This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft File: Os5p2XnZoNxneVEGweVayhVHCH8.mft (raw, json) Hash identifier: X0ye1/BJTYdhxfox2nyJTeAE+adIdSOoSIWUoC0QcIs= Subject key identifier: A8:75:5C:79:25:04:76:28:BC:8D:32:2B:D6:05:92:D0:82:F5:81:D5 Authority key identifier: 3A:CE:69:D9:79:D9:A0:DC:67:79:51:06:C1:E5:5A:CA:15:47:08:7F Certificate issuer: /CN=3ace69d979d9a0dc67795106c1e55aca1547087f Certificate serial: 019B394675653210B1723205CABF1B97F280 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft Manifest number: 1780 Signing time: Sat 20 Dec 2025 01:01:17 +0000 Manifest this update: Sat 20 Dec 2025 01:01:17 +0000 Manifest next update: Sun 21 Dec 2025 01:01:17 +0000 Files and hashes: 1: Os5p2XnZoNxneVEGweVayhVHCH8.crl (hash: zQ9/ISlVehCQ23yndsa09fujUp8ifXRqk73i6kb+9tE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.crl rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:46:75:65:32:10:b1:72:32:05:ca:bf:1b:97:f2:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ace69d979d9a0dc67795106c1e55aca1547087f Validity Not Before: Dec 20 01:01:17 2025 GMT Not After : Dec 21 01:01:17 2025 GMT Subject: CN=a8755c7925047628bc8d322bd60592d082f581d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:bb:20:e7:c6:ea:26:26:b7:47:64:3b:7f:f3: 2c:28:14:bd:b7:31:f0:80:02:e0:63:73:02:ec:dc: 53:57:9c:5b:be:f9:26:0c:36:8f:f1:70:da:98:f7: fb:0e:7c:3e:14:bd:36:33:69:c5:9d:89:df:df:2d: 18:d5:26:36:5e:43:04:7d:c3:8a:80:25:22:d5:c3: a7:1f:df:4d:4a:4d:f5:53:29:14:fa:68:e8:e5:2e: 4d:71:91:6e:9f:f0:23:03:a1:25:ea:e4:1d:28:36: 10:77:31:f4:5b:4e:89:02:24:12:01:d9:75:10:4c: 22:f3:d2:f0:a2:91:4d:5a:38:4a:1b:f1:8c:ad:77: 69:0d:25:12:e7:f4:99:ce:be:94:3a:6f:2e:44:c9: a2:1f:db:6e:d9:25:83:1e:4f:2c:57:fc:1b:1d:f1: 6f:d7:09:dd:51:ba:db:a9:36:12:6e:68:43:13:fa: a2:7c:b4:15:e6:dd:58:b8:36:0e:9e:46:04:84:73: ff:a3:c4:66:24:d6:77:61:4f:86:12:0d:1b:33:25: bd:47:08:50:aa:ec:77:82:c5:8c:d1:a6:3d:4a:53: 80:f2:8a:63:77:14:98:44:48:f0:b6:f8:46:db:37: 5e:21:21:ac:45:ef:b6:bb:55:99:20:80:0e:ba:ee: 1c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:75:5C:79:25:04:76:28:BC:8D:32:2B:D6:05:92:D0:82:F5:81:D5 X509v3 Authority Key Identifier: keyid:3A:CE:69:D9:79:D9:A0:DC:67:79:51:06:C1:E5:5A:CA:15:47:08:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ed:31:ec:ad:e2:6c:4c:c9:92:71:09:cc:96:7e:93:ea:c6: e5:f1:89:4f:0d:9c:73:43:68:13:5a:f2:e9:03:6c:42:86:4d: b6:1f:ee:4e:d0:b9:e7:15:ad:ee:db:d0:40:1d:75:fe:3b:d6: 86:34:ba:d0:56:e5:46:e0:47:2a:34:1e:6d:44:40:94:97:04: 46:be:a9:73:64:dd:e3:21:2c:98:76:e4:29:b1:96:41:76:f8: b5:df:64:53:96:cc:9a:0b:e2:8c:a9:d6:bf:5a:36:da:f4:42: 0b:fc:63:1f:3e:50:6b:a2:ce:eb:d8:c2:37:bc:a2:a5:01:b4: 9c:9b:ce:34:4d:b1:da:cb:31:60:f6:71:91:86:6a:a9:9d:59: 27:51:55:ea:35:e6:57:38:de:f5:02:2a:e4:03:6d:2d:ff:7d: 04:4b:1d:0f:0a:97:c6:ec:07:a2:53:ea:67:a6:bc:cf:04:95: cf:4e:bc:aa:25:61:8d:b3:fb:16:34:b1:de:31:49:7e:cf:fc: 0b:ea:53:ef:09:86:19:ec:51:cb:be:cb:1e:79:04:42:db:28: fc:ec:f9:60:4f:ab:4b:02:75:fd:16:e1:f0:54:3b:51:e7:4a: 53:97:1c:d2:90:cb:27:4a:30:a7:2d:76:c4:cf:03:67:9b:c8: 8b:17:25:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5RnVlMhCxcjIFyr8bl/KAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhY2U2OWQ5NzlkOWEwZGM2Nzc5NTEwNmMxZTU1YWNhMTU0 NzA4N2YwHhcNMjUxMjIwMDEwMTE3WhcNMjUxMjIxMDEwMTE3WjAzMTEwLwYDVQQD EyhhODc1NWM3OTI1MDQ3NjI4YmM4ZDMyMmJkNjA1OTJkMDgyZjU4MWQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6rsg58bqJia3R2Q7f/MsKBS9tzHw gALgY3MC7NxTV5xbvvkmDDaP8XDamPf7Dnw+FL02M2nFnYnf3y0Y1SY2XkMEfcOK gCUi1cOnH99NSk31UykU+mjo5S5NcZFun/AjA6El6uQdKDYQdzH0W06JAiQSAdl1 EEwi89LwopFNWjhKG/GMrXdpDSUS5/SZzr6UOm8uRMmiH9tu2SWDHk8sV/wbHfFv 1wndUbrbqTYSbmhDE/qifLQV5t1YuDYOnkYEhHP/o8RmJNZ3YU+GEg0bMyW9RwhQ qux3gsWM0aY9SlOA8opjdxSYREjwtvhG2zdeISGsRe+2u1WZIIAOuu4cJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKh1XHklBHYovI0yK9YFktCC9YHVMB8GA1UdIwQY MBaAFDrOadl52aDcZ3lRBsHlWsoVRwh/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3M1cDJYblpvTnhuZVZFR3dlVmF5aFZIQ0g4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9hZmQ5OWYtZGY1NS00ZTk3LTg4NmEt YTk3NzVhYThkODEyLzEvT3M1cDJYblpvTnhuZVZFR3dlVmF5aFZIQ0g4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi9hZmQ5OWYtZGY1NS00ZTk3LTg4NmEtYTk3NzVhYThkODEy LzEvT3M1cDJYblpvTnhuZVZFR3dlVmF5aFZIQ0g4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHu0x7K3i bEzJknEJzJZ+k+rG5fGJTw2cc0NoE1ry6QNsQoZNth/uTtC55xWt7tvQQB11/jvW hjS60FblRuBHKjQebURAlJcERr6pc2Td4yEsmHbkKbGWQXb4td9kU5bMmgvijKnW v1o22vRCC/xjHz5Qa6LO69jCN7yipQG0nJvONE2x2ssxYPZxkYZqqZ1ZJ1FV6jXm Vzje9QIq5ANtLf99BEsdDwqXxuwHolPqZ6a8zwSVz068qiVhjbP7FjSx3jFJfs/8 C+pT7wmGGexRy77LHnkEQtso/Oz5YE+rSwJ1/Rbh8FQ7UedKU5cc0pDLJ0owpy12 xM8DZ5vIixcl8Q== -----END CERTIFICATE-----Generated at Sat Dec 20 05:30:37 2025 by rpki-client