This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft File: O5feF1Es-ovrw9-AsntHYk70FpE.mft (raw, json) Hash identifier: utsHoVIVYwikV4xnajgcOaq3o84ES1SXBMlLJxYCKjQ= Subject key identifier: E6:CE:AE:CF:DC:CA:A6:6B:D1:3F:97:AE:78:94:BD:17:D4:7D:8B:58 Authority key identifier: 3B:97:DE:17:51:2C:FA:8B:EB:C3:DF:80:B2:7B:47:62:4E:F4:16:91 Certificate issuer: /CN=3b97de17512cfa8bebc3df80b27b47624ef41691 Certificate serial: 019B4A7161AEEA4CB5AE463B0A56BB244E25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft Manifest number: 0C10 Signing time: Tue 23 Dec 2025 09:01:43 +0000 Manifest this update: Tue 23 Dec 2025 09:01:43 +0000 Manifest next update: Wed 24 Dec 2025 09:01:43 +0000 Files and hashes: 1: 3qIWzYrkrCPP_OpSVUhC7_G6DpI.roa (hash: yygvsOn7SmxlaOZM9baJ/n8umdT0wN2hx2GnupmdeSk=) 2: O5feF1Es-ovrw9-AsntHYk70FpE.crl (hash: yyYi0YvMBtLAFEtM/Qr5oo1CDWf+Xk6m67FtBP7cni8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 09:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:71:61:ae:ea:4c:b5:ae:46:3b:0a:56:bb:24:4e:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b97de17512cfa8bebc3df80b27b47624ef41691 Validity Not Before: Dec 23 09:01:43 2025 GMT Not After : Dec 24 09:01:43 2025 GMT Subject: CN=e6ceaecfdccaa66bd13f97ae7894bd17d47d8b58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:47:38:1b:ca:d6:5f:3f:80:ee:04:ce:d4:2d: c0:02:5d:f7:9f:7a:92:39:81:fd:05:b5:78:22:26: 75:1d:c4:da:02:88:a5:c0:84:77:6e:97:44:3f:48: e4:a7:fa:fc:31:aa:d1:ef:41:e2:74:c9:46:08:99: 0a:90:34:c9:36:b0:aa:e8:63:9c:45:f2:50:8e:30: b5:d5:7a:88:a4:60:0c:40:2a:d0:c8:fc:3f:a5:42: 5c:0a:32:12:04:c8:86:00:d7:00:2a:e0:1d:8d:3a: b7:a8:bd:f6:8f:b8:b4:7d:e2:d6:d6:5d:b9:d4:59: 46:43:19:26:77:b8:ba:47:3f:6c:a4:be:d0:44:e4: c5:bd:32:89:ce:8b:fe:77:80:06:92:95:92:b7:98: 52:05:9c:db:31:e2:bf:ea:ae:cf:2f:eb:94:99:f7: 4e:e0:8c:79:3c:8c:a2:a4:58:c0:11:8b:e9:ed:0b: a7:f0:bf:a9:f3:3a:35:4d:23:00:1a:0c:10:da:7e: bd:47:35:60:31:d2:39:42:f2:e4:02:47:87:5b:dd: 65:d5:cb:28:ce:f7:19:99:0e:ab:80:2f:11:d7:84: 1f:10:9b:c7:9b:50:30:59:53:c4:69:cb:03:e3:d4: 12:a5:5c:33:cd:9c:87:3a:84:cc:ae:ce:16:aa:3f: a4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:CE:AE:CF:DC:CA:A6:6B:D1:3F:97:AE:78:94:BD:17:D4:7D:8B:58 X509v3 Authority Key Identifier: keyid:3B:97:DE:17:51:2C:FA:8B:EB:C3:DF:80:B2:7B:47:62:4E:F4:16:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O5feF1Es-ovrw9-AsntHYk70FpE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8a7da4-ba19-4b29-87e0-9155132a179a/1/O5feF1Es-ovrw9-AsntHYk70FpE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:ab:3f:94:9e:e2:23:af:bb:76:53:80:5d:93:ea:b7:0f:7f: de:95:84:a2:b1:f2:a6:a0:5d:42:26:47:17:14:b8:b5:f7:6a: 0e:bc:88:e2:61:d3:ef:6b:6a:e8:14:72:ae:a9:9f:8d:2d:d7: cf:c2:1f:7c:96:f7:d7:60:93:20:de:82:54:08:3c:ea:56:e2: fa:24:6b:52:9f:d3:be:fa:fe:08:23:6c:d7:01:8a:2f:72:14: 6c:3c:f7:fa:24:7c:b8:a0:cb:f8:98:16:f6:ed:2c:38:f0:3c: bd:4b:26:f1:1c:27:ca:d9:34:37:6a:56:12:36:c8:3d:cd:4b: a0:9b:69:cd:07:db:d0:94:80:4f:96:18:33:1f:d8:d1:85:d3: 7a:48:90:d7:8d:96:fd:5c:3d:ad:b8:f0:f9:cb:ec:f7:89:37: 5a:f3:06:45:91:6f:74:22:7d:8e:8b:0a:88:3c:62:5b:e1:0a: b1:5b:83:97:b7:50:7e:98:28:3f:72:f8:6a:ed:64:92:d1:f7: a2:f5:41:f1:50:f4:b8:1c:81:22:ac:d4:2d:a8:db:d9:33:35: bd:0a:65:a4:ba:e9:c5:52:9f:bd:8a:46:da:77:78:4a:cc:b5: 83:99:cb:01:12:d1:e2:bc:cf:81:0a:4e:81:ef:09:9d:c6:c0: bf:e6:40:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtKcWGu6ky1rkY7Cla7JE4lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiOTdkZTE3NTEyY2ZhOGJlYmMzZGY4MGIyN2I0NzYyNGVm NDE2OTEwHhcNMjUxMjIzMDkwMTQzWhcNMjUxMjI0MDkwMTQzWjAzMTEwLwYDVQQD EyhlNmNlYWVjZmRjY2FhNjZiZDEzZjk3YWU3ODk0YmQxN2Q0N2Q4YjU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9kc4G8rWXz+A7gTO1C3AAl33n3qS OYH9BbV4IiZ1HcTaAoilwIR3bpdEP0jkp/r8MarR70HidMlGCJkKkDTJNrCq6GOc RfJQjjC11XqIpGAMQCrQyPw/pUJcCjISBMiGANcAKuAdjTq3qL32j7i0feLW1l25 1FlGQxkmd7i6Rz9spL7QROTFvTKJzov+d4AGkpWSt5hSBZzbMeK/6q7PL+uUmfdO 4Ix5PIyipFjAEYvp7Qun8L+p8zo1TSMAGgwQ2n69RzVgMdI5QvLkAkeHW91l1cso zvcZmQ6rgC8R14QfEJvHm1AwWVPEacsD49QSpVwzzZyHOoTMrs4Wqj+k1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFObOrs/cyqZr0T+XrniUvRfUfYtYMB8GA1UdIwQY MBaAFDuX3hdRLPqL68PfgLJ7R2JO9BaRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzVmZUYxRXMtb3ZydzktQXNudEhZazcwRnBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy84YTdkYTQtYmExOS00YjI5LTg3ZTAt OTE1NTEzMmExNzlhLzEvTzVmZUYxRXMtb3ZydzktQXNudEhZazcwRnBFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy84YTdkYTQtYmExOS00YjI5LTg3ZTAtOTE1NTEzMmExNzlh LzEvTzVmZUYxRXMtb3ZydzktQXNudEhZazcwRnBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI6s/lJ7i I6+7dlOAXZPqtw9/3pWEorHypqBdQiZHFxS4tfdqDryI4mHT72tq6BRyrqmfjS3X z8IffJb312CTIN6CVAg86lbi+iRrUp/Tvvr+CCNs1wGKL3IUbDz3+iR8uKDL+JgW 9u0sOPA8vUsm8Rwnytk0N2pWEjbIPc1LoJtpzQfb0JSAT5YYMx/Y0YXTekiQ142W /Vw9rbjw+cvs94k3WvMGRZFvdCJ9josKiDxiW+EKsVuDl7dQfpgoP3L4au1kktH3 ovVB8VD0uByBIqzULajb2TM1vQplpLrpxVKfvYpG2nd4Ssy1g5nLARLR4rzPgQpO ge8JncbAv+ZA4A== -----END CERTIFICATE-----Generated at Tue Dec 23 16:57:20 2025 by rpki-client