This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json) Hash identifier: Ij9JNmw5l2bIKGGJA1o6sG7QLFCsYXKrMrxKwqySdac= Subject key identifier: EE:C9:65:E3:FE:79:14:6F:02:15:02:65:7C:64:49:0E:FB:65:57:95 Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a Certificate serial: 019B33E939D9E435324F031CD907735C5356 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft Manifest number: 0F06 Signing time: Fri 19 Dec 2025 00:01:21 +0000 Manifest this update: Fri 19 Dec 2025 00:01:21 +0000 Manifest next update: Sat 20 Dec 2025 00:01:21 +0000 Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: 6JI5OGDv+jp3cOCG2wmQI8S7rgEVHjDaNFl+jltufsY=) 2: m3UPJQ_Zh7wapyw5537rzzPo3os.roa (hash: EUy+4/7WXUAZtQJhe/6fh4vD4Ks9aUtYKkwAIbRuQrA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:e9:39:d9:e4:35:32:4f:03:1c:d9:07:73:5c:53:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a Validity Not Before: Dec 19 00:01:21 2025 GMT Not After : Dec 20 00:01:21 2025 GMT Subject: CN=eec965e3fe79146f021502657c64490efb655795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:6d:20:fb:63:7a:2a:f3:0c:af:e1:94:c4:6f: 73:b2:79:06:84:59:31:66:44:4d:5f:13:86:60:1f: e3:3e:f8:11:ef:18:6f:c4:5a:82:60:0a:97:37:df: 7a:f2:0a:99:cb:15:bd:37:80:00:21:2a:92:bb:62: f9:3a:b1:60:73:82:1b:47:32:2e:7a:03:5c:3e:11: 02:64:c1:88:b7:64:4b:74:89:e9:56:9f:7b:21:20: b6:4a:8e:e5:68:9e:2a:b1:8b:1d:10:f8:10:27:73: aa:32:7b:6f:2c:77:f2:c5:56:ef:2f:fe:ad:92:b7: 47:f9:10:09:d8:ce:ec:ef:5c:da:67:18:67:14:54: 0f:5f:f0:33:66:f5:a7:85:1a:8e:48:d1:84:56:e8: b3:03:9e:c5:18:3d:1a:82:4d:6c:fb:91:cc:88:8d: 0d:91:59:04:99:d0:60:d6:e1:82:cd:e3:bd:1c:86: 6a:d1:6a:eb:5b:0a:25:19:32:ea:93:80:b2:a0:3d: 4b:67:0a:d0:57:43:2d:fe:0e:79:7a:6a:94:1b:d8: c6:38:ee:5d:61:13:aa:ee:9e:38:0e:cb:86:b9:06: 01:fb:0c:b6:44:f5:35:f2:eb:0f:83:e5:56:34:dd: 9a:22:03:73:a7:cb:81:26:ff:c9:02:e3:f6:b0:8e: 91:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:C9:65:E3:FE:79:14:6F:02:15:02:65:7C:64:49:0E:FB:65:57:95 X509v3 Authority Key Identifier: keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:51:31:0a:a3:e2:af:43:11:4b:94:d8:82:dc:1a:86:9d:f8: 41:1e:8e:a2:9c:4a:dc:52:fb:9d:b2:db:e4:e3:3e:9a:83:16: c2:d6:ce:68:ef:ba:3a:b9:65:90:ab:d7:c2:c2:21:7c:8c:71: 63:e9:e3:8e:a1:d9:8b:5f:d1:01:ce:a7:52:aa:7e:16:27:c0: de:b3:67:26:9e:55:02:6c:04:e1:60:c9:ec:b5:e9:8f:5a:5f: 6b:75:53:17:be:61:7d:ec:99:cf:c5:ec:92:21:b1:b7:8e:72: 77:80:28:83:60:9d:f6:73:fd:61:bb:8e:b5:cc:ec:04:07:27: 79:7d:8c:e6:e1:37:30:8d:bd:e5:d3:fc:07:43:a6:20:bf:1a: 28:eb:c0:ae:70:6d:32:ea:03:31:5a:b3:9c:56:16:64:5f:6d: 82:09:ab:fe:aa:58:82:5c:3a:15:dd:86:8d:31:1c:d1:da:91: fc:70:a2:f5:e5:3b:5e:91:14:ed:f3:30:aa:37:08:cf:59:06: 13:c9:c6:91:11:7d:93:e8:2f:66:30:b6:c2:c4:5d:fb:ab:b1: 3a:d2:e1:19:44:fd:01:74:72:ec:8b:88:51:64:8a:f2:26:d4: 91:04:64:29:f7:28:04:3c:a1:f0:17:50:60:3f:bc:3e:c7:b6: 11:33:53:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsz6TnZ5DUyTwMc2QdzXFNWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5OWRjMTM2MTlhYWJhN2YyMjJjZWFjYjA1ZjFiYmFjNTli ZDNhOWEwHhcNMjUxMjE5MDAwMTIxWhcNMjUxMjIwMDAwMTIxWjAzMTEwLwYDVQQD EyhlZWM5NjVlM2ZlNzkxNDZmMDIxNTAyNjU3YzY0NDkwZWZiNjU1Nzk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm20g+2N6KvMMr+GUxG9zsnkGhFkx ZkRNXxOGYB/jPvgR7xhvxFqCYAqXN9968gqZyxW9N4AAISqSu2L5OrFgc4IbRzIu egNcPhECZMGIt2RLdInpVp97ISC2So7laJ4qsYsdEPgQJ3OqMntvLHfyxVbvL/6t krdH+RAJ2M7s71zaZxhnFFQPX/AzZvWnhRqOSNGEVuizA57FGD0agk1s+5HMiI0N kVkEmdBg1uGCzeO9HIZq0WrrWwolGTLqk4CyoD1LZwrQV0Mt/g55emqUG9jGOO5d YROq7p44DsuGuQYB+wy2RPU18usPg+VWNN2aIgNzp8uBJv/JAuP2sI6RhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO7JZeP+eRRvAhUCZXxkSQ77ZVeVMB8GA1UdIwQY MBaAFDmdwTYZqrp/IizqywXxu6xZvTqaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9lZmEyMjUtMTZkYy00ZjQzLWFhZTkt MDAzMmZkYzU0NTBiLzEvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC9lZmEyMjUtMTZkYy00ZjQzLWFhZTktMDAzMmZkYzU0NTBi LzEvT1ozQk5obXF1bjhpTE9yTEJmRzdyRm05T3BvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnVExCqPi r0MRS5TYgtwahp34QR6OopxK3FL7nbLb5OM+moMWwtbOaO+6OrllkKvXwsIhfIxx Y+njjqHZi1/RAc6nUqp+FifA3rNnJp5VAmwE4WDJ7LXpj1pfa3VTF75hfeyZz8Xs kiGxt45yd4Aog2Cd9nP9YbuOtczsBAcneX2M5uE3MI295dP8B0OmIL8aKOvArnBt MuoDMVqznFYWZF9tggmr/qpYglw6Fd2GjTEc0dqR/HCi9eU7XpEU7fMwqjcIz1kG E8nGkRF9k+gvZjC2wsRd+6uxOtLhGUT9AXRy7IuIUWSK8ibUkQRkKfcoBDyh8BdQ YD+8Pse2ETNTuA== -----END CERTIFICATE-----Generated at Fri Dec 19 08:10:11 2025 by rpki-client