This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft File: o2n7GRvuUc3HQUppYxl_hrvzE6s.mft (raw, json) Hash identifier: 6QbnIyHmEYH144xXaZtL/0Vtnl1rgW8eaIh7J4Inqnk= Subject key identifier: 7F:94:67:22:6F:60:AF:E1:04:FD:AC:A7:A4:20:A1:0F:B5:51:3E:36 Authority key identifier: A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB Certificate issuer: /CN=a369fb191bee51cdc7414a6963197f86bbf313ab Certificate serial: 019B60539490D375424B33A4CB374F3B6AD2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft Manifest number: 11FB Signing time: Sat 27 Dec 2025 15:00:48 +0000 Manifest this update: Sat 27 Dec 2025 15:00:48 +0000 Manifest next update: Sun 28 Dec 2025 15:00:48 +0000 Files and hashes: 1: DfIfeCsjxuTLGxOswS1IRTtCtFo.roa (hash: BfLaITLvBopGuXyhXf+VexAjyd8LBGCkT8+9wJK+KLI=) 2: o2n7GRvuUc3HQUppYxl_hrvzE6s.crl (hash: ekwAPCdThod8Zfy2hi0s1tVQKs7VLG9yePzybfugMjg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 15:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:60:53:94:90:d3:75:42:4b:33:a4:cb:37:4f:3b:6a:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a369fb191bee51cdc7414a6963197f86bbf313ab Validity Not Before: Dec 27 15:00:48 2025 GMT Not After : Dec 28 15:00:48 2025 GMT Subject: CN=7f9467226f60afe104fdaca7a420a10fb5513e36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:c4:68:56:6b:28:5e:a3:78:53:a9:61:01:c2: 51:06:3a:8b:f6:e6:2e:23:09:4f:ec:f8:72:45:63: 28:1e:88:dc:7c:1b:d8:91:cd:aa:2e:21:0c:ec:5d: 52:e1:55:dd:a1:d7:83:dc:ed:97:d9:ef:dc:d6:d6: c7:2b:ea:ed:7d:94:42:1f:d7:48:51:d3:a1:22:17: 0a:3d:5c:7c:8c:84:8e:89:c1:ff:a6:df:1d:bf:a8: 84:9a:4c:af:b3:91:74:47:ee:23:1b:3c:62:41:3c: 3e:c0:b0:b0:2b:99:2e:95:28:30:b1:35:79:ce:14: 81:24:61:b1:f1:bc:0e:b7:ec:35:d4:66:8d:a7:2f: c3:55:91:e0:53:32:57:7e:34:41:2d:80:b2:20:27: 7d:d5:a7:6c:c1:c0:c0:16:6a:7a:4f:06:d8:d1:00: ad:28:55:ed:22:a2:30:86:d8:b7:03:c2:66:08:63: 0b:af:41:cf:b4:c7:09:a8:bf:1e:5f:ec:80:a6:6e: b4:b0:8f:a3:f6:1c:05:0b:f2:e6:52:5c:7e:3a:5d: 3a:97:41:08:12:ad:02:d9:3a:f2:65:93:5f:95:16: 2c:bc:d0:6c:30:c0:3f:d6:2a:ba:aa:04:05:26:74: aa:f4:4d:17:b7:fb:e7:7b:4f:29:0b:e3:ab:c1:c9: 9b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:94:67:22:6F:60:AF:E1:04:FD:AC:A7:A4:20:A1:0F:B5:51:3E:36 X509v3 Authority Key Identifier: keyid:A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:9b:df:1c:c6:79:72:32:ae:2b:e8:05:5c:90:67:6d:b5:30: 28:e1:1c:89:2d:9d:51:e8:59:ba:07:52:1a:26:8b:76:7a:49: 55:3f:7c:10:a4:f2:ed:12:36:86:09:de:f3:41:f9:dd:da:d1: c7:e7:65:f8:bd:60:45:85:7b:83:a9:a3:1f:8a:c5:73:92:13: a4:17:60:fe:c0:d8:4e:39:9d:11:95:7e:55:22:68:90:5f:f9: 92:79:02:b2:c3:10:55:55:b1:37:50:71:3e:a1:23:1c:48:2b: cb:a5:81:34:6c:bb:3d:c2:94:a3:c2:4b:0c:35:b3:07:69:1c: 45:04:1b:e0:72:e6:4d:5f:2e:e1:80:2b:43:37:34:74:1e:7e: 7d:50:57:0c:78:2b:1d:c4:4b:65:8d:c8:16:ce:6b:0c:d4:a8: 2d:d7:d1:7a:c2:a1:63:39:be:02:f8:50:d1:b6:a8:f6:e1:2d: f7:0b:5c:56:be:a1:7e:6f:80:2d:c0:bc:80:79:0a:31:d6:55: 18:89:c2:75:83:b7:91:cb:c4:51:af:91:36:74:c3:5b:bf:03: 5c:e5:38:bf:eb:5f:fe:02:2c:ce:31:40:22:58:35:1e:1e:41: 6b:47:1e:19:01:fe:89:07:98:22:0e:fa:12:73:6c:b9:f7:c6: 7f:d5:4d:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtgU5SQ03VCSzOkyzdPO2rSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzNjlmYjE5MWJlZTUxY2RjNzQxNGE2OTYzMTk3Zjg2YmJm MzEzYWIwHhcNMjUxMjI3MTUwMDQ4WhcNMjUxMjI4MTUwMDQ4WjAzMTEwLwYDVQQD Eyg3Zjk0NjcyMjZmNjBhZmUxMDRmZGFjYTdhNDIwYTEwZmI1NTEzZTM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+cRoVmsoXqN4U6lhAcJRBjqL9uYu IwlP7PhyRWMoHojcfBvYkc2qLiEM7F1S4VXdodeD3O2X2e/c1tbHK+rtfZRCH9dI UdOhIhcKPVx8jISOicH/pt8dv6iEmkyvs5F0R+4jGzxiQTw+wLCwK5kulSgwsTV5 zhSBJGGx8bwOt+w11GaNpy/DVZHgUzJXfjRBLYCyICd91adswcDAFmp6TwbY0QCt KFXtIqIwhti3A8JmCGMLr0HPtMcJqL8eX+yApm60sI+j9hwFC/LmUlx+Ol06l0EI Eq0C2TryZZNflRYsvNBsMMA/1iq6qgQFJnSq9E0Xt/vne08pC+OrwcmbfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH+UZyJvYK/hBP2sp6QgoQ+1UT42MB8GA1UdIwQY MBaAFKNp+xkb7lHNx0FKaWMZf4a78xOrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8yMGRhNjAtYzcxOS00YmUxLThlNGYt ZTE4MDUyZjM4MWJiLzEvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS8yMGRhNjAtYzcxOS00YmUxLThlNGYtZTE4MDUyZjM4MWJi LzEvbzJuN0dSdnVVYzNIUVVwcFl4bF9ocnZ6RTZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP5vfHMZ5 cjKuK+gFXJBnbbUwKOEciS2dUehZugdSGiaLdnpJVT98EKTy7RI2hgne80H53drR x+dl+L1gRYV7g6mjH4rFc5ITpBdg/sDYTjmdEZV+VSJokF/5knkCssMQVVWxN1Bx PqEjHEgry6WBNGy7PcKUo8JLDDWzB2kcRQQb4HLmTV8u4YArQzc0dB5+fVBXDHgr HcRLZY3IFs5rDNSoLdfResKhYzm+AvhQ0bao9uEt9wtcVr6hfm+ALcC8gHkKMdZV GInCdYO3kcvEUa+RNnTDW78DXOU4v+tf/gIszjFAIlg1Hh5Ba0ceGQH+iQeYIg76 EnNsuffGf9VN0A== -----END CERTIFICATE-----Generated at Sat Dec 27 21:02:28 2025 by rpki-client