This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft File: o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft (raw, json) Hash identifier: tUodGnNjXA4AGMYcGgSHE8moahermdwOavlgWWwUnNE= Subject key identifier: E5:F1:25:D5:9D:F7:F3:24:C0:AE:7F:5E:C8:11:3F:2F:13:9A:C6:BD Authority key identifier: A3:E5:99:92:83:AA:F2:E4:39:50:79:EA:37:16:DD:FC:2B:13:0F:07 Certificate issuer: /CN=a3e5999283aaf2e4395079ea3716ddfc2b130f07 Certificate serial: 019AF23FFC7BC16F1CDC1CAA44410BCDC1BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft Manifest number: 04F0 Signing time: Sat 06 Dec 2025 06:01:10 +0000 Manifest this update: Sat 06 Dec 2025 06:01:10 +0000 Manifest next update: Sun 07 Dec 2025 06:01:10 +0000 Files and hashes: 1: CmAE8B1t5vtl2bRQPtAcN7cxb3s.roa (hash: EUyII4SPPS8NnneMNy5H1gGoK71/rhaPmoIV02VhFv0=) 2: o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl (hash: yUn0nXKDtcS/tosYhD4UKtpTNoQXOeqiWbf7El5ON3M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:fc:7b:c1:6f:1c:dc:1c:aa:44:41:0b:cd:c1:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3e5999283aaf2e4395079ea3716ddfc2b130f07 Validity Not Before: Dec 6 06:01:10 2025 GMT Not After : Dec 7 06:01:10 2025 GMT Subject: CN=e5f125d59df7f324c0ae7f5ec8113f2f139ac6bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ec:b5:17:f8:9e:77:95:aa:19:89:32:4d:2b: 9d:3f:99:9c:b3:96:58:ad:bd:66:07:04:26:95:03: b2:49:bb:4c:c0:9f:02:d9:d8:fd:6d:62:bd:e8:f3: 39:e7:17:55:80:8b:66:ca:07:cb:69:2f:c2:96:36: d7:47:be:60:7f:a4:82:e3:8d:04:ac:b1:bf:8d:33: f9:f2:8e:84:76:48:1a:70:15:ca:07:00:db:7d:58: 3f:e3:0d:0b:e8:e4:2c:c1:f8:93:9f:9b:8b:09:cf: 88:8b:26:89:fc:97:4e:e2:4c:f4:19:54:30:4a:39: 21:ee:86:a0:8b:e5:ba:a7:06:2c:06:a5:aa:7d:c7: c0:89:4e:52:5a:a0:21:50:1f:91:18:fc:f1:02:2d: 76:74:4a:2d:94:2c:cc:d4:5f:80:00:1c:39:cf:e1: ad:07:5d:ec:2d:d7:dc:76:5a:4e:db:fa:4d:40:3f: d0:7c:5e:0b:24:92:a1:36:be:e9:27:7e:35:d9:15: 19:db:20:52:0b:81:24:0f:8d:b2:79:44:e1:fa:7c: c4:3f:80:f0:83:56:17:cc:6b:53:76:68:57:75:40: ee:dc:90:2d:17:93:ab:3d:d9:c8:00:20:81:b3:58: 21:e5:3d:97:96:f9:ee:cd:19:21:fd:ec:68:4e:d9: 9e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:F1:25:D5:9D:F7:F3:24:C0:AE:7F:5E:C8:11:3F:2F:13:9A:C6:BD X509v3 Authority Key Identifier: keyid:A3:E5:99:92:83:AA:F2:E4:39:50:79:EA:37:16:DD:FC:2B:13:0F:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:9e:f9:ad:71:c0:bb:37:e9:bd:80:02:0a:1c:52:fe:19:2a: 69:1a:ca:d0:5b:f9:f1:32:92:c0:16:d0:55:fb:5d:89:77:23: 63:57:bd:f0:7c:b3:a5:09:23:67:a8:79:ca:fa:29:c4:95:5c: 58:99:10:27:d2:ca:b2:d1:c2:05:1c:9c:19:2c:c8:80:d8:f4: fa:bf:b7:d9:d9:b1:9f:3f:53:1b:51:27:0d:23:f7:92:1e:85: 0b:65:ac:85:d4:17:14:9c:be:a4:37:e9:91:b9:a5:c7:db:53: 5f:01:61:19:af:98:e6:ff:af:c7:a0:c4:4a:4a:35:89:47:a2: d8:99:1e:67:65:f7:f0:f6:c1:20:80:17:fb:3c:ef:4a:d7:0b: f9:5e:7d:94:40:75:68:41:d9:84:56:c1:a1:b4:83:36:3b:2a: 34:87:cc:b5:93:57:4b:a2:45:f8:86:fb:b9:26:86:bc:ae:ca: 5d:be:2b:1f:14:9c:b3:04:f5:8c:3c:96:77:4c:c1:51:66:b6: 67:7a:c5:29:f8:2d:e0:6f:72:66:a9:e9:66:2d:c5:91:80:7f: 9d:a7:33:71:78:b5:f1:72:cc:ef:ff:0f:50:68:2d:d1:47:d7: a1:18:fe:c4:db:9a:8e:ad:53:5d:48:87:85:fa:3f:3c:01:36: a5:d4:a5:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP/x7wW8c3ByqREELzcG/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzZTU5OTkyODNhYWYyZTQzOTUwNzllYTM3MTZkZGZjMmIx MzBmMDcwHhcNMjUxMjA2MDYwMTEwWhcNMjUxMjA3MDYwMTEwWjAzMTEwLwYDVQQD EyhlNWYxMjVkNTlkZjdmMzI0YzBhZTdmNWVjODExM2YyZjEzOWFjNmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+y1F/ied5WqGYkyTSudP5mcs5ZY rb1mBwQmlQOySbtMwJ8C2dj9bWK96PM55xdVgItmygfLaS/CljbXR75gf6SC440E rLG/jTP58o6EdkgacBXKBwDbfVg/4w0L6OQswfiTn5uLCc+IiyaJ/JdO4kz0GVQw Sjkh7oagi+W6pwYsBqWqfcfAiU5SWqAhUB+RGPzxAi12dEotlCzM1F+AABw5z+Gt B13sLdfcdlpO2/pNQD/QfF4LJJKhNr7pJ3412RUZ2yBSC4EkD42yeUTh+nzEP4Dw g1YXzGtTdmhXdUDu3JAtF5OrPdnIACCBs1gh5T2XlvnuzRkh/exoTtmetwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOXxJdWd9/MkwK5/XsgRPy8Tmsa9MB8GA1UdIwQY MBaAFKPlmZKDqvLkOVB56jcW3fwrEw8HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvby1XWmtvT3E4dVE1VUhucU54YmRfQ3NURHdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi9jZDk1ODktMzgyNS00M2U2LTk1NTIt MDMwNzQ4NjI2OWQ3LzEvby1XWmtvT3E4dVE1VUhucU54YmRfQ3NURHdjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi9jZDk1ODktMzgyNS00M2U2LTk1NTItMDMwNzQ4NjI2OWQ3 LzEvby1XWmtvT3E4dVE1VUhucU54YmRfQ3NURHdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAZ75rXHA uzfpvYACChxS/hkqaRrK0Fv58TKSwBbQVftdiXcjY1e98HyzpQkjZ6h5yvopxJVc WJkQJ9LKstHCBRycGSzIgNj0+r+32dmxnz9TG1EnDSP3kh6FC2WshdQXFJy+pDfp kbmlx9tTXwFhGa+Y5v+vx6DESko1iUei2JkeZ2X38PbBIIAX+zzvStcL+V59lEB1 aEHZhFbBobSDNjsqNIfMtZNXS6JF+Ib7uSaGvK7KXb4rHxScswT1jDyWd0zBUWa2 Z3rFKfgt4G9yZqnpZi3FkYB/naczcXi18XLM7/8PUGgt0UfXoRj+xNuajq1TXUiH hfo/PAE2pdSllQ== -----END CERTIFICATE-----Generated at Sat Dec 6 14:20:57 2025 by rpki-client