This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft File: o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft (raw, json) Hash identifier: hICO6bFV2jp/NdUKPSdQG0wAtLjcyv86+kkoaQDLqFw= Subject key identifier: AE:20:9E:CB:8D:BF:B4:5B:80:D5:13:09:EC:B7:FB:4E:FD:EB:5F:A4 Authority key identifier: A3:E5:99:92:83:AA:F2:E4:39:50:79:EA:37:16:DD:FC:2B:13:0F:07 Certificate issuer: /CN=a3e5999283aaf2e4395079ea3716ddfc2b130f07 Certificate serial: 019B300C73A1EEB5FC9547A915FD95FB7FF5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft Manifest number: 0510 Signing time: Thu 18 Dec 2025 06:01:20 +0000 Manifest this update: Thu 18 Dec 2025 06:01:20 +0000 Manifest next update: Fri 19 Dec 2025 06:01:20 +0000 Files and hashes: 1: CmAE8B1t5vtl2bRQPtAcN7cxb3s.roa (hash: EUyII4SPPS8NnneMNy5H1gGoK71/rhaPmoIV02VhFv0=) 2: o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl (hash: fnL5s+zi1qrZLNcp5tLg4b6qdxbfCCpkVHRUmAUuaoI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:0c:73:a1:ee:b5:fc:95:47:a9:15:fd:95:fb:7f:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3e5999283aaf2e4395079ea3716ddfc2b130f07 Validity Not Before: Dec 18 06:01:20 2025 GMT Not After : Dec 19 06:01:20 2025 GMT Subject: CN=ae209ecb8dbfb45b80d51309ecb7fb4efdeb5fa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:11:81:8c:6c:d5:f0:8f:2e:c3:fb:c6:44:2a: 0e:6e:cd:a3:54:3f:e3:28:eb:dc:be:99:04:3b:2c: 81:bf:d2:30:fd:09:bb:64:a1:0e:b0:7b:83:c8:a8: 96:98:83:e7:b9:cf:29:ba:27:d7:80:c1:a4:9e:d7: ab:df:1e:1b:52:63:72:94:52:89:9e:d1:69:7d:ec: 49:e7:4e:45:cd:3b:e9:45:e9:29:22:2c:66:f4:d2: ec:51:5c:c0:c5:82:d5:d5:7e:2b:8f:a5:18:ea:4b: 28:12:58:c4:83:8a:6c:5b:78:d7:12:4f:f2:05:08: 6a:f3:21:c4:04:7f:a3:62:0f:f2:41:ea:f5:ec:2e: 80:88:b5:26:46:3a:9b:e7:c0:46:f2:ae:14:f9:0d: ea:67:f1:16:01:99:b4:a3:75:8a:18:06:63:f3:71: 1b:c2:d3:e5:91:ec:f1:df:51:88:a2:11:20:9f:e4: 45:38:89:ef:4a:e1:f9:5b:d8:1f:a0:70:69:47:25: 7c:5d:ca:2e:85:8b:cb:37:15:b9:ec:06:c5:51:44: 87:96:76:76:3f:73:36:bb:4c:0e:67:34:af:b9:5c: a2:84:4b:61:87:56:c0:ef:ba:77:0b:37:88:4f:90: 43:28:e4:f9:a6:c5:b0:fd:de:80:21:2c:30:ff:9f: 65:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:20:9E:CB:8D:BF:B4:5B:80:D5:13:09:EC:B7:FB:4E:FD:EB:5F:A4 X509v3 Authority Key Identifier: keyid:A3:E5:99:92:83:AA:F2:E4:39:50:79:EA:37:16:DD:FC:2B:13:0F:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:59:bd:ff:3c:4d:65:b2:68:c2:55:1f:35:35:a7:bd:7f:77: f9:d0:98:43:bd:0f:62:0f:fb:5e:64:f8:75:58:c5:b7:62:01: 3b:31:32:6e:3c:75:34:bf:2c:e8:e4:1a:0a:ba:75:09:13:62: 43:fd:5e:cb:10:d8:81:c2:ab:0e:1e:f2:fb:e5:0f:54:b7:05: 81:9e:e9:2c:fe:83:8b:af:f3:9b:35:ab:0e:1a:2f:d3:ba:2e: df:8c:39:55:ff:72:9f:c8:35:48:ca:40:3c:3f:dd:80:00:89: 10:d5:d3:c0:20:a6:45:ad:83:66:1b:b7:ee:06:d9:6e:03:b0: 07:dd:5c:93:53:f1:01:ad:d6:2c:00:9d:48:ba:99:0c:5a:8a: 0d:35:60:e7:05:67:ad:a9:23:01:9d:aa:89:74:d2:0a:60:6f: dd:de:3e:aa:dc:03:e6:fb:d7:83:6e:ac:fc:d2:a5:4e:20:a3: fd:93:8d:1c:00:a1:f3:73:9c:27:51:d5:0a:25:bb:3e:bd:2d: 42:34:17:1b:40:65:37:fd:d7:b3:96:f5:fe:17:9a:cc:fd:38: 29:ad:37:cf:23:ec:04:7b:93:58:31:f7:29:67:c9:4d:07:1b: cf:54:05:05:31:fe:cd:7a:f3:88:c9:53:6f:75:d1:36:73:7e: 94:cc:87:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZswDHOh7rX8lUepFf2V+3/1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzZTU5OTkyODNhYWYyZTQzOTUwNzllYTM3MTZkZGZjMmIx MzBmMDcwHhcNMjUxMjE4MDYwMTIwWhcNMjUxMjE5MDYwMTIwWjAzMTEwLwYDVQQD EyhhZTIwOWVjYjhkYmZiNDViODBkNTEzMDllY2I3ZmI0ZWZkZWI1ZmE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuRGBjGzV8I8uw/vGRCoObs2jVD/j KOvcvpkEOyyBv9Iw/Qm7ZKEOsHuDyKiWmIPnuc8puifXgMGknter3x4bUmNylFKJ ntFpfexJ505FzTvpRekpIixm9NLsUVzAxYLV1X4rj6UY6ksoEljEg4psW3jXEk/y BQhq8yHEBH+jYg/yQer17C6AiLUmRjqb58BG8q4U+Q3qZ/EWAZm0o3WKGAZj83Eb wtPlkezx31GIohEgn+RFOInvSuH5W9gfoHBpRyV8XcouhYvLNxW57AbFUUSHlnZ2 P3M2u0wOZzSvuVyihEthh1bA77p3CzeIT5BDKOT5psWw/d6AISww/59l2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK4gnsuNv7RbgNUTCey3+07961+kMB8GA1UdIwQY MBaAFKPlmZKDqvLkOVB56jcW3fwrEw8HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvby1XWmtvT3E4dVE1VUhucU54YmRfQ3NURHdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi9jZDk1ODktMzgyNS00M2U2LTk1NTIt MDMwNzQ4NjI2OWQ3LzEvby1XWmtvT3E4dVE1VUhucU54YmRfQ3NURHdjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi9jZDk1ODktMzgyNS00M2U2LTk1NTItMDMwNzQ4NjI2OWQ3 LzEvby1XWmtvT3E4dVE1VUhucU54YmRfQ3NURHdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIlm9/zxN ZbJowlUfNTWnvX93+dCYQ70PYg/7XmT4dVjFt2IBOzEybjx1NL8s6OQaCrp1CRNi Q/1eyxDYgcKrDh7y++UPVLcFgZ7pLP6Di6/zmzWrDhov07ou34w5Vf9yn8g1SMpA PD/dgACJENXTwCCmRa2DZhu37gbZbgOwB91ck1PxAa3WLACdSLqZDFqKDTVg5wVn rakjAZ2qiXTSCmBv3d4+qtwD5vvXg26s/NKlTiCj/ZONHACh83OcJ1HVCiW7Pr0t QjQXG0BlN/3Xs5b1/heazP04Ka03zyPsBHuTWDH3KWfJTQcbz1QFBTH+zXrziMlT b3XRNnN+lMyHuQ== -----END CERTIFICATE-----Generated at Thu Dec 18 09:12:40 2025 by rpki-client