This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft File: o8lj0aEdANOEre35u4blOEmpsYw.mft (raw, json) Hash identifier: XIAxA8k03ICVIQu7e6MhWnMgR5U4Fl4k5TlLw66ZfHM= Subject key identifier: 4D:59:6F:44:A1:31:62:C0:61:7E:DB:1F:F5:FB:06:BA:71:5E:3F:58 Authority key identifier: A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C Certificate issuer: /CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c Certificate serial: 019B3B34ACCE0E1E0FA8B571D4942E9FCEE7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft Manifest number: 178A Signing time: Sat 20 Dec 2025 10:01:06 +0000 Manifest this update: Sat 20 Dec 2025 10:01:06 +0000 Manifest next update: Sun 21 Dec 2025 10:01:06 +0000 Files and hashes: 1: 1-9Z39awtCUNqeCcuYwIOQubEoEY.roa (hash: AJvelHrJ42adBWeCqNbgdbqaGB/A4YMI32J/x3+LlBI=) 2: o8lj0aEdANOEre35u4blOEmpsYw.crl (hash: TUGbpa9MWTne3d+aoVOiYeCfDH75k3tCbfSgkfthwiY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:34:ac:ce:0e:1e:0f:a8:b5:71:d4:94:2e:9f:ce:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c Validity Not Before: Dec 20 10:01:06 2025 GMT Not After : Dec 21 10:01:06 2025 GMT Subject: CN=4d596f44a13162c0617edb1ff5fb06ba715e3f58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2d:7e:4a:9b:3d:f0:fa:d0:b7:72:94:aa:c1: fe:b2:40:73:1e:55:3c:1f:a3:57:04:f2:95:b5:2d: f8:d1:63:a3:84:2c:c6:af:8d:ce:c0:e1:d7:42:b7: be:3d:f8:b4:f1:7a:2c:16:18:67:70:76:69:1a:50: 88:be:7e:ac:bd:0e:a4:bb:5a:98:52:7a:04:57:b8: ce:ea:da:08:8a:fa:2d:08:a9:06:d6:7c:e6:7b:ca: 0d:6a:ac:29:cf:9d:2f:fe:f7:8a:a5:05:6d:e0:c4: ed:dd:42:94:cb:c9:4e:96:61:61:66:aa:83:a2:49: 0b:2b:62:28:b7:af:f9:2f:b4:9b:3b:14:22:1e:52: 7b:37:0c:7e:0a:02:c6:72:5c:46:98:46:53:8a:a2: e1:d0:5e:69:67:ee:c7:73:0c:2a:4d:9f:08:f3:ed: 18:eb:1e:4d:ea:9f:3c:fc:f8:fe:ce:8a:85:87:02: ab:9b:7b:71:40:c5:ac:82:0d:3b:64:45:d7:ea:65: d7:40:f9:bf:32:ab:8c:5a:a6:85:94:30:5c:9a:a0: 17:62:54:94:3c:16:70:52:1c:bf:fa:5a:7f:99:0a: ce:10:f7:18:27:12:e0:b0:6f:f9:ab:04:da:21:87: cd:f0:a5:cf:a0:8d:49:82:aa:0b:4a:61:f6:b0:de: 0e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:59:6F:44:A1:31:62:C0:61:7E:DB:1F:F5:FB:06:BA:71:5E:3F:58 X509v3 Authority Key Identifier: keyid:A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:66:a3:64:23:a6:b2:19:89:bc:6f:68:2e:24:4f:f0:40:3d: 51:10:79:e4:ad:d8:0a:ac:0c:d5:b8:26:21:6d:0f:95:a4:f2: 1f:bb:01:11:8b:29:23:f1:56:d5:e7:e9:f0:82:55:75:3c:09: fc:08:d6:33:35:3b:92:3e:26:76:e6:28:98:41:5c:69:20:91: 3b:d6:1c:06:da:cf:d3:a9:f7:76:a0:ba:78:85:e8:d3:e0:87: c3:dc:a3:11:d2:db:45:69:b1:f6:11:80:17:71:d2:55:c1:30: dc:9f:01:89:33:4f:d7:1a:34:66:2b:50:c6:0a:01:2a:12:33: c0:25:91:37:04:92:b6:bf:27:de:b5:af:16:73:f2:b2:be:ed: 86:f7:18:4a:80:8c:20:9e:29:61:93:36:1e:2f:d4:29:99:c3: d7:62:64:6d:22:6f:30:ee:52:a3:2e:48:16:7f:32:14:62:e0: b5:bd:4b:4b:8c:77:59:aa:af:2a:4b:df:e3:3a:6b:d4:c3:89: a4:48:82:72:f5:a9:b6:19:60:2c:22:9f:ed:37:e3:8b:f6:b8: e3:51:0d:ee:d8:10:6c:c4:30:3f:97:5d:1c:3c:53:10:7e:38: 36:85:58:38:16:43:cd:51:1c:d7:07:a1:85:05:e5:2b:76:17: 92:57:a7:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7NKzODh4PqLVx1JQun87nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzYzk2M2QxYTExZDAwZDM4NGFkZWRmOWJiODZlNTM4NDlh OWIxOGMwHhcNMjUxMjIwMTAwMTA2WhcNMjUxMjIxMTAwMTA2WjAzMTEwLwYDVQQD Eyg0ZDU5NmY0NGExMzE2MmMwNjE3ZWRiMWZmNWZiMDZiYTcxNWUzZjU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoS1+Sps98PrQt3KUqsH+skBzHlU8 H6NXBPKVtS340WOjhCzGr43OwOHXQre+Pfi08XosFhhncHZpGlCIvn6svQ6ku1qY UnoEV7jO6toIivotCKkG1nzme8oNaqwpz50v/veKpQVt4MTt3UKUy8lOlmFhZqqD okkLK2Iot6/5L7SbOxQiHlJ7Nwx+CgLGclxGmEZTiqLh0F5pZ+7HcwwqTZ8I8+0Y 6x5N6p88/Pj+zoqFhwKrm3txQMWsgg07ZEXX6mXXQPm/MquMWqaFlDBcmqAXYlSU PBZwUhy/+lp/mQrOEPcYJxLgsG/5qwTaIYfN8KXPoI1JgqoLSmH2sN4O4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE1Zb0ShMWLAYX7bH/X7BrpxXj9YMB8GA1UdIwQY MBaAFKPJY9GhHQDThK3t+buG5ThJqbGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzhsajBhRWRBTk9FcmUzNXU0YmxPRW1wc1l3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9mYzUyYTAtZTBmNy00ODBiLWJhN2Qt MTA0MmVhOGUzYmZiLzEvbzhsajBhRWRBTk9FcmUzNXU0YmxPRW1wc1l3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9mYzUyYTAtZTBmNy00ODBiLWJhN2QtMTA0MmVhOGUzYmZi LzEvbzhsajBhRWRBTk9FcmUzNXU0YmxPRW1wc1l3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWWajZCOm shmJvG9oLiRP8EA9URB55K3YCqwM1bgmIW0PlaTyH7sBEYspI/FW1efp8IJVdTwJ /AjWMzU7kj4mduYomEFcaSCRO9YcBtrP06n3dqC6eIXo0+CHw9yjEdLbRWmx9hGA F3HSVcEw3J8BiTNP1xo0ZitQxgoBKhIzwCWRNwSStr8n3rWvFnPysr7thvcYSoCM IJ4pYZM2Hi/UKZnD12JkbSJvMO5Soy5IFn8yFGLgtb1LS4x3WaqvKkvf4zpr1MOJ pEiCcvWpthlgLCKf7Tfji/a441EN7tgQbMQwP5ddHDxTEH44NoVYOBZDzVEc1weh hQXlK3YXklenWQ== -----END CERTIFICATE-----Generated at Sat Dec 20 14:05:52 2025 by rpki-client