This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.mft File: PubOz_2bi7oY1HTns5k-Ch0U27M.mft (raw, json) Hash identifier: WdBmSB4JEz8nqwDMXBggB/2qPq5u7KZv9UKWlr3Jp4E= Subject key identifier: D5:A6:79:E0:4A:86:40:41:3C:00:90:4D:3C:8B:A8:81:3C:0A:53:5A Authority key identifier: 3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3 Certificate issuer: /CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3 Certificate serial: 019B131489D23755B8782C0B5A424C83A181 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.mft Manifest number: 1771 Signing time: Fri 12 Dec 2025 15:01:11 +0000 Manifest this update: Fri 12 Dec 2025 15:01:11 +0000 Manifest next update: Sat 13 Dec 2025 15:01:11 +0000 Files and hashes: 1: 0Z0N7XcDaBDDIFuADZvveEOpnJw.roa (hash: gAUFpbijoaRws4OSpZQdGdoxqVjsxrfddgC/n57+l3g=) 2: 8-FKPJHE6vcPzqBfhidoWPOxdAI.roa (hash: YFJG/U27ibxfBXMxeBPb2K+kYbsAd+aEaMxdkmB5KX8=) 3: MeMsmYAnac73QikfwHpf4FiB8MA.roa (hash: w8cyx5Qe5TgkNbDbtB6QAHXf0+aV1FgiM053aALKsSg=) 4: PubOz_2bi7oY1HTns5k-Ch0U27M.crl (hash: tOfKC+laDJqnvpF+WFxDzpCfBUbmvvuMk/6IsyFOR5c=) 5: gBOr1K9o3G_sjVut4hTNYrOz3aw.roa (hash: WvCboN2sSwdfSWgLauEyXaJvvKZ2k+WSGckagpeMJcA=) 6: pRRc-aHsLhs7L3jVpiMmTF9mbXU.roa (hash: 3+Rll0s3Qp4ADMZLaRyXjqLo1eqDlTqqXI3V1CpcTo4=) 7: vuTW0ftXsfvIWtL6nGLUGKWxAa0.roa (hash: vusAgJM4Fe2/TEz+SbhV7Z/ibEen3tJQhfA8nIe5Or8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.crl rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.mft rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 15:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:13:14:89:d2:37:55:b8:78:2c:0b:5a:42:4c:83:a1:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3 Validity Not Before: Dec 12 15:01:11 2025 GMT Not After : Dec 13 15:01:11 2025 GMT Subject: CN=d5a679e04a8640413c00904d3c8ba8813c0a535a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:7a:cc:7f:9a:5e:c4:fc:53:3d:9b:4c:db:04: 09:ea:be:5a:be:1a:81:80:95:71:47:66:6b:2e:08: 13:d3:1e:41:44:43:73:bd:2f:38:54:e1:59:13:3b: fc:e9:e4:e3:6e:39:f9:69:d8:86:43:4e:ac:73:b6: d0:9a:8a:1a:cf:ca:91:09:25:61:3f:77:ec:3e:b9: 42:17:d5:a5:4b:93:f7:7e:a8:eb:0f:8e:88:d1:5b: cd:a8:06:c6:0e:df:0d:54:05:97:0a:e4:e5:54:90: 53:2a:86:aa:a5:d9:47:f5:70:eb:93:88:24:75:49: 5e:c1:29:3f:c1:bb:2b:9f:be:08:ad:68:cd:01:2a: 57:67:0b:15:93:32:f1:81:a2:fe:a5:cd:66:1e:e3: 60:32:04:98:ce:0a:af:bf:3d:90:2b:ce:73:57:a8: 64:cb:6d:0b:a0:57:47:be:57:a9:fa:f1:91:e8:55: 70:fc:a0:18:9e:cc:c1:03:e8:dc:fe:fb:08:d4:b2: 5c:fb:dc:03:8a:df:99:91:87:c4:a4:3e:a2:71:af: a8:3b:8d:ab:c4:b7:9e:6c:4d:1e:86:a8:f4:19:28: 64:00:92:17:ca:b7:7b:c2:d9:2c:73:31:0c:eb:3a: e7:22:e8:07:8f:61:60:5d:bc:ae:09:6e:43:b1:64: 0c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:A6:79:E0:4A:86:40:41:3C:00:90:4D:3C:8B:A8:81:3C:0A:53:5A X509v3 Authority Key Identifier: keyid:3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:d9:bb:1a:05:44:0f:c2:5a:2c:b5:39:63:59:b2:12:bf:cd: 00:46:ca:ec:e1:59:a4:a6:21:75:36:e1:e7:9e:fc:c5:e7:98: 88:44:46:50:ad:47:2f:4a:8a:66:14:ca:69:2d:49:df:ff:81: 2d:b3:38:4b:8f:46:fe:94:f4:3a:3f:1e:fb:8f:14:3f:f3:95: f0:04:2d:c7:75:2d:43:58:24:88:e5:d5:16:a5:5b:4e:41:77: c1:eb:c6:39:07:1b:be:26:6f:2a:00:ee:34:9b:7c:13:f5:cd: 7e:c0:4c:37:55:7a:11:41:0b:4e:46:23:c9:93:21:59:e7:eb: 0d:ca:da:5e:37:e6:49:e4:e0:95:16:88:ca:9a:e8:14:bf:ad: 83:84:f1:80:37:68:a5:97:98:c1:b9:ff:64:52:77:7b:96:c6: e9:5c:f0:d0:12:51:e3:87:5e:54:a5:b6:1a:84:1e:00:ed:1c: 13:37:ee:76:a5:27:1e:ff:88:84:40:ea:79:70:fd:88:4c:11: 0c:5d:c8:d0:af:42:07:a7:7a:2f:53:da:79:e5:f1:8d:71:0d: ae:12:38:46:60:be:2b:ac:8d:36:e1:70:80:28:75:e8:5a:66: 2a:09:70:19:b7:c0:e7:1e:e5:3f:cc:16:b9:c8:97:03:f9:90: 7a:38:41:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsTFInSN1W4eCwLWkJMg6GBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlZTZjZWNmZmQ5YjhiYmExOGQ0NzRlN2IzOTkzZTBhMWQx NGRiYjMwHhcNMjUxMjEyMTUwMTExWhcNMjUxMjEzMTUwMTExWjAzMTEwLwYDVQQD EyhkNWE2NzllMDRhODY0MDQxM2MwMDkwNGQzYzhiYTg4MTNjMGE1MzVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlHrMf5pexPxTPZtM2wQJ6r5avhqB gJVxR2ZrLggT0x5BRENzvS84VOFZEzv86eTjbjn5adiGQ06sc7bQmooaz8qRCSVh P3fsPrlCF9WlS5P3fqjrD46I0VvNqAbGDt8NVAWXCuTlVJBTKoaqpdlH9XDrk4gk dUlewSk/wbsrn74IrWjNASpXZwsVkzLxgaL+pc1mHuNgMgSYzgqvvz2QK85zV6hk y20LoFdHvlep+vGR6FVw/KAYnszBA+jc/vsI1LJc+9wDit+ZkYfEpD6ica+oO42r xLeebE0ehqj0GShkAJIXyrd7wtksczEM6zrnIugHj2FgXbyuCW5DsWQMMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNWmeeBKhkBBPACQTTyLqIE8ClNaMB8GA1UdIwQY MBaAFD7mzs/9m4u6GNR057OZPgodFNuzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHViT3pfMmJpN29ZMUhUbnM1ay1DaDBVMjdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9lNjFjYWEtMjUwMC00Mzg4LWE5ZmEt NzMyNDkxMzk3NWQ1LzEvUHViT3pfMmJpN29ZMUhUbnM1ay1DaDBVMjdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS9lNjFjYWEtMjUwMC00Mzg4LWE5ZmEtNzMyNDkxMzk3NWQ1 LzEvUHViT3pfMmJpN29ZMUhUbnM1ay1DaDBVMjdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcNm7GgVE D8JaLLU5Y1myEr/NAEbK7OFZpKYhdTbh5578xeeYiERGUK1HL0qKZhTKaS1J3/+B LbM4S49G/pT0Oj8e+48UP/OV8AQtx3UtQ1gkiOXVFqVbTkF3wevGOQcbviZvKgDu NJt8E/XNfsBMN1V6EUELTkYjyZMhWefrDcraXjfmSeTglRaIyproFL+tg4TxgDdo pZeYwbn/ZFJ3e5bG6Vzw0BJR44deVKW2GoQeAO0cEzfudqUnHv+IhEDqeXD9iEwR DF3I0K9CB6d6L1PaeeXxjXENrhI4RmC+K6yNNuFwgCh16FpmKglwGbfA5x7lP8wW uciXA/mQejhB3A== -----END CERTIFICATE-----Generated at Fri Dec 12 19:31:21 2025 by rpki-client