This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft File: OzoF27nHf6Fu0QRpdHpcbm6riN4.mft (raw, json) Hash identifier: MtlHuPsBGFRMCHkYVIpZXu+UzWn/YYCrU/sZwE7aj40= Subject key identifier: 40:01:BB:5A:DB:6A:E9:0B:88:A2:76:B1:B7:00:A7:43:00:E5:38:F5 Authority key identifier: 3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE Certificate issuer: /CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de Certificate serial: 019B0DB756A3EDE9397500069D440D9F24E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft Manifest number: 0750 Signing time: Thu 11 Dec 2025 14:01:17 +0000 Manifest this update: Thu 11 Dec 2025 14:01:17 +0000 Manifest next update: Fri 12 Dec 2025 14:01:17 +0000 Files and hashes: 1: 2bBaeD35kseI457ZAPL2x12So_w.roa (hash: oq5BcVgGKnzmBudzjO96n+tl2tyiGaHICIAPgJhlDTA=) 2: OzoF27nHf6Fu0QRpdHpcbm6riN4.crl (hash: kIq7tgbok4yKCeVmDDxrmUFxtx1HlUewrC3z+gfuMSY=) 3: gu88WpvtkXuc7R66ZpDpE_3pKFA.roa (hash: ehlUCMIeJxZkhfnlJeweCnR9EA26oToRAoh5TK8ORKs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0d:b7:56:a3:ed:e9:39:75:00:06:9d:44:0d:9f:24:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de Validity Not Before: Dec 11 14:01:17 2025 GMT Not After : Dec 12 14:01:17 2025 GMT Subject: CN=4001bb5adb6ae90b88a276b1b700a74300e538f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b6:44:62:70:51:04:56:4d:bc:a1:5c:af:cb: a8:0f:af:11:66:13:62:ed:6e:ac:8f:06:b6:43:1d: 20:c8:60:1e:0a:4e:40:90:c1:c0:93:73:a3:f7:c7: 71:fd:e4:95:7e:4f:98:06:28:e1:d5:14:6a:1b:12: e2:d5:a0:5c:52:e6:d0:a8:14:7b:86:9c:4f:49:be: 4d:2f:81:9c:4d:6d:60:b4:c9:33:02:15:59:59:88: a7:9e:c1:74:43:8e:91:8f:96:03:38:7e:95:ac:72: 22:dd:a4:76:26:b4:24:37:0e:37:8a:74:22:87:a9: 55:43:17:b3:03:10:4f:ae:50:95:26:3b:b2:ff:d1: 2b:4e:14:1a:93:77:9c:58:96:3c:ba:c4:d9:bc:c2: c8:78:9f:5e:f6:89:2e:8a:d7:a4:01:81:42:ca:03: d2:a6:dc:ed:64:88:81:6c:a1:3b:55:17:67:7b:02: f8:21:47:1d:b8:1b:95:ba:da:0d:cb:07:35:c1:2f: fc:0e:1e:9c:40:4c:76:4b:c0:aa:d5:15:01:36:bb: e0:5f:0b:40:e9:80:be:55:2f:ce:c8:4a:4b:15:92: 00:52:1a:a3:52:ae:01:c0:88:ad:a3:68:c5:91:0a: 6b:d4:99:ab:ea:8e:64:24:f4:cf:f0:66:42:9f:c1: 25:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:01:BB:5A:DB:6A:E9:0B:88:A2:76:B1:B7:00:A7:43:00:E5:38:F5 X509v3 Authority Key Identifier: keyid:3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption be:c5:8c:90:c5:35:8f:40:28:da:1d:98:4b:09:29:ef:f7:d1: 1e:7a:3f:aa:8a:71:02:a2:21:82:18:e0:fe:84:fe:a6:39:a5: 8a:7a:2e:cb:11:17:bd:cf:40:bb:8c:06:c7:08:83:35:c5:7d: 8b:c2:71:be:f4:d0:1b:fc:e2:b2:86:c6:01:67:b6:5f:f7:ef: 97:f8:a9:d3:5a:83:fb:50:a0:cd:e6:41:db:df:39:e0:61:8e: ed:d4:a3:81:d0:cb:f0:d0:57:6e:9d:24:3c:86:0f:11:9c:99: 2a:e7:26:c7:d7:58:a9:25:6b:94:2c:e7:01:8d:17:0d:af:2a: cc:e8:1f:73:06:ac:d6:a3:42:71:5b:da:0b:3b:d3:a5:36:5c: 4d:f4:f4:37:ff:53:70:0d:80:67:48:a8:c3:79:1a:35:c1:2a: a5:8e:8d:1e:35:9e:1f:d5:8f:ef:e9:05:e5:44:34:7a:11:9f: 0c:54:c9:1e:02:b0:37:1a:18:5c:41:50:0b:7a:7f:7b:e0:b3: cc:da:58:3c:52:9f:04:46:56:8f:da:86:3f:de:9d:c1:51:c8: 38:aa:bf:8b:fd:5a:4a:c3:e4:3a:82:4e:56:61:89:96:23:7b: aa:62:04:cf:59:93:06:7b:2a:58:43:56:80:7a:26:3d:15:13: 8c:d1:63:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsNt1aj7ek5dQAGnUQNnyTnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiM2EwNWRiYjljNzdmYTE2ZWQxMDQ2OTc0N2E1YzZlNmVh Yjg4ZGUwHhcNMjUxMjExMTQwMTE3WhcNMjUxMjEyMTQwMTE3WjAzMTEwLwYDVQQD Eyg0MDAxYmI1YWRiNmFlOTBiODhhMjc2YjFiNzAwYTc0MzAwZTUzOGY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrZEYnBRBFZNvKFcr8uoD68RZhNi 7W6sjwa2Qx0gyGAeCk5AkMHAk3Oj98dx/eSVfk+YBijh1RRqGxLi1aBcUubQqBR7 hpxPSb5NL4GcTW1gtMkzAhVZWYinnsF0Q46Rj5YDOH6VrHIi3aR2JrQkNw43inQi h6lVQxezAxBPrlCVJjuy/9ErThQak3ecWJY8usTZvMLIeJ9e9okuitekAYFCygPS ptztZIiBbKE7VRdnewL4IUcduBuVutoNywc1wS/8Dh6cQEx2S8Cq1RUBNrvgXwtA 6YC+VS/OyEpLFZIAUhqjUq4BwIito2jFkQpr1Jmr6o5kJPTP8GZCn8El1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEABu1rbaukLiKJ2sbcAp0MA5Tj1MB8GA1UdIwQY MBaAFDs6Bdu5x3+hbtEEaXR6XG5uq4jeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3pvRjI3bkhmNkZ1MFFScGRIcGNibTZyaU40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS81YWEwNWEtNzIwZS00ZDU2LWEzYTgt YTAxYzM3Yjg4NzI4LzEvT3pvRjI3bkhmNkZ1MFFScGRIcGNibTZyaU40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS81YWEwNWEtNzIwZS00ZDU2LWEzYTgtYTAxYzM3Yjg4NzI4 LzEvT3pvRjI3bkhmNkZ1MFFScGRIcGNibTZyaU40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvsWMkMU1 j0Ao2h2YSwkp7/fRHno/qopxAqIhghjg/oT+pjmlinouyxEXvc9Au4wGxwiDNcV9 i8JxvvTQG/zisobGAWe2X/fvl/ip01qD+1CgzeZB29854GGO7dSjgdDL8NBXbp0k PIYPEZyZKucmx9dYqSVrlCznAY0XDa8qzOgfcwas1qNCcVvaCzvTpTZcTfT0N/9T cA2AZ0iow3kaNcEqpY6NHjWeH9WP7+kF5UQ0ehGfDFTJHgKwNxoYXEFQC3p/e+Cz zNpYPFKfBEZWj9qGP96dwVHIOKq/i/1aSsPkOoJOVmGJliN7qmIEz1mTBnsqWENW gHomPRUTjNFjfw== -----END CERTIFICATE-----Generated at Thu Dec 11 20:26:45 2025 by rpki-client