This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft File: O9mhd7td-26r5MrXne-PiwBd9lY.mft (raw, json) Hash identifier: eFjeWqyf+UoMrGMyrAbDLpCuN6/r++dEgiMxRwtwBOU= Subject key identifier: E3:14:A8:DA:F3:A9:66:4E:06:DC:53:7A:21:A3:3D:EA:0F:28:2E:B4 Authority key identifier: 3B:D9:A1:77:BB:5D:FB:6E:AB:E4:CA:D7:9D:EF:8F:8B:00:5D:F6:56 Certificate issuer: /CN=3bd9a177bb5dfb6eabe4cad79def8f8b005df656 Certificate serial: 019B4023D9046CCB20F9F04D7759D76AE813 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft Manifest number: 12CC Signing time: Sun 21 Dec 2025 09:00:49 +0000 Manifest this update: Sun 21 Dec 2025 09:00:49 +0000 Manifest next update: Mon 22 Dec 2025 09:00:49 +0000 Files and hashes: 1: 4n60dmESH0S_t55G5kL7m5-9nPQ.roa (hash: 8Yl7mPdCOASLn21jFFZtRnqVACPq2IcHgd8DlOM4RfQ=) 2: BibofgsXi1m02E0sydv0lSzcS6M.roa (hash: 6kPi5tOuSZ0eERv1ZZd/XUAaafp/Tbm9N/8PWSqizA4=) 3: O9mhd7td-26r5MrXne-PiwBd9lY.crl (hash: O2/RmJTsmtnYQMPRNkbbNeCt0OObz+H6p2c2WCQV2RI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.crl rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:23:d9:04:6c:cb:20:f9:f0:4d:77:59:d7:6a:e8:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3bd9a177bb5dfb6eabe4cad79def8f8b005df656 Validity Not Before: Dec 21 09:00:49 2025 GMT Not After : Dec 22 09:00:49 2025 GMT Subject: CN=e314a8daf3a9664e06dc537a21a33dea0f282eb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:e6:0e:4c:be:9b:7e:8a:a3:e6:2c:63:bb:06: d0:f0:b1:14:72:74:07:6a:d9:ec:b0:bd:84:f3:e6: eb:ad:a9:c6:25:d4:be:86:e5:25:ba:d2:3b:f5:68: 56:6c:8a:b8:08:13:20:70:41:0c:55:da:bd:72:72: 35:13:aa:0e:d6:3e:1c:86:e0:5a:a2:e9:0b:9e:13: fe:a3:99:cb:a4:dd:69:56:43:03:e3:b5:c6:c1:04: 21:3e:b9:7d:19:d4:fd:74:79:2f:84:cb:16:68:ba: 36:3e:47:44:c2:b3:f0:ac:19:e4:78:7e:31:63:ed: 94:c8:df:f0:c9:19:04:57:fd:71:65:9c:04:2c:a6: 41:0e:7e:26:ce:3e:05:de:1e:b0:51:45:7d:9f:1d: b1:2b:fd:f5:97:ee:b0:f9:6f:fe:a4:77:47:7d:b5: 44:38:1d:04:1a:6e:9c:d0:ca:8d:bb:78:ca:b1:3c: 0c:48:ac:7f:40:9a:08:df:b6:11:38:45:27:e3:ba: a3:08:bb:fc:d6:64:c1:80:fa:06:5d:91:a0:bc:9b: 16:10:e4:94:cd:2c:3b:ba:0b:d4:f3:36:29:1c:a6: 62:ed:4a:ba:2b:d7:72:98:53:6b:27:8a:8c:44:9d: 9a:08:3b:b7:d3:6d:89:7d:44:2d:29:46:22:4e:7d: b2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:14:A8:DA:F3:A9:66:4E:06:DC:53:7A:21:A3:3D:EA:0F:28:2E:B4 X509v3 Authority Key Identifier: keyid:3B:D9:A1:77:BB:5D:FB:6E:AB:E4:CA:D7:9D:EF:8F:8B:00:5D:F6:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:79:63:ac:f0:da:d4:44:7a:22:c8:3d:f8:c4:fd:70:8b:da: e6:d8:81:f6:5c:d4:6d:65:a8:1d:c2:96:e7:04:9e:95:cc:1c: 9a:76:79:33:93:96:ac:0f:d2:fd:0c:b5:45:06:3f:46:ff:5a: b2:b4:83:c2:78:72:a0:26:b7:ac:13:3e:d6:4e:a2:b1:7b:0c: d4:19:cb:ee:da:f7:3f:4e:3c:8f:aa:6c:97:d6:b0:c6:ea:e6: 0e:29:db:bc:bf:8d:33:04:e6:78:7d:20:b2:71:6c:88:83:65: 63:a4:9f:1a:13:1d:4e:24:70:35:43:32:9a:05:b4:31:99:26: 8d:15:e7:1f:40:6c:25:08:0d:d3:93:84:43:98:b8:7f:b8:6e: 05:03:7c:9c:9c:04:5c:40:37:0d:cb:f1:b7:99:27:c4:a1:7a: a6:57:07:e5:f8:77:9c:88:8e:8b:d5:ac:dc:4b:a2:f3:3d:f3: 6f:15:20:eb:17:1b:27:7f:45:fb:99:77:c3:a8:3c:c9:97:b4: 18:f6:88:3c:6f:7b:a5:14:31:86:df:c9:2f:a8:2b:87:a1:00: 94:fc:92:5c:bf:25:70:5d:70:41:f6:fe:ac:91:d3:8a:a4:55: 08:bc:16:41:69:4e:ae:e9:7e:e1:ea:56:42:05:d7:80:20:c7: 78:ab:33:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAI9kEbMsg+fBNd1nXaugTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiZDlhMTc3YmI1ZGZiNmVhYmU0Y2FkNzlkZWY4ZjhiMDA1 ZGY2NTYwHhcNMjUxMjIxMDkwMDQ5WhcNMjUxMjIyMDkwMDQ5WjAzMTEwLwYDVQQD EyhlMzE0YThkYWYzYTk2NjRlMDZkYzUzN2EyMWEzM2RlYTBmMjgyZWI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhuYOTL6bfoqj5ixjuwbQ8LEUcnQH atnssL2E8+brranGJdS+huUlutI79WhWbIq4CBMgcEEMVdq9cnI1E6oO1j4chuBa oukLnhP+o5nLpN1pVkMD47XGwQQhPrl9GdT9dHkvhMsWaLo2PkdEwrPwrBnkeH4x Y+2UyN/wyRkEV/1xZZwELKZBDn4mzj4F3h6wUUV9nx2xK/31l+6w+W/+pHdHfbVE OB0EGm6c0MqNu3jKsTwMSKx/QJoI37YROEUn47qjCLv81mTBgPoGXZGgvJsWEOSU zSw7ugvU8zYpHKZi7Uq6K9dymFNrJ4qMRJ2aCDu3022JfUQtKUYiTn2ybQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOMUqNrzqWZOBtxTeiGjPeoPKC60MB8GA1UdIwQY MBaAFDvZoXe7Xftuq+TK153vj4sAXfZWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzltaGQ3dGQtMjZyNU1yWG5lLVBpd0JkOWxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9jMGQ0NjctZjYyYS00MTljLWJlODUt ZTM4MDMwYjY5ZDVhLzEvTzltaGQ3dGQtMjZyNU1yWG5lLVBpd0JkOWxZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi9jMGQ0NjctZjYyYS00MTljLWJlODUtZTM4MDMwYjY5ZDVh LzEvTzltaGQ3dGQtMjZyNU1yWG5lLVBpd0JkOWxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMnljrPDa 1ER6Isg9+MT9cIva5tiB9lzUbWWoHcKW5wSelcwcmnZ5M5OWrA/S/Qy1RQY/Rv9a srSDwnhyoCa3rBM+1k6isXsM1BnL7tr3P048j6psl9awxurmDinbvL+NMwTmeH0g snFsiINlY6SfGhMdTiRwNUMymgW0MZkmjRXnH0BsJQgN05OEQ5i4f7huBQN8nJwE XEA3Dcvxt5knxKF6plcH5fh3nIiOi9Ws3Eui8z3zbxUg6xcbJ39F+5l3w6g8yZe0 GPaIPG97pRQxht/JL6grh6EAlPySXL8lcF1wQfb+rJHTiqRVCLwWQWlOrul+4epW QgXXgCDHeKszgA== -----END CERTIFICATE-----Generated at Sun Dec 21 13:41:06 2025 by rpki-client