This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft File: oNMhbMzIY-ygw90YmUGxueo3ys0.mft (raw, json) Hash identifier: 8mlrT+lLm7DpQfIdIfO41fJDUhXJFxp9ETcOps+7K3E= Subject key identifier: 67:89:DC:43:3D:2F:41:93:75:5F:28:F7:BC:BB:AD:01:ED:69:6B:41 Authority key identifier: A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD Certificate issuer: /CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd Certificate serial: 019B3D231B3EB669BAC14B2C5D77A9CBB391 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft Manifest number: 0FD6 Signing time: Sat 20 Dec 2025 19:01:09 +0000 Manifest this update: Sat 20 Dec 2025 19:01:09 +0000 Manifest next update: Sun 21 Dec 2025 19:01:09 +0000 Files and hashes: 1: 39kht1dMkPPkyzVEUtQczwfTvnI.roa (hash: nGaIvUiJ54BR8itFDRSZZFTb/ADjvMX1q4ZciY7jeK8=) 2: YAQOG7HS14oLGl_AE__5KljKQek.roa (hash: vYFfnqVBOtNvOIxvJDmuRRaUo+YW3T+OADCuratSdoU=) 3: oNMhbMzIY-ygw90YmUGxueo3ys0.crl (hash: iHWqn5IFfH9V5oJUaOeHscvYUXg/VLE0Ydr9ixlcrxc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:23:1b:3e:b6:69:ba:c1:4b:2c:5d:77:a9:cb:b3:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd Validity Not Before: Dec 20 19:01:09 2025 GMT Not After : Dec 21 19:01:09 2025 GMT Subject: CN=6789dc433d2f4193755f28f7bcbbad01ed696b41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:bb:69:1e:67:a1:6d:ca:22:fa:b0:7c:7e:4c: e1:f6:d4:10:eb:ca:09:e6:c8:54:e5:d8:9f:cd:65: 25:83:79:dd:ae:5f:44:56:24:74:3a:ac:68:c5:a7: 5d:57:77:af:d4:be:4a:21:d8:a6:f5:7d:4c:b1:a0: 21:f8:14:78:9a:18:8a:64:31:1f:07:ae:ff:89:80: fb:40:e2:a5:d9:29:8c:ea:45:ec:ff:70:8f:90:d2: 9e:b8:96:a6:12:ee:87:a3:a9:a6:4f:87:1d:ac:10: 1c:aa:07:71:98:09:c4:4e:0a:6d:03:1d:21:49:5c: d3:b3:96:e7:02:1a:41:a8:ae:90:7b:17:07:c2:83: 3c:dc:9e:0c:4f:4b:0f:f8:24:87:72:b7:cb:15:3c: 54:30:b1:31:f4:aa:d0:4c:57:33:bb:9a:09:f8:10: 54:b8:3f:5c:15:46:e2:66:91:31:3e:0a:a0:24:be: f3:32:ba:d5:86:00:b1:cf:ee:be:6f:65:88:23:97: e9:c5:01:23:f1:00:e0:7d:a7:3f:93:d7:b0:91:ad: 14:71:f6:b6:c3:dd:53:48:d4:50:e1:1a:2a:99:c1: 87:5a:85:7a:aa:e5:8a:f8:af:4f:6d:60:d6:2a:e5: 70:69:db:d7:53:b4:b2:32:1d:3a:02:da:23:7e:1d: 4c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:89:DC:43:3D:2F:41:93:75:5F:28:F7:BC:BB:AD:01:ED:69:6B:41 X509v3 Authority Key Identifier: keyid:A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:a2:0f:20:2b:ff:68:e8:4a:76:2e:3b:8b:52:ff:5c:97:b3: 12:a7:19:18:65:c2:c6:b9:e1:fb:f6:a8:29:a0:ee:2f:1e:1f: ac:ad:ee:32:a4:31:62:4b:7b:79:14:68:5c:f4:a5:bb:7f:98: ca:92:60:01:8c:44:28:c9:98:69:57:c2:ce:42:b9:3e:08:60: c6:5b:9c:c3:d3:9b:22:22:bc:b4:22:bf:63:f1:04:59:97:d3: 16:b5:b3:ac:73:5f:4a:24:5b:c1:64:21:e3:76:02:44:b8:d8: 83:38:ca:66:0b:04:46:4c:b9:e3:52:18:e1:3a:d1:7b:16:6a: a9:19:37:8f:44:41:db:b4:00:31:f6:e4:86:02:2f:a5:e9:e9: ad:55:d8:80:9b:36:1c:0c:df:18:dc:ec:2e:a3:48:c8:9a:f5: e8:a1:d9:9f:10:c7:fd:89:e8:d0:54:2a:b7:ff:1e:fa:2a:b7: 79:06:00:2a:7f:c6:97:60:51:15:ec:3c:95:63:92:f6:a9:cd: d7:2c:8d:70:35:78:3c:73:b3:34:6b:bb:e6:6b:52:34:58:a8: dc:c4:ea:e3:02:55:8d:e9:f1:19:e8:74:90:f9:1b:33:65:c6: ea:5f:d1:f6:20:87:c9:3e:fd:46:5d:2a:02:ba:0c:6b:47:33: 89:7b:57:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9Ixs+tmm6wUssXXepy7ORMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwZDMyMTZjY2NjODYzZWNhMGMzZGQxODk5NDFiMWI5ZWEz N2NhY2QwHhcNMjUxMjIwMTkwMTA5WhcNMjUxMjIxMTkwMTA5WjAzMTEwLwYDVQQD Eyg2Nzg5ZGM0MzNkMmY0MTkzNzU1ZjI4ZjdiY2JiYWQwMWVkNjk2YjQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5rtpHmehbcoi+rB8fkzh9tQQ68oJ 5shU5difzWUlg3ndrl9EViR0OqxoxaddV3ev1L5KIdim9X1MsaAh+BR4mhiKZDEf B67/iYD7QOKl2SmM6kXs/3CPkNKeuJamEu6Ho6mmT4cdrBAcqgdxmAnETgptAx0h SVzTs5bnAhpBqK6QexcHwoM83J4MT0sP+CSHcrfLFTxUMLEx9KrQTFczu5oJ+BBU uD9cFUbiZpExPgqgJL7zMrrVhgCxz+6+b2WII5fpxQEj8QDgfac/k9ewka0Ucfa2 w91TSNRQ4RoqmcGHWoV6quWK+K9PbWDWKuVwadvXU7SyMh06Atojfh1MhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGeJ3EM9L0GTdV8o97y7rQHtaWtBMB8GA1UdIwQY MBaAFKDTIWzMyGPsoMPdGJlBsbnqN8rNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb05NaGJNeklZLXlndzkwWW1VR3h1ZW8zeXMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9hNWIyZDEtY2JhMC00YTU0LWI0Mzgt MGQ0NGMwNGE4NDQ4LzEvb05NaGJNeklZLXlndzkwWW1VR3h1ZW8zeXMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9hNWIyZDEtY2JhMC00YTU0LWI0MzgtMGQ0NGMwNGE4NDQ4 LzEvb05NaGJNeklZLXlndzkwWW1VR3h1ZW8zeXMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK6IPICv/ aOhKdi47i1L/XJezEqcZGGXCxrnh+/aoKaDuLx4frK3uMqQxYkt7eRRoXPSlu3+Y ypJgAYxEKMmYaVfCzkK5Pghgxlucw9ObIiK8tCK/Y/EEWZfTFrWzrHNfSiRbwWQh 43YCRLjYgzjKZgsERky541IY4TrRexZqqRk3j0RB27QAMfbkhgIvpenprVXYgJs2 HAzfGNzsLqNIyJr16KHZnxDH/Yno0FQqt/8e+iq3eQYAKn/Gl2BRFew8lWOS9qnN 1yyNcDV4PHOzNGu75mtSNFio3MTq4wJVjenxGeh0kPkbM2XG6l/R9iCHyT79Rl0q AroMa0cziXtX1Q== -----END CERTIFICATE-----Generated at Sat Dec 20 21:46:26 2025 by rpki-client