This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft File: O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft (raw, json) Hash identifier: FEF30gKptsi+evuhudEETaxJMFiP0M9dWHR57JjO2KU= Subject key identifier: B7:C5:24:40:EC:B5:FE:51:5F:D1:BC:57:71:7B:40:8C:76:7E:46:10 Authority key identifier: 3B:FA:66:36:FE:64:40:AC:F2:93:B7:57:05:A7:A1:DC:AD:A8:42:0B Certificate issuer: /CN=3bfa6636fe6440acf293b75705a7a1dcada8420b Certificate serial: 019B3AFD43B6533349CBF5D6F9DCE458C556 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft Manifest number: 178F Signing time: Sat 20 Dec 2025 09:00:34 +0000 Manifest this update: Sat 20 Dec 2025 09:00:34 +0000 Manifest next update: Sun 21 Dec 2025 09:00:34 +0000 Files and hashes: 1: 9BmVkWHqnPagXm5os2wnNWK9INk.roa (hash: 8RngoNykTFTJnIq5oyzFYRTf3TP7cyLKV5cry6M5mgE=) 2: O_pmNv5kQKzyk7dXBaeh3K2oQgs.crl (hash: m0ZwmTeQ2yBcbJSBM2iTj0UdV9oDsrFOKvMkCk42Ox4=) 3: XMfgeWsouW7zDItYh1JZ2jjj45k.roa (hash: vbzvSSJRPNTDibm8O4OpKJZcb0gn8EqIPSb4vf2O1YQ=) 4: bfaBM6FlZYXa4nbuYDgVUb-kZ3Q.roa (hash: xgsMr2NauAKQSxWJwA/kjcmJfb7a4hHGqMdZNQtzfIo=) 5: ect9rt1iTOwU4l499MLwvhBDleI.roa (hash: uzI2RBjcPd1qUaeOmN2JzrZzLgn4U0x7LpGFh6u7YtQ=) 6: k4SuTTWtdBVQ_LKZQ1KA6lDONew.roa (hash: wlxEmhfh10lsvP/Vr0aaNNA3fnG6+QPuVB7G+98rWuk=) 7: n15MEYNvv2pMvnP0JWDh9ke-rMw.roa (hash: a5c2NX6rzpDN08ss2QyMsYiZjq6GT9uV8kCAFrcH1WA=) 8: wb50_D1ewkMOUFxLDz2rdaS7yFE.roa (hash: oMtAJWBhFmyN0NJmKrxaTP7Y/Gbn/GmAXozjV5Dt6I8=) 9: xEqqXsYbNZoaeb1j-5HleNNIZTs.roa (hash: DriMeptRhAZWNYYwFItNxlYBiBVqZaoh9EMF2d4ArFA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:fd:43:b6:53:33:49:cb:f5:d6:f9:dc:e4:58:c5:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3bfa6636fe6440acf293b75705a7a1dcada8420b Validity Not Before: Dec 20 09:00:34 2025 GMT Not After : Dec 21 09:00:34 2025 GMT Subject: CN=b7c52440ecb5fe515fd1bc57717b408c767e4610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:82:b6:75:ef:87:ac:d5:8b:0d:37:d9:fa:ed: ba:0c:72:90:ea:8e:2c:70:4e:fa:05:bb:ae:41:71: 3a:5e:ea:1e:50:85:1e:8a:ba:02:d7:92:23:28:ab: e6:33:8a:55:bc:7c:f8:96:61:da:ac:25:f5:a5:c5: 44:ee:2d:34:bc:66:82:19:8d:c3:14:17:96:f8:5b: ad:b0:fe:e8:4e:d3:48:7c:15:59:01:b9:fd:cb:f2: 1f:b1:9b:30:74:4d:17:ad:8d:33:19:74:66:b1:fc: c1:61:88:49:ae:1e:16:db:a8:cb:bf:e7:ae:b8:f2: 9a:5f:8b:7a:c1:df:4c:93:c6:e7:7e:1a:e1:c8:c9: 60:e6:e5:12:30:47:e1:87:be:ac:2c:17:69:94:c2: 49:0c:86:4d:53:70:d3:fe:76:fd:52:09:ea:c9:ec: f5:6f:41:5e:9c:89:1d:4a:71:01:a4:e6:a9:2d:86: 66:c2:bc:17:3e:2b:52:ab:4f:5c:91:6f:04:20:bb: 4d:fd:bc:b4:e3:ad:66:db:50:93:a3:e4:32:09:53: 0c:4d:9e:fb:57:3f:e7:50:94:4d:01:bc:d7:8c:4a: 65:5b:92:c3:6a:33:93:55:92:4b:08:dd:1b:d7:53: 92:88:58:53:8d:b8:eb:77:48:2d:9d:6b:34:d2:97: 09:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:C5:24:40:EC:B5:FE:51:5F:D1:BC:57:71:7B:40:8C:76:7E:46:10 X509v3 Authority Key Identifier: keyid:3B:FA:66:36:FE:64:40:AC:F2:93:B7:57:05:A7:A1:DC:AD:A8:42:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:8a:58:cd:2f:43:ff:51:b0:ac:ca:22:ee:23:d4:11:02:5e: 33:68:96:1e:04:fa:47:1a:6a:83:6f:2e:39:70:eb:86:93:5e: c0:86:c5:b6:09:d9:17:71:39:c5:b3:56:60:8b:9e:82:5e:c7: 42:43:26:fe:27:19:6d:c7:a4:a2:c3:08:88:63:88:38:94:5b: 04:9b:86:c6:94:cb:08:17:f4:25:60:6d:02:16:ff:c3:f4:e0: c9:4c:1c:10:4c:b8:2d:86:5a:a8:c7:ea:d8:91:98:bb:54:6b: b8:31:38:f1:ee:28:a9:b1:f0:b1:42:36:55:fe:ed:08:69:dd: 8f:2d:ed:0f:26:fd:4a:af:f8:48:90:d1:1e:b2:d6:c8:11:fb: 00:7e:b7:b7:0e:5d:f1:17:c3:54:1e:fe:c9:61:b9:4d:5f:72: 39:9a:9d:f4:96:90:b2:29:cd:44:b0:20:59:86:72:8f:4d:be: 6e:32:c9:60:10:ef:5e:4d:66:aa:99:f0:81:91:0c:3b:6e:2b: 01:f2:8a:1b:14:19:b4:be:c9:dc:89:ae:ab:6c:2c:9b:f5:35: 99:e3:3a:48:be:ac:39:8a:62:c7:eb:0c:c8:69:46:e7:56:5e: 37:67:a8:d3:06:5d:d4:82:26:46:5e:a6:3f:f8:98:4f:26:83: f6:71:54:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6/UO2UzNJy/XW+dzkWMVWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiZmE2NjM2ZmU2NDQwYWNmMjkzYjc1NzA1YTdhMWRjYWRh ODQyMGIwHhcNMjUxMjIwMDkwMDM0WhcNMjUxMjIxMDkwMDM0WjAzMTEwLwYDVQQD EyhiN2M1MjQ0MGVjYjVmZTUxNWZkMWJjNTc3MTdiNDA4Yzc2N2U0NjEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApYK2de+HrNWLDTfZ+u26DHKQ6o4s cE76BbuuQXE6XuoeUIUeiroC15IjKKvmM4pVvHz4lmHarCX1pcVE7i00vGaCGY3D FBeW+FutsP7oTtNIfBVZAbn9y/IfsZswdE0XrY0zGXRmsfzBYYhJrh4W26jLv+eu uPKaX4t6wd9Mk8bnfhrhyMlg5uUSMEfhh76sLBdplMJJDIZNU3DT/nb9Ugnqyez1 b0FenIkdSnEBpOapLYZmwrwXPitSq09ckW8EILtN/by0461m21CTo+QyCVMMTZ77 Vz/nUJRNAbzXjEplW5LDajOTVZJLCN0b11OSiFhTjbjrd0gtnWs00pcJgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLfFJEDstf5RX9G8V3F7QIx2fkYQMB8GA1UdIwQY MBaAFDv6Zjb+ZECs8pO3VwWnodytqEILMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT19wbU52NWtRS3p5azdkWEJhZWgzSzJvUWdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi9hNDdjZGYtZDIxYi00ZjFkLTg5MDEt OTJlYzUxNWM1OTVhLzEvT19wbU52NWtRS3p5azdkWEJhZWgzSzJvUWdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi9hNDdjZGYtZDIxYi00ZjFkLTg5MDEtOTJlYzUxNWM1OTVh LzEvT19wbU52NWtRS3p5azdkWEJhZWgzSzJvUWdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACopYzS9D /1GwrMoi7iPUEQJeM2iWHgT6Rxpqg28uOXDrhpNewIbFtgnZF3E5xbNWYIuegl7H QkMm/icZbcekosMIiGOIOJRbBJuGxpTLCBf0JWBtAhb/w/TgyUwcEEy4LYZaqMfq 2JGYu1RruDE48e4oqbHwsUI2Vf7tCGndjy3tDyb9Sq/4SJDRHrLWyBH7AH63tw5d 8RfDVB7+yWG5TV9yOZqd9JaQsinNRLAgWYZyj02+bjLJYBDvXk1mqpnwgZEMO24r AfKKGxQZtL7J3Imuq2wsm/U1meM6SL6sOYpix+sMyGlG51ZeN2eo0wZd1IImRl6m P/iYTyaD9nFUdw== -----END CERTIFICATE-----Generated at Sat Dec 20 10:42:41 2025 by rpki-client