This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft File: O8RoMnEppQF7l23I7aydG56aFMw.mft (raw, json) Hash identifier: QWK90ZZiGpuJEIeEv7F53xuQHZ9dX6GAGeQ5xEWA7Io= Subject key identifier: DF:52:67:B5:73:8E:C3:F9:C5:AD:13:89:CB:25:CF:F4:A0:55:CB:3A Authority key identifier: 3B:C4:68:32:71:29:A5:01:7B:97:6D:C8:ED:AC:9D:1B:9E:9A:14:CC Certificate issuer: /CN=3bc468327129a5017b976dc8edac9d1b9e9a14cc Certificate serial: 019AF27692AE28D9F4C196DA541A19B912DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft Manifest number: 16ED Signing time: Sat 06 Dec 2025 07:00:48 +0000 Manifest this update: Sat 06 Dec 2025 07:00:48 +0000 Manifest next update: Sun 07 Dec 2025 07:00:48 +0000 Files and hashes: 1: O8RoMnEppQF7l23I7aydG56aFMw.crl (hash: vt4DKgBqcKvRi2reX5C5haO+s+xSmiw0nEBIDYW14r8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.crl rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:92:ae:28:d9:f4:c1:96:da:54:1a:19:b9:12:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3bc468327129a5017b976dc8edac9d1b9e9a14cc Validity Not Before: Dec 6 07:00:48 2025 GMT Not After : Dec 7 07:00:48 2025 GMT Subject: CN=df5267b5738ec3f9c5ad1389cb25cff4a055cb3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f0:ba:fe:44:62:83:cb:8b:37:87:a2:c8:bb: 05:f6:c3:db:83:1c:ca:d9:ce:e4:84:be:69:31:25: 71:50:05:25:4c:12:33:b6:eb:f8:f2:7d:a2:04:51: eb:a2:74:09:7f:5e:e1:b4:37:e7:9b:9e:68:69:fd: 4f:5f:5b:c7:89:7b:9f:8d:73:cf:8a:bb:31:ad:e0: 0a:41:49:06:c5:29:c2:93:01:d1:ee:96:3b:2f:01: e0:46:8f:73:69:2a:3f:0d:51:ab:97:68:cc:34:fa: 66:fa:b6:05:53:13:4d:16:1e:ea:1b:16:93:01:60: b0:d1:cd:00:a4:47:be:8f:f8:13:58:7b:d8:44:c1: 94:c3:d6:b4:34:e5:ee:c4:cc:e4:4b:15:64:04:88: a9:f8:c1:bb:42:a4:f7:47:09:0e:eb:aa:2f:3f:32: d5:d0:ed:76:c6:5d:34:22:10:9b:5a:f1:ab:8f:0a: 87:6e:79:2f:d5:f3:5e:19:59:d9:e1:57:1f:c6:d8: 02:da:24:e3:e4:e9:6a:f1:c1:ce:c4:c2:0a:b7:2f: 51:4d:1b:61:df:49:e4:a6:f5:1b:df:8f:70:80:ff: f2:d0:5e:46:b9:7a:a9:46:af:90:0b:86:3f:ea:89: e0:3c:62:16:e4:59:d3:d1:2c:9e:0c:c7:2e:b5:0a: 49:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:52:67:B5:73:8E:C3:F9:C5:AD:13:89:CB:25:CF:F4:A0:55:CB:3A X509v3 Authority Key Identifier: keyid:3B:C4:68:32:71:29:A5:01:7B:97:6D:C8:ED:AC:9D:1B:9E:9A:14:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:22:bf:56:ba:ad:93:b2:46:14:dc:20:e2:aa:58:10:df:b1: b6:95:51:5f:90:2b:16:91:9b:e3:84:3e:12:a7:3a:c3:fb:32: 76:a9:02:6f:2a:a0:5a:ce:08:d7:e3:97:1c:76:bf:d4:94:b9: 4c:14:a6:cb:45:28:49:a9:b0:4c:db:a9:9e:3c:97:74:43:1a: 26:f6:d8:4e:c7:e2:65:ea:38:bb:21:06:8c:0a:c5:d8:a4:bc: 9f:ad:db:36:c2:17:ef:ff:f6:5c:02:30:7a:a3:65:1b:c7:61: 06:72:fd:45:13:c9:8c:c0:45:ca:5e:f9:9d:30:a2:09:6b:f7: e2:75:01:c4:09:7a:7b:85:69:16:2c:d4:ee:40:cd:f7:0a:8e: 33:a4:92:90:d2:27:f2:dd:7c:e9:6f:4c:0b:4a:7f:c6:00:02: 11:de:7a:23:31:dd:db:61:11:ce:c6:35:89:c4:1d:e3:44:36: 2f:0e:17:72:83:b2:80:fa:52:97:cf:3a:aa:5e:52:83:d2:76: e4:d1:0a:b1:be:10:80:11:d5:23:87:5e:b7:b3:0e:73:b5:51: b7:2e:ce:45:04:86:f5:66:d1:0e:d1:bc:2f:44:e3:37:df:d0: 34:98:a0:e2:8c:a6:2b:d4:59:46:7a:9e:53:25:b9:63:3e:d0: e3:6b:be:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydpKuKNn0wZbaVBoZuRLeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiYzQ2ODMyNzEyOWE1MDE3Yjk3NmRjOGVkYWM5ZDFiOWU5 YTE0Y2MwHhcNMjUxMjA2MDcwMDQ4WhcNMjUxMjA3MDcwMDQ4WjAzMTEwLwYDVQQD EyhkZjUyNjdiNTczOGVjM2Y5YzVhZDEzODljYjI1Y2ZmNGEwNTVjYjNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmfC6/kRig8uLN4eiyLsF9sPbgxzK 2c7khL5pMSVxUAUlTBIztuv48n2iBFHronQJf17htDfnm55oaf1PX1vHiXufjXPP irsxreAKQUkGxSnCkwHR7pY7LwHgRo9zaSo/DVGrl2jMNPpm+rYFUxNNFh7qGxaT AWCw0c0ApEe+j/gTWHvYRMGUw9a0NOXuxMzkSxVkBIip+MG7QqT3RwkO66ovPzLV 0O12xl00IhCbWvGrjwqHbnkv1fNeGVnZ4VcfxtgC2iTj5Olq8cHOxMIKty9RTRth 30nkpvUb349wgP/y0F5GuXqpRq+QC4Y/6ongPGIW5FnT0SyeDMcutQpJ7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN9SZ7VzjsP5xa0Ticslz/SgVcs6MB8GA1UdIwQY MBaAFDvEaDJxKaUBe5dtyO2snRuemhTMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzhSb01uRXBwUUY3bDIzSTdheWRHNTZhRk13LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC84ZDRjMDMtNWZjNy00MWFjLTk0ZjYt MWYwMmM3ZTkyM2IzLzEvTzhSb01uRXBwUUY3bDIzSTdheWRHNTZhRk13Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC84ZDRjMDMtNWZjNy00MWFjLTk0ZjYtMWYwMmM3ZTkyM2Iz LzEvTzhSb01uRXBwUUY3bDIzSTdheWRHNTZhRk13LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWiK/Vrqt k7JGFNwg4qpYEN+xtpVRX5ArFpGb44Q+Eqc6w/sydqkCbyqgWs4I1+OXHHa/1JS5 TBSmy0UoSamwTNupnjyXdEMaJvbYTsfiZeo4uyEGjArF2KS8n63bNsIX7//2XAIw eqNlG8dhBnL9RRPJjMBFyl75nTCiCWv34nUBxAl6e4VpFizU7kDN9wqOM6SSkNIn 8t186W9MC0p/xgACEd56IzHd22ERzsY1icQd40Q2Lw4XcoOygPpSl886ql5Sg9J2 5NEKsb4QgBHVI4det7MOc7VRty7ORQSG9WbRDtG8L0TjN9/QNJig4oymK9RZRnqe UyW5Yz7Q42u+HA== -----END CERTIFICATE-----Generated at Sat Dec 6 14:22:00 2025 by rpki-client