This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json) Hash identifier: U+vsI3mLWdEE69ysIX8wkKE5+8U5HCfnTF0bJpAM6Tk= Subject key identifier: B7:B0:17:60:E9:3A:32:D1:6C:0C:A1:EE:C5:D9:1E:4E:88:C6:6B:96 Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Certificate serial: 019B2D798157DBAF19978CF76A99E1957AAA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft Manifest number: 070D Signing time: Wed 17 Dec 2025 18:01:36 +0000 Manifest this update: Wed 17 Dec 2025 18:01:36 +0000 Manifest next update: Thu 18 Dec 2025 18:01:36 +0000 Files and hashes: 1: 4Knn2Ld5egn1camg9bhppId4Qlo.roa (hash: A8w1HB94c5M9H4eQOiI6lWSCTjnLMlfowVXvZM3dO6s=) 2: 5bwrov9Q4TKzJTBo9upY3XK0THU.roa (hash: TYWC6rWZltrX891RQlcpPW39DIbNZYI93ECjvUJPd18=) 3: S_FCvdfbH_ZK63a0stUMhU8oaw8.roa (hash: eXZV7SJ3ck6L3XgOeiX3iX+u0/ekcILrG+TMmUo1bYY=) 4: UXFnULRGQ9zt1V-SkMYjnZH0aX8.roa (hash: hvtnqOC4PJ7xkfHCQl1PdGQcbPT0pkEqxG9iEFd/GZI=) 5: YsXyfEzn_ZKBLDMzG1UU4GMwlcI.roa (hash: +hKZsJUinqgBcHuQ7dq/U5cKUb4tJ0uT1WCFtVOANwo=) 6: gOWYAyjzxIKRFcUZmXLFPZZQLAE.roa (hash: uorrOksjaGfolUbfcHF+KBKk6xKRTaR+l4ir2v0cUaI=) 7: g_ElxkrC5OfOyHZzsFQIM1AuuFQ.roa (hash: s9+zwcgiFmScc9IvVxtLII47fLB+BQdFtBCLqfaDxwU=) 8: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: /mPza+mbrQ9BBVSo4F2X58xNnl5XWMTFJAz1WRFNuak=) 9: zvXh2JmULYTuuJGfZa88vbAc7K8.roa (hash: XQvzCYYY2c/DWeWDz/HVl73sGmFpwXBX4BVFr0eF6dM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 18:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2d:79:81:57:db:af:19:97:8c:f7:6a:99:e1:95:7a:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Validity Not Before: Dec 17 18:01:36 2025 GMT Not After : Dec 18 18:01:36 2025 GMT Subject: CN=b7b01760e93a32d16c0ca1eec5d91e4e88c66b96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0e:e7:c6:3d:90:e0:28:fd:ae:78:d6:93:f9: 3b:db:a3:b1:72:d4:58:a3:2b:fb:e1:8c:e6:07:4a: 90:7b:2a:a2:ab:70:35:b2:af:36:f8:59:76:e8:74: 78:03:ed:ac:f3:f7:05:bc:d5:ad:bc:95:36:8b:d7: 35:bd:dc:c5:ec:87:6f:75:0a:ff:d1:5b:76:dc:56: de:da:68:a0:ec:bf:ab:86:e0:52:9b:0e:5b:07:2b: b9:40:20:08:28:6c:d3:9b:29:47:3f:f2:5c:7d:d1: a0:c7:00:1e:30:af:25:f5:4d:bf:8c:fb:5d:a6:b2: 99:90:22:9a:40:00:09:c4:05:db:a5:f1:6e:5e:f9: 88:e3:3a:5f:bb:14:ac:0a:ba:6c:5d:3f:3d:81:66: a5:5b:3f:fa:0b:2b:ff:a6:47:b3:58:d2:2b:aa:a1: 9f:47:5e:01:9d:b4:96:61:fe:e5:c8:02:7f:b0:68: 2d:db:ce:1e:7e:d7:17:aa:76:30:7e:8a:da:2f:6c: 4b:e9:f9:89:cf:e3:40:0d:d3:4c:7d:4e:65:19:15: 26:c4:27:a7:5b:b5:22:40:0b:b4:16:80:67:da:6c: d5:2d:e3:65:21:41:9f:29:6e:b8:9e:63:5b:a8:f7: da:92:c1:63:6c:00:a5:ce:cd:32:e5:1f:a6:84:a2: 23:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:B0:17:60:E9:3A:32:D1:6C:0C:A1:EE:C5:D9:1E:4E:88:C6:6B:96 X509v3 Authority Key Identifier: keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:76:5f:07:56:7e:66:0a:d0:6c:86:1a:55:39:ef:5f:83:46: 90:87:7a:88:9d:2b:75:ee:f0:4a:03:2e:a6:6e:69:0b:e6:46: 92:c1:0f:62:ad:c3:6a:1b:5d:04:61:3b:bb:72:f4:62:a0:59: c9:e1:89:c1:25:d7:4b:ce:c8:55:e5:18:05:ac:7f:0e:8d:05: f3:61:a1:b6:ca:7b:dd:a1:54:49:16:50:78:60:5e:b4:87:3c: ec:03:7b:e9:e1:cf:cc:ca:c8:25:30:a0:79:d0:fa:00:85:d4: 93:93:00:12:37:de:35:9b:28:c3:95:12:9c:48:36:24:4f:bf: 27:b2:7b:10:72:4f:b5:2e:0d:70:8f:29:e4:3c:f3:05:d3:a9: 02:81:43:e9:fe:19:51:92:7f:b9:47:db:e7:c4:36:9b:e3:48: c1:8c:72:38:91:66:c2:6f:37:7a:68:3d:47:90:27:ea:46:b9: d6:c5:a9:18:6c:a4:8e:44:a3:5c:3c:4e:f9:30:a6:43:c1:5d: a9:d2:50:9e:c8:03:37:44:66:f3:61:39:2a:a4:cb:38:16:4b: 83:01:17:11:96:46:cb:7e:33:5e:6f:96:0a:41:09:f1:16:ed: b5:02:e5:52:24:65:0a:12:c9:bb:17:b3:4c:53:db:e3:5a:b4: 32:9d:bf:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsteYFX268Zl4z3apnhlXqqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMjRjY2RkNzBmM2VjNzYyY2JkNjVlMDRkZDZmNzZiZTIz NmE4YTcwHhcNMjUxMjE3MTgwMTM2WhcNMjUxMjE4MTgwMTM2WjAzMTEwLwYDVQQD EyhiN2IwMTc2MGU5M2EzMmQxNmMwY2ExZWVjNWQ5MWU0ZTg4YzY2Yjk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyw7nxj2Q4Cj9rnjWk/k726OxctRY oyv74YzmB0qQeyqiq3A1sq82+Fl26HR4A+2s8/cFvNWtvJU2i9c1vdzF7IdvdQr/ 0Vt23Fbe2mig7L+rhuBSmw5bByu5QCAIKGzTmylHP/JcfdGgxwAeMK8l9U2/jPtd prKZkCKaQAAJxAXbpfFuXvmI4zpfuxSsCrpsXT89gWalWz/6Cyv/pkezWNIrqqGf R14BnbSWYf7lyAJ/sGgt284eftcXqnYwforaL2xL6fmJz+NADdNMfU5lGRUmxCen W7UiQAu0FoBn2mzVLeNlIUGfKW64nmNbqPfaksFjbAClzs0y5R+mhKIjAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLewF2DpOjLRbAyh7sXZHk6IxmuWMB8GA1UdIwQY MBaAFKEkzN1w8+x2LL1l4E3W92viNqinMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEt N2IzNTM5N2FmMmY3LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEtN2IzNTM5N2FmMmY3 LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABXZfB1Z+ ZgrQbIYaVTnvX4NGkId6iJ0rde7wSgMupm5pC+ZGksEPYq3DahtdBGE7u3L0YqBZ yeGJwSXXS87IVeUYBax/Do0F82Ghtsp73aFUSRZQeGBetIc87AN76eHPzMrIJTCg edD6AIXUk5MAEjfeNZsow5USnEg2JE+/J7J7EHJPtS4NcI8p5DzzBdOpAoFD6f4Z UZJ/uUfb58Q2m+NIwYxyOJFmwm83emg9R5An6ka51sWpGGykjkSjXDxO+TCmQ8Fd qdJQnsgDN0Rm82E5KqTLOBZLgwEXEZZGy34zXm+WCkEJ8RbttQLlUiRlChLJuxez TFPb41q0Mp2/ug== -----END CERTIFICATE-----Generated at Wed Dec 17 21:04:55 2025 by rpki-client