This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json) Hash identifier: T/mIzUxUGLGKLCzFl1OG96Ya1vFoqm8PrdkSPDbrVCw= Subject key identifier: CF:B4:CE:99:B0:49:39:CC:46:00:8E:B7:AB:BA:CB:A8:D0:05:18:2A Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Certificate serial: 019AF19B9CA65B489CE9E803875151AA135E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft Manifest number: 06EE Signing time: Sat 06 Dec 2025 03:01:38 +0000 Manifest this update: Sat 06 Dec 2025 03:01:38 +0000 Manifest next update: Sun 07 Dec 2025 03:01:38 +0000 Files and hashes: 1: 4Knn2Ld5egn1camg9bhppId4Qlo.roa (hash: A8w1HB94c5M9H4eQOiI6lWSCTjnLMlfowVXvZM3dO6s=) 2: 5bwrov9Q4TKzJTBo9upY3XK0THU.roa (hash: TYWC6rWZltrX891RQlcpPW39DIbNZYI93ECjvUJPd18=) 3: S_FCvdfbH_ZK63a0stUMhU8oaw8.roa (hash: eXZV7SJ3ck6L3XgOeiX3iX+u0/ekcILrG+TMmUo1bYY=) 4: UXFnULRGQ9zt1V-SkMYjnZH0aX8.roa (hash: hvtnqOC4PJ7xkfHCQl1PdGQcbPT0pkEqxG9iEFd/GZI=) 5: YsXyfEzn_ZKBLDMzG1UU4GMwlcI.roa (hash: +hKZsJUinqgBcHuQ7dq/U5cKUb4tJ0uT1WCFtVOANwo=) 6: gOWYAyjzxIKRFcUZmXLFPZZQLAE.roa (hash: uorrOksjaGfolUbfcHF+KBKk6xKRTaR+l4ir2v0cUaI=) 7: g_ElxkrC5OfOyHZzsFQIM1AuuFQ.roa (hash: s9+zwcgiFmScc9IvVxtLII47fLB+BQdFtBCLqfaDxwU=) 8: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: /4mGjBb8OWX3skyhox3RqnYlxj+XUIY3fxRdCM1UZQc=) 9: zvXh2JmULYTuuJGfZa88vbAc7K8.roa (hash: XQvzCYYY2c/DWeWDz/HVl73sGmFpwXBX4BVFr0eF6dM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:9c:a6:5b:48:9c:e9:e8:03:87:51:51:aa:13:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Validity Not Before: Dec 6 03:01:38 2025 GMT Not After : Dec 7 03:01:38 2025 GMT Subject: CN=cfb4ce99b04939cc46008eb7abbacba8d005182a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f2:10:f7:71:87:09:2c:91:9b:86:fd:18:4e: f0:49:69:a5:26:4d:42:24:97:3b:97:eb:28:b8:a6: cc:d7:62:5e:61:c2:f3:39:4d:80:04:d3:ad:59:8e: e6:39:5d:7a:14:97:f7:91:bc:2d:83:35:77:a0:30: 75:ca:1e:9f:c0:4e:b7:21:06:e5:2d:8c:6d:71:32: 4e:cc:09:5c:cb:14:63:30:bd:96:73:fd:94:c5:6f: 29:97:2b:c8:a8:13:a5:2f:28:7a:57:18:3f:b8:9f: 0f:60:15:30:5a:da:79:64:98:64:ab:75:f4:31:3a: 20:3f:42:39:72:01:e3:bd:ee:b6:46:c0:0b:7f:4e: ca:f3:73:ab:50:6f:4c:cb:11:9f:25:96:01:c3:b6: 11:8c:de:1f:99:f1:aa:59:ad:4b:a7:a8:56:6c:72: 3c:5b:ae:07:c9:26:68:6e:d4:d1:94:da:2b:91:11: 3c:87:84:a2:09:75:c7:95:2f:4f:52:ce:f2:87:f5: 83:59:dd:af:d7:fe:56:52:7d:49:19:4c:ea:37:12: b0:76:d0:4d:97:0b:c6:5b:9e:17:92:bd:2e:89:db: 5d:21:4b:5f:e0:10:75:c3:ee:f2:45:ef:2d:a8:d7: bf:f6:37:f0:68:d0:25:e0:b4:6d:72:8a:c4:84:58: 41:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B4:CE:99:B0:49:39:CC:46:00:8E:B7:AB:BA:CB:A8:D0:05:18:2A X509v3 Authority Key Identifier: keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:03:b2:34:7b:51:43:a2:99:0f:06:89:e5:e4:23:ac:c7:10: ed:05:3a:2c:c7:0c:8f:cb:78:07:ab:5b:cd:02:a6:3d:a2:b3: f6:de:32:c3:06:7c:df:4d:9f:f7:a6:90:a8:04:f4:f2:cd:1f: 27:79:5e:5e:91:c0:a6:52:ef:ac:dd:fd:d0:13:c7:8a:da:a6: ed:39:cb:19:26:a0:69:54:f8:ec:1c:6c:70:92:7e:09:8e:68: 5a:b0:38:97:ee:94:b7:d9:bb:a6:6e:a3:25:2d:f9:e3:ea:39: f8:c5:f8:5e:cb:3e:ad:2f:f6:9a:53:7c:3d:ee:73:4a:cc:db: 6a:2a:2f:d1:f6:a2:a9:5a:22:19:e1:9d:d3:12:0f:05:79:89: 8f:72:ea:38:94:59:fc:cf:42:44:a0:17:64:eb:f2:09:74:78: 80:01:af:46:ae:45:00:53:76:43:2c:9d:3f:6e:0e:c8:a6:b3: ab:d4:45:41:9e:22:e9:96:b1:2c:dd:35:bf:54:bf:33:ad:bf: 11:ad:2d:57:4b:d2:15:20:31:de:14:57:bf:5f:51:32:07:6b: 9d:f4:11:55:19:6e:6a:65:59:df:2d:6f:99:2e:eb:b8:bc:f2: 54:aa:cd:21:57:24:4a:e5:7a:a8:ae:6c:af:f7:ab:0d:d2:74: cd:09:91:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm5ymW0ic6egDh1FRqhNeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMjRjY2RkNzBmM2VjNzYyY2JkNjVlMDRkZDZmNzZiZTIz NmE4YTcwHhcNMjUxMjA2MDMwMTM4WhcNMjUxMjA3MDMwMTM4WjAzMTEwLwYDVQQD EyhjZmI0Y2U5OWIwNDkzOWNjNDYwMDhlYjdhYmJhY2JhOGQwMDUxODJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPIQ93GHCSyRm4b9GE7wSWmlJk1C JJc7l+souKbM12JeYcLzOU2ABNOtWY7mOV16FJf3kbwtgzV3oDB1yh6fwE63IQbl LYxtcTJOzAlcyxRjML2Wc/2UxW8plyvIqBOlLyh6Vxg/uJ8PYBUwWtp5ZJhkq3X0 MTogP0I5cgHjve62RsALf07K83OrUG9MyxGfJZYBw7YRjN4fmfGqWa1Lp6hWbHI8 W64HySZobtTRlNorkRE8h4SiCXXHlS9PUs7yh/WDWd2v1/5WUn1JGUzqNxKwdtBN lwvGW54Xkr0uidtdIUtf4BB1w+7yRe8tqNe/9jfwaNAl4LRtcorEhFhBNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM+0zpmwSTnMRgCOt6u6y6jQBRgqMB8GA1UdIwQY MBaAFKEkzN1w8+x2LL1l4E3W92viNqinMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEt N2IzNTM5N2FmMmY3LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEtN2IzNTM5N2FmMmY3 LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKwOyNHtR Q6KZDwaJ5eQjrMcQ7QU6LMcMj8t4B6tbzQKmPaKz9t4ywwZ8302f96aQqAT08s0f J3leXpHAplLvrN390BPHitqm7TnLGSagaVT47BxscJJ+CY5oWrA4l+6Ut9m7pm6j JS354+o5+MX4Xss+rS/2mlN8Pe5zSszbaiov0faiqVoiGeGd0xIPBXmJj3LqOJRZ /M9CRKAXZOvyCXR4gAGvRq5FAFN2QyydP24OyKazq9RFQZ4i6ZaxLN01v1S/M62/ Ea0tV0vSFSAx3hRXv19RMgdrnfQRVRluamVZ3y1vmS7ruLzyVKrNIVckSuV6qK5s r/erDdJ0zQmRSw== -----END CERTIFICATE-----Generated at Sat Dec 6 12:04:54 2025 by rpki-client