This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json) Hash identifier: 1PqDP/nRsku4gCMijzp/Aakmm63WZ9KWBoqccPFi4WA= Subject key identifier: AB:71:4A:31:85:48:C7:C0:16:9B:F7:BA:B3:CE:D9:78:0B:B7:3E:58 Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Certificate serial: 019B0E930BB0B09F2DF87249FC9FDDAB2AE4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft Manifest number: 06FD Signing time: Thu 11 Dec 2025 18:01:16 +0000 Manifest this update: Thu 11 Dec 2025 18:01:16 +0000 Manifest next update: Fri 12 Dec 2025 18:01:16 +0000 Files and hashes: 1: 4Knn2Ld5egn1camg9bhppId4Qlo.roa (hash: A8w1HB94c5M9H4eQOiI6lWSCTjnLMlfowVXvZM3dO6s=) 2: 5bwrov9Q4TKzJTBo9upY3XK0THU.roa (hash: TYWC6rWZltrX891RQlcpPW39DIbNZYI93ECjvUJPd18=) 3: S_FCvdfbH_ZK63a0stUMhU8oaw8.roa (hash: eXZV7SJ3ck6L3XgOeiX3iX+u0/ekcILrG+TMmUo1bYY=) 4: UXFnULRGQ9zt1V-SkMYjnZH0aX8.roa (hash: hvtnqOC4PJ7xkfHCQl1PdGQcbPT0pkEqxG9iEFd/GZI=) 5: YsXyfEzn_ZKBLDMzG1UU4GMwlcI.roa (hash: +hKZsJUinqgBcHuQ7dq/U5cKUb4tJ0uT1WCFtVOANwo=) 6: gOWYAyjzxIKRFcUZmXLFPZZQLAE.roa (hash: uorrOksjaGfolUbfcHF+KBKk6xKRTaR+l4ir2v0cUaI=) 7: g_ElxkrC5OfOyHZzsFQIM1AuuFQ.roa (hash: s9+zwcgiFmScc9IvVxtLII47fLB+BQdFtBCLqfaDxwU=) 8: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: Cc8xFF1+MS6w08EW/kDgvfyUpk34rVlpPEhQApjQH6A=) 9: zvXh2JmULYTuuJGfZa88vbAc7K8.roa (hash: XQvzCYYY2c/DWeWDz/HVl73sGmFpwXBX4BVFr0eF6dM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:93:0b:b0:b0:9f:2d:f8:72:49:fc:9f:dd:ab:2a:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Validity Not Before: Dec 11 18:01:16 2025 GMT Not After : Dec 12 18:01:16 2025 GMT Subject: CN=ab714a318548c7c0169bf7bab3ced9780bb73e58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:67:17:f4:41:79:5d:dd:d6:61:74:5e:63:a7: d3:44:cd:92:05:8c:46:58:15:b3:64:e9:0a:2d:97: c7:6d:55:83:78:70:94:e6:c0:a6:be:6e:57:fe:9d: fb:16:95:55:80:c6:55:0f:24:15:03:e3:53:f7:41: 0a:7f:0d:55:49:ea:9e:9d:94:86:4e:2b:78:b4:8b: da:7e:12:fc:54:a6:29:51:06:36:16:ea:46:ea:b7: b7:c2:7c:3c:91:6e:4f:ff:ba:54:52:30:33:5b:e1: c0:e2:89:68:a6:9c:6e:9e:8b:cc:dd:62:c0:0a:c4: 4d:cc:07:0b:13:7b:26:eb:75:04:95:e9:36:4f:c8: df:c1:62:84:49:d4:cf:ed:be:d2:9f:ec:ff:33:38: e6:bb:ca:a0:bd:a6:7b:e4:c9:76:30:fd:bd:c4:b9: 96:33:c8:17:32:15:40:bb:78:31:a4:e0:f0:fc:34: e4:e6:35:60:94:7c:a7:af:f6:52:55:f3:17:42:37: 3d:e8:01:16:fc:81:2e:2d:82:f7:3f:bd:c9:f9:0b: c3:40:a1:95:f8:90:36:87:48:ef:7b:49:74:a1:d6: f3:a4:d1:10:84:2b:19:64:dd:b5:0f:9c:01:f0:b8: 27:b2:cc:4a:19:51:ae:9d:e2:0c:7f:15:89:d5:fc: e2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:71:4A:31:85:48:C7:C0:16:9B:F7:BA:B3:CE:D9:78:0B:B7:3E:58 X509v3 Authority Key Identifier: keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:49:19:3a:79:ea:c2:34:82:3a:19:fd:37:53:71:0d:7c:9f: 6e:fa:96:5d:60:f6:f7:fd:53:b2:7c:8e:6b:3a:39:4b:59:75: 88:ff:6b:ff:bd:8a:48:3b:7b:11:01:1c:ac:c4:b9:8b:62:2f: ca:8c:c1:08:e6:3e:7e:6e:65:b8:c7:24:70:3e:e7:c8:99:20: 96:6a:ca:79:3c:c9:88:99:84:33:4e:87:6d:16:5d:7b:cc:03: 9d:b0:75:3a:f4:2c:ea:66:1b:46:60:3f:bb:a3:1a:db:04:46: f6:85:13:34:1a:16:e9:8d:89:a5:25:b4:b3:ab:81:55:78:3f: e3:7c:6c:95:36:04:04:8c:fb:88:ac:5b:52:fb:a5:ce:14:d2: 26:47:d8:5e:36:a9:22:02:ce:70:9e:7e:7d:31:14:b6:78:af: 74:34:b5:be:2b:9b:98:de:c9:03:b4:92:db:4e:5c:1f:8e:22: 4d:d9:72:7f:e4:31:eb:59:db:29:a6:e0:ff:75:51:69:30:e2: e3:67:ed:47:90:b6:90:c4:f3:71:db:76:3c:ea:4b:20:2c:87: f5:9e:36:61:fe:40:3b:25:97:44:51:42:d4:b2:67:f8:85:6d: bd:a5:4e:31:d2:12:5b:dd:b1:2f:06:9e:66:54:bd:cf:61:6a: 09:bc:48:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOkwuwsJ8t+HJJ/J/dqyrkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMjRjY2RkNzBmM2VjNzYyY2JkNjVlMDRkZDZmNzZiZTIz NmE4YTcwHhcNMjUxMjExMTgwMTE2WhcNMjUxMjEyMTgwMTE2WjAzMTEwLwYDVQQD EyhhYjcxNGEzMTg1NDhjN2MwMTY5YmY3YmFiM2NlZDk3ODBiYjczZTU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp2cX9EF5Xd3WYXReY6fTRM2SBYxG WBWzZOkKLZfHbVWDeHCU5sCmvm5X/p37FpVVgMZVDyQVA+NT90EKfw1VSeqenZSG Tit4tIvafhL8VKYpUQY2FupG6re3wnw8kW5P/7pUUjAzW+HA4oloppxunovM3WLA CsRNzAcLE3sm63UElek2T8jfwWKESdTP7b7Sn+z/Mzjmu8qgvaZ75Ml2MP29xLmW M8gXMhVAu3gxpODw/DTk5jVglHynr/ZSVfMXQjc96AEW/IEuLYL3P73J+QvDQKGV +JA2h0jve0l0odbzpNEQhCsZZN21D5wB8LgnssxKGVGuneIMfxWJ1fziOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKtxSjGFSMfAFpv3urPO2XgLtz5YMB8GA1UdIwQY MBaAFKEkzN1w8+x2LL1l4E3W92viNqinMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEt N2IzNTM5N2FmMmY3LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEtN2IzNTM5N2FmMmY3 LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOUkZOnnq wjSCOhn9N1NxDXyfbvqWXWD29/1TsnyOazo5S1l1iP9r/72KSDt7EQEcrMS5i2Iv yozBCOY+fm5luMckcD7nyJkglmrKeTzJiJmEM06HbRZde8wDnbB1OvQs6mYbRmA/ u6Ma2wRG9oUTNBoW6Y2JpSW0s6uBVXg/43xslTYEBIz7iKxbUvulzhTSJkfYXjap IgLOcJ5+fTEUtnivdDS1viubmN7JA7SS205cH44iTdlyf+Qx61nbKabg/3VRaTDi 42ftR5C2kMTzcdt2POpLICyH9Z42Yf5AOyWXRFFC1LJn+IVtvaVOMdISW92xLwae ZlS9z2FqCbxIgw== -----END CERTIFICATE-----Generated at Thu Dec 11 23:57:04 2025 by rpki-client