This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft File: o8-bZGUWkotdBsKoGestvA_pkgo.mft (raw, json) Hash identifier: pPW/0mioOb+g4j8e3XKOyMrpL+LqV7SI84bKTp6JfEo= Subject key identifier: 51:43:C1:F9:3F:44:F6:C6:3D:A0:18:B5:58:51:24:92:BF:EA:1A:C3 Authority key identifier: A3:CF:9B:64:65:16:92:8B:5D:06:C2:A8:19:EB:2D:BC:0F:E9:92:0A Certificate issuer: /CN=a3cf9b646516928b5d06c2a819eb2dbc0fe9920a Certificate serial: 019AF209428CD94F3ECA4DF7F4E1E82EEE3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8-bZGUWkotdBsKoGestvA_pkgo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft Manifest number: 01B4 Signing time: Sat 06 Dec 2025 05:01:24 +0000 Manifest this update: Sat 06 Dec 2025 05:01:24 +0000 Manifest next update: Sun 07 Dec 2025 05:01:24 +0000 Files and hashes: 1: X-QlQ7J2mkMQ7aCqISeZm-0GPp8.roa (hash: tcckn5v078MeQtwYD02YyKajWXUMPOWsBI1IguOQcTI=) 2: o8-bZGUWkotdBsKoGestvA_pkgo.crl (hash: foNUrczm15v390zrXIiJZYL4PIeSmT8e5maOkCJ88ZE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft rsync://rpki.ripe.net/repository/DEFAULT/o8-bZGUWkotdBsKoGestvA_pkgo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:42:8c:d9:4f:3e:ca:4d:f7:f4:e1:e8:2e:ee:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3cf9b646516928b5d06c2a819eb2dbc0fe9920a Validity Not Before: Dec 6 05:01:24 2025 GMT Not After : Dec 7 05:01:24 2025 GMT Subject: CN=5143c1f93f44f6c63da018b558512492bfea1ac3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:81:ab:93:cd:7d:b3:fe:68:05:2e:a5:85:0d: 43:81:a1:d9:20:04:77:e6:3d:89:1e:d4:d4:ee:93: 9a:ab:aa:6e:50:f9:d4:0e:04:50:75:5d:16:58:6a: 29:bd:0c:93:45:fe:98:69:3f:a6:a3:97:ea:b2:1e: 1a:25:5e:18:b5:58:2f:72:7b:35:7b:2d:04:59:3a: 97:ae:36:92:71:c9:46:a0:05:d0:bd:4b:dc:3b:7a: 39:13:80:6f:53:ba:84:9f:52:70:5c:c6:70:8d:ff: 17:b9:9f:f5:6b:9d:ad:68:9a:d1:ac:cd:90:ed:d5: cf:5c:0f:33:bf:46:03:e7:be:e1:a6:a9:4a:31:66: 94:3d:6a:1f:68:0d:93:4f:32:3e:8e:f5:fd:52:b7: 31:68:89:49:0e:0a:c6:f4:13:6b:cd:7a:ec:c4:92: d6:78:d4:b5:0f:e1:63:fa:9b:d3:92:ba:68:a9:0b: 61:04:62:cb:35:04:82:96:3a:a0:ea:ea:92:82:1d: 95:ca:24:df:95:60:0c:75:62:8a:78:a2:6c:3e:3a: 0f:55:b8:dc:12:50:bf:90:5f:c7:5e:cd:fc:bc:04: ff:66:25:b5:d4:35:f2:ca:b5:de:2f:35:c7:27:8b: a2:e5:99:f3:c9:25:04:f9:b9:f5:58:46:fb:65:a9: 0d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:43:C1:F9:3F:44:F6:C6:3D:A0:18:B5:58:51:24:92:BF:EA:1A:C3 X509v3 Authority Key Identifier: keyid:A3:CF:9B:64:65:16:92:8B:5D:06:C2:A8:19:EB:2D:BC:0F:E9:92:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8-bZGUWkotdBsKoGestvA_pkgo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:83:7f:29:96:37:76:11:f7:dd:b0:3c:41:a5:7a:7c:7c:ca: 15:76:b4:fa:ab:5a:c8:80:8d:58:c8:32:58:17:5b:e1:b8:17: 30:67:b0:aa:21:8a:32:32:cc:fe:28:c6:6d:84:2d:21:52:b5: 9a:c0:b0:40:5f:50:13:61:29:44:3d:aa:49:71:56:7f:5f:f2: 21:93:20:75:3e:5a:6e:56:13:49:c3:86:d4:af:34:97:bf:3b: 0e:16:f4:b1:a8:df:b6:34:5b:24:a0:b6:50:1e:64:09:82:f7: 45:94:12:54:ef:c4:7f:a9:df:f8:b8:a2:c3:f5:a9:ae:f7:b9: 77:6d:e2:cf:2e:1c:b3:50:90:c0:ac:52:0d:d4:a0:d1:a0:2d: c1:c2:34:43:39:7d:ea:b6:99:66:37:31:ba:fa:0b:1a:9d:21: 91:76:00:dd:07:ef:eb:95:bf:1a:d5:6c:11:1e:aa:39:e8:0f: d5:a3:8c:5b:b6:3d:56:1f:58:97:4d:1c:b2:14:f4:9b:9e:99: f2:11:b5:bc:9c:1e:92:5e:96:8b:d7:45:18:86:3c:ed:5e:84: 03:6f:88:9c:e1:8f:34:32:e6:78:b4:25:d2:70:07:94:1a:1a: d9:7b:a4:a1:2c:19:88:df:74:e8:e6:82:d9:bb:21:93:2c:4e: 03:e0:87:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCUKM2U8+yk339OHoLu4/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzY2Y5YjY0NjUxNjkyOGI1ZDA2YzJhODE5ZWIyZGJjMGZl OTkyMGEwHhcNMjUxMjA2MDUwMTI0WhcNMjUxMjA3MDUwMTI0WjAzMTEwLwYDVQQD Eyg1MTQzYzFmOTNmNDRmNmM2M2RhMDE4YjU1ODUxMjQ5MmJmZWExYWMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoIGrk819s/5oBS6lhQ1DgaHZIAR3 5j2JHtTU7pOaq6puUPnUDgRQdV0WWGopvQyTRf6YaT+mo5fqsh4aJV4YtVgvcns1 ey0EWTqXrjaScclGoAXQvUvcO3o5E4BvU7qEn1JwXMZwjf8XuZ/1a52taJrRrM2Q 7dXPXA8zv0YD577hpqlKMWaUPWofaA2TTzI+jvX9UrcxaIlJDgrG9BNrzXrsxJLW eNS1D+Fj+pvTkrpoqQthBGLLNQSCljqg6uqSgh2VyiTflWAMdWKKeKJsPjoPVbjc ElC/kF/HXs38vAT/ZiW11DXyyrXeLzXHJ4ui5ZnzySUE+bn1WEb7ZakNlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFFDwfk/RPbGPaAYtVhRJJK/6hrDMB8GA1UdIwQY MBaAFKPPm2RlFpKLXQbCqBnrLbwP6ZIKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzgtYlpHVVdrb3RkQnNLb0dlc3R2QV9wa2dvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8zOTRkMDctMDVjYy00ZjcyLWJkNDYt Mjg5Njk2Y2M5OWI5LzEvbzgtYlpHVVdrb3RkQnNLb0dlc3R2QV9wa2dvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC8zOTRkMDctMDVjYy00ZjcyLWJkNDYtMjg5Njk2Y2M5OWI5 LzEvbzgtYlpHVVdrb3RkQnNLb0dlc3R2QV9wa2dvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ4N/KZY3 dhH33bA8QaV6fHzKFXa0+qtayICNWMgyWBdb4bgXMGewqiGKMjLM/ijGbYQtIVK1 msCwQF9QE2EpRD2qSXFWf1/yIZMgdT5ablYTScOG1K80l787Dhb0sajftjRbJKC2 UB5kCYL3RZQSVO/Ef6nf+Liiw/Wprve5d23izy4cs1CQwKxSDdSg0aAtwcI0Qzl9 6raZZjcxuvoLGp0hkXYA3Qfv65W/GtVsER6qOegP1aOMW7Y9Vh9Yl00cshT0m56Z 8hG1vJwekl6Wi9dFGIY87V6EA2+InOGPNDLmeLQl0nAHlBoa2XukoSwZiN906OaC 2bshkyxOA+CH3A== -----END CERTIFICATE-----Generated at Sat Dec 6 09:31:08 2025 by rpki-client