This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.mft File: O5pBDtUm-GwybZG2KApEGhbAxnY.mft (raw, json) Hash identifier: kTCS6KAoYQPB51wdfI9098Jn59Mk84RjPbaLOMbk8bo= Subject key identifier: A0:79:05:40:A7:E6:78:F8:2F:FC:E4:22:F4:15:23:8B:44:20:96:25 Authority key identifier: 3B:9A:41:0E:D5:26:F8:6C:32:6D:91:B6:28:0A:44:1A:16:C0:C6:76 Certificate issuer: /CN=3b9a410ed526f86c326d91b6280a441a16c0c676 Certificate serial: 019B390F21BCC90877E3B1C03547B180BC1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O5pBDtUm-GwybZG2KApEGhbAxnY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.mft Manifest number: 08F0 Signing time: Sat 20 Dec 2025 00:00:51 +0000 Manifest this update: Sat 20 Dec 2025 00:00:51 +0000 Manifest next update: Sun 21 Dec 2025 00:00:51 +0000 Files and hashes: 1: O5pBDtUm-GwybZG2KApEGhbAxnY.crl (hash: 9HqC/3rsNc8bd1loLGN14YQURqMCxoRktDKNkh8af4A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.mft rsync://rpki.ripe.net/repository/DEFAULT/O5pBDtUm-GwybZG2KApEGhbAxnY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 00:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:0f:21:bc:c9:08:77:e3:b1:c0:35:47:b1:80:bc:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b9a410ed526f86c326d91b6280a441a16c0c676 Validity Not Before: Dec 20 00:00:51 2025 GMT Not After : Dec 21 00:00:51 2025 GMT Subject: CN=a0790540a7e678f82ffce422f415238b44209625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:60:17:6c:a2:e3:90:aa:33:41:67:58:58:20: 52:d5:91:e5:80:a5:d1:5b:0e:b6:4c:36:1d:df:48: e7:72:94:74:87:ce:8e:5f:49:3f:bf:cc:4f:4f:5e: eb:19:5a:59:ca:3f:93:1f:68:e1:cc:d6:f0:f6:71: 1b:73:0d:f2:90:d2:86:0c:15:a4:ac:1f:b3:72:19: 91:4f:1d:5e:a6:9d:28:e4:55:35:ea:b5:45:5f:83: ce:28:85:ac:27:b2:8b:02:a5:6f:5d:86:f0:13:ad: 53:aa:72:07:b6:94:86:0c:e2:e2:c1:2b:a8:d2:99: b7:d4:6c:11:8e:49:cc:bf:26:9d:cc:d1:32:13:41: 19:f7:7c:70:cf:10:6a:ea:d3:22:3e:9e:53:f5:71: d8:86:79:33:1c:52:02:d1:52:69:38:f7:4c:3b:23: 41:37:a6:f7:9d:30:6b:b8:57:05:b5:e5:9d:58:4f: 4a:e5:b2:22:57:e2:a6:23:6f:1d:c5:74:a3:df:fe: d3:b9:cc:5d:e3:a9:18:86:9f:4b:e3:c3:65:21:24: 09:71:4d:3f:b8:32:f9:15:fc:ae:4c:fd:ca:20:46: a0:12:df:62:a3:e4:e6:f5:a4:dc:51:29:01:9d:32: f5:f7:e1:90:47:7e:2e:e1:e3:0c:f3:76:88:98:77: 3e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:79:05:40:A7:E6:78:F8:2F:FC:E4:22:F4:15:23:8B:44:20:96:25 X509v3 Authority Key Identifier: keyid:3B:9A:41:0E:D5:26:F8:6C:32:6D:91:B6:28:0A:44:1A:16:C0:C6:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O5pBDtUm-GwybZG2KApEGhbAxnY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:95:41:ac:db:9c:35:a8:60:ad:9f:4a:50:a8:ff:ba:8a:8d: bb:18:b3:c4:95:ae:ab:1a:b9:f9:f7:71:ee:86:17:d4:2c:36: 09:21:0c:8e:5c:0d:fc:5b:a1:89:56:54:77:91:b5:86:61:39: ea:d8:3a:35:1c:fa:94:67:bf:cf:74:16:7c:c4:d9:20:26:13: 19:d8:01:fc:93:6f:0f:27:9f:39:ee:7f:34:8f:c6:a8:cf:30: da:7b:f7:8c:be:f1:2d:8b:5a:e9:01:c2:58:9e:83:41:2b:99: df:56:4c:20:9b:1c:2f:eb:96:87:55:18:74:ae:3b:a5:72:b5: 0d:e2:8c:0d:13:e6:8d:66:27:29:0c:ac:30:66:fb:2c:98:f3: c2:0b:53:2e:d4:c3:d7:79:8c:10:a3:e2:11:62:a9:f3:0f:e7: a6:ae:4c:48:e2:39:81:f4:a6:ff:d5:51:c8:2a:5b:c1:a6:2b: f4:e7:15:0e:18:6f:e4:2b:cc:89:3d:83:78:3b:51:f6:9c:75: 6d:eb:de:cb:b2:8a:f7:df:f3:db:6b:f3:63:d6:97:6e:40:f6: 89:93:ca:8f:f6:cb:0f:44:5d:65:77:71:55:7f:20:4b:32:72: f9:7e:56:88:a3:08:46:5c:09:af:75:85:89:70:58:9e:b8:70: 10:bb:8e:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5DyG8yQh347HANUexgLwdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiOWE0MTBlZDUyNmY4NmMzMjZkOTFiNjI4MGE0NDFhMTZj MGM2NzYwHhcNMjUxMjIwMDAwMDUxWhcNMjUxMjIxMDAwMDUxWjAzMTEwLwYDVQQD EyhhMDc5MDU0MGE3ZTY3OGY4MmZmY2U0MjJmNDE1MjM4YjQ0MjA5NjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWAXbKLjkKozQWdYWCBS1ZHlgKXR Ww62TDYd30jncpR0h86OX0k/v8xPT17rGVpZyj+TH2jhzNbw9nEbcw3ykNKGDBWk rB+zchmRTx1epp0o5FU16rVFX4POKIWsJ7KLAqVvXYbwE61TqnIHtpSGDOLiwSuo 0pm31GwRjknMvyadzNEyE0EZ93xwzxBq6tMiPp5T9XHYhnkzHFIC0VJpOPdMOyNB N6b3nTBruFcFteWdWE9K5bIiV+KmI28dxXSj3/7Tucxd46kYhp9L48NlISQJcU0/ uDL5FfyuTP3KIEagEt9io+Tm9aTcUSkBnTL19+GQR34u4eMM83aImHc+IQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKB5BUCn5nj4L/zkIvQVI4tEIJYlMB8GA1UdIwQY MBaAFDuaQQ7VJvhsMm2RtigKRBoWwMZ2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzVwQkR0VW0tR3d5YlpHMktBcEVHaGJBeG5ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC81ZThlMDQtZTZlYS00ZDU5LWIyZjct ZGYwYTZkYzI4MmEwLzEvTzVwQkR0VW0tR3d5YlpHMktBcEVHaGJBeG5ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC81ZThlMDQtZTZlYS00ZDU5LWIyZjctZGYwYTZkYzI4MmEw LzEvTzVwQkR0VW0tR3d5YlpHMktBcEVHaGJBeG5ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbJVBrNuc NahgrZ9KUKj/uoqNuxizxJWuqxq5+fdx7oYX1Cw2CSEMjlwN/FuhiVZUd5G1hmE5 6tg6NRz6lGe/z3QWfMTZICYTGdgB/JNvDyefOe5/NI/GqM8w2nv3jL7xLYta6QHC WJ6DQSuZ31ZMIJscL+uWh1UYdK47pXK1DeKMDRPmjWYnKQysMGb7LJjzwgtTLtTD 13mMEKPiEWKp8w/npq5MSOI5gfSm/9VRyCpbwaYr9OcVDhhv5CvMiT2DeDtR9px1 bevey7KK99/z22vzY9aXbkD2iZPKj/bLD0RdZXdxVX8gSzJy+X5WiKMIRlwJr3WF iXBYnrhwELuOXQ== -----END CERTIFICATE-----Generated at Sat Dec 20 07:38:52 2025 by rpki-client