This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft File: O_-2BdzjBg37ZtzMqI632grHSvE.mft (raw, json) Hash identifier: sIxA68dtqLsCt7MO3SgmOGqkH6Cf237upZ8kY6hd5kc= Subject key identifier: 3E:9F:DF:11:F6:2E:FF:88:AD:6C:AC:86:8D:77:E6:38:27:09:33:49 Authority key identifier: 3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1 Certificate issuer: /CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1 Certificate serial: 019B22F57C780BE34B1702CD4EE6349DFECC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft Manifest number: 0B7A Signing time: Mon 15 Dec 2025 17:01:12 +0000 Manifest this update: Mon 15 Dec 2025 17:01:12 +0000 Manifest next update: Tue 16 Dec 2025 17:01:12 +0000 Files and hashes: 1: O_-2BdzjBg37ZtzMqI632grHSvE.crl (hash: mGaUsDGnPAM2Bio86UuJlOd+OsxhYAZOWQfQN+TUQtI=) 2: bEP6BpgWEwuDr5XbU9fjHciv2p8.roa (hash: HB6oz88QvFlDq+Znta3S+P5pPZ539cdh6eC3HVLovgc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:f5:7c:78:0b:e3:4b:17:02:cd:4e:e6:34:9d:fe:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1 Validity Not Before: Dec 15 17:01:12 2025 GMT Not After : Dec 16 17:01:12 2025 GMT Subject: CN=3e9fdf11f62eff88ad6cac868d77e63827093349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:97:0e:ae:4d:df:e4:68:bb:85:72:f8:2f:01: 93:5d:2f:6d:09:ce:27:2a:8e:5b:cc:f1:f6:78:64: 48:ac:fc:bc:f9:8e:1e:48:6c:6e:d4:ea:1e:74:79: 07:49:9b:f8:67:07:81:19:8b:7d:dd:d4:53:26:c7: ae:09:75:fb:52:76:26:9e:e6:54:5c:70:eb:a4:e8: c2:5a:cc:b3:03:fe:9c:45:29:72:e6:19:9b:ca:3f: 6d:12:d9:07:4b:84:c1:31:55:dc:08:47:9f:c0:e6: 48:f5:5b:f6:67:a1:51:71:1c:78:7d:c7:48:17:a4: b1:62:42:34:f3:ee:28:98:db:df:da:00:2f:ae:c2: 2e:dc:7f:c7:f8:f8:a1:2b:d9:0c:47:f4:bf:55:1e: dc:ca:5b:66:28:e2:46:c7:e4:84:39:d6:16:0f:b0: 48:fe:18:e9:1d:1a:c5:7a:39:cf:10:af:e9:d0:4b: 07:e7:44:96:68:37:4c:24:36:37:b9:a2:bf:c4:43: b5:ba:27:a5:8b:8a:dd:d1:88:e0:70:e8:ea:7d:cf: 0b:b9:7c:0e:97:d3:3c:08:8e:bf:f1:58:ab:85:5a: a0:0a:49:ff:ca:98:bd:d1:14:90:9d:81:36:49:24: f1:27:53:a6:f0:86:32:bb:7e:57:7d:e3:f6:56:8c: 5e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:9F:DF:11:F6:2E:FF:88:AD:6C:AC:86:8D:77:E6:38:27:09:33:49 X509v3 Authority Key Identifier: keyid:3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:5b:6e:aa:df:af:b8:b5:1f:1c:76:81:a3:8b:b0:37:46:86: 81:f2:d2:19:ce:e6:51:a8:d3:b4:47:db:e9:3a:c9:03:af:09: ac:c8:f2:a8:76:2d:fc:d3:b2:77:1e:00:7a:69:5b:ab:11:18: d6:3e:48:54:43:79:51:12:47:5d:b5:68:0d:7d:b8:80:33:30: 75:ea:22:ce:0d:bb:41:cf:74:be:83:50:09:d9:23:fc:f1:28: 94:23:59:fe:30:cf:52:cd:bd:53:fe:7a:b5:9b:62:c7:d9:02: d4:43:83:a1:45:f7:a6:43:5c:2e:b9:e5:cf:91:be:85:3f:a6: 97:36:b9:37:dd:3a:0d:b5:2b:29:c9:cd:12:d1:86:7c:7b:38: 6f:ae:65:6b:31:d4:0b:3d:54:6b:51:af:17:27:1e:e3:31:f3: 4d:58:6d:f7:d9:50:34:f6:72:63:55:58:68:08:b8:c9:7a:1f: 71:4e:d0:bb:43:4e:e6:d8:56:7e:1a:31:22:81:89:d5:97:e8: 4e:d1:79:01:ee:3f:57:85:a0:0b:70:6e:22:8d:bd:a8:7e:4a: c6:3f:52:2d:38:a2:58:8b:e8:33:cf:d8:0f:ac:ec:e7:5d:1a: 6e:25:6c:89:bb:eb:9a:2d:eb:59:24:e4:c8:67:65:90:4f:25: 9e:3e:c1:fe -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsi9Xx4C+NLFwLNTuY0nf7MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiZmZiNjA1ZGNlMzA2MGRmYjY2ZGNjY2E4OGViN2RhMGFj NzRhZjEwHhcNMjUxMjE1MTcwMTEyWhcNMjUxMjE2MTcwMTEyWjAzMTEwLwYDVQQD EygzZTlmZGYxMWY2MmVmZjg4YWQ2Y2FjODY4ZDc3ZTYzODI3MDkzMzQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgJcOrk3f5Gi7hXL4LwGTXS9tCc4n Ko5bzPH2eGRIrPy8+Y4eSGxu1OoedHkHSZv4ZweBGYt93dRTJseuCXX7UnYmnuZU XHDrpOjCWsyzA/6cRSly5hmbyj9tEtkHS4TBMVXcCEefwOZI9Vv2Z6FRcRx4fcdI F6SxYkI08+4omNvf2gAvrsIu3H/H+PihK9kMR/S/VR7cyltmKOJGx+SEOdYWD7BI /hjpHRrFejnPEK/p0EsH50SWaDdMJDY3uaK/xEO1uieli4rd0YjgcOjqfc8LuXwO l9M8CI6/8VirhVqgCkn/ypi90RSQnYE2SSTxJ1Om8IYyu35XfeP2VoxeWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD6f3xH2Lv+IrWysho135jgnCTNJMB8GA1UdIwQY MBaAFDv/tgXc4wYN+2bczKiOt9oKx0rxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT18tMkJkempCZzM3WnR6TXFJNjMyZ3JIU3ZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wY2FhZWItMjg3ZC00ZWQ1LWFkN2Ut NmIxZDA3MTQ1NTRhLzEvT18tMkJkempCZzM3WnR6TXFJNjMyZ3JIU3ZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS8wY2FhZWItMjg3ZC00ZWQ1LWFkN2UtNmIxZDA3MTQ1NTRh LzEvT18tMkJkempCZzM3WnR6TXFJNjMyZ3JIU3ZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPVtuqt+v uLUfHHaBo4uwN0aGgfLSGc7mUajTtEfb6TrJA68JrMjyqHYt/NOydx4AemlbqxEY 1j5IVEN5URJHXbVoDX24gDMwdeoizg27Qc90voNQCdkj/PEolCNZ/jDPUs29U/56 tZtix9kC1EODoUX3pkNcLrnlz5G+hT+mlza5N906DbUrKcnNEtGGfHs4b65lazHU Cz1Ua1GvFyce4zHzTVht99lQNPZyY1VYaAi4yXofcU7Qu0NO5thWfhoxIoGJ1Zfo TtF5Ae4/V4WgC3BuIo29qH5Kxj9SLTiiWIvoM8/YD6zs510abiVsibvrmi3rWSTk yGdlkE8lnj7B/g== -----END CERTIFICATE-----Generated at Mon Dec 15 19:45:54 2025 by rpki-client