This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft File: O4_iRlhDAxt3i7jYt701oJT8z0g.mft (raw, json) Hash identifier: Oj+Ql5zoCTfggiNyLX9g2pfLE77V28MjYwGPxh0zojk= Subject key identifier: FD:21:67:B3:DE:F3:B6:81:29:0C:1C:52:AD:A5:CF:43:D5:DA:2C:11 Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48 Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48 Certificate serial: 019B35322C2B224FFDB90672F5C4F65CC9A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft Manifest number: 11EB Signing time: Fri 19 Dec 2025 06:00:38 +0000 Manifest this update: Fri 19 Dec 2025 06:00:38 +0000 Manifest next update: Sat 20 Dec 2025 06:00:38 +0000 Files and hashes: 1: 1-Ls4q-ChZ0ZaOTjP1nQ6tqwVR7w.roa (hash: YXXZf8p+XXstJczN+ymTH8ANFDcZF/VCsvvC/wyu2tg=) 2: 3K66fkLdFIhZuPgVnT8dBkSPcIY.roa (hash: jrto9CYh3lf5yVyFB1TxobdXxUZh+GOGoL+a0rSxI8I=) 3: AF6uSBXXjV8m6D8T1L1tDnPI1pQ.roa (hash: 5ngifaMxS9mhHVtoSr7d4Aq0k4gtgdDqeUt6H7Q6K9U=) 4: GJq6jlu04Rm9wa7Cgp8cTcM0nxA.roa (hash: AENchPK3bfQJEdljclR0ie9L+vwumxV2eeigY07rGKw=) 5: O4_iRlhDAxt3i7jYt701oJT8z0g.crl (hash: raC7xzUOEbNNNq9jvSrPewPx0P5DrmxvHg9e6Pmg/uY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 06:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:32:2c:2b:22:4f:fd:b9:06:72:f5:c4:f6:5c:c9:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48 Validity Not Before: Dec 19 06:00:38 2025 GMT Not After : Dec 20 06:00:38 2025 GMT Subject: CN=fd2167b3def3b681290c1c52ada5cf43d5da2c11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9e:85:ed:18:39:d4:61:c2:c9:80:b2:af:6a: 75:1d:b9:6f:6f:65:91:5e:11:36:00:37:cd:76:bf: e4:0d:bd:7b:88:93:09:57:17:e0:32:c2:07:63:70: 3b:89:10:0b:74:25:7e:92:df:76:75:9a:cb:34:75: d5:ca:6b:a9:2a:93:b1:8a:82:03:ba:f9:a5:d9:3b: 91:0f:e3:22:91:79:d3:63:55:33:d4:02:89:8a:40: b5:53:69:d6:a8:2c:8a:00:cb:73:10:a9:d2:ad:b8: 03:1d:97:4e:0c:1c:72:c2:bf:0c:44:6d:01:3f:41: 8d:da:6b:58:d1:8b:04:13:fd:a4:7f:93:c3:58:7a: d1:33:31:f3:23:92:ee:90:b6:ba:57:d7:c5:31:7f: 87:47:f8:7f:7e:a1:69:a8:78:0b:44:dd:b7:98:a9: 53:ec:1a:03:41:1d:64:01:26:a3:9d:87:d7:f2:27: a0:f1:17:21:16:9f:ab:98:0e:0b:f5:e2:8e:21:aa: e6:2c:8d:7d:a8:32:f8:91:99:b1:0c:6f:80:95:d5: 61:67:56:15:60:f0:ed:a0:8c:e0:8e:9e:8f:5d:ab: c3:c5:80:92:43:41:79:10:88:af:88:a6:07:bb:63: c1:c5:b6:ec:b9:c9:f8:a0:98:c9:fa:91:0b:61:81: 8e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:21:67:B3:DE:F3:B6:81:29:0C:1C:52:AD:A5:CF:43:D5:DA:2C:11 X509v3 Authority Key Identifier: keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:e2:1f:6c:be:ce:33:23:51:25:13:08:24:7c:27:4d:23:5a: 91:e8:41:ef:05:7b:ce:73:c7:12:b8:a1:96:60:54:e5:2d:b7: 0a:8a:bd:e3:e3:b4:d5:66:21:4b:57:38:8e:39:73:4a:54:33: a5:94:ea:ef:55:40:74:d7:27:40:1b:8d:61:11:5c:2d:47:dd: 90:97:4e:bd:09:6d:3f:0f:b2:8b:88:ec:60:57:82:b0:db:e4: e9:ae:7e:e7:94:a5:13:ae:f9:52:19:da:01:b5:08:de:26:82: 4c:00:c3:76:d4:54:7a:f3:3c:70:ea:50:86:e5:a5:41:a0:b3: e6:bd:03:8b:8d:ea:9c:5e:2e:e3:7f:fa:96:41:a8:32:86:50: 11:28:7e:dc:cf:38:75:3d:2d:11:9c:79:80:ee:e2:9d:a6:a3: f6:9b:18:96:47:09:2b:f5:e7:97:56:a3:16:dc:bd:51:45:b6: f9:94:25:ab:68:96:c5:ea:58:b6:d5:50:21:5c:ba:08:3c:ec: 3c:e1:1b:aa:4e:b7:b6:b1:11:8e:26:28:53:8d:b2:5b:79:1e: f6:10:44:d7:67:fd:28:12:72:74:e0:6c:d7:3d:a5:ed:34:f0: 29:a1:bc:aa:82:0b:f8:f2:86:b1:45:95:33:8f:a3:aa:4a:36: 17:1c:63:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1MiwrIk/9uQZy9cT2XMmjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiOGZlMjQ2NTg0MzAzMWI3NzhiYjhkOGI3YmQzNWEwOTRm Y2NmNDgwHhcNMjUxMjE5MDYwMDM4WhcNMjUxMjIwMDYwMDM4WjAzMTEwLwYDVQQD EyhmZDIxNjdiM2RlZjNiNjgxMjkwYzFjNTJhZGE1Y2Y0M2Q1ZGEyYzExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzZ6F7Rg51GHCyYCyr2p1Hblvb2WR XhE2ADfNdr/kDb17iJMJVxfgMsIHY3A7iRALdCV+kt92dZrLNHXVymupKpOxioID uvml2TuRD+MikXnTY1Uz1AKJikC1U2nWqCyKAMtzEKnSrbgDHZdODBxywr8MRG0B P0GN2mtY0YsEE/2kf5PDWHrRMzHzI5LukLa6V9fFMX+HR/h/fqFpqHgLRN23mKlT 7BoDQR1kASajnYfX8ieg8RchFp+rmA4L9eKOIarmLI19qDL4kZmxDG+AldVhZ1YV YPDtoIzgjp6PXavDxYCSQ0F5EIiviKYHu2PBxbbsucn4oJjJ+pELYYGOTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP0hZ7Pe87aBKQwcUq2lz0PV2iwRMB8GA1UdIwQY MBaAFDuP4kZYQwMbd4u42Le9NaCU/M9IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzRfaVJsaERBeHQzaTdqWXQ3MDFvSlQ4ejBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9lZjIwY2YtNGMzOS00NzA3LTg1N2Mt N2MzNTAwNmUwN2ExLzEvTzRfaVJsaERBeHQzaTdqWXQ3MDFvSlQ4ejBnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9lZjIwY2YtNGMzOS00NzA3LTg1N2MtN2MzNTAwNmUwN2Ex LzEvTzRfaVJsaERBeHQzaTdqWXQ3MDFvSlQ4ejBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVuIfbL7O MyNRJRMIJHwnTSNakehB7wV7znPHErihlmBU5S23Coq94+O01WYhS1c4jjlzSlQz pZTq71VAdNcnQBuNYRFcLUfdkJdOvQltPw+yi4jsYFeCsNvk6a5+55SlE675Uhna AbUI3iaCTADDdtRUevM8cOpQhuWlQaCz5r0Di43qnF4u43/6lkGoMoZQESh+3M84 dT0tEZx5gO7inaaj9psYlkcJK/Xnl1ajFty9UUW2+ZQlq2iWxepYttVQIVy6CDzs POEbqk63trERjiYoU42yW3ke9hBE12f9KBJydOBs1z2l7TTwKaG8qoIL+PKGsUWV M4+jqko2Fxxjmw== -----END CERTIFICATE-----Generated at Fri Dec 19 13:16:00 2025 by rpki-client