This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft File: OYhH9wo15xCETpu4omK-3bQLfMk.mft (raw, json) Hash identifier: zEuuwxeQRDCmEyXaePDfZj45OcB+MxaL10SWB1xYlYM= Subject key identifier: 3D:0A:22:79:27:A1:8D:83:F7:79:BC:7B:36:92:DA:DC:65:A6:D1:AC Authority key identifier: 39:88:47:F7:0A:35:E7:10:84:4E:9B:B8:A2:62:BE:DD:B4:0B:7C:C9 Certificate issuer: /CN=398847f70a35e710844e9bb8a262beddb40b7cc9 Certificate serial: 019B58D0FBA6BB2873C87D62429A9A9C0344 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OYhH9wo15xCETpu4omK-3bQLfMk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft Manifest number: 055A Signing time: Fri 26 Dec 2025 04:00:49 +0000 Manifest this update: Fri 26 Dec 2025 04:00:49 +0000 Manifest next update: Sat 27 Dec 2025 04:00:49 +0000 Files and hashes: 1: AKsS4j3-VaOHBWSMj23g7vx6Zz4.roa (hash: U4YaSKjxHoIRGGCP7ydVCxsh9Cu5QYl71iaS4zOmA2c=) 2: OYhH9wo15xCETpu4omK-3bQLfMk.crl (hash: OADCADB0f6OBW81m4oALiwQtwVOgkXhdR23k9kjn6SA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft rsync://rpki.ripe.net/repository/DEFAULT/OYhH9wo15xCETpu4omK-3bQLfMk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 04:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:58:d0:fb:a6:bb:28:73:c8:7d:62:42:9a:9a:9c:03:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=398847f70a35e710844e9bb8a262beddb40b7cc9 Validity Not Before: Dec 26 04:00:49 2025 GMT Not After : Dec 27 04:00:49 2025 GMT Subject: CN=3d0a227927a18d83f779bc7b3692dadc65a6d1ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:65:2b:74:c1:e5:44:5e:b0:40:91:0f:bc:57: 1a:40:a2:40:a7:90:12:98:ed:57:11:90:bd:9f:7b: 7e:77:42:61:d8:7e:af:2f:2c:c8:cf:26:ab:8a:9b: 79:c5:fe:fc:cc:fd:52:cf:6a:9c:de:c4:4a:e8:c2: 02:13:4c:80:3c:79:48:de:98:25:03:ac:67:d1:f8: bd:a6:4e:65:49:2e:97:f9:6d:4b:4c:62:37:b8:73: af:f8:3b:f1:8f:be:98:51:58:36:90:f4:01:eb:d7: 57:61:99:28:57:20:06:92:a3:8c:bd:6f:54:4c:52: 13:c6:e2:cb:b5:1a:25:22:6f:db:61:b4:0d:90:ef: 5f:f3:0b:fa:b7:be:9f:79:fa:19:da:c0:69:10:35: 7f:5c:7e:23:54:a4:84:a5:eb:6e:7f:d9:35:b7:3a: 31:d9:f5:b8:3a:aa:bc:3f:e1:e8:b5:5d:d4:dc:e6: 95:32:97:86:d8:29:06:f3:36:23:80:9a:51:27:81: ba:84:3e:26:82:13:41:43:6f:76:9f:db:04:a0:fa: 4d:d2:97:7e:70:12:2d:10:9f:a2:04:64:91:bc:fa: 94:83:e9:42:b3:82:9a:33:92:96:ad:f9:9a:8b:e9: d1:61:69:cd:71:a2:a8:f9:c5:0a:f6:10:1e:3a:13: 6a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:0A:22:79:27:A1:8D:83:F7:79:BC:7B:36:92:DA:DC:65:A6:D1:AC X509v3 Authority Key Identifier: keyid:39:88:47:F7:0A:35:E7:10:84:4E:9B:B8:A2:62:BE:DD:B4:0B:7C:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OYhH9wo15xCETpu4omK-3bQLfMk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:10:fa:71:8d:42:c2:82:19:34:a2:a9:dc:91:01:37:a6:3d: 63:ca:4f:bd:a7:fd:d9:26:b1:db:bd:21:7e:20:d0:a1:72:01: fb:24:6e:2a:46:10:46:ad:df:35:cb:04:0a:a4:02:50:7e:d8: 32:58:0d:21:90:e8:2f:dd:04:4f:73:2f:fa:de:f3:ac:05:88: 2d:0f:dc:3e:4a:08:0f:a1:61:fd:0b:1b:55:22:35:57:0b:6b: 54:ba:2f:d0:63:55:3d:21:cc:04:19:4b:c2:8c:76:47:a8:d9: 88:fe:b3:e4:25:94:bc:fe:27:5b:b3:94:68:88:27:85:35:b5: 09:76:b1:6e:73:d2:96:e6:d2:5c:e2:4e:15:73:6a:b9:f4:65: 28:e4:82:2c:24:8d:e2:e4:32:86:36:54:ab:0a:d5:e9:99:0c: 0f:79:c4:58:20:13:24:cc:20:79:cb:d7:66:a5:50:64:03:a3: 9a:e1:4b:f4:55:b8:68:a3:43:ae:b8:57:bd:3a:86:b0:08:60: 83:2b:fa:7c:8b:e8:f1:81:a6:2f:9b:1d:bb:62:90:ea:50:25: 0c:7f:84:9d:24:ab:f8:83:27:4d:07:a5:69:e9:be:d0:b8:48: d6:eb:f5:2f:62:f7:6e:3a:8e:43:cb:18:08:b2:a0:ea:bd:f8: 24:11:31:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtY0PumuyhzyH1iQpqanANEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5ODg0N2Y3MGEzNWU3MTA4NDRlOWJiOGEyNjJiZWRkYjQw YjdjYzkwHhcNMjUxMjI2MDQwMDQ5WhcNMjUxMjI3MDQwMDQ5WjAzMTEwLwYDVQQD EygzZDBhMjI3OTI3YTE4ZDgzZjc3OWJjN2IzNjkyZGFkYzY1YTZkMWFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5WUrdMHlRF6wQJEPvFcaQKJAp5AS mO1XEZC9n3t+d0Jh2H6vLyzIzyaript5xf78zP1Sz2qc3sRK6MICE0yAPHlI3pgl A6xn0fi9pk5lSS6X+W1LTGI3uHOv+Dvxj76YUVg2kPQB69dXYZkoVyAGkqOMvW9U TFITxuLLtRolIm/bYbQNkO9f8wv6t76fefoZ2sBpEDV/XH4jVKSEpetuf9k1tzox 2fW4Oqq8P+HotV3U3OaVMpeG2CkG8zYjgJpRJ4G6hD4mghNBQ292n9sEoPpN0pd+ cBItEJ+iBGSRvPqUg+lCs4KaM5KWrfmai+nRYWnNcaKo+cUK9hAeOhNqFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD0KInknoY2D93m8ezaS2txlptGsMB8GA1UdIwQY MBaAFDmIR/cKNecQhE6buKJivt20C3zJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1loSDl3bzE1eENFVHB1NG9tSy0zYlFMZk1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi9mYzc2NTctMDYzZS00YWY3LTg5ZTYt ZjlmZWEzNGI2YjAxLzEvT1loSDl3bzE1eENFVHB1NG9tSy0zYlFMZk1rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi9mYzc2NTctMDYzZS00YWY3LTg5ZTYtZjlmZWEzNGI2YjAx LzEvT1loSDl3bzE1eENFVHB1NG9tSy0zYlFMZk1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFRD6cY1C woIZNKKp3JEBN6Y9Y8pPvaf92Sax270hfiDQoXIB+yRuKkYQRq3fNcsECqQCUH7Y MlgNIZDoL90ET3Mv+t7zrAWILQ/cPkoID6Fh/QsbVSI1VwtrVLov0GNVPSHMBBlL wox2R6jZiP6z5CWUvP4nW7OUaIgnhTW1CXaxbnPSlubSXOJOFXNqufRlKOSCLCSN 4uQyhjZUqwrV6ZkMD3nEWCATJMwgecvXZqVQZAOjmuFL9FW4aKNDrrhXvTqGsAhg gyv6fIvo8YGmL5sdu2KQ6lAlDH+EnSSr+IMnTQelaem+0LhI1uv1L2L3bjqOQ8sY CLKg6r34JBExOw== -----END CERTIFICATE-----Generated at Fri Dec 26 14:07:49 2025 by rpki-client