This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft File: oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft (raw, json) Hash identifier: 1GvB74E27iWcq98CKjdncP+7lglFwjzKmZw5mFP1iK8= Subject key identifier: 3A:19:E9:BD:18:B1:72:73:7E:96:0A:C1:10:75:AE:86:89:D3:3F:7B Authority key identifier: A0:7F:6E:2B:60:CA:46:47:00:DD:8E:28:FB:A0:DA:AD:C2:C4:0C:ED Certificate issuer: /CN=a07f6e2b60ca464700dd8e28fba0daadc2c40ced Certificate serial: 019B5976871D5C8B71870CC88C4DB6359162 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft Manifest number: 0409 Signing time: Fri 26 Dec 2025 07:01:38 +0000 Manifest this update: Fri 26 Dec 2025 07:01:38 +0000 Manifest next update: Sat 27 Dec 2025 07:01:38 +0000 Files and hashes: 1: KVGzhURun_Z2Cbls6jKq8-siUnI.roa (hash: ICdbcaL6JuM+fFFA7u9Ui1orbNqbZysTahR0X2YtQkM=) 2: hSxuqdFakuVuEvKUogCcsFaigPs.roa (hash: Xj6H7DBsScqxHUyFTpNMVSRKFfZSSLZGI1xOM2DNsyc=) 3: oH9uK2DKRkcA3Y4o-6DarcLEDO0.crl (hash: Cs1ki73GtUg/Anu4JM080+uF7V6ol2kTdHie1YIxs/o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:87:1d:5c:8b:71:87:0c:c8:8c:4d:b6:35:91:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a07f6e2b60ca464700dd8e28fba0daadc2c40ced Validity Not Before: Dec 26 07:01:38 2025 GMT Not After : Dec 27 07:01:38 2025 GMT Subject: CN=3a19e9bd18b172737e960ac11075ae8689d33f7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:76:a0:86:15:c8:d5:9c:0c:de:bc:3c:7e:3e: ce:b5:dd:23:9e:8f:f5:98:b0:23:c3:be:de:0b:8c: 18:8d:64:0d:9f:50:65:c6:b7:4b:69:be:3b:81:25: 21:ca:15:98:30:64:15:d6:c1:c4:e4:50:44:fe:a1: 13:65:26:72:23:88:32:c7:c8:5a:41:47:61:20:0e: 74:1d:ba:8d:1f:d6:9a:ad:17:e2:fb:55:f0:5d:34: c5:0a:86:6e:5d:ef:bc:87:ce:1e:42:2d:6f:2e:a0: 74:65:ec:04:22:4e:b8:19:36:a0:53:85:18:d0:30: 9c:32:99:24:c1:8c:ee:26:15:7c:74:a4:b3:12:16: 42:10:98:4d:1c:c6:ac:16:50:ec:f3:1c:6f:65:dd: f0:87:ed:f3:fa:18:82:d2:82:5b:28:56:40:d8:71: 3f:7d:57:30:45:ea:19:a8:0c:ac:b0:41:87:9b:79: 22:0f:b7:8a:e5:3d:5a:d1:96:7b:46:de:5d:12:37: 63:f5:6b:d5:e6:5e:99:04:6c:30:15:f7:82:95:d7: 95:3c:78:3f:b5:d6:6c:13:53:2b:a8:69:43:76:5d: b7:99:d0:f3:8d:d4:c3:2a:80:89:5c:06:cc:e5:76: 52:57:b0:25:d8:82:88:54:59:c2:90:3d:9e:23:bc: dd:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:19:E9:BD:18:B1:72:73:7E:96:0A:C1:10:75:AE:86:89:D3:3F:7B X509v3 Authority Key Identifier: keyid:A0:7F:6E:2B:60:CA:46:47:00:DD:8E:28:FB:A0:DA:AD:C2:C4:0C:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:1f:1c:9a:f9:3c:ca:f0:45:7a:a7:d3:77:77:07:c4:98:f8: e2:81:67:10:83:58:a5:7a:f8:8f:03:18:c7:f3:3e:04:f0:0b: 79:6c:68:ed:dd:0f:f8:ce:21:81:d0:1a:63:c4:67:62:02:6c: 63:da:50:3a:38:a2:0c:18:09:7f:8c:5a:6f:d4:fe:52:2b:82: 9e:fe:1b:c6:98:f1:59:ac:4b:90:f8:ee:cc:b0:ae:0d:bb:54: f9:e8:a6:d0:52:63:58:26:15:a7:bd:81:92:ec:3f:71:d1:07: 26:a3:85:8d:35:bb:a4:35:84:6d:04:e3:ff:3b:32:29:65:48: ee:df:83:c0:a7:28:87:2d:71:e9:c7:1d:e4:96:ad:a8:fa:0e: d2:0a:64:ef:41:29:aa:1c:64:95:0d:72:31:af:1b:52:f5:aa: da:fe:6e:f6:0e:10:1e:9d:4e:fc:b3:96:a3:09:ae:c0:c9:56: a1:49:c5:e8:ff:67:95:cd:6a:2a:44:55:4f:01:8d:89:00:72: 1e:4f:e8:10:03:c8:ee:30:d3:30:27:c8:98:d0:84:6a:d1:84: fc:1a:ce:e9:b0:d4:b7:12:e3:0f:2b:78:6e:ac:41:ed:af:ce: c2:ac:be:98:5a:13:5b:69:02:da:01:fd:3e:5a:2f:fb:22:b8: ba:33:d3:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdocdXItxhwzIjE22NZFiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwN2Y2ZTJiNjBjYTQ2NDcwMGRkOGUyOGZiYTBkYWFkYzJj NDBjZWQwHhcNMjUxMjI2MDcwMTM4WhcNMjUxMjI3MDcwMTM4WjAzMTEwLwYDVQQD EygzYTE5ZTliZDE4YjE3MjczN2U5NjBhYzExMDc1YWU4Njg5ZDMzZjdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3aghhXI1ZwM3rw8fj7Otd0jno/1 mLAjw77eC4wYjWQNn1BlxrdLab47gSUhyhWYMGQV1sHE5FBE/qETZSZyI4gyx8ha QUdhIA50HbqNH9aarRfi+1XwXTTFCoZuXe+8h84eQi1vLqB0ZewEIk64GTagU4UY 0DCcMpkkwYzuJhV8dKSzEhZCEJhNHMasFlDs8xxvZd3wh+3z+hiC0oJbKFZA2HE/ fVcwReoZqAyssEGHm3kiD7eK5T1a0ZZ7Rt5dEjdj9WvV5l6ZBGwwFfeCldeVPHg/ tdZsE1MrqGlDdl23mdDzjdTDKoCJXAbM5XZSV7Al2IKIVFnCkD2eI7zdVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDoZ6b0YsXJzfpYKwRB1roaJ0z97MB8GA1UdIwQY MBaAFKB/bitgykZHAN2OKPug2q3CxAztMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0g5dUsyREtSa2NBM1k0by02RGFyY0xFRE8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy9hN2NlOWUtMTBmYy00YmRhLTgzOGIt YmNiNzI0YmMyNjg0LzEvb0g5dUsyREtSa2NBM1k0by02RGFyY0xFRE8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy9hN2NlOWUtMTBmYy00YmRhLTgzOGItYmNiNzI0YmMyNjg0 LzEvb0g5dUsyREtSa2NBM1k0by02RGFyY0xFRE8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAch8cmvk8 yvBFeqfTd3cHxJj44oFnEINYpXr4jwMYx/M+BPALeWxo7d0P+M4hgdAaY8RnYgJs Y9pQOjiiDBgJf4xab9T+UiuCnv4bxpjxWaxLkPjuzLCuDbtU+eim0FJjWCYVp72B kuw/cdEHJqOFjTW7pDWEbQTj/zsyKWVI7t+DwKcohy1x6ccd5JatqPoO0gpk70Ep qhxklQ1yMa8bUvWq2v5u9g4QHp1O/LOWowmuwMlWoUnF6P9nlc1qKkRVTwGNiQBy Hk/oEAPI7jDTMCfImNCEatGE/BrO6bDUtxLjDyt4bqxB7a/Owqy+mFoTW2kC2gH9 Plov+yK4ujPTiw== -----END CERTIFICATE-----Generated at Fri Dec 26 14:16:05 2025 by rpki-client