This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft File: O9_XYE36DriuIOkPzxMDk7ioVko.mft (raw, json) Hash identifier: V/p+8foxUSazoVWic2JSoZYjXAbKczkoHRon0Tsfh+g= Subject key identifier: 5C:1D:03:CF:51:99:94:40:22:78:12:15:53:B2:74:57:88:4B:0A:C4 Authority key identifier: 3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A Certificate issuer: /CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a Certificate serial: 019B38A215211E4EEC184EA12BB47E140D1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft Manifest number: 1786 Signing time: Fri 19 Dec 2025 22:01:44 +0000 Manifest this update: Fri 19 Dec 2025 22:01:44 +0000 Manifest next update: Sat 20 Dec 2025 22:01:44 +0000 Files and hashes: 1: O9_XYE36DriuIOkPzxMDk7ioVko.crl (hash: ZtMd11Xk/Rdv9rY+yUninja9Da/pU4BRFivHL4lJjNs=) 2: m0kgiTT_WYsp23pJuD7SLX4KQwM.roa (hash: VIdUf2MaaJNNuBUU6XlHsX2gourJRTd5TApzwygVz+Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 22:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:a2:15:21:1e:4e:ec:18:4e:a1:2b:b4:7e:14:0d:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a Validity Not Before: Dec 19 22:01:44 2025 GMT Not After : Dec 20 22:01:44 2025 GMT Subject: CN=5c1d03cf519994402278121553b27457884b0ac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3e:4a:82:4e:e4:05:66:74:37:ef:6d:06:c2: 4d:e2:bd:bd:68:3e:30:e9:e6:37:61:46:c9:03:d8: 91:dc:a9:56:73:67:5a:62:6d:42:6a:6d:63:63:b6: 16:ed:6b:0c:01:ce:a3:74:51:c6:ed:63:dd:de:8d: eb:76:bb:b9:10:89:bc:1c:8e:92:15:85:cf:19:eb: 2b:51:88:06:51:44:5a:83:d7:4c:9a:1d:ac:99:71: a5:6c:fb:04:b9:22:cb:c1:3b:5c:d4:ed:b3:cc:07: f9:4e:bd:80:0a:84:1c:31:63:e8:f3:5a:a9:73:1a: 7e:86:b7:57:fd:06:52:b5:8e:c5:0d:06:0b:14:97: 05:c0:cd:31:1a:b2:2f:ed:ee:ea:30:18:a3:4f:7b: bf:53:d2:c2:1c:d9:8c:50:e3:eb:39:c6:00:77:c2: f7:22:b6:8a:d1:15:d2:31:dc:c4:b3:7d:33:f6:d3: 83:4a:c9:93:10:8d:7f:bc:86:b0:ad:7d:e1:5a:a1: 1d:cb:fe:c1:d0:e0:bc:82:73:8e:c5:ef:7f:bb:20: f7:03:c5:3c:6e:c2:91:4a:85:3e:29:62:c9:2c:c7: 52:33:63:f9:eb:6f:fe:b5:04:ba:ec:10:70:53:f9: 70:29:46:30:47:52:6a:9e:2c:56:26:ca:5c:76:e7: f8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:1D:03:CF:51:99:94:40:22:78:12:15:53:B2:74:57:88:4B:0A:C4 X509v3 Authority Key Identifier: keyid:3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:ea:ae:d4:55:37:59:4c:77:08:04:20:61:d9:00:dc:19:2a: ac:76:1c:3d:5e:cd:f1:14:2c:b7:d4:37:16:a6:40:92:2f:c8: 97:3a:c7:60:79:4a:0a:6d:dc:9c:ae:ab:0e:29:8d:99:25:f5: d1:d8:6a:1b:5b:2f:00:59:f5:76:72:dc:12:2b:8d:bb:1b:b3: e3:4f:f8:1b:86:9b:11:4b:09:0f:7f:b1:2b:b3:e6:3e:c7:e8: 3a:7d:cb:04:a4:a3:44:b7:e8:2e:c4:9a:99:09:d5:43:89:a6: a1:63:ab:d0:fb:af:b6:6d:cd:ac:67:f8:f1:99:2a:9f:89:4a: 86:97:fe:5c:d4:be:7b:3e:c0:51:19:f0:df:c4:2a:33:13:51: c9:79:87:ff:19:03:27:c6:53:e7:ea:7d:7f:ff:ee:b7:dd:ca: c7:fc:86:18:e7:a6:5e:c9:ee:79:1f:df:0b:70:9f:9c:f0:8a: fd:10:6d:fb:fa:d2:b9:aa:f7:a3:d3:80:a1:41:e5:77:18:c8: a9:62:75:b0:19:5f:a3:41:f5:ec:57:e6:34:05:54:a2:b9:15: df:a3:67:c9:d4:b4:81:14:49:05:fa:58:ad:83:1c:e7:3f:bc: c5:8b:d8:19:d8:5c:5a:41:c0:71:ed:fd:f6:b2:cb:91:80:9d: 0e:79:dc:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs4ohUhHk7sGE6hK7R+FA0aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiZGZkNzYwNGRmYTBlYjhhZTIwZTkwZmNmMTMwMzkzYjhh ODU2NGEwHhcNMjUxMjE5MjIwMTQ0WhcNMjUxMjIwMjIwMTQ0WjAzMTEwLwYDVQQD Eyg1YzFkMDNjZjUxOTk5NDQwMjI3ODEyMTU1M2IyNzQ1Nzg4NGIwYWM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArD5Kgk7kBWZ0N+9tBsJN4r29aD4w 6eY3YUbJA9iR3KlWc2daYm1Cam1jY7YW7WsMAc6jdFHG7WPd3o3rdru5EIm8HI6S FYXPGesrUYgGUURag9dMmh2smXGlbPsEuSLLwTtc1O2zzAf5Tr2ACoQcMWPo81qp cxp+hrdX/QZStY7FDQYLFJcFwM0xGrIv7e7qMBijT3u/U9LCHNmMUOPrOcYAd8L3 IraK0RXSMdzEs30z9tODSsmTEI1/vIawrX3hWqEdy/7B0OC8gnOOxe9/uyD3A8U8 bsKRSoU+KWLJLMdSM2P562/+tQS67BBwU/lwKUYwR1JqnixWJspcduf4wwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFwdA89RmZRAIngSFVOydFeISwrEMB8GA1UdIwQY MBaAFDvf12BN+g64riDpD88TA5O4qFZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzlfWFlFMzZEcml1SU9rUHp4TURrN2lvVmtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS84ZGMyYzctM2ZjMC00NDZkLTgwN2Mt ZWY2YzllYWQ2MTFjLzEvTzlfWFlFMzZEcml1SU9rUHp4TURrN2lvVmtvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS84ZGMyYzctM2ZjMC00NDZkLTgwN2MtZWY2YzllYWQ2MTFj LzEvTzlfWFlFMzZEcml1SU9rUHp4TURrN2lvVmtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf+qu1FU3 WUx3CAQgYdkA3BkqrHYcPV7N8RQst9Q3FqZAki/IlzrHYHlKCm3cnK6rDimNmSX1 0dhqG1svAFn1dnLcEiuNuxuz40/4G4abEUsJD3+xK7PmPsfoOn3LBKSjRLfoLsSa mQnVQ4mmoWOr0Puvtm3NrGf48Zkqn4lKhpf+XNS+ez7AURnw38QqMxNRyXmH/xkD J8ZT5+p9f//ut93Kx/yGGOemXsnueR/fC3CfnPCK/RBt+/rSuar3o9OAoUHldxjI qWJ1sBlfo0H17FfmNAVUorkV36NnydS0gRRJBfpYrYMc5z+8xYvYGdhcWkHAce39 9rLLkYCdDnncvw== -----END CERTIFICATE-----Generated at Sat Dec 20 08:45:28 2025 by rpki-client