This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft File: oKFURB35Yj7rWhlhONIb71gktEE.mft (raw, json) Hash identifier: wnINd6N4ZU0eh3ceX3RyRqOVVgcuM8t4J1YEHi49r0k= Subject key identifier: E8:A4:46:DA:94:1D:CA:3F:BA:97:F0:03:B1:F1:D2:F1:32:1B:26:35 Authority key identifier: A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41 Certificate issuer: /CN=a0a154441df9623eeb5a196138d21bef5824b441 Certificate serial: 019B0FDC1AACFBB0E60251FB66580D2DB612 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft Manifest number: 1778 Signing time: Fri 12 Dec 2025 00:00:41 +0000 Manifest this update: Fri 12 Dec 2025 00:00:41 +0000 Manifest next update: Sat 13 Dec 2025 00:00:41 +0000 Files and hashes: 1: LinQK8fdUd0acFjufsgbsosu8aw.roa (hash: hdbmVMkuGYn9OnPhUkRUmIQuYMEx93e049UxiL3ibkE=) 2: cqMIZbZG_XjFMjyio64LoSb9JEM.roa (hash: xBYH5ZrjKUuPI62l0z0GQBA4FW4u95fkTkxgETr+i9Q=) 3: oKFURB35Yj7rWhlhONIb71gktEE.crl (hash: wUphi4Uf4wTRDtx2iDZujMiP95vwjSaqkF8xLGL/lzU=) 4: wlqxE5iuLQB304PN7hVNM4_5h14.roa (hash: xdHQ2e13Tky6CrFmxy2+w5Er25IzDfQGHtx/iyo+wSA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:dc:1a:ac:fb:b0:e6:02:51:fb:66:58:0d:2d:b6:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0a154441df9623eeb5a196138d21bef5824b441 Validity Not Before: Dec 12 00:00:41 2025 GMT Not After : Dec 13 00:00:41 2025 GMT Subject: CN=e8a446da941dca3fba97f003b1f1d2f1321b2635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:9a:a3:54:6a:3c:5e:1a:4b:8c:11:a8:59:e9: bc:dc:fc:2e:6c:00:da:e4:69:01:a2:a9:d9:68:72: e3:c3:25:b8:14:ca:89:e1:66:ac:27:80:e7:44:fc: e7:e9:c3:4b:1f:c1:04:99:65:cf:0b:ff:26:fa:00: 5e:0a:3c:04:f2:b7:4a:4d:f3:ae:4f:0f:60:c8:8f: 6c:c5:50:dd:a6:02:ea:0f:68:b5:e2:6b:1f:c3:32: 48:40:a4:8b:51:a3:16:d3:31:53:bc:17:52:53:9c: eb:85:5a:18:fa:49:95:b7:1b:21:db:3c:5c:58:33: 76:66:81:bf:d0:dd:81:96:c7:93:19:0d:f4:83:80: 2b:a0:04:ab:b4:58:12:7c:f4:8e:a6:91:6a:09:15: c0:7d:7b:14:e8:9d:04:49:a0:a2:b5:f4:e5:7a:24: 41:99:90:71:4c:e7:e0:c1:cd:39:e5:01:26:16:fc: ce:02:f5:28:b8:1b:60:92:64:73:66:ac:57:24:9f: 22:10:1f:f9:ea:4f:3e:03:02:b2:1f:48:ba:a2:a1: d6:37:97:bd:a5:aa:ed:d4:53:e2:ab:c6:bd:12:1a: 16:f1:89:83:1a:7c:90:dc:74:f6:b7:c8:bd:de:50: 57:66:f1:e4:7d:e3:fa:fb:28:51:1b:09:05:ef:99: cd:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:A4:46:DA:94:1D:CA:3F:BA:97:F0:03:B1:F1:D2:F1:32:1B:26:35 X509v3 Authority Key Identifier: keyid:A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:6d:37:fc:83:3b:63:16:7e:9c:80:72:67:c4:69:18:33:63: 7b:22:b9:63:c2:18:3c:70:fb:5e:57:ba:5d:c0:f4:33:6e:1d: bf:ac:be:1c:2a:4d:15:66:0d:0a:8a:65:6a:7b:b8:3b:53:f3: 47:4d:23:6d:22:a0:13:8f:c0:54:94:42:e2:12:08:2e:82:af: 85:85:5f:8d:15:a9:9e:a2:91:59:8f:8c:60:90:29:78:15:2d: 37:33:01:52:84:2a:9b:e2:da:cb:d9:a5:5c:42:07:2e:55:0a: d4:b0:cc:dd:2f:5e:18:7c:38:3e:ec:d9:dd:fe:17:c0:96:1e: 06:83:d9:c9:6c:83:57:a1:6f:92:f7:f4:dc:ff:11:4c:65:31: a6:50:5a:43:8b:1e:75:12:fc:da:f1:34:3b:01:d1:7b:18:80: 67:f0:bb:f1:e0:91:82:fe:48:b3:2b:0e:84:b9:50:30:8b:c5: 5d:50:96:1c:31:ce:70:b4:f2:b7:e2:f0:26:8b:37:0f:d8:40: ad:d5:38:2c:60:89:dc:2a:93:52:d0:48:76:d1:df:0b:6b:05: da:07:ed:76:d0:6f:90:30:0e:b7:3d:0f:40:71:d3:54:cc:2c: 40:39:7f:46:f6:b9:85:e3:e9:d2:2d:7d:8d:23:1d:92:0b:16: 18:9b:8a:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsP3Bqs+7DmAlH7ZlgNLbYSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYTE1NDQ0MWRmOTYyM2VlYjVhMTk2MTM4ZDIxYmVmNTgy NGI0NDEwHhcNMjUxMjEyMDAwMDQxWhcNMjUxMjEzMDAwMDQxWjAzMTEwLwYDVQQD EyhlOGE0NDZkYTk0MWRjYTNmYmE5N2YwMDNiMWYxZDJmMTMyMWIyNjM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi5qjVGo8XhpLjBGoWem83PwubADa 5GkBoqnZaHLjwyW4FMqJ4WasJ4DnRPzn6cNLH8EEmWXPC/8m+gBeCjwE8rdKTfOu Tw9gyI9sxVDdpgLqD2i14msfwzJIQKSLUaMW0zFTvBdSU5zrhVoY+kmVtxsh2zxc WDN2ZoG/0N2BlseTGQ30g4AroASrtFgSfPSOppFqCRXAfXsU6J0ESaCitfTleiRB mZBxTOfgwc055QEmFvzOAvUouBtgkmRzZqxXJJ8iEB/56k8+AwKyH0i6oqHWN5e9 part1FPiq8a9EhoW8YmDGnyQ3HT2t8i93lBXZvHkfeP6+yhRGwkF75nNQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOikRtqUHco/upfwA7Hx0vEyGyY1MB8GA1UdIwQY MBaAFKChVEQd+WI+61oZYTjSG+9YJLRBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0tGVVJCMzVZajdyV2hsaE9OSWI3MWdrdEVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC81YjNkNmQtZTZmMS00N2FkLWI1MmIt OWQ5NDM2NzFhOGEzLzEvb0tGVVJCMzVZajdyV2hsaE9OSWI3MWdrdEVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC81YjNkNmQtZTZmMS00N2FkLWI1MmItOWQ5NDM2NzFhOGEz LzEvb0tGVVJCMzVZajdyV2hsaE9OSWI3MWdrdEVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYW03/IM7 YxZ+nIByZ8RpGDNjeyK5Y8IYPHD7Xle6XcD0M24dv6y+HCpNFWYNCoplanu4O1Pz R00jbSKgE4/AVJRC4hIILoKvhYVfjRWpnqKRWY+MYJApeBUtNzMBUoQqm+Lay9ml XEIHLlUK1LDM3S9eGHw4PuzZ3f4XwJYeBoPZyWyDV6Fvkvf03P8RTGUxplBaQ4se dRL82vE0OwHRexiAZ/C78eCRgv5IsysOhLlQMIvFXVCWHDHOcLTyt+LwJos3D9hA rdU4LGCJ3CqTUtBIdtHfC2sF2gftdtBvkDAOtz0PQHHTVMwsQDl/Rva5hePp0i19 jSMdkgsWGJuK9A== -----END CERTIFICATE-----Generated at Fri Dec 12 07:05:32 2025 by rpki-client