This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft File: O_-2BdzjBg37ZtzMqI632grHSvE.mft (raw, json) Hash identifier: eY4RlzXe+7CDqcZFVj0kVA1OZ/F66fpP9VaIxhhz8z0= Subject key identifier: AB:DA:E9:D0:82:39:D5:1D:D9:7C:EF:83:24:0E:A8:AE:B7:06:41:D3 Authority key identifier: 3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1 Certificate issuer: /CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1 Certificate serial: 019B32685BEE05C3CD1383D1534E80EDE984 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft Manifest number: 0B82 Signing time: Thu 18 Dec 2025 17:00:58 +0000 Manifest this update: Thu 18 Dec 2025 17:00:58 +0000 Manifest next update: Fri 19 Dec 2025 17:00:58 +0000 Files and hashes: 1: O_-2BdzjBg37ZtzMqI632grHSvE.crl (hash: 0bgrWXpi2RGy3iQZbjNrpzXCANd7b7G5N574eC8acmA=) 2: bEP6BpgWEwuDr5XbU9fjHciv2p8.roa (hash: HB6oz88QvFlDq+Znta3S+P5pPZ539cdh6eC3HVLovgc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 17:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:68:5b:ee:05:c3:cd:13:83:d1:53:4e:80:ed:e9:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1 Validity Not Before: Dec 18 17:00:58 2025 GMT Not After : Dec 19 17:00:58 2025 GMT Subject: CN=abdae9d08239d51dd97cef83240ea8aeb70641d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8a:86:ad:0e:95:9a:94:1f:13:40:bd:83:98: fb:a5:2b:b8:6d:7b:f6:38:70:30:fc:0f:bd:ee:26: d1:0a:03:a5:98:64:31:2f:41:ee:b7:47:81:d0:0e: 62:b3:4d:6b:eb:61:5a:06:0b:ca:40:0c:7f:f8:d1: 84:07:b4:88:d7:11:ab:92:bc:16:98:0f:23:c3:37: 25:b3:7c:3e:b2:b7:7f:36:1e:2e:b1:c0:f3:a0:76: 0d:1a:19:b8:30:84:ea:ed:37:2b:a2:5a:e5:e9:6a: 18:29:71:bc:75:f4:9d:1c:70:9b:b6:b5:e4:7a:38: eb:86:6b:82:81:40:2d:6e:1c:e4:2b:61:48:19:e1: bd:3b:c0:a7:c1:cf:18:01:24:5d:65:ec:fb:e3:f2: d9:a2:95:5c:c2:2e:ac:1c:bd:4c:0c:9e:f5:a9:a4: 6a:12:4d:73:47:17:68:11:51:ac:6f:a9:c4:f4:b7: ef:10:ea:bd:8e:a4:63:f5:ea:f5:c4:31:70:1f:81: 56:8d:2d:70:c2:fe:da:f8:ec:0b:c9:cc:96:26:8a: 9c:e9:c1:f1:f4:40:60:4b:9f:29:96:dc:07:ed:56: 9c:0a:18:40:75:cd:ce:47:62:c6:63:56:c5:a9:4f: 65:f5:70:ac:34:f2:d6:48:67:42:45:9e:ad:74:40: b6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:DA:E9:D0:82:39:D5:1D:D9:7C:EF:83:24:0E:A8:AE:B7:06:41:D3 X509v3 Authority Key Identifier: keyid:3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:4e:06:62:54:a9:73:03:f1:a5:1e:08:f4:78:a7:00:9d:6f: fe:d5:cb:f1:6c:c9:d2:89:77:e4:d5:3e:b0:ab:df:ea:71:7b: c7:99:3e:80:44:2d:f9:3e:53:c6:9b:24:61:1c:37:76:68:e8: 3c:3a:44:85:89:81:b2:d8:4c:97:83:88:b6:ca:e7:db:ad:ed: 29:2a:29:9f:94:63:59:5b:56:e8:aa:b1:ea:c6:31:0a:62:92: f3:58:91:55:e1:ed:f2:3b:ab:41:01:0c:a9:b4:25:3c:0a:9b: 5f:62:1b:ea:9f:c3:5c:30:3f:09:a9:7c:bb:f9:0e:08:05:78: cd:56:e9:dd:8b:84:97:1a:65:2b:85:75:2b:c9:e5:59:86:aa: 26:2e:81:f8:e5:ce:6a:f6:d2:aa:b3:36:f5:b6:bc:ad:0e:1f: f7:75:0c:aa:2f:48:6d:cb:cd:5f:78:ad:48:90:7c:f2:d4:86: ca:55:0c:c3:c9:98:54:3a:7a:da:ff:df:df:9d:91:d4:2c:e8: db:d6:ed:69:ed:59:1e:f5:b6:ab:f7:ec:b6:ed:85:86:d4:eb: d5:e9:58:ba:c4:db:1e:52:be:03:1c:12:de:01:de:22:71:79: b3:a3:6a:32:f5:bf:c7:0c:3e:fe:69:57:36:dd:67:ef:5f:03: 64:dd:5a:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsyaFvuBcPNE4PRU06A7emEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiZmZiNjA1ZGNlMzA2MGRmYjY2ZGNjY2E4OGViN2RhMGFj NzRhZjEwHhcNMjUxMjE4MTcwMDU4WhcNMjUxMjE5MTcwMDU4WjAzMTEwLwYDVQQD EyhhYmRhZTlkMDgyMzlkNTFkZDk3Y2VmODMyNDBlYThhZWI3MDY0MWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYqGrQ6VmpQfE0C9g5j7pSu4bXv2 OHAw/A+97ibRCgOlmGQxL0Hut0eB0A5is01r62FaBgvKQAx/+NGEB7SI1xGrkrwW mA8jwzcls3w+srd/Nh4uscDzoHYNGhm4MITq7Tcrolrl6WoYKXG8dfSdHHCbtrXk ejjrhmuCgUAtbhzkK2FIGeG9O8Cnwc8YASRdZez74/LZopVcwi6sHL1MDJ71qaRq Ek1zRxdoEVGsb6nE9LfvEOq9jqRj9er1xDFwH4FWjS1wwv7a+OwLycyWJoqc6cHx 9EBgS58pltwH7VacChhAdc3OR2LGY1bFqU9l9XCsNPLWSGdCRZ6tdEC24wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKva6dCCOdUd2XzvgyQOqK63BkHTMB8GA1UdIwQY MBaAFDv/tgXc4wYN+2bczKiOt9oKx0rxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT18tMkJkempCZzM3WnR6TXFJNjMyZ3JIU3ZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wY2FhZWItMjg3ZC00ZWQ1LWFkN2Ut NmIxZDA3MTQ1NTRhLzEvT18tMkJkempCZzM3WnR6TXFJNjMyZ3JIU3ZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS8wY2FhZWItMjg3ZC00ZWQ1LWFkN2UtNmIxZDA3MTQ1NTRh LzEvT18tMkJkempCZzM3WnR6TXFJNjMyZ3JIU3ZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUU4GYlSp cwPxpR4I9HinAJ1v/tXL8WzJ0ol35NU+sKvf6nF7x5k+gEQt+T5TxpskYRw3dmjo PDpEhYmBsthMl4OItsrn263tKSopn5RjWVtW6Kqx6sYxCmKS81iRVeHt8jurQQEM qbQlPAqbX2Ib6p/DXDA/Cal8u/kOCAV4zVbp3YuElxplK4V1K8nlWYaqJi6B+OXO avbSqrM29ba8rQ4f93UMqi9IbcvNX3itSJB88tSGylUMw8mYVDp62v/f352R1Czo 29btae1ZHvW2q/fstu2FhtTr1elYusTbHlK+AxwS3gHeInF5s6NqMvW/xww+/mlX Nt1n718DZN1a/A== -----END CERTIFICATE-----Generated at Fri Dec 19 02:02:37 2025 by rpki-client