This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft File: O1RMoOK-GOn9dOKBMkowsOotHVI.mft (raw, json) Hash identifier: ssmdO3t03kDDoVwRG6OFeHBZuADXFEcp7VRL8z29zlg= Subject key identifier: 67:6C:0F:B8:C0:11:83:39:7D:C9:56:91:68:F9:AF:39:32:38:E3:84 Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52 Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52 Certificate serial: 019B3A8F78BEF22634B632939131B80CC221 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft Manifest number: 0E2C Signing time: Sat 20 Dec 2025 07:00:39 +0000 Manifest this update: Sat 20 Dec 2025 07:00:39 +0000 Manifest next update: Sun 21 Dec 2025 07:00:39 +0000 Files and hashes: 1: MdL7TM_8FI4FSNKpOGmHEkxh3Ic.roa (hash: kNSd9iF0Y8DMXrvxWEyFS2FyQT8gup1m11Nuuk6HbNM=) 2: O1RMoOK-GOn9dOKBMkowsOotHVI.crl (hash: i8WuFipupOQVLUb4gzWIFQFBtQHa21kNreOfC3T+Mj0=) 3: cwI21tJzYqOr9HSPPCz6L9ZgwVI.roa (hash: XU/ushJjB+n9xmj9cQdOxUY6BAOcpjTXGMQ5mCVCcNA=) 4: nKxYgxU46C1nM-kLwKHXoqpeCuk.roa (hash: acmNPfWY5Vqfewon1zfQxYgK/f0iZyi1LFngzxJT1rE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 07:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:8f:78:be:f2:26:34:b6:32:93:91:31:b8:0c:c2:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52 Validity Not Before: Dec 20 07:00:39 2025 GMT Not After : Dec 21 07:00:39 2025 GMT Subject: CN=676c0fb8c01183397dc9569168f9af393238e384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9b:7a:a1:e8:5a:d8:8d:69:07:68:27:88:42: 25:ed:0b:51:51:e0:95:af:5e:70:22:79:17:ff:34: 7d:98:0d:43:8a:5f:ff:73:ee:c9:c4:8c:a9:3d:f1: fb:a2:da:66:cb:c2:91:b2:7c:9a:62:1a:dc:29:a9: 4a:6d:e2:c5:a3:ea:db:eb:29:89:90:e3:65:c8:d2: 57:0c:d0:a9:fb:4f:06:e8:0b:50:e7:1f:ee:04:2a: a5:e2:dc:cf:f1:9f:3d:2f:1c:11:4e:c5:e8:8f:cf: b7:04:37:9b:2e:3a:ba:e0:e3:6e:0c:80:1c:5d:92: bb:c6:67:d3:6c:f7:05:bc:91:bd:f6:e3:6e:6c:72: eb:49:f9:8c:96:f7:eb:ba:92:b0:c2:ab:a9:e5:11: 4f:45:e6:c4:7d:de:ca:76:6e:66:cd:2b:b1:e6:51: c9:a5:46:50:dd:63:60:22:59:4b:f5:92:9a:87:0b: f5:c1:94:c9:33:00:66:07:6f:45:38:1e:80:10:ae: d5:d3:69:52:4e:76:6a:aa:f8:08:86:a4:48:7c:0c: 21:07:58:f6:68:96:1f:28:22:28:94:f8:f2:ce:cb: d8:f8:5e:41:04:aa:f6:fc:d0:ae:dc:61:6d:71:ab: c2:2c:86:b3:e1:d7:93:26:75:ca:6e:b9:37:66:43: 7d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:6C:0F:B8:C0:11:83:39:7D:C9:56:91:68:F9:AF:39:32:38:E3:84 X509v3 Authority Key Identifier: keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:ec:d4:bb:13:71:f1:0f:fb:ec:b4:f8:aa:2d:e8:79:21:3b: f2:f2:24:80:78:97:9d:a9:04:02:2d:3a:80:02:73:65:2c:1f: a1:0f:a7:35:0d:77:f3:75:be:56:a8:09:df:33:b8:83:40:0c: 48:45:46:f2:55:82:52:90:f7:54:b2:8d:db:7c:21:1c:8f:c6: 2a:4c:4b:38:cd:92:2b:45:79:b6:d9:55:50:c6:59:ec:a7:2b: f1:a7:d1:c8:f2:0b:9a:65:b4:f1:df:04:f9:0a:bb:aa:93:2e: da:a5:74:c6:ff:95:be:7b:11:72:a7:87:35:9c:bb:cf:aa:ac: 15:6e:f3:20:a4:6e:f5:27:73:6c:d3:22:1e:41:52:e3:c6:e5: 67:80:6a:70:07:aa:17:07:9f:a3:4b:b6:15:2e:09:fc:5b:d0: 93:23:32:6b:be:28:6e:d6:d2:c7:40:d1:19:ba:44:0e:6f:f7: 7c:3c:ed:94:e3:ba:db:42:9f:f3:34:c1:cf:8a:98:70:38:d4: 91:58:8a:2e:d1:25:45:5e:97:d9:97:a6:80:6a:cc:2c:d3:56: 4d:fc:90:9f:45:92:d3:f8:73:ae:a1:87:f1:f6:d7:93:0d:cf: 30:a4:b6:9d:78:10:21:03:54:17:09:dd:e2:31:69:3b:22:8d: e6:ec:f9:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6j3i+8iY0tjKTkTG4DMIhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiNTQ0Y2EwZTJiZTE4ZTlmZDc0ZTI4MTMyNGEzMGIwZWEy ZDFkNTIwHhcNMjUxMjIwMDcwMDM5WhcNMjUxMjIxMDcwMDM5WjAzMTEwLwYDVQQD Eyg2NzZjMGZiOGMwMTE4MzM5N2RjOTU2OTE2OGY5YWYzOTMyMzhlMzg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpt6oeha2I1pB2gniEIl7QtRUeCV r15wInkX/zR9mA1Dil//c+7JxIypPfH7otpmy8KRsnyaYhrcKalKbeLFo+rb6ymJ kONlyNJXDNCp+08G6AtQ5x/uBCql4tzP8Z89LxwRTsXoj8+3BDebLjq64ONuDIAc XZK7xmfTbPcFvJG99uNubHLrSfmMlvfrupKwwqup5RFPRebEfd7Kdm5mzSux5lHJ pUZQ3WNgIllL9ZKahwv1wZTJMwBmB29FOB6AEK7V02lSTnZqqvgIhqRIfAwhB1j2 aJYfKCIolPjyzsvY+F5BBKr2/NCu3GFtcavCLIaz4deTJnXKbrk3ZkN9PQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGdsD7jAEYM5fclWkWj5rzkyOOOEMB8GA1UdIwQY MBaAFDtUTKDivhjp/XTigTJKMLDqLR1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzFSTW9PSy1HT245ZE9LQk1rb3dzT290SFZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8zMDMwYmItNDJjMi00ZTNjLTg1OWEt ODc2YTlkNzYyOWY2LzEvTzFSTW9PSy1HT245ZE9LQk1rb3dzT290SFZJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8zMDMwYmItNDJjMi00ZTNjLTg1OWEtODc2YTlkNzYyOWY2 LzEvTzFSTW9PSy1HT245ZE9LQk1rb3dzT290SFZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHezUuxNx 8Q/77LT4qi3oeSE78vIkgHiXnakEAi06gAJzZSwfoQ+nNQ1383W+VqgJ3zO4g0AM SEVG8lWCUpD3VLKN23whHI/GKkxLOM2SK0V5ttlVUMZZ7Kcr8afRyPILmmW08d8E +Qq7qpMu2qV0xv+VvnsRcqeHNZy7z6qsFW7zIKRu9SdzbNMiHkFS48blZ4BqcAeq Fwefo0u2FS4J/FvQkyMya74obtbSx0DRGbpEDm/3fDztlOO620Kf8zTBz4qYcDjU kViKLtElRV6X2ZemgGrMLNNWTfyQn0WS0/hzrqGH8fbXkw3PMKS2nXgQIQNUFwnd 4jFpOyKN5uz5zw== -----END CERTIFICATE-----Generated at Sat Dec 20 13:54:09 2025 by rpki-client