This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft File: o3U2my1LsuLe3maGRTE-NE5vHMA.mft (raw, json) Hash identifier: 1fNYxO2wGxrSUWKlo6/zmrRORNEbZvvy6ggug7zgFO8= Subject key identifier: 72:CB:0F:47:29:E1:62:71:B7:B9:75:A3:7F:3C:50:B3:A6:EC:85:8A Authority key identifier: A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0 Certificate issuer: /CN=a375369b2d4bb2e2dede668645313e344e6f1cc0 Certificate serial: 019B5A5171831D4CD974B9363D768F60163C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft Manifest number: 179B Signing time: Fri 26 Dec 2025 11:00:45 +0000 Manifest this update: Fri 26 Dec 2025 11:00:45 +0000 Manifest next update: Sat 27 Dec 2025 11:00:45 +0000 Files and hashes: 1: DyAD9klcag15NhnplKEMXi8dKqg.roa (hash: Zvr5j/JLyl2kQb4eL63NQCTsndBLbuYPjEiWULmfej8=) 2: o3U2my1LsuLe3maGRTE-NE5vHMA.crl (hash: Y0WF9tvRMuHzyoz7v/vQAzUalVdVvGjhRjY0Mhc30kM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:51:71:83:1d:4c:d9:74:b9:36:3d:76:8f:60:16:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a375369b2d4bb2e2dede668645313e344e6f1cc0 Validity Not Before: Dec 26 11:00:45 2025 GMT Not After : Dec 27 11:00:45 2025 GMT Subject: CN=72cb0f4729e16271b7b975a37f3c50b3a6ec858a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f3:8c:2d:f5:c3:3c:b4:cd:c8:3a:dd:45:5c: 2e:0f:0f:0a:88:f8:1c:e1:e4:63:e1:fa:2d:d8:23: 15:8a:81:17:f6:22:5b:40:c5:b7:cf:01:e6:46:06: a8:2f:02:70:1f:38:f1:dd:c9:8c:76:21:f1:eb:ff: 3a:7c:85:12:a9:fb:d9:7f:03:f3:be:5e:cd:f6:39: 6e:f7:d0:ee:5d:cb:fe:49:1f:73:e5:f9:96:3d:7e: f3:c2:df:b5:52:0a:37:85:52:db:78:54:e8:de:aa: e8:6b:9a:22:73:c1:cc:d7:c1:1c:23:e8:3b:ef:93: 3a:20:85:7f:34:ea:da:73:8e:bf:46:23:d8:09:2d: 5e:61:29:2f:93:ea:4b:40:db:46:98:e3:bd:c9:f2: e6:9e:45:cf:24:64:8d:94:7e:e9:08:eb:a9:4d:e0: c6:b3:ed:69:5b:c1:89:b5:8b:1e:ae:66:23:2a:77: 5f:ae:a6:46:c1:c8:e1:a2:b2:a6:a7:1b:9c:2d:d5: 91:90:fa:ea:ce:4a:69:b6:0d:59:7b:d5:85:2e:68: 12:9f:11:de:6a:fe:24:d7:0b:6e:11:21:cf:88:2e: ce:af:66:18:b9:53:e1:ab:59:9b:37:18:d4:e6:1f: a2:bf:ca:ef:56:fb:f7:60:bb:72:c3:34:2e:ab:1f: c3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:CB:0F:47:29:E1:62:71:B7:B9:75:A3:7F:3C:50:B3:A6:EC:85:8A X509v3 Authority Key Identifier: keyid:A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c7:97:c5:90:d8:94:9e:6d:ba:d7:c4:72:09:58:41:e3:83:70: 4d:dd:c2:30:79:95:3e:13:72:31:78:31:33:25:8f:eb:bc:a0: 21:77:e7:87:b6:89:52:59:cc:6f:e6:32:0c:b7:3f:40:e4:43: 2c:c6:bf:6f:cf:a2:22:f3:5d:bd:67:13:6c:24:1b:e7:64:b7: ee:c7:58:cd:42:c4:1d:bb:a3:0e:b3:df:91:82:21:fa:a3:0b: 6c:5b:67:03:1c:7c:c7:c6:25:72:dd:bf:a6:a5:bf:d8:ad:1f: bb:ff:41:c9:cc:18:be:0c:e2:d0:3f:f9:bb:09:fb:c8:a9:85: 7a:3c:45:5d:17:1f:2b:a3:50:6a:a2:6a:42:fd:18:6d:84:41: a7:39:ce:e5:36:79:1d:e3:11:5e:50:0c:0d:a0:3d:3f:d6:6b: 75:a7:e8:2c:ea:c8:e3:13:95:00:9a:bb:cb:2b:fc:49:97:b6: 15:9d:8c:64:79:db:b8:01:c6:e1:29:73:68:12:c8:cf:ff:af: 79:c6:81:32:f8:e4:35:db:48:a2:18:5a:a0:c8:10:65:32:88: da:ba:3c:32:51:6a:a3:d9:13:64:bd:09:c8:e6:58:5d:ea:2f: 62:20:7e:52:84:06:3a:e9:96:10:ef:c1:96:c5:2c:7b:ab:3a: c1:11:93:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaUXGDHUzZdLk2PXaPYBY8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzNzUzNjliMmQ0YmIyZTJkZWRlNjY4NjQ1MzEzZTM0NGU2 ZjFjYzAwHhcNMjUxMjI2MTEwMDQ1WhcNMjUxMjI3MTEwMDQ1WjAzMTEwLwYDVQQD Eyg3MmNiMGY0NzI5ZTE2MjcxYjdiOTc1YTM3ZjNjNTBiM2E2ZWM4NThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/OMLfXDPLTNyDrdRVwuDw8KiPgc 4eRj4fot2CMVioEX9iJbQMW3zwHmRgaoLwJwHzjx3cmMdiHx6/86fIUSqfvZfwPz vl7N9jlu99DuXcv+SR9z5fmWPX7zwt+1Ugo3hVLbeFTo3qroa5oic8HM18EcI+g7 75M6IIV/NOrac46/RiPYCS1eYSkvk+pLQNtGmOO9yfLmnkXPJGSNlH7pCOupTeDG s+1pW8GJtYsermYjKndfrqZGwcjhorKmpxucLdWRkPrqzkpptg1Ze9WFLmgSnxHe av4k1wtuESHPiC7Or2YYuVPhq1mbNxjU5h+iv8rvVvv3YLtywzQuqx/DVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHLLD0cp4WJxt7l1o388ULOm7IWKMB8GA1UdIwQY MBaAFKN1NpstS7Li3t5mhkUxPjRObxzAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzNVMm15MUxzdUxlM21hR1JURS1ORTV2SE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lYzY5MDUtYjBmNy00MjRmLThhODQt MjhiZWM3Yjk5OTI5LzEvbzNVMm15MUxzdUxlM21hR1JURS1ORTV2SE1BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9lYzY5MDUtYjBmNy00MjRmLThhODQtMjhiZWM3Yjk5OTI5 LzEvbzNVMm15MUxzdUxlM21hR1JURS1ORTV2SE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAx5fFkNiU nm2618RyCVhB44NwTd3CMHmVPhNyMXgxMyWP67ygIXfnh7aJUlnMb+YyDLc/QORD LMa/b8+iIvNdvWcTbCQb52S37sdYzULEHbujDrPfkYIh+qMLbFtnAxx8x8Ylct2/ pqW/2K0fu/9BycwYvgzi0D/5uwn7yKmFejxFXRcfK6NQaqJqQv0YbYRBpznO5TZ5 HeMRXlAMDaA9P9ZrdafoLOrI4xOVAJq7yyv8SZe2FZ2MZHnbuAHG4SlzaBLIz/+v ecaBMvjkNdtIohhaoMgQZTKI2ro8MlFqo9kTZL0JyOZYXeovYiB+UoQGOumWEO/B lsUse6s6wRGTgw== -----END CERTIFICATE-----Generated at Fri Dec 26 15:46:18 2025 by rpki-client