This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft File: o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft (raw, json) Hash identifier: 9/lEfW0HuKLUgeMYh70MEfMYXCPeO8WxwYNo3wvlQVQ= Subject key identifier: AB:34:C8:89:88:DF:FF:B8:01:DC:58:9F:14:5E:EB:F2:C9:71:63:4C Authority key identifier: A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB Certificate issuer: /CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab Certificate serial: 019B4BF206999E72CA159707CE98132DDFF8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft Manifest number: 1782 Signing time: Tue 23 Dec 2025 16:01:51 +0000 Manifest this update: Tue 23 Dec 2025 16:01:51 +0000 Manifest next update: Wed 24 Dec 2025 16:01:51 +0000 Files and hashes: 1: JQFRevUesYnGzWy86if_lRLWdpc.roa (hash: t3BYwJZyAAH5HRBi+AIKc99FxTLmFzwx0nZw4AplB88=) 2: o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl (hash: 1P7XebB44NLCgTM7iHhKsQXkXiKF/gPCoI5HI4zjFP8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 15:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4b:f2:06:99:9e:72:ca:15:97:07:ce:98:13:2d:df:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab Validity Not Before: Dec 23 16:01:51 2025 GMT Not After : Dec 24 16:01:51 2025 GMT Subject: CN=ab34c88988dfffb801dc589f145eebf2c971634c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:92:81:8f:fb:67:f0:de:56:a9:93:e0:77:7c: 2b:c1:c5:d5:a8:fa:c1:fd:ff:fc:8a:49:6b:9d:a7: 48:5a:e1:25:8f:02:5e:e7:02:6b:bf:d1:ca:e4:72: 62:c2:9f:1e:60:23:6e:81:66:24:4c:6b:f3:85:11: 84:27:49:59:23:7f:f6:77:27:69:a2:e5:db:7c:10: c4:53:83:1f:29:d8:59:27:a1:50:38:de:a2:11:2f: 6e:03:6e:9a:ff:05:9d:82:f0:9d:1b:c3:e7:ee:5e: 0e:2e:7d:1b:e6:f4:bf:4a:da:2f:20:c0:83:f6:74: 90:63:7d:a8:12:15:19:ce:cc:9a:42:17:d6:11:35: 2d:e7:47:55:e1:6f:a6:98:25:b0:a7:41:86:da:75: 1c:03:30:78:ea:27:5f:bd:f9:39:7b:2d:53:7d:e1: 3a:eb:d3:8e:09:1a:6c:cc:24:df:f4:9f:c6:af:9d: 6b:f7:e9:91:c2:f6:07:76:8c:6d:2d:69:1e:6e:7a: e4:02:29:23:db:4f:fe:2c:c9:66:d0:bb:cf:3d:fe: 79:e9:49:fc:69:c5:f8:34:1c:66:49:2a:1c:f2:f1: 4d:c8:61:3f:98:67:0b:59:9c:23:43:8f:89:a1:57: 1c:b2:43:71:be:93:3a:6f:2c:b1:da:39:76:b7:2a: e5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:34:C8:89:88:DF:FF:B8:01:DC:58:9F:14:5E:EB:F2:C9:71:63:4C X509v3 Authority Key Identifier: keyid:A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:92:bf:27:b1:c5:b8:72:82:d2:a8:64:9b:32:eb:d0:35:fe: 0b:5b:9c:2d:3f:bc:be:cd:7c:5c:c6:03:3a:24:6e:1b:e1:76: b4:65:06:7a:0b:f5:e6:ac:10:a1:35:7a:7f:77:98:36:8d:1e: b8:a3:b1:39:0e:b1:99:9b:8e:92:dc:ad:b4:e6:a0:3d:0f:ff: 3a:81:db:f9:4a:15:97:7c:84:3b:ef:6e:3b:37:a2:25:70:f3: 79:07:9f:7d:57:40:48:5f:d4:01:f8:08:36:d4:94:d8:cf:dc: a3:84:bf:1f:52:0a:1a:f1:16:90:24:21:38:8a:c5:41:2c:db: 6d:ca:f3:48:50:00:91:48:80:2f:1b:49:a6:69:fc:34:44:dd: 84:ad:d8:fa:0e:4c:52:61:89:19:a8:91:7f:72:2b:dc:e2:94: 0d:9b:62:ea:6e:69:7e:9d:6d:1c:63:e9:57:81:5c:fb:b0:fc: 2f:66:76:ba:bb:58:6d:63:c0:c7:28:d9:a8:64:18:95:fb:e1: 30:65:7f:ed:6d:35:b0:9e:65:29:c3:b0:78:9d:f8:0a:fe:c4: 06:96:0e:28:93:60:79:00:53:93:2c:85:80:4e:61:8a:4b:f0: 0d:ea:fc:d9:3c:ae:94:65:a2:49:bc:72:da:34:2f:c8:99:94: 93:e8:52:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtL8gaZnnLKFZcHzpgTLd/4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzNjZmMzViYWM2MWEwYWJmNzFkMThkNmIxMDYzZDVjOTMz YTI0YWIwHhcNMjUxMjIzMTYwMTUxWhcNMjUxMjI0MTYwMTUxWjAzMTEwLwYDVQQD EyhhYjM0Yzg4OTg4ZGZmZmI4MDFkYzU4OWYxNDVlZWJmMmM5NzE2MzRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3JKBj/tn8N5WqZPgd3wrwcXVqPrB /f/8iklrnadIWuEljwJe5wJrv9HK5HJiwp8eYCNugWYkTGvzhRGEJ0lZI3/2dydp ouXbfBDEU4MfKdhZJ6FQON6iES9uA26a/wWdgvCdG8Pn7l4OLn0b5vS/StovIMCD 9nSQY32oEhUZzsyaQhfWETUt50dV4W+mmCWwp0GG2nUcAzB46idfvfk5ey1TfeE6 69OOCRpszCTf9J/Gr51r9+mRwvYHdoxtLWkebnrkAikj20/+LMlm0LvPPf556Un8 acX4NBxmSSoc8vFNyGE/mGcLWZwjQ4+JoVccskNxvpM6byyx2jl2tyrlbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKs0yImI3/+4AdxYnxRe6/LJcWNMMB8GA1UdIwQY MBaAFKNm81usYaCr9x0Y1rEGPVyTOiSrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzJielc2eGhvS3YzSFJqV3NRWTlYSk02SktzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC80Y2Y4MTQtNzliNS00Nzg2LWFjNTEt MzE5MDc5NWU4NjNiLzEvbzJielc2eGhvS3YzSFJqV3NRWTlYSk02SktzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC80Y2Y4MTQtNzliNS00Nzg2LWFjNTEtMzE5MDc5NWU4NjNi LzEvbzJielc2eGhvS3YzSFJqV3NRWTlYSk02SktzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlpK/J7HF uHKC0qhkmzLr0DX+C1ucLT+8vs18XMYDOiRuG+F2tGUGegv15qwQoTV6f3eYNo0e uKOxOQ6xmZuOktyttOagPQ//OoHb+UoVl3yEO+9uOzeiJXDzeQeffVdASF/UAfgI NtSU2M/co4S/H1IKGvEWkCQhOIrFQSzbbcrzSFAAkUiALxtJpmn8NETdhK3Y+g5M UmGJGaiRf3Ir3OKUDZti6m5pfp1tHGPpV4Fc+7D8L2Z2urtYbWPAxyjZqGQYlfvh MGV/7W01sJ5lKcOweJ34Cv7EBpYOKJNgeQBTkyyFgE5hikvwDer82TyulGWiSbxy 2jQvyJmUk+hSFw== -----END CERTIFICATE-----Generated at Tue Dec 23 18:33:52 2025 by rpki-client