This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft File: OPnFTxkZPgZUgWP4lcOka5-L-7U.mft (raw, json) Hash identifier: 3xTYM1sXQb070tQxH45BAgCmdj3zprFsoGy1Qo7kyZw= Subject key identifier: A1:A3:B6:E0:E1:84:42:8E:0C:94:80:C9:8E:D8:86:09:9E:51:6A:35 Authority key identifier: 38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5 Certificate issuer: /CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5 Certificate serial: 019B1C4EAF471FA7862CE97E9A0AA5227730 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft Manifest number: 177D Signing time: Sun 14 Dec 2025 10:01:17 +0000 Manifest this update: Sun 14 Dec 2025 10:01:17 +0000 Manifest next update: Mon 15 Dec 2025 10:01:17 +0000 Files and hashes: 1: 06fKvJ6DXtLQkPRF_5x6h3y4T5U.roa (hash: pwXaDGNXY2yyDJWetIQvjmX4OTShxo8fPOC9bn7nYwE=) 2: GAcb3_GTi9es4ti94Ex9da8Yuuo.roa (hash: hXt1K6MNNmm3FVbMZur0tZVjSZe1csXYHc6pvZG31yI=) 3: IPfQIXhx-EVpYevUCH6nRlI1vEk.roa (hash: aoDfqoJzdh17Itb5jDuQwg4ZtT6PxaA9lD3xjUMRLF4=) 4: OPnFTxkZPgZUgWP4lcOka5-L-7U.crl (hash: zi5VVSTc9flS8CiGLFSZiFfZsq3Bz6jCXVmvZA3KqUs=) 5: S7F8i1yEfNMFg3wpeOW0-FZBtwg.roa (hash: Rx3B3lYVZPumB8Nlts1azVOM9+RgsZGpcLJHsf7VfhM=) 6: nd6lHNAwUs4ZI74-h5aLN2zFa-w.roa (hash: X+qt5MDK/JQj57z8c3vd0NZATrYmJ74WqiXy7QQvbTw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 10:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1c:4e:af:47:1f:a7:86:2c:e9:7e:9a:0a:a5:22:77:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5 Validity Not Before: Dec 14 10:01:17 2025 GMT Not After : Dec 15 10:01:17 2025 GMT Subject: CN=a1a3b6e0e184428e0c9480c98ed886099e516a35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b7:f8:be:59:39:e8:61:a6:f0:b8:a0:90:eb: c1:a8:bf:bf:66:e1:6c:c6:64:e6:f9:e6:0d:3f:3b: 5e:90:df:cc:ed:0b:eb:8e:75:34:61:d7:ff:a0:09: 66:23:fa:a7:e1:20:7f:bf:13:e2:64:67:43:a4:9c: 47:f3:b2:a6:ac:17:f1:cc:f4:01:67:fd:05:c5:55: 12:76:59:58:e2:20:a0:10:30:20:ae:60:d6:f5:44: 03:3d:ce:91:c8:20:32:17:09:15:d3:4c:50:1f:5a: 97:c3:83:6d:50:6a:c4:a3:6a:f5:c2:92:3c:a4:81: e2:e1:55:19:05:1e:e2:9a:04:02:d5:bc:bd:e0:92: e2:12:4f:2c:01:73:a4:13:ed:64:50:76:f8:cd:a7: 9d:e4:a2:22:36:a1:30:93:16:1a:cd:14:18:71:81: f2:eb:65:7d:08:66:17:ea:61:fc:91:fb:75:f5:e7: bd:00:d4:f2:6a:f7:4a:ed:c4:d2:61:77:ac:cf:98: c4:d4:c4:be:17:f5:b0:2d:6b:aa:ff:2a:43:ee:68: 79:b7:1a:ab:77:b6:25:11:af:d7:bd:c5:31:be:8b: 3f:0c:8b:22:75:ea:92:4c:82:60:38:6b:ab:71:0d: 66:f2:3e:78:f0:fc:1f:e5:9b:92:10:4d:b2:ca:16: b9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A3:B6:E0:E1:84:42:8E:0C:94:80:C9:8E:D8:86:09:9E:51:6A:35 X509v3 Authority Key Identifier: keyid:38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:2c:c9:c4:c1:ad:f9:36:c0:98:9a:35:dd:75:fb:42:31:16: bb:f5:e6:bd:d8:e0:5a:97:7c:46:4d:62:08:8c:91:8b:74:23: 88:8b:70:39:72:22:54:61:d1:be:ab:31:35:e8:0a:2a:84:db: 1f:d6:a6:0d:a1:5f:c5:eb:d7:2c:1a:31:0b:44:2d:09:c1:81: 7a:45:b9:9a:ac:3a:eb:b7:03:02:58:c9:03:25:98:43:58:fa: fe:c7:55:42:58:fa:13:7c:a4:f7:42:fa:27:b0:46:2c:ea:79: 2d:ea:71:cd:ec:21:0b:1e:d1:57:bb:25:fd:af:6d:94:9c:19: 94:c5:c8:c3:63:af:cf:b8:91:34:47:d1:32:ea:73:04:1e:20: fe:fb:00:93:8a:43:4a:a2:81:72:89:93:b8:d0:2a:e7:ff:03: a2:b4:7c:b6:72:23:2e:3d:f1:e6:fd:67:ee:6f:14:24:8b:8b: c5:94:62:95:fb:08:3f:12:23:28:b8:e9:21:a5:b3:88:ba:83: b1:a2:8c:0b:07:c8:76:14:ab:a9:70:31:2a:23:38:b6:28:37: f6:51:71:d2:2e:d2:f5:6c:ab:1a:73:79:96:93:53:c3:20:58: d9:e8:b7:b5:83:1a:ef:60:c8:bc:fc:4e:3f:04:08:c2:31:70: d6:9b:ed:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZscTq9HH6eGLOl+mgqlIncwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4ZjljNTRmMTkxOTNlMDY1NDgxNjNmODk1YzNhNDZiOWY4 YmZiYjUwHhcNMjUxMjE0MTAwMTE3WhcNMjUxMjE1MTAwMTE3WjAzMTEwLwYDVQQD EyhhMWEzYjZlMGUxODQ0MjhlMGM5NDgwYzk4ZWQ4ODYwOTllNTE2YTM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAubf4vlk56GGm8LigkOvBqL+/ZuFs xmTm+eYNPztekN/M7QvrjnU0Ydf/oAlmI/qn4SB/vxPiZGdDpJxH87KmrBfxzPQB Z/0FxVUSdllY4iCgEDAgrmDW9UQDPc6RyCAyFwkV00xQH1qXw4NtUGrEo2r1wpI8 pIHi4VUZBR7imgQC1by94JLiEk8sAXOkE+1kUHb4zaed5KIiNqEwkxYazRQYcYHy 62V9CGYX6mH8kft19ee9ANTyavdK7cTSYXesz5jE1MS+F/WwLWuq/ypD7mh5txqr d7YlEa/XvcUxvos/DIsideqSTIJgOGurcQ1m8j548Pwf5ZuSEE2yyha5kwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKGjtuDhhEKODJSAyY7YhgmeUWo1MB8GA1UdIwQY MBaAFDj5xU8ZGT4GVIFj+JXDpGufi/u1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1BuRlR4a1pQZ1pVZ1dQNGxjT2thNS1MLTdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9mMGI2YmEtODY3NS00OTFjLTg1OTMt NzI0OTQ5YjQ2MGU5LzEvT1BuRlR4a1pQZ1pVZ1dQNGxjT2thNS1MLTdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9mMGI2YmEtODY3NS00OTFjLTg1OTMtNzI0OTQ5YjQ2MGU5 LzEvT1BuRlR4a1pQZ1pVZ1dQNGxjT2thNS1MLTdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHCzJxMGt +TbAmJo13XX7QjEWu/XmvdjgWpd8Rk1iCIyRi3QjiItwOXIiVGHRvqsxNegKKoTb H9amDaFfxevXLBoxC0QtCcGBekW5mqw667cDAljJAyWYQ1j6/sdVQlj6E3yk90L6 J7BGLOp5LepxzewhCx7RV7sl/a9tlJwZlMXIw2Ovz7iRNEfRMupzBB4g/vsAk4pD SqKBcomTuNAq5/8DorR8tnIjLj3x5v1n7m8UJIuLxZRilfsIPxIjKLjpIaWziLqD saKMCwfIdhSrqXAxKiM4tig39lFx0i7S9WyrGnN5lpNTwyBY2ei3tYMa72DIvPxO PwQIwjFw1pvtSg== -----END CERTIFICATE-----Generated at Sun Dec 14 19:02:18 2025 by rpki-client