This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft File: o05gF-H-A5MnjChZ9DBDsx7myJo.mft (raw, json) Hash identifier: //7MWFZfXexcqUPq0z1/DRMJXmZDu2qrlgrHAvHWy50= Subject key identifier: A5:92:F4:71:63:58:D9:D8:B8:B1:11:5B:E2:DA:BA:EE:AF:5B:C4:9E Authority key identifier: A3:4E:60:17:E1:FE:03:93:27:8C:28:59:F4:30:43:B3:1E:E6:C8:9A Certificate issuer: /CN=a34e6017e1fe0393278c2859f43043b31ee6c89a Certificate serial: 019B495DF2EF5E263905EB5F5DB1B8BA1334 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft Manifest number: 0453 Signing time: Tue 23 Dec 2025 04:00:52 +0000 Manifest this update: Tue 23 Dec 2025 04:00:52 +0000 Manifest next update: Wed 24 Dec 2025 04:00:52 +0000 Files and hashes: 1: XhfjkU9H43kof2M4wKfSEqEcyOU.roa (hash: eZAN/IrnfZUxiKE3atNAS0YoAlIU2q4UAjYkYHhgMvc=) 2: o05gF-H-A5MnjChZ9DBDsx7myJo.crl (hash: vPLmOIPDOx7Q0J/B5mskmU9ahP5BRb4PfA7vN+OWAb0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.crl rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:49:5d:f2:ef:5e:26:39:05:eb:5f:5d:b1:b8:ba:13:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a34e6017e1fe0393278c2859f43043b31ee6c89a Validity Not Before: Dec 23 04:00:52 2025 GMT Not After : Dec 24 04:00:52 2025 GMT Subject: CN=a592f4716358d9d8b8b1115be2dabaeeaf5bc49e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6a:e7:16:5b:83:e3:eb:e7:35:c9:8a:9c:9d: 1e:e6:1c:51:97:8a:18:39:3c:58:1d:d6:4c:84:4e: ea:15:78:5e:91:ac:a0:89:66:27:3d:cc:0e:3d:3e: 64:d7:7e:6c:f8:85:a4:f8:b1:57:87:34:06:02:a7: 95:fd:33:57:08:18:47:c0:d4:fc:d3:3b:5f:0b:f8: 4d:a6:22:01:04:30:03:f2:1d:6b:78:ab:ec:45:e0: 65:fd:4b:02:8b:ca:25:a6:71:2d:b3:e5:25:05:24: dc:a3:17:0a:01:24:4a:79:4e:62:fe:f4:b4:3a:c8: 54:76:c2:ec:c0:6e:51:65:52:f6:ab:82:16:3f:bf: d7:5d:ea:37:de:1b:cd:97:ef:1f:7c:82:84:3a:cc: 16:17:e4:db:a2:f3:d2:d6:fd:b2:66:5d:e5:d8:94: 98:bb:df:43:eb:f0:60:af:0f:66:8f:2e:80:32:eb: bf:04:1e:a8:4b:c4:fc:9b:ae:7b:ab:67:eb:65:42: d5:9a:fd:74:d9:21:a0:16:ff:59:6f:e1:0a:55:e9: 6d:ec:95:47:94:c8:0a:ba:41:9d:10:77:66:65:bf: 94:cc:d2:ee:8c:2d:6f:02:c2:52:9f:e2:6d:02:aa: 17:13:09:ad:ed:0a:9a:47:31:c2:19:39:bb:15:2f: 15:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:92:F4:71:63:58:D9:D8:B8:B1:11:5B:E2:DA:BA:EE:AF:5B:C4:9E X509v3 Authority Key Identifier: keyid:A3:4E:60:17:E1:FE:03:93:27:8C:28:59:F4:30:43:B3:1E:E6:C8:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:88:3c:ae:bb:03:2a:f0:c0:51:24:fd:50:4b:9d:56:1c:32: 76:3a:05:9c:dd:48:2a:f7:53:d7:8f:70:2b:1e:44:30:27:3b: 8e:13:43:81:94:e7:70:9d:95:04:93:64:b8:d7:13:da:62:73: 47:87:cc:dc:bf:c4:f4:b5:02:25:9d:9c:6b:3e:31:ee:5c:21: 75:63:20:d8:ca:9b:6e:64:a7:7d:cd:27:0e:a5:12:cc:ce:96: 42:43:d9:3f:59:7d:96:43:ab:37:91:45:05:cd:51:b5:aa:b4: b4:62:6e:26:0c:8e:19:f1:7d:a3:de:c8:b1:05:94:a5:3c:5f: 82:38:45:20:93:6f:20:03:e7:99:73:1f:2c:78:ed:57:dd:38: 02:72:ac:35:4b:b4:12:bb:87:31:32:9a:96:ba:2d:18:29:87: 14:1d:f1:2b:eb:99:8b:58:8e:5e:16:8d:4c:14:c8:45:b3:44: 3f:9b:54:7d:e6:57:d2:03:b1:ee:38:78:89:e9:a5:b4:89:6b: 90:0d:4b:28:f1:d4:17:75:87:40:8b:a4:a8:95:a4:85:20:b1: 51:e9:3a:0e:55:9c:f2:26:cc:78:30:4f:15:42:b2:b8:e3:95: d2:07:9b:d8:fa:34:b9:e8:b7:46:f0:9b:a8:30:5e:d0:e4:50: 1a:01:f7:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtJXfLvXiY5BetfXbG4uhM0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzNGU2MDE3ZTFmZTAzOTMyNzhjMjg1OWY0MzA0M2IzMWVl NmM4OWEwHhcNMjUxMjIzMDQwMDUyWhcNMjUxMjI0MDQwMDUyWjAzMTEwLwYDVQQD EyhhNTkyZjQ3MTYzNThkOWQ4YjhiMTExNWJlMmRhYmFlZWFmNWJjNDllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGrnFluD4+vnNcmKnJ0e5hxRl4oY OTxYHdZMhE7qFXhekaygiWYnPcwOPT5k135s+IWk+LFXhzQGAqeV/TNXCBhHwNT8 0ztfC/hNpiIBBDAD8h1reKvsReBl/UsCi8olpnEts+UlBSTcoxcKASRKeU5i/vS0 OshUdsLswG5RZVL2q4IWP7/XXeo33hvNl+8ffIKEOswWF+TbovPS1v2yZl3l2JSY u99D6/Bgrw9mjy6AMuu/BB6oS8T8m657q2frZULVmv102SGgFv9Zb+EKVelt7JVH lMgKukGdEHdmZb+UzNLujC1vAsJSn+JtAqoXEwmt7QqaRzHCGTm7FS8VVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKWS9HFjWNnYuLERW+Lauu6vW8SeMB8GA1UdIwQY MBaAFKNOYBfh/gOTJ4woWfQwQ7Me5siaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzA1Z0YtSC1BNU1uakNoWjlEQkRzeDdteUpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC82ZDYyNWMtN2U2MC00NTIzLTk0OTEt ZDExMjI5OWZmNjk1LzEvbzA1Z0YtSC1BNU1uakNoWjlEQkRzeDdteUpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC82ZDYyNWMtN2U2MC00NTIzLTk0OTEtZDExMjI5OWZmNjk1 LzEvbzA1Z0YtSC1BNU1uakNoWjlEQkRzeDdteUpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdog8rrsD KvDAUST9UEudVhwydjoFnN1IKvdT149wKx5EMCc7jhNDgZTncJ2VBJNkuNcT2mJz R4fM3L/E9LUCJZ2caz4x7lwhdWMg2MqbbmSnfc0nDqUSzM6WQkPZP1l9lkOrN5FF Bc1Rtaq0tGJuJgyOGfF9o97IsQWUpTxfgjhFIJNvIAPnmXMfLHjtV904AnKsNUu0 EruHMTKalrotGCmHFB3xK+uZi1iOXhaNTBTIRbNEP5tUfeZX0gOx7jh4iemltIlr kA1LKPHUF3WHQIukqJWkhSCxUek6DlWc8ibMeDBPFUKyuOOV0geb2Po0uei3RvCb qDBe0ORQGgH3HQ== -----END CERTIFICATE-----Generated at Tue Dec 23 05:51:13 2025 by rpki-client