9aNwo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:2c:80:4b:3c:ef:70:bb:8c:e5:ab:37:61:0e:a2:1c:8f:12: bf:92:b4:82:01:51:22:83:82:42:8c:be:a5:21:8d:79:27:78: cd:93:10:ce:7a:0b:a5:7d:2c:39:22:be:17:6a:a5:2c:71:db: f0:35:a8:84:2b:42:2e:bd:a5:85:9c:0f:f6:af:ea:22:00:64: 3b:57:81:57:df:11:d2:9b:04:46:34:f9:80:d5:dd:a6:b5:11: fe:a3:a7:05:f1:a2:31:20:db:57:59:5d:47:6a:d1:56:93:fa: 7e:08:12:f7:e9:d6:01:eb:46:88:bb:be:b3:40:25:0d:0a:e5: 25:cb:8d:58:55:ca:6b:0e:6a:4f:70:83:9a:70:38:9d:61:ae: 43:95:65:0e:f6:b4:33:07:e1:78:fd:23:c5:d3:95:33:1c:a0: ae:32:f9:8e:98:08:4a:d1:71:7b:5e:d5:01:a3:dd:1e:2c:b6: 82:f5:5f:72:76:4e:af:cd:bc:32:3c:96:55:d1:f0:92:c7:0b: 62:94:f3:9c:3a:17:1d:a7:a6:b3:62:da:bc:af:5c:ae:7b:f7: 4b:28:5e:f3:9c:41:f5:b7:90:83:76:37:19:54:c0:d3:9e:04: 93:06:e8:80:8c:af:02:b2:99:91:40:61:cb:31:80:f6:31:81: 9e:c7:e8:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZ8i9vphPd2b5BTl00LW1aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZTUwNWJmYzdmZDkxNzY4NmIxYzhiM2EyMThmNTUwOGY1 YTM3MGEwHhcNMjUxMjEzMjMwMTAwWhcNMjUxMjE0MjMwMTAwWjAzMTEwLwYDVQQD Eyg4YWE3NWJlOTRkZmUzMjlkMDBmNDkwMzFiNDFmYmY2MmRhZDk0ZThkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLB3nFoFQL/slLiCeX2lKxHvOvIv UBxo4ROWCl+b4VIDJpaN+1+KUNOi11Pqnb6jwsmRapHDRRofOb1VZfaziPnZ7EwE O7lRswd7jpv0UOApHu/5tbrSy3uld+BiT7EyZR7UlPjtzitcpozn4F9Dw3skLi00 eFMNyYx/e6kNgim8LqOFduc5ut+5F4vDgOx9oxvSyUSqunlmlFqdeDXX8H7DUHKf oyEqA9UyJNg3bRlROVQgGRBYokz92qwtyBLOHx7pciEMhadcDwiYtvCfR/qet933 Zi89ziIzKYQzPSbNwROL9UmcH2kXoRo1GAPM75GgoRn3x1utY6SOiQyuAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIqnW+lN/jKdAPSQMbQfv2La2U6NMB8GA1UdIwQY MBaAFDrlBb/H/ZF2hrHIs6IY9VCPWjcKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3VVRnY4ZjlrWGFHc2Npem9oajFVSTlhTndvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS80MTkzZWEtYzgzZi00YmViLWEyMWUt YTFjNzhhMGE2YmZkLzEvT3VVRnY4ZjlrWGFHc2Npem9oajFVSTlhTndvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS80MTkzZWEtYzgzZi00YmViLWEyMWUtYTFjNzhhMGE2YmZk LzEvT3VVRnY4ZjlrWGFHc2Npem9oajFVSTlhTndvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbyyASzzv cLuM5as3YQ6iHI8Sv5K0ggFRIoOCQoy+pSGNeSd4zZMQznoLpX0sOSK+F2qlLHHb 8DWohCtCLr2lhZwP9q/qIgBkO1eBV98R0psERjT5gNXdprUR/qOnBfGiMSDbV1ld R2rRVpP6fggS9+nWAetGiLu+s0AlDQrlJcuNWFXKaw5qT3CDmnA4nWGuQ5VlDva0 MwfheP0jxdOVMxygrjL5jpgIStFxe17VAaPdHiy2gvVfcnZOr828MjyWVdHwkscL YpTznDoXHaems2LavK9crnv3Syhe85xB9beQg3Y3GVTA054EkwbogIyvArKZkUBh yzGA9jGBnsfoiQ== -----END CERTIFICATE-----Generated at Sun Dec 14 03:30:00 2025 by rpki-client