This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft File: oBZYi9HMst0iHG-Hg4VnR11-8ps.mft (raw, json) Hash identifier: yuiGGlqcS6wlVFyrQowMLhRtau0ZEqrNQHCtD3cbIX4= Subject key identifier: 82:E2:60:FA:62:75:93:4D:04:95:A3:BA:A9:39:5C:65:2C:21:81:C0 Authority key identifier: A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B Certificate issuer: /CN=a016588bd1ccb2dd221c6f87838567475d7ef29b Certificate serial: 019B3B6B8DA23BA8951C61314C79C9D19500 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft Manifest number: 1789 Signing time: Sat 20 Dec 2025 11:01:02 +0000 Manifest this update: Sat 20 Dec 2025 11:01:02 +0000 Manifest next update: Sun 21 Dec 2025 11:01:02 +0000 Files and hashes: 1: 7uBhUg1U8OiL4mgssHYwPwkKJrs.roa (hash: qe2rw9SjAhTjzWJWyO7/LvmX898Pe709+tHdC1jP6UA=) 2: P--cyCsEXWTpmdtjtbooGfKZW34.roa (hash: NViLGPpX2PnuVnmOA56Cf2Dp8n102H0opZdujn8vzcs=) 3: aUv0oKe6R2btvCdtOSYfT8WFAF0.roa (hash: lEgJxjlP6AlXHpqLTYKzkLDQsVq+Pi3xpQibZH/Rsds=) 4: gAUG9nMSNjQsq1tequutH3immt8.roa (hash: LCBTiYiGcwL+NIVJ6V4OXpEoNBb3bNUukyOlGZ8oVgM=) 5: kx7UofzIMm_m_XlnrQs2X_ZwrTs.roa (hash: FMY4CRQkCPFhXww6V/ELCA3IQUBWPklogLha1wHTo1w=) 6: oBZYi9HMst0iHG-Hg4VnR11-8ps.crl (hash: EJEH8jzJerm3h9OIQhx6WA+SQ2xDPIhZlOA3XqrCpko=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:6b:8d:a2:3b:a8:95:1c:61:31:4c:79:c9:d1:95:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a016588bd1ccb2dd221c6f87838567475d7ef29b Validity Not Before: Dec 20 11:01:02 2025 GMT Not After : Dec 21 11:01:02 2025 GMT Subject: CN=82e260fa6275934d0495a3baa9395c652c2181c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:36:7a:c9:7f:b8:65:b5:7f:9d:7d:d5:45:97: f6:fe:50:d1:ed:db:47:92:da:df:80:32:8d:f6:2e: 0a:7f:40:8f:b5:43:90:26:30:3e:eb:1f:d9:eb:a0: eb:00:4d:5c:1a:38:3e:68:ed:d2:24:d1:49:55:34: 15:9c:08:a8:1d:3c:63:09:b4:70:8d:15:c3:fd:b9: 0d:0a:7a:36:74:7e:ea:d6:37:cf:d8:71:57:20:90: 16:6e:f4:01:d4:c5:30:ce:4f:7b:b8:01:da:b2:a8: 11:bc:8c:68:77:e6:31:7d:39:2f:b7:bf:c0:39:1b: 30:5a:9b:5d:11:62:30:b2:76:24:1d:3d:f0:9f:72: 75:9b:1e:a5:24:36:b6:c4:b7:93:9a:27:4b:1f:56: c8:4c:d2:77:75:cc:aa:a3:a1:0a:08:df:f6:21:65: 43:fb:44:13:24:9f:d3:13:98:6e:3e:d7:d5:c2:64: a4:8d:45:02:f1:e1:d8:1b:56:58:66:5a:29:17:db: 13:11:26:9c:74:1e:fd:b4:c9:87:a8:92:dd:47:48: 12:ac:6e:46:ae:42:9e:aa:4d:9e:1e:f0:ed:e8:98: 7c:dd:89:fa:58:01:39:a2:b4:d8:8d:fd:08:9d:ef: eb:7a:74:aa:44:31:1d:b5:10:9f:4d:39:43:6f:e8: 90:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E2:60:FA:62:75:93:4D:04:95:A3:BA:A9:39:5C:65:2C:21:81:C0 X509v3 Authority Key Identifier: keyid:A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:b7:c3:91:8a:d6:2a:18:cb:a6:49:5d:e9:9b:75:d1:41:84: 2e:38:3f:ed:92:5a:d1:94:88:30:6d:92:b1:2f:61:22:c9:99: 7e:62:5c:a6:36:7f:1c:65:2a:b2:98:fd:88:a6:cf:42:b7:2a: df:c4:d2:30:46:00:39:c9:d7:a4:ac:2e:66:e9:0a:91:03:71: d8:a7:52:f8:96:2a:cf:0a:5f:99:12:4c:21:01:74:12:13:b6: 4c:9e:6d:ef:c9:6d:d0:3b:e3:fc:74:cf:35:a7:4d:cf:fe:3e: 43:1e:26:85:3e:dd:38:3d:62:2c:8e:df:75:a6:5e:d7:3b:40: b6:6a:93:07:11:34:39:a3:88:23:2e:6d:5d:70:b8:9c:ed:31: fb:b4:83:66:13:c7:36:5a:bd:c8:3c:11:5e:b8:5b:81:d8:33: cb:0d:53:f3:0e:f9:00:04:9c:45:ba:7b:0a:17:e8:40:fc:60: 44:1a:42:a0:68:82:25:69:cf:6b:5a:7d:35:e1:73:66:ac:27: f5:b8:c8:ef:46:a5:76:c6:bd:89:5f:6e:86:09:d8:fe:57:8d: ee:83:72:01:15:11:3a:98:9b:76:e6:9b:0b:c0:85:1b:45:97: f0:41:b9:84:c1:33:f8:bf:68:37:35:20:80:2f:47:4b:89:99: 82:f5:aa:fe -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7a42iO6iVHGExTHnJ0ZUAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwMTY1ODhiZDFjY2IyZGQyMjFjNmY4NzgzODU2NzQ3NWQ3 ZWYyOWIwHhcNMjUxMjIwMTEwMTAyWhcNMjUxMjIxMTEwMTAyWjAzMTEwLwYDVQQD Eyg4MmUyNjBmYTYyNzU5MzRkMDQ5NWEzYmFhOTM5NWM2NTJjMjE4MWMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnjZ6yX+4ZbV/nX3VRZf2/lDR7dtH ktrfgDKN9i4Kf0CPtUOQJjA+6x/Z66DrAE1cGjg+aO3SJNFJVTQVnAioHTxjCbRw jRXD/bkNCno2dH7q1jfP2HFXIJAWbvQB1MUwzk97uAHasqgRvIxod+YxfTkvt7/A ORswWptdEWIwsnYkHT3wn3J1mx6lJDa2xLeTmidLH1bITNJ3dcyqo6EKCN/2IWVD +0QTJJ/TE5huPtfVwmSkjUUC8eHYG1ZYZlopF9sTESacdB79tMmHqJLdR0gSrG5G rkKeqk2eHvDt6Jh83Yn6WAE5orTYjf0Ine/renSqRDEdtRCfTTlDb+iQFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFILiYPpidZNNBJWjuqk5XGUsIYHAMB8GA1UdIwQY MBaAFKAWWIvRzLLdIhxvh4OFZ0ddfvKbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0JaWWk5SE1zdDBpSEctSGc0Vm5SMTEtOHBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi80ZWM1NjktOGNhZi00MTk4LWJhZTEt NzczMTIwZmY3YzBmLzEvb0JaWWk5SE1zdDBpSEctSGc0Vm5SMTEtOHBzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi80ZWM1NjktOGNhZi00MTk4LWJhZTEtNzczMTIwZmY3YzBm LzEvb0JaWWk5SE1zdDBpSEctSGc0Vm5SMTEtOHBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADbfDkYrW KhjLpkld6Zt10UGELjg/7ZJa0ZSIMG2SsS9hIsmZfmJcpjZ/HGUqspj9iKbPQrcq 38TSMEYAOcnXpKwuZukKkQNx2KdS+JYqzwpfmRJMIQF0EhO2TJ5t78lt0Dvj/HTP NadNz/4+Qx4mhT7dOD1iLI7fdaZe1ztAtmqTBxE0OaOIIy5tXXC4nO0x+7SDZhPH Nlq9yDwRXrhbgdgzyw1T8w75AAScRbp7ChfoQPxgRBpCoGiCJWnPa1p9NeFzZqwn 9bjI70aldsa9iV9uhgnY/leN7oNyARUROpibduabC8CFG0WX8EG5hMEz+L9oNzUg gC9HS4mZgvWq/g== -----END CERTIFICATE-----Generated at Sat Dec 20 18:15:34 2025 by rpki-client