This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft File: oZ_WM6TT0hDez321fRIrZIuY7SU.mft (raw, json) Hash identifier: SUu9fvcMc9ue+evd6nSRipwlfAt8X7yHveeAClrTTMA= Subject key identifier: F1:EC:AA:7D:20:C3:C0:CD:A7:59:13:F5:D4:6E:06:34:F7:1E:D9:EF Authority key identifier: A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25 Certificate issuer: /CN=a19fd633a4d3d210decf7db57d122b648b98ed25 Certificate serial: 019B59E36F500717B7F7824C5648DAF9B318 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft Manifest number: 03A0 Signing time: Fri 26 Dec 2025 09:00:35 +0000 Manifest this update: Fri 26 Dec 2025 09:00:35 +0000 Manifest next update: Sat 27 Dec 2025 09:00:35 +0000 Files and hashes: 1: miHlM9LoOvhYbZQONUYiQ010Y0Y.roa (hash: lxFbzya4PF93jTfC+wdGWG8lRjQOoMqPwgxmgMabAZw=) 2: oZ_WM6TT0hDez321fRIrZIuY7SU.crl (hash: 1COUYa2dpssQC45bH/w246ziT2KMse3miQSjk2C/JqI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 09:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:6f:50:07:17:b7:f7:82:4c:56:48:da:f9:b3:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a19fd633a4d3d210decf7db57d122b648b98ed25 Validity Not Before: Dec 26 09:00:35 2025 GMT Not After : Dec 27 09:00:35 2025 GMT Subject: CN=f1ecaa7d20c3c0cda75913f5d46e0634f71ed9ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bd:3a:15:6c:7f:2f:21:69:90:31:29:49:b1: c0:4e:8a:2e:6e:b3:bb:ea:04:7c:5c:8e:73:ab:7f: 14:f7:17:1d:fc:26:da:e0:73:7d:00:eb:98:48:94: 5a:a2:f5:9b:54:14:e7:ad:b9:d9:8f:b6:d5:52:de: 42:c8:04:16:9c:eb:9d:73:91:89:60:c0:5e:39:38: 6d:ac:ff:7c:4c:37:a9:50:a6:d9:b9:7d:21:a5:66: ee:d3:45:be:86:a0:95:cf:ff:86:db:7e:ab:46:f6: 56:ee:55:f1:96:57:f5:e6:f0:51:27:db:1a:ee:8e: 16:aa:97:37:18:dc:e5:3e:73:b3:30:1c:9a:d5:9e: d6:f5:9f:8b:e9:68:8b:97:f8:15:ec:ac:db:30:33: fe:06:3c:99:99:92:fd:33:1e:54:1c:a6:ac:3a:c2: f4:9b:e8:9f:a6:3b:30:4a:9d:5c:f3:11:bc:57:db: 2b:73:53:40:51:f1:15:ec:7d:f3:8c:d1:d6:49:af: bc:fc:69:fa:ea:d0:34:ed:e7:c5:d3:f2:eb:11:af: 2d:42:9b:43:43:8f:c2:52:7d:ad:28:e0:f7:a2:2d: ff:5a:a2:25:32:09:ad:e2:5f:cb:da:48:18:c2:4c: 85:60:13:43:5e:8d:60:b5:96:cd:5a:06:4b:45:4a: 91:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:EC:AA:7D:20:C3:C0:CD:A7:59:13:F5:D4:6E:06:34:F7:1E:D9:EF X509v3 Authority Key Identifier: keyid:A1:9F:D6:33:A4:D3:D2:10:DE:CF:7D:B5:7D:12:2B:64:8B:98:ED:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZ_WM6TT0hDez321fRIrZIuY7SU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7cabe0-6d84-47a7-acec-c7cad5020eef/1/oZ_WM6TT0hDez321fRIrZIuY7SU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:29:ef:74:c6:e2:88:6e:d1:f9:a8:6a:7a:f0:01:8a:09:67: 36:7b:93:47:62:16:fb:98:cc:2b:b7:53:e9:d7:21:fe:47:fd: 6d:13:6e:f3:f6:e6:53:88:46:6c:ff:b4:5c:9e:91:84:32:82: 8a:4c:02:73:48:63:b9:e5:f8:62:94:80:4b:b9:1f:52:a4:6d: ba:25:0f:73:9b:32:9b:39:2a:6e:c7:ef:01:06:ad:05:4f:8d: 3f:b1:2b:49:8a:6c:4c:9f:42:52:58:99:5d:82:55:7b:a2:03: 05:59:ac:bc:c0:b7:e9:d5:ac:0a:35:0f:75:86:6e:94:3b:d4: 5f:fc:63:bb:15:66:7e:83:4d:87:e4:0d:31:81:9a:69:1a:84: ef:f3:20:91:e4:f2:cd:d5:89:d0:67:e0:47:95:47:fe:41:b2: f1:e7:93:7c:78:9e:eb:e2:ea:2c:9e:94:03:f1:8f:d6:9c:34: e0:1a:59:c3:4a:a9:b8:f5:25:e5:52:ca:0b:88:2d:06:ca:20: e9:a8:5e:47:a1:48:9c:4b:d8:56:0e:2f:e9:11:58:68:6f:02: 2e:b1:46:a4:75:e3:e7:88:2a:5c:f4:5a:13:94:65:cc:2f:e8: 33:01:32:a8:bd:b7:a4:56:60:f8:eb:8e:9b:8b:e7:01:e8:20: 60:3a:85:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ429QBxe394JMVkja+bMYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExOWZkNjMzYTRkM2QyMTBkZWNmN2RiNTdkMTIyYjY0OGI5 OGVkMjUwHhcNMjUxMjI2MDkwMDM1WhcNMjUxMjI3MDkwMDM1WjAzMTEwLwYDVQQD EyhmMWVjYWE3ZDIwYzNjMGNkYTc1OTEzZjVkNDZlMDYzNGY3MWVkOWVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy706FWx/LyFpkDEpSbHATooubrO7 6gR8XI5zq38U9xcd/Cba4HN9AOuYSJRaovWbVBTnrbnZj7bVUt5CyAQWnOudc5GJ YMBeOThtrP98TDepUKbZuX0hpWbu00W+hqCVz/+G236rRvZW7lXxllf15vBRJ9sa 7o4Wqpc3GNzlPnOzMBya1Z7W9Z+L6WiLl/gV7KzbMDP+BjyZmZL9Mx5UHKasOsL0 m+ifpjswSp1c8xG8V9src1NAUfEV7H3zjNHWSa+8/Gn66tA07efF0/LrEa8tQptD Q4/CUn2tKOD3oi3/WqIlMgmt4l/L2kgYwkyFYBNDXo1gtZbNWgZLRUqRQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPHsqn0gw8DNp1kT9dRuBjT3HtnvMB8GA1UdIwQY MBaAFKGf1jOk09IQ3s99tX0SK2SLmO0lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1pfV002VFQwaERlejMyMWZSSXJaSXVZN1NVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC83Y2FiZTAtNmQ4NC00N2E3LWFjZWMt YzdjYWQ1MDIwZWVmLzEvb1pfV002VFQwaERlejMyMWZSSXJaSXVZN1NVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC83Y2FiZTAtNmQ4NC00N2E3LWFjZWMtYzdjYWQ1MDIwZWVm LzEvb1pfV002VFQwaERlejMyMWZSSXJaSXVZN1NVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFSnvdMbi iG7R+ahqevABiglnNnuTR2IW+5jMK7dT6dch/kf9bRNu8/bmU4hGbP+0XJ6RhDKC ikwCc0hjueX4YpSAS7kfUqRtuiUPc5symzkqbsfvAQatBU+NP7ErSYpsTJ9CUliZ XYJVe6IDBVmsvMC36dWsCjUPdYZulDvUX/xjuxVmfoNNh+QNMYGaaRqE7/MgkeTy zdWJ0GfgR5VH/kGy8eeTfHie6+LqLJ6UA/GP1pw04BpZw0qpuPUl5VLKC4gtBsog 6aheR6FInEvYVg4v6RFYaG8CLrFGpHXj54gqXPRaE5RlzC/oMwEyqL23pFZg+OuO m4vnAeggYDqFpQ== -----END CERTIFICATE-----Generated at Fri Dec 26 17:43:39 2025 by rpki-client