This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft File: O95jhoTGRf7dYA7TxQzfMQsRbT4.mft (raw, json) Hash identifier: d/4cNckKlpnAfaCg1rfxuHUUw3vZyl8luuKrunUxqnQ= Subject key identifier: 40:7C:04:62:0C:57:28:CB:40:4E:CF:7C:E5:8F:92:A0:F8:55:BB:B1 Authority key identifier: 3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E Certificate issuer: /CN=3bde638684c645fedd600ed3c50cdf310b116d3e Certificate serial: 019AF276D7DE19AD5DB7276F62332540BD87 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft Manifest number: 127F Signing time: Sat 06 Dec 2025 07:01:05 +0000 Manifest this update: Sat 06 Dec 2025 07:01:05 +0000 Manifest next update: Sun 07 Dec 2025 07:01:05 +0000 Files and hashes: 1: O95jhoTGRf7dYA7TxQzfMQsRbT4.crl (hash: DapG/EU+zA+YVy9cTxEBYJwu5W1zztq9LFMHnn9CVP0=) 2: RzF4b3sIXe3DzFdXYIh4DACfNyQ.roa (hash: NzaYQenLUpyVGKDKds+F+mtyj0Y2xs4JaXrSTsoxdK0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:d7:de:19:ad:5d:b7:27:6f:62:33:25:40:bd:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3bde638684c645fedd600ed3c50cdf310b116d3e Validity Not Before: Dec 6 07:01:05 2025 GMT Not After : Dec 7 07:01:05 2025 GMT Subject: CN=407c04620c5728cb404ecf7ce58f92a0f855bbb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9e:68:8e:0d:73:aa:8f:58:3e:3a:42:6f:62: 52:96:ef:da:23:65:41:73:10:55:37:b6:42:79:4e: 11:cd:5b:15:dd:21:79:4e:83:e8:2f:bf:4d:7d:87: 1b:6f:b6:b8:03:94:d5:a8:63:c3:6e:17:93:d0:b4: b9:0f:2c:99:94:77:81:f0:4c:87:6d:6f:4e:70:01: 08:d8:10:6a:3a:9a:64:35:4c:6c:d7:6e:3a:2e:7a: 9c:03:5e:de:12:31:db:6e:32:1b:11:75:f0:8d:4a: 8b:cb:14:c1:1f:5a:ce:7f:d7:7b:91:ec:bf:b0:d3: 2a:44:a5:58:96:89:83:d0:e5:81:3d:95:cb:5d:3c: e1:57:9e:e9:69:9f:25:5b:33:b1:28:95:18:b3:ed: df:e7:85:fd:fe:ed:af:3b:3d:4a:20:c8:74:5b:e3: dd:41:af:35:3b:e6:41:89:74:89:e3:f9:26:01:20: e5:0b:23:74:ce:c0:81:34:38:27:31:44:3f:fc:b8: fe:84:84:d3:5c:82:bf:ca:99:4a:29:ad:87:77:09: 71:e4:a7:ff:12:ec:31:6f:7b:2f:6c:50:ba:45:d4: 9f:19:37:24:39:f4:87:6f:f4:99:64:58:65:f4:68: 94:a0:cd:39:5a:e4:a8:3b:d4:5c:b8:f8:47:54:85: 7c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:7C:04:62:0C:57:28:CB:40:4E:CF:7C:E5:8F:92:A0:F8:55:BB:B1 X509v3 Authority Key Identifier: keyid:3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:78:66:b2:b0:27:12:56:b7:8f:38:e6:7f:d6:b8:a5:de:e8: c6:52:91:32:11:0f:9c:d8:4a:a9:17:f7:f1:6d:48:64:74:69: 0c:94:8e:f9:1f:5b:03:78:6d:12:95:ee:50:74:02:5e:4a:ce: 5e:e8:f5:89:b4:6c:35:ff:b7:ea:ba:68:57:cd:29:29:ea:26: 05:35:a7:5d:df:a2:81:23:44:5f:d5:92:ff:a8:27:e1:f5:9e: ec:b3:a1:e9:b8:88:9d:e2:bf:10:4d:74:c5:63:5f:c2:0f:3f: eb:c5:c8:16:4c:34:35:a2:e5:b9:a7:a7:d8:14:c4:fb:93:4a: 67:ea:db:a6:59:49:90:6f:5f:07:d1:9f:d1:26:63:36:87:26: 34:bd:d7:5c:b9:06:6f:ea:88:ef:26:57:34:9c:3f:a7:54:75: 45:86:ef:72:72:d5:0c:99:9e:cf:df:4d:da:1e:3d:bc:3d:58: 2d:11:28:72:39:8f:cd:48:e9:e4:cd:2a:9b:0f:98:f6:00:17: 2a:be:77:65:96:a8:83:5d:5d:69:2e:a0:e1:8a:af:36:3e:e3: fb:99:9c:3b:25:5b:0a:66:7d:63:5a:00:11:9e:57:54:c0:3d: 08:73:e8:2f:73:e6:a0:a7:5c:75:3f:de:d2:21:74:11:9d:25: 60:ec:4e:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydtfeGa1dtydvYjMlQL2HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiZGU2Mzg2ODRjNjQ1ZmVkZDYwMGVkM2M1MGNkZjMxMGIx MTZkM2UwHhcNMjUxMjA2MDcwMTA1WhcNMjUxMjA3MDcwMTA1WjAzMTEwLwYDVQQD Eyg0MDdjMDQ2MjBjNTcyOGNiNDA0ZWNmN2NlNThmOTJhMGY4NTViYmIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu55ojg1zqo9YPjpCb2JSlu/aI2VB cxBVN7ZCeU4RzVsV3SF5ToPoL79NfYcbb7a4A5TVqGPDbheT0LS5DyyZlHeB8EyH bW9OcAEI2BBqOppkNUxs1246LnqcA17eEjHbbjIbEXXwjUqLyxTBH1rOf9d7key/ sNMqRKVYlomD0OWBPZXLXTzhV57paZ8lWzOxKJUYs+3f54X9/u2vOz1KIMh0W+Pd Qa81O+ZBiXSJ4/kmASDlCyN0zsCBNDgnMUQ//Lj+hITTXIK/yplKKa2Hdwlx5Kf/ Euwxb3svbFC6RdSfGTckOfSHb/SZZFhl9GiUoM05WuSoO9RcuPhHVIV8fQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEB8BGIMVyjLQE7PfOWPkqD4VbuxMB8GA1UdIwQY MBaAFDveY4aExkX+3WAO08UM3zELEW0+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzk1amhvVEdSZjdkWUE3VHhRemZNUXNSYlQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS82MmIxNWQtZWU1MC00NTBiLThlMmQt MDk3YjA1MTBkM2UyLzEvTzk1amhvVEdSZjdkWUE3VHhRemZNUXNSYlQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS82MmIxNWQtZWU1MC00NTBiLThlMmQtMDk3YjA1MTBkM2Uy LzEvTzk1amhvVEdSZjdkWUE3VHhRemZNUXNSYlQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjnhmsrAn Ela3jzjmf9a4pd7oxlKRMhEPnNhKqRf38W1IZHRpDJSO+R9bA3htEpXuUHQCXkrO Xuj1ibRsNf+36rpoV80pKeomBTWnXd+igSNEX9WS/6gn4fWe7LOh6biIneK/EE10 xWNfwg8/68XIFkw0NaLluaen2BTE+5NKZ+rbpllJkG9fB9Gf0SZjNocmNL3XXLkG b+qI7yZXNJw/p1R1RYbvcnLVDJmez99N2h49vD1YLREocjmPzUjp5M0qmw+Y9gAX Kr53ZZaog11daS6g4YqvNj7j+5mcOyVbCmZ9Y1oAEZ5XVMA9CHPoL3PmoKdcdT/e 0iF0EZ0lYOxOxg== -----END CERTIFICATE-----Generated at Sat Dec 6 13:14:48 2025 by rpki-client