This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.mft File: roOCT9wp6-SsKGygGETfhtTXXsA.mft (raw, json) Hash identifier: W/stiwkUqYJprjx7+PE3uMmz8/+8MppumZDHYmkjGDA= Subject key identifier: B9:EF:B5:8F:E6:62:F7:01:BA:00:FB:9D:C0:5A:65:CD:E6:A3:05:32 Authority key identifier: AE:83:82:4F:DC:29:EB:E4:AC:28:6C:A0:18:44:DF:86:D4:D7:5E:C0 Certificate issuer: /CN=ae83824fdc29ebe4ac286ca01844df86d4d75ec0 Certificate serial: 019B59AC93D0D7EF735EE39ACB9B0FEC7DAC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/roOCT9wp6-SsKGygGETfhtTXXsA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.mft Manifest number: 03BC Signing time: Fri 26 Dec 2025 08:00:40 +0000 Manifest this update: Fri 26 Dec 2025 08:00:40 +0000 Manifest next update: Sat 27 Dec 2025 08:00:40 +0000 Files and hashes: 1: jHCjx-TBB5oXKBhOsM_EWQyL88A.roa (hash: rucNPqCxXwLKo5x3absYJUk2L/e2sCkpCPYtoCEmNPo=) 2: roOCT9wp6-SsKGygGETfhtTXXsA.crl (hash: iVcmQ1GjveMj7ovddYt0TLlqBEbUIPgd20InlCeIS0U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.crl rsync://rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.mft rsync://rpki.ripe.net/repository/DEFAULT/roOCT9wp6-SsKGygGETfhtTXXsA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ac:93:d0:d7:ef:73:5e:e3:9a:cb:9b:0f:ec:7d:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae83824fdc29ebe4ac286ca01844df86d4d75ec0 Validity Not Before: Dec 26 08:00:40 2025 GMT Not After : Dec 27 08:00:40 2025 GMT Subject: CN=b9efb58fe662f701ba00fb9dc05a65cde6a30532 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fc:96:20:67:21:2c:18:1f:5d:11:50:45:12: ae:bc:10:ab:58:84:ef:b4:64:dd:c2:c1:8a:14:c3: 64:7a:2b:04:cb:e3:22:85:d2:1c:88:72:bd:88:21: 04:bf:66:92:31:b9:98:a1:e0:bc:99:4f:8d:b2:c9: 5e:44:61:b7:dd:1e:d7:d3:af:7c:fc:1f:f6:3a:31: f7:d5:e5:93:b4:1f:30:8f:fd:4a:70:49:04:fd:c1: 5e:d4:ab:29:04:e0:a5:92:a4:d0:42:d8:42:94:06: 12:81:6d:1b:31:67:07:5a:96:67:25:c4:bf:71:08: ee:49:e4:a5:60:17:17:8e:f8:71:8e:b3:6c:43:21: fb:05:58:43:13:8e:09:3e:a8:cd:0e:c3:c3:22:cd: 7a:72:73:e9:70:c5:4d:42:b4:8c:7c:86:85:4d:e3: 5c:ed:6a:fc:53:7c:b8:30:e4:8a:e2:59:0c:4e:e7: 83:7b:9b:ef:2f:da:c7:79:a9:5d:d2:9c:df:ac:86: 56:8d:28:d4:77:7c:b2:98:12:80:51:50:b0:79:dd: 63:45:79:5b:7d:ab:f7:c3:54:e8:67:f5:3f:50:57: 72:58:e4:26:ad:bb:78:d5:73:02:36:46:e5:c6:1c: 1f:a6:00:a8:72:24:c9:d4:11:88:e6:69:f5:2b:bc: 8f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:EF:B5:8F:E6:62:F7:01:BA:00:FB:9D:C0:5A:65:CD:E6:A3:05:32 X509v3 Authority Key Identifier: keyid:AE:83:82:4F:DC:29:EB:E4:AC:28:6C:A0:18:44:DF:86:D4:D7:5E:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/roOCT9wp6-SsKGygGETfhtTXXsA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/7174ee-3076-496c-b259-9700546b5711/1/roOCT9wp6-SsKGygGETfhtTXXsA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:59:f2:23:bd:20:cb:f0:b3:a8:4e:c8:ac:a2:33:e6:61:09: 19:c1:5a:e8:cb:62:9a:01:9f:d1:62:df:df:3e:b8:27:b8:92: a8:c6:86:6c:df:ae:01:a1:ae:ee:9d:6f:20:91:4a:bc:a9:98: 5b:1b:9b:0e:0e:85:8c:41:4b:87:1f:e1:ed:43:87:da:75:68: 43:a2:5a:99:e0:fe:29:98:97:e7:1e:e8:6a:00:06:a0:d9:37: bc:1c:d2:bc:80:04:44:64:51:e9:ce:e5:3b:ea:86:9e:08:d9: f1:92:24:6a:24:65:73:9c:02:9f:d5:ab:83:05:f5:b5:99:2a: 84:eb:7f:80:e3:70:7b:f0:9e:44:94:0e:28:32:97:71:b2:4d: 2f:e0:92:61:9c:3f:3e:6e:78:4e:21:35:97:b8:a4:9d:17:99: 5f:ed:a4:eb:e4:4a:f0:bd:f6:2d:19:b4:0f:94:59:78:7f:d7: aa:aa:ca:22:a1:8b:51:49:8b:d5:ea:84:09:7e:a3:ea:fa:4b: 9e:b9:06:56:c4:4c:ee:f3:fa:21:bf:4c:03:d1:f8:f1:6f:1c: 1a:fa:70:5b:8f:b8:75:0a:cf:6b:23:90:7f:02:18:42:1a:7a: f5:48:f7:27:dd:d3:d1:9a:49:07:18:b8:f6:53:c0:aa:b5:7f: da:00:61:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZrJPQ1+9zXuOay5sP7H2sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlODM4MjRmZGMyOWViZTRhYzI4NmNhMDE4NDRkZjg2ZDRk NzVlYzAwHhcNMjUxMjI2MDgwMDQwWhcNMjUxMjI3MDgwMDQwWjAzMTEwLwYDVQQD EyhiOWVmYjU4ZmU2NjJmNzAxYmEwMGZiOWRjMDVhNjVjZGU2YTMwNTMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAofyWIGchLBgfXRFQRRKuvBCrWITv tGTdwsGKFMNkeisEy+MihdIciHK9iCEEv2aSMbmYoeC8mU+NssleRGG33R7X0698 /B/2OjH31eWTtB8wj/1KcEkE/cFe1KspBOClkqTQQthClAYSgW0bMWcHWpZnJcS/ cQjuSeSlYBcXjvhxjrNsQyH7BVhDE44JPqjNDsPDIs16cnPpcMVNQrSMfIaFTeNc 7Wr8U3y4MOSK4lkMTueDe5vvL9rHeald0pzfrIZWjSjUd3yymBKAUVCwed1jRXlb fav3w1ToZ/U/UFdyWOQmrbt41XMCNkblxhwfpgCociTJ1BGI5mn1K7yPnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLnvtY/mYvcBugD7ncBaZc3mowUyMB8GA1UdIwQY MBaAFK6Dgk/cKevkrChsoBhE34bU117AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm9PQ1Q5d3A2LVNzS0d5Z0dFVGZodFRYWHNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC83MTc0ZWUtMzA3Ni00OTZjLWIyNTkt OTcwMDU0NmI1NzExLzEvcm9PQ1Q5d3A2LVNzS0d5Z0dFVGZodFRYWHNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC83MTc0ZWUtMzA3Ni00OTZjLWIyNTktOTcwMDU0NmI1NzEx LzEvcm9PQ1Q5d3A2LVNzS0d5Z0dFVGZodFRYWHNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfVnyI70g y/CzqE7IrKIz5mEJGcFa6MtimgGf0WLf3z64J7iSqMaGbN+uAaGu7p1vIJFKvKmY WxubDg6FjEFLhx/h7UOH2nVoQ6JameD+KZiX5x7oagAGoNk3vBzSvIAERGRR6c7l O+qGngjZ8ZIkaiRlc5wCn9WrgwX1tZkqhOt/gONwe/CeRJQOKDKXcbJNL+CSYZw/ Pm54TiE1l7iknReZX+2k6+RK8L32LRm0D5RZeH/XqqrKIqGLUUmL1eqECX6j6vpL nrkGVsRM7vP6Ib9MA9H48W8cGvpwW4+4dQrPayOQfwIYQhp69Uj3J93T0ZpJBxi4 9lPAqrV/2gBh7w== -----END CERTIFICATE-----Generated at Fri Dec 26 14:16:50 2025 by rpki-client