This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/0fbe17-b58c-4ea2-8b32-91f719b5b046/1/oXYKUBSDGdYXKjgg2IipJMCdel8.mft File: oXYKUBSDGdYXKjgg2IipJMCdel8.mft (raw, json) Hash identifier: RL0CoYlVud5W/nI1uX6nGcYb4mT0J0Yrk4k6ftnOgzU= Subject key identifier: 31:91:20:10:56:E0:36:F1:F6:B7:D5:FF:77:BE:22:D3:59:E2:90:68 Authority key identifier: A1:76:0A:50:14:83:19:D6:17:2A:38:20:D8:88:A9:24:C0:9D:7A:5F Certificate issuer: /CN=a1760a50148319d6172a3820d888a924c09d7a5f Certificate serial: 019B597748841BDF10E58456FBFACEAA9242 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oXYKUBSDGdYXKjgg2IipJMCdel8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/0fbe17-b58c-4ea2-8b32-91f719b5b046/1/oXYKUBSDGdYXKjgg2IipJMCdel8.mft Manifest number: 4F Signing time: Fri 26 Dec 2025 07:02:28 +0000 Manifest this update: Fri 26 Dec 2025 07:02:28 +0000 Manifest next update: Sat 27 Dec 2025 07:02:28 +0000 Files and hashes: 1: oXYKUBSDGdYXKjgg2IipJMCdel8.crl (hash: 7tRa/UQClUM5qz2ERqGqrM4ZOXWlE+4USUOZzq6iWKM=) 2: skNw0-S5lXSBLgJDnUIwuxob_VE.roa (hash: L7NdVGLJO+2+mxUNZPcg0M6qJdkyLkrgbxDY8ChE+3A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/0fbe17-b58c-4ea2-8b32-91f719b5b046/1/oXYKUBSDGdYXKjgg2IipJMCdel8.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/0fbe17-b58c-4ea2-8b32-91f719b5b046/1/oXYKUBSDGdYXKjgg2IipJMCdel8.mft rsync://rpki.ripe.net/repository/DEFAULT/oXYKUBSDGdYXKjgg2IipJMCdel8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:77:48:84:1b:df:10:e5:84:56:fb:fa:ce:aa:92:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1760a50148319d6172a3820d888a924c09d7a5f Validity Not Before: Dec 26 07:02:28 2025 GMT Not After : Dec 27 07:02:28 2025 GMT Subject: CN=3191201056e036f1f6b7d5ff77be22d359e29068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:75:6b:b2:8e:34:2a:ca:30:b4:a3:3f:0e:2b: af:f6:d2:30:b6:63:85:ac:da:78:f3:84:24:58:ba: 08:65:4d:93:de:5b:d1:d9:58:09:e8:a1:c8:36:87: 1d:75:b3:61:8d:e9:9c:08:0b:f1:89:91:00:85:5c: 45:84:ff:34:43:f9:9b:e1:c5:c4:2c:8c:76:7f:34: 20:9e:0c:fa:0b:9d:d8:8b:de:27:aa:08:2c:8a:d4: 85:47:51:83:1e:b7:0c:ef:e5:ff:f2:ea:47:23:09: 4e:d4:1b:76:a7:b0:9c:7a:19:37:a2:82:01:4d:a1: 60:b0:40:58:68:79:c1:a8:66:b4:44:c5:84:07:12: e6:44:79:e9:98:67:33:f1:ff:b0:09:cd:fa:c9:be: f6:54:64:26:34:03:a8:0d:1d:72:5e:97:df:73:06: cf:ec:a0:73:18:dd:c0:42:9a:62:5e:43:f4:2c:91: b4:48:63:97:98:3f:f3:69:2c:7e:7a:4b:ce:f6:13: 56:51:08:cf:c4:6f:11:36:01:d1:d0:8f:a3:d7:92: 63:ab:32:49:6b:24:30:52:1e:27:ba:1e:01:7a:f2: bb:fa:e9:78:7d:7a:b6:f5:71:89:df:97:87:4b:b6: 9c:43:29:18:a8:2b:6c:7c:e8:2e:1b:40:b6:9a:90: cf:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:91:20:10:56:E0:36:F1:F6:B7:D5:FF:77:BE:22:D3:59:E2:90:68 X509v3 Authority Key Identifier: keyid:A1:76:0A:50:14:83:19:D6:17:2A:38:20:D8:88:A9:24:C0:9D:7A:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oXYKUBSDGdYXKjgg2IipJMCdel8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/0fbe17-b58c-4ea2-8b32-91f719b5b046/1/oXYKUBSDGdYXKjgg2IipJMCdel8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/0fbe17-b58c-4ea2-8b32-91f719b5b046/1/oXYKUBSDGdYXKjgg2IipJMCdel8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:2e:92:8b:b5:36:be:4d:a0:c1:77:5c:d5:69:87:82:0b:a1: c0:d6:ff:a6:9b:ff:73:d5:e8:9d:55:fc:1c:b3:bf:4c:e5:ce: 35:a2:10:46:f7:29:ed:b4:0a:00:f0:c4:ed:6b:33:8f:f3:53: 2a:b4:28:72:8e:15:f1:a9:f3:6f:93:76:68:86:28:ce:cc:2d: 7f:31:c3:59:b5:4f:0d:50:85:76:ce:1b:0f:3d:a9:76:81:09: cc:1d:92:b1:d9:79:34:69:68:47:fe:1a:e7:a4:77:04:57:cc: 6d:bc:6d:e8:e8:22:36:05:45:01:b3:b8:d4:26:bc:3d:2f:93: 35:b4:ba:f1:89:8a:c2:e3:26:9c:90:43:bd:f3:9e:6a:9b:c2: 86:41:fe:d8:d7:91:a8:a9:6b:b8:86:41:c1:d1:1a:cc:9f:cb: a9:7d:8b:e3:d5:12:1e:5c:77:0a:6b:23:a5:bf:2c:f9:c7:ca: 7b:7c:9b:e9:b6:7b:05:dc:6e:f4:58:34:4f:2f:11:c3:b7:e4: 65:94:1e:5b:ac:db:fc:eb:98:67:72:fa:67:41:ff:26:9f:6d: 3e:0d:43:00:a6:30:6d:b6:b7:07:23:d3:4e:af:6a:ef:7a:79: af:9b:c4:d9:47:e6:ba:26:ea:35:57:1a:3c:3a:41:00:a7:39: c1:94:3c:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZd0iEG98Q5YRW+/rOqpJCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExNzYwYTUwMTQ4MzE5ZDYxNzJhMzgyMGQ4ODhhOTI0YzA5 ZDdhNWYwHhcNMjUxMjI2MDcwMjI4WhcNMjUxMjI3MDcwMjI4WjAzMTEwLwYDVQQD EygzMTkxMjAxMDU2ZTAzNmYxZjZiN2Q1ZmY3N2JlMjJkMzU5ZTI5MDY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArnVrso40KsowtKM/Diuv9tIwtmOF rNp484QkWLoIZU2T3lvR2VgJ6KHINocddbNhjemcCAvxiZEAhVxFhP80Q/mb4cXE LIx2fzQgngz6C53Yi94nqggsitSFR1GDHrcM7+X/8upHIwlO1Bt2p7Ccehk3ooIB TaFgsEBYaHnBqGa0RMWEBxLmRHnpmGcz8f+wCc36yb72VGQmNAOoDR1yXpffcwbP 7KBzGN3AQppiXkP0LJG0SGOXmD/zaSx+ekvO9hNWUQjPxG8RNgHR0I+j15JjqzJJ ayQwUh4nuh4BevK7+ul4fXq29XGJ35eHS7acQykYqCtsfOguG0C2mpDP7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDGRIBBW4Dbx9rfV/3e+ItNZ4pBoMB8GA1UdIwQY MBaAFKF2ClAUgxnWFyo4INiIqSTAnXpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1hZS1VCU0RHZFlYS2pnZzJJaXBKTUNkZWw4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8wZmJlMTctYjU4Yy00ZWEyLThiMzIt OTFmNzE5YjViMDQ2LzEvb1hZS1VCU0RHZFlYS2pnZzJJaXBKTUNkZWw4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy8wZmJlMTctYjU4Yy00ZWEyLThiMzItOTFmNzE5YjViMDQ2 LzEvb1hZS1VCU0RHZFlYS2pnZzJJaXBKTUNkZWw4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAai6Si7U2 vk2gwXdc1WmHgguhwNb/ppv/c9XonVX8HLO/TOXONaIQRvcp7bQKAPDE7Wszj/NT KrQoco4V8anzb5N2aIYozswtfzHDWbVPDVCFds4bDz2pdoEJzB2Ssdl5NGloR/4a 56R3BFfMbbxt6OgiNgVFAbO41Ca8PS+TNbS68YmKwuMmnJBDvfOeapvChkH+2NeR qKlruIZBwdEazJ/LqX2L49USHlx3Cmsjpb8s+cfKe3yb6bZ7Bdxu9Fg0Ty8Rw7fk ZZQeW6zb/OuYZ3L6Z0H/Jp9tPg1DAKYwbba3ByPTTq9q73p5r5vE2UfmuibqNVca PDpBAKc5wZQ8WQ== -----END CERTIFICATE-----Generated at Fri Dec 26 15:43:17 2025 by rpki-client