This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft File: o4v4pSbaAFbVPHKfvP7bivH0hJs.mft (raw, json) Hash identifier: 1EarCB+Q4Ge7Dfhz13NcA0KuF9+/qSFapRLA8XqgIFw= Subject key identifier: 05:E6:26:AA:9E:EF:7C:3A:08:67:17:95:0C:55:2E:9A:32:2F:CE:3E Authority key identifier: A3:8B:F8:A5:26:DA:00:56:D5:3C:72:9F:BC:FE:DB:8A:F1:F4:84:9B Certificate issuer: /CN=a38bf8a526da0056d53c729fbcfedb8af1f4849b Certificate serial: 019AF509E622B0174A800BA917B9878003B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft Manifest number: 052B Signing time: Sat 06 Dec 2025 19:00:57 +0000 Manifest this update: Sat 06 Dec 2025 19:00:57 +0000 Manifest next update: Sun 07 Dec 2025 19:00:57 +0000 Files and hashes: 1: o4v4pSbaAFbVPHKfvP7bivH0hJs.crl (hash: 20ftY5RJ5x695BTT5f6bZlRHyskqRGH6Ve0UrZE9FLU=) 2: p2sBhjkKrSOlFMpQrw-wv6_TqKg.roa (hash: ldQS4P3nrNFNOkVsta5Vmi47wIthwLabohDFSWJ5xpU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.crl rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:09:e6:22:b0:17:4a:80:0b:a9:17:b9:87:80:03:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a38bf8a526da0056d53c729fbcfedb8af1f4849b Validity Not Before: Dec 6 19:00:57 2025 GMT Not After : Dec 7 19:00:57 2025 GMT Subject: CN=05e626aa9eef7c3a086717950c552e9a322fce3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ec:1b:d5:19:8c:82:b0:fb:c2:dc:cf:fc:02: b9:8d:ff:e2:8a:07:00:b0:60:b1:7c:c7:82:30:a4: 6c:c5:23:5e:4d:50:ec:6c:e7:da:dd:66:71:4c:fd: f2:67:c9:77:52:d7:bc:06:a7:9d:ac:40:a4:8c:20: bc:41:17:64:27:b1:1d:53:0d:fe:d1:12:b6:f0:9b: 95:72:da:02:85:48:dc:71:2a:0d:9a:e5:84:b0:b3: 1a:a7:56:5e:cb:d5:e4:0e:e4:d6:92:92:ad:7d:23: 6b:18:42:2c:40:fd:dd:40:93:6d:13:4b:ba:14:5f: a7:66:a7:46:39:ca:90:7f:2a:f4:2f:88:f0:aa:50: 50:1c:52:ab:dd:44:e5:7b:5c:d0:f2:1a:ab:60:08: db:0c:25:df:31:5a:c7:11:14:63:c0:04:89:2d:c8: 3d:2a:88:15:99:7e:df:61:09:fd:0c:60:c4:6e:b9: a3:f6:9c:54:5e:e2:d3:c7:e1:d6:20:c1:cb:e8:08: 2a:f9:6a:12:fb:88:e8:1b:c4:13:72:cc:d3:64:0e: bd:ea:1a:07:74:c2:ba:85:6f:70:43:4f:66:0e:14: f9:89:40:4b:0c:73:fe:54:d2:d5:27:d9:39:fa:98: 2c:a0:ad:b9:f8:99:75:f4:97:6d:78:38:29:88:07: e7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:E6:26:AA:9E:EF:7C:3A:08:67:17:95:0C:55:2E:9A:32:2F:CE:3E X509v3 Authority Key Identifier: keyid:A3:8B:F8:A5:26:DA:00:56:D5:3C:72:9F:BC:FE:DB:8A:F1:F4:84:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:b2:ce:cb:8f:80:8d:58:c2:65:1f:af:5e:21:95:12:e7:98: d6:46:a9:fb:78:74:a6:56:bd:31:f0:5a:aa:24:c0:51:36:f8: 7b:ff:b3:eb:85:bf:69:d7:00:96:51:6d:13:84:fe:a4:a2:d0: 84:e7:b8:ca:1f:14:aa:f5:12:3e:25:79:2d:5f:96:2a:86:f2: 44:36:c1:8a:9c:25:74:bd:df:ec:39:06:ea:20:ca:cb:1b:d9: 46:26:e7:06:a3:f8:8c:22:5e:39:95:d2:67:29:fa:7c:72:cd: 52:a6:a5:8a:7d:18:54:84:05:40:10:cb:c1:b5:0e:42:6a:f5: 86:f1:79:f7:00:02:fa:c1:3d:a5:fa:73:2b:a3:6c:53:b1:9c: b0:a2:6c:8f:6b:80:6c:bf:4d:4b:80:1c:82:17:17:a5:60:43: 91:63:05:04:60:55:0e:26:76:8a:f0:3c:37:32:63:5f:1a:ce: d3:87:26:a0:35:b2:37:ee:a6:fd:85:16:f3:8e:81:a8:72:39: 40:8d:2a:d5:a3:2c:a9:d1:c2:37:6e:53:b5:91:3a:53:7c:8c: f4:44:36:e8:b5:ee:8f:d6:8c:da:d7:42:f7:72:df:72:b8:48: aa:5e:52:bd:eb:ba:96:fe:d9:ab:8d:64:e4:f3:7a:b2:bc:b9: 12:bb:1a:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CeYisBdKgAupF7mHgAOzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzOGJmOGE1MjZkYTAwNTZkNTNjNzI5ZmJjZmVkYjhhZjFm NDg0OWIwHhcNMjUxMjA2MTkwMDU3WhcNMjUxMjA3MTkwMDU3WjAzMTEwLwYDVQQD EygwNWU2MjZhYTllZWY3YzNhMDg2NzE3OTUwYzU1MmU5YTMyMmZjZTNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Owb1RmMgrD7wtzP/AK5jf/iigcA sGCxfMeCMKRsxSNeTVDsbOfa3WZxTP3yZ8l3Ute8BqedrECkjCC8QRdkJ7EdUw3+ 0RK28JuVctoChUjccSoNmuWEsLMap1Zey9XkDuTWkpKtfSNrGEIsQP3dQJNtE0u6 FF+nZqdGOcqQfyr0L4jwqlBQHFKr3UTle1zQ8hqrYAjbDCXfMVrHERRjwASJLcg9 KogVmX7fYQn9DGDEbrmj9pxUXuLTx+HWIMHL6Agq+WoS+4joG8QTcszTZA696hoH dMK6hW9wQ09mDhT5iUBLDHP+VNLVJ9k5+pgsoK25+Jl19JdteDgpiAfnZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAXmJqqe73w6CGcXlQxVLpoyL84+MB8GA1UdIwQY MBaAFKOL+KUm2gBW1Txyn7z+24rx9ISbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzR2NHBTYmFBRmJWUEhLZnZQN2JpdkgwaEpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9kZWYxMGEtYmQ1My00NzkzLWIxYTgt NjA0YjQ3MjYxNDc2LzEvbzR2NHBTYmFBRmJWUEhLZnZQN2JpdkgwaEpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9kZWYxMGEtYmQ1My00NzkzLWIxYTgtNjA0YjQ3MjYxNDc2 LzEvbzR2NHBTYmFBRmJWUEhLZnZQN2JpdkgwaEpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj7LOy4+A jVjCZR+vXiGVEueY1kap+3h0pla9MfBaqiTAUTb4e/+z64W/adcAllFtE4T+pKLQ hOe4yh8UqvUSPiV5LV+WKobyRDbBipwldL3f7DkG6iDKyxvZRibnBqP4jCJeOZXS Zyn6fHLNUqalin0YVIQFQBDLwbUOQmr1hvF59wAC+sE9pfpzK6NsU7GcsKJsj2uA bL9NS4AcghcXpWBDkWMFBGBVDiZ2ivA8NzJjXxrO04cmoDWyN+6m/YUW846BqHI5 QI0q1aMsqdHCN25TtZE6U3yM9EQ26LXuj9aM2tdC93LfcrhIql5Sveu6lv7Zq41k 5PN6sry5ErsaNQ== -----END CERTIFICATE-----Generated at Sun Dec 7 00:54:12 2025 by rpki-client