This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.mft File: Ou3Txyc9mrNkoxTaSB5bpR-EKW8.mft (raw, json) Hash identifier: 4oQy/cO1udLhxUYzaKsPGWQvaaAjPaFOqFsoadZ4Cjk= Subject key identifier: 4F:24:E6:09:30:68:8F:87:57:51:51:00:65:BC:84:AD:4E:CE:C3:69 Authority key identifier: 3A:ED:D3:C7:27:3D:9A:B3:64:A3:14:DA:48:1E:5B:A5:1F:84:29:6F Certificate issuer: /CN=3aedd3c7273d9ab364a314da481e5ba51f84296f Certificate serial: 019B34C4C32E2BA944DCF592F6E50E71035D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.mft Manifest number: 1782 Signing time: Fri 19 Dec 2025 04:01:08 +0000 Manifest this update: Fri 19 Dec 2025 04:01:08 +0000 Manifest next update: Sat 20 Dec 2025 04:01:08 +0000 Files and hashes: 1: KfvqJ792oMd34Pp7PugqoZjhvkw.roa (hash: S302iUZeOLpzdWoDN+iw2GhCZ0Q0jKKUkWWXOnKtMnU=) 2: Ou3Txyc9mrNkoxTaSB5bpR-EKW8.crl (hash: Xpz2H5Hx1gJUHzDvski18sSdmGSwIwIfXTuzyEy4wLA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.mft rsync://rpki.ripe.net/repository/DEFAULT/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 04:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c4:c3:2e:2b:a9:44:dc:f5:92:f6:e5:0e:71:03:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3aedd3c7273d9ab364a314da481e5ba51f84296f Validity Not Before: Dec 19 04:01:08 2025 GMT Not After : Dec 20 04:01:08 2025 GMT Subject: CN=4f24e60930688f875751510065bc84ad4ecec369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d5:24:69:c0:03:db:b8:bf:7a:24:a3:2d:fe: 54:62:1b:5f:40:82:86:d9:6f:9b:b5:32:bd:5f:54: 04:3e:c3:47:72:7f:5f:ae:34:40:86:08:57:53:35: d0:76:5a:96:0a:52:36:15:d2:70:1a:e1:c5:c0:02: 4b:59:aa:fe:7f:59:3d:fb:a1:62:89:86:a9:8f:cd: 41:e4:52:ef:dc:01:af:df:3f:01:5c:8e:6b:0e:b7: e8:8b:1b:21:36:26:4b:82:e1:7a:4e:08:0b:c1:04: fd:87:53:82:2f:0f:16:4b:35:a2:5d:d9:00:b2:41: c6:ce:06:ff:27:a9:e2:c2:bc:d2:f2:62:f5:08:36: cc:77:2d:eb:d3:3e:08:e9:70:62:20:3a:b5:c3:c6: cd:dd:28:91:9e:b5:a5:65:67:12:4d:79:77:89:71: ec:ea:bf:3a:72:5d:54:de:4d:f4:fc:f7:f5:7c:19: 64:c3:2c:e9:37:bc:0d:1a:f4:f8:c8:cd:5e:4c:53: fa:0a:77:50:a0:3d:7d:46:00:86:0f:46:35:7c:55: 37:45:b4:d5:ca:d1:6f:ec:c2:45:d1:93:cd:87:cc: ca:f7:a0:d0:68:f0:9c:df:89:e4:db:03:1c:68:1b: f3:be:f7:57:8c:ea:d2:6c:2a:35:ba:a1:8b:3f:a9: 3d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:24:E6:09:30:68:8F:87:57:51:51:00:65:BC:84:AD:4E:CE:C3:69 X509v3 Authority Key Identifier: keyid:3A:ED:D3:C7:27:3D:9A:B3:64:A3:14:DA:48:1E:5B:A5:1F:84:29:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/62c92a-5c23-48d7-bca2-63f04095a4c4/1/Ou3Txyc9mrNkoxTaSB5bpR-EKW8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:36:ca:7c:e3:6d:19:fc:fd:72:95:b9:a0:e4:91:a8:17:75: 99:02:24:bd:a4:28:30:fa:b6:c0:af:d9:b8:bb:0f:14:4b:34: 02:2a:fa:ab:bd:4c:6f:5b:fe:4f:a7:88:cd:b4:17:60:31:9a: a7:65:67:b3:81:7b:34:6b:1e:6b:94:28:e0:fb:dd:d9:0e:a0: 14:45:f0:92:2f:5b:ec:fe:6a:57:6f:8a:f4:4f:eb:1d:7d:ae: 88:5f:86:15:e1:22:13:7c:d1:1d:e8:0d:f7:5a:f4:00:df:9a: 40:96:d8:d5:e0:2e:fe:49:2a:fa:c7:10:84:c3:32:b7:fc:d5: 25:d0:5f:a7:64:a3:af:e3:0f:6a:e4:90:1f:ea:ca:20:43:06: e7:b7:a2:4c:71:cc:2e:41:e6:44:3a:8e:e1:03:b8:bc:41:43: a5:5d:72:2b:52:b0:a7:57:67:92:b4:49:d4:63:bc:ea:73:86: bc:0d:37:fc:75:10:d7:d9:30:09:31:ef:72:82:14:4d:2a:2c: ba:3e:60:6f:c3:95:4f:d2:ab:c1:2c:2e:0e:8a:68:6d:e6:bc: 0d:9a:3c:a1:9c:e8:61:01:61:27:a2:4d:ec:e2:8a:b6:1c:69: 9c:8a:c8:60:75:1a:fa:40:d6:5a:72:e7:92:d5:7f:23:c1:b2: df:f2:33:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xMMuK6lE3PWS9uUOcQNdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZWRkM2M3MjczZDlhYjM2NGEzMTRkYTQ4MWU1YmE1MWY4 NDI5NmYwHhcNMjUxMjE5MDQwMTA4WhcNMjUxMjIwMDQwMTA4WjAzMTEwLwYDVQQD Eyg0ZjI0ZTYwOTMwNjg4Zjg3NTc1MTUxMDA2NWJjODRhZDRlY2VjMzY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNUkacAD27i/eiSjLf5UYhtfQIKG 2W+btTK9X1QEPsNHcn9frjRAhghXUzXQdlqWClI2FdJwGuHFwAJLWar+f1k9+6Fi iYapj81B5FLv3AGv3z8BXI5rDrfoixshNiZLguF6TggLwQT9h1OCLw8WSzWiXdkA skHGzgb/J6niwrzS8mL1CDbMdy3r0z4I6XBiIDq1w8bN3SiRnrWlZWcSTXl3iXHs 6r86cl1U3k30/Pf1fBlkwyzpN7wNGvT4yM1eTFP6CndQoD19RgCGD0Y1fFU3RbTV ytFv7MJF0ZPNh8zK96DQaPCc34nk2wMcaBvzvvdXjOrSbCo1uqGLP6k9RQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE8k5gkwaI+HV1FRAGW8hK1OzsNpMB8GA1UdIwQY MBaAFDrt08cnPZqzZKMU2kgeW6UfhClvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3UzVHh5Yzltck5rb3hUYVNCNWJwUi1FS1c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS82MmM5MmEtNWMyMy00OGQ3LWJjYTIt NjNmMDQwOTVhNGM0LzEvT3UzVHh5Yzltck5rb3hUYVNCNWJwUi1FS1c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS82MmM5MmEtNWMyMy00OGQ3LWJjYTItNjNmMDQwOTVhNGM0 LzEvT3UzVHh5Yzltck5rb3hUYVNCNWJwUi1FS1c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAezbKfONt Gfz9cpW5oOSRqBd1mQIkvaQoMPq2wK/ZuLsPFEs0Air6q71Mb1v+T6eIzbQXYDGa p2Vns4F7NGsea5Qo4Pvd2Q6gFEXwki9b7P5qV2+K9E/rHX2uiF+GFeEiE3zRHegN 91r0AN+aQJbY1eAu/kkq+scQhMMyt/zVJdBfp2Sjr+MPauSQH+rKIEMG57eiTHHM LkHmRDqO4QO4vEFDpV1yK1Kwp1dnkrRJ1GO86nOGvA03/HUQ19kwCTHvcoIUTSos uj5gb8OVT9KrwSwuDopobea8DZo8oZzoYQFhJ6JN7OKKthxpnIrIYHUa+kDWWnLn ktV/I8Gy3/Izug== -----END CERTIFICATE-----Generated at Fri Dec 19 13:38:12 2025 by rpki-client