This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft File: OzoF27nHf6Fu0QRpdHpcbm6riN4.mft (raw, json) Hash identifier: /2bvozsfZaQ0Me38tME4aWaLGnmpfBjXBsMOWHXSNeg= Subject key identifier: 7D:80:0E:C6:03:19:83:55:8B:42:C2:62:53:02:7B:D9:09:8F:0E:3E Authority key identifier: 3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE Certificate issuer: /CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de Certificate serial: 019AF879156CE32B355382BC5F968764F2F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft Manifest number: 0745 Signing time: Sun 07 Dec 2025 11:01:16 +0000 Manifest this update: Sun 07 Dec 2025 11:01:16 +0000 Manifest next update: Mon 08 Dec 2025 11:01:16 +0000 Files and hashes: 1: 2bBaeD35kseI457ZAPL2x12So_w.roa (hash: oq5BcVgGKnzmBudzjO96n+tl2tyiGaHICIAPgJhlDTA=) 2: OzoF27nHf6Fu0QRpdHpcbm6riN4.crl (hash: HWuYBBq2pyucTIYQxractVix/8/Nncx0ny5pxL8lXJQ=) 3: gu88WpvtkXuc7R66ZpDpE_3pKFA.roa (hash: ehlUCMIeJxZkhfnlJeweCnR9EA26oToRAoh5TK8ORKs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f8:79:15:6c:e3:2b:35:53:82:bc:5f:96:87:64:f2:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de Validity Not Before: Dec 7 11:01:16 2025 GMT Not After : Dec 8 11:01:16 2025 GMT Subject: CN=7d800ec6031983558b42c26253027bd9098f0e3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:13:83:a9:7a:c6:b0:ff:32:48:74:b5:bc:8b: 7a:14:8b:f1:2e:f4:a1:7a:22:6d:06:64:9f:9a:57: 14:d0:cb:6a:16:1f:c6:c6:48:93:e4:1e:03:7f:d6: 6c:7b:0f:39:87:f5:6b:86:27:36:ea:5a:a0:0b:e7: 58:cb:37:12:5e:35:33:9a:5c:48:68:4a:0c:59:e9: 61:6f:38:57:b6:7b:99:48:3e:ac:ea:62:53:ab:32: f1:b4:a7:b1:d4:16:5a:3c:b0:68:c3:23:6b:ec:5e: 4f:62:73:9d:54:6f:0b:4c:04:f8:3e:dd:20:51:3b: 0f:4d:f3:1a:8b:70:45:38:e1:2b:fd:24:b0:91:c8: 6c:c7:b3:cd:a3:45:ee:14:81:4c:01:ab:bc:6b:f0: 83:07:a0:e3:93:c9:ad:55:50:6b:c3:b2:54:c2:e8: 54:bb:14:d0:d4:f2:ae:16:aa:b3:35:b7:0a:a7:58: 29:c8:32:9c:31:69:85:1f:8d:da:3e:85:df:ea:0b: 0c:d0:fb:1c:bb:1b:3c:9f:2c:03:1a:9d:5d:fe:e9: de:5a:43:3b:71:ea:2f:03:24:f3:0c:d5:c1:72:0c: a2:6e:7e:76:ca:f0:c9:7c:ee:cd:13:7d:01:df:2f: ee:c5:74:4d:2a:b8:9d:b7:bc:20:a4:e6:38:86:7d: 22:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:80:0E:C6:03:19:83:55:8B:42:C2:62:53:02:7B:D9:09:8F:0E:3E X509v3 Authority Key Identifier: keyid:3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:02:64:2b:ab:14:44:5e:a0:51:4c:cc:82:0a:17:ca:ee:a1: c4:93:7f:a4:96:9d:38:7a:12:59:a5:7f:d5:41:6e:74:18:92: 3d:57:53:ed:27:6c:4b:fc:c5:dd:45:04:f2:50:98:60:2c:e1: 67:8e:a8:7c:7b:ab:cc:6a:7d:65:50:1e:f7:19:17:3f:03:eb: 37:d6:42:58:33:bb:de:e8:ac:a7:28:b2:11:13:9c:39:bb:01: 80:97:bd:fd:2e:e7:51:16:e9:5d:6f:fb:32:55:39:42:56:4b: 0c:36:c8:cc:1b:25:22:77:b6:dd:98:d8:3d:ff:6a:f0:1d:17: eb:cb:4f:ab:7e:51:69:1e:ff:56:5d:46:0e:69:e4:31:74:3b: 2a:0a:b3:e4:a6:31:be:12:c5:df:d3:44:b4:e8:20:31:a2:b1: b0:94:3d:a5:21:ef:9c:e5:8f:46:a8:9d:cb:ae:8c:b0:5b:af: 9b:ec:22:73:fe:6f:62:fa:c2:e5:e9:37:16:3b:2c:97:48:17: b7:c7:87:2a:34:93:ee:a6:5f:81:83:63:4d:da:5f:40:85:66: 7d:5b:ab:3a:e2:8d:cc:24:38:22:23:4f:72:ce:a3:1a:55:0b: ba:87:06:51:0b:cc:f6:d5:05:29:5c:45:64:19:df:76:94:db: ca:8e:0a:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr4eRVs4ys1U4K8X5aHZPL4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiM2EwNWRiYjljNzdmYTE2ZWQxMDQ2OTc0N2E1YzZlNmVh Yjg4ZGUwHhcNMjUxMjA3MTEwMTE2WhcNMjUxMjA4MTEwMTE2WjAzMTEwLwYDVQQD Eyg3ZDgwMGVjNjAzMTk4MzU1OGI0MmMyNjI1MzAyN2JkOTA5OGYwZTNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnhODqXrGsP8ySHS1vIt6FIvxLvSh eiJtBmSfmlcU0MtqFh/GxkiT5B4Df9Zsew85h/Vrhic26lqgC+dYyzcSXjUzmlxI aEoMWelhbzhXtnuZSD6s6mJTqzLxtKex1BZaPLBowyNr7F5PYnOdVG8LTAT4Pt0g UTsPTfMai3BFOOEr/SSwkchsx7PNo0XuFIFMAau8a/CDB6Djk8mtVVBrw7JUwuhU uxTQ1PKuFqqzNbcKp1gpyDKcMWmFH43aPoXf6gsM0Pscuxs8nywDGp1d/uneWkM7 ceovAyTzDNXBcgyibn52yvDJfO7NE30B3y/uxXRNKridt7wgpOY4hn0iywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH2ADsYDGYNVi0LCYlMCe9kJjw4+MB8GA1UdIwQY MBaAFDs6Bdu5x3+hbtEEaXR6XG5uq4jeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3pvRjI3bkhmNkZ1MFFScGRIcGNibTZyaU40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS81YWEwNWEtNzIwZS00ZDU2LWEzYTgt YTAxYzM3Yjg4NzI4LzEvT3pvRjI3bkhmNkZ1MFFScGRIcGNibTZyaU40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS81YWEwNWEtNzIwZS00ZDU2LWEzYTgtYTAxYzM3Yjg4NzI4 LzEvT3pvRjI3bkhmNkZ1MFFScGRIcGNibTZyaU40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGgJkK6sU RF6gUUzMggoXyu6hxJN/pJadOHoSWaV/1UFudBiSPVdT7SdsS/zF3UUE8lCYYCzh Z46ofHurzGp9ZVAe9xkXPwPrN9ZCWDO73uispyiyEROcObsBgJe9/S7nURbpXW/7 MlU5QlZLDDbIzBslIne23ZjYPf9q8B0X68tPq35RaR7/Vl1GDmnkMXQ7Kgqz5KYx vhLF39NEtOggMaKxsJQ9pSHvnOWPRqidy66MsFuvm+wic/5vYvrC5ek3Fjssl0gX t8eHKjST7qZfgYNjTdpfQIVmfVurOuKNzCQ4IiNPcs6jGlULuocGUQvM9tUFKVxF ZBnfdpTbyo4KDQ== -----END CERTIFICATE-----Generated at Sun Dec 7 16:37:48 2025 by rpki-client