This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.mft File: O5pBDtUm-GwybZG2KApEGhbAxnY.mft (raw, json) Hash identifier: 6IYk/HNHdsTyH0Md/Bd3xPdnrzYddXkCOxAh/4e/C48= Subject key identifier: ED:7D:41:7B:A6:49:69:59:3E:1A:5A:8C:F7:D8:C1:7E:A7:93:0A:1D Authority key identifier: 3B:9A:41:0E:D5:26:F8:6C:32:6D:91:B6:28:0A:44:1A:16:C0:C6:76 Certificate issuer: /CN=3b9a410ed526f86c326d91b6280a441a16c0c676 Certificate serial: 019AF19ACB2225601270036CD5C886ADAE1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O5pBDtUm-GwybZG2KApEGhbAxnY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.mft Manifest number: 08CB Signing time: Sat 06 Dec 2025 03:00:44 +0000 Manifest this update: Sat 06 Dec 2025 03:00:44 +0000 Manifest next update: Sun 07 Dec 2025 03:00:44 +0000 Files and hashes: 1: O5pBDtUm-GwybZG2KApEGhbAxnY.crl (hash: kOW/G92HmAWgvSTb07jznD9KbNFccstSWj3TqZuxfUU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.mft rsync://rpki.ripe.net/repository/DEFAULT/O5pBDtUm-GwybZG2KApEGhbAxnY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:cb:22:25:60:12:70:03:6c:d5:c8:86:ad:ae:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b9a410ed526f86c326d91b6280a441a16c0c676 Validity Not Before: Dec 6 03:00:44 2025 GMT Not After : Dec 7 03:00:44 2025 GMT Subject: CN=ed7d417ba64969593e1a5a8cf7d8c17ea7930a1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a1:20:16:95:ce:24:9f:f5:4b:68:ae:c7:47: 79:17:4d:d8:5c:d6:17:e0:3e:a7:08:ed:5e:8e:d0: 17:5e:53:5a:31:d2:44:9c:cb:cf:02:70:24:8f:98: ed:d8:23:7a:b9:71:b3:33:d5:54:58:26:e2:1c:85: b0:a5:1e:76:da:bc:f1:ec:ad:c6:b7:3e:58:0e:01: b8:3c:1a:00:e1:2d:f6:17:d0:32:5d:a4:5d:11:83: 49:fa:af:b9:d4:d9:40:c0:df:df:50:2e:43:d4:33: b4:cb:58:cb:f4:13:78:3c:73:56:6d:1a:d1:7c:c4: e7:db:2c:f4:5e:b8:f3:64:5d:72:fa:a4:fa:f7:8c: dc:72:7c:16:ac:87:6d:d3:86:93:9a:86:b3:92:1c: c4:fe:14:f8:71:e8:ed:2d:e5:f5:e7:50:5b:54:54: 86:cb:5d:18:e0:62:17:07:15:50:5d:16:9e:19:b3: 4f:e1:67:fa:95:b1:65:e8:ed:74:9a:98:b9:55:c4: ac:b5:2c:34:e1:a6:49:7f:aa:6b:ad:42:1a:e8:23: 4b:8d:5e:c4:86:12:96:23:40:08:00:63:b7:fd:31: 11:9d:63:c3:c5:1c:ad:55:81:09:1c:5e:d2:a3:39: e9:04:4e:98:10:63:79:e6:c1:6b:1f:76:20:ca:04: f2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:7D:41:7B:A6:49:69:59:3E:1A:5A:8C:F7:D8:C1:7E:A7:93:0A:1D X509v3 Authority Key Identifier: keyid:3B:9A:41:0E:D5:26:F8:6C:32:6D:91:B6:28:0A:44:1A:16:C0:C6:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O5pBDtUm-GwybZG2KApEGhbAxnY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/5e8e04-e6ea-4d59-b2f7-df0a6dc282a0/1/O5pBDtUm-GwybZG2KApEGhbAxnY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:74:1c:86:1e:f9:1c:6c:98:dc:7b:35:84:2e:05:21:83:84: 22:44:02:db:27:53:1d:57:05:3f:c1:3a:db:13:cc:48:4b:6b: 36:fe:c1:7b:05:27:35:dc:3d:8d:7f:62:15:e4:cd:bf:63:5f: df:95:a9:10:d5:51:c6:5f:24:2d:2a:8e:ea:f8:a9:22:54:a6: 9a:df:93:d3:43:c5:f1:d1:ab:c4:d2:52:e8:72:d6:bc:7c:5f: ac:30:ed:71:97:97:7f:a9:45:4e:08:54:0b:b4:12:e4:7b:0f: 89:8d:03:8e:c9:84:28:5c:5e:ca:df:50:f5:c7:a9:c3:3e:94: 0e:d6:6d:48:37:f9:63:ad:d1:f7:ed:55:e7:94:7e:31:8a:00: 1e:0e:3b:bc:8c:01:e8:f2:ea:1d:ee:f0:84:2b:70:8a:d4:84: cc:05:6d:fc:43:64:80:c3:ac:65:3f:c2:74:d5:c1:a9:0e:89: 63:89:f1:0e:19:b6:e8:e2:db:8c:da:02:63:b9:df:e0:33:1c: 1a:d0:c4:6a:80:c3:fb:80:36:64:4a:0c:8b:b2:64:2e:ac:31: e1:be:44:86:67:c2:b1:60:6c:ac:ad:ba:42:d5:8f:3d:70:54: dc:12:e1:0d:65:1b:57:89:05:06:97:2d:f6:8f:24:4f:94:cb: 8f:36:5c:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmssiJWAScANs1ciGra4eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiOWE0MTBlZDUyNmY4NmMzMjZkOTFiNjI4MGE0NDFhMTZj MGM2NzYwHhcNMjUxMjA2MDMwMDQ0WhcNMjUxMjA3MDMwMDQ0WjAzMTEwLwYDVQQD EyhlZDdkNDE3YmE2NDk2OTU5M2UxYTVhOGNmN2Q4YzE3ZWE3OTMwYTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0KEgFpXOJJ/1S2iux0d5F03YXNYX 4D6nCO1ejtAXXlNaMdJEnMvPAnAkj5jt2CN6uXGzM9VUWCbiHIWwpR522rzx7K3G tz5YDgG4PBoA4S32F9AyXaRdEYNJ+q+51NlAwN/fUC5D1DO0y1jL9BN4PHNWbRrR fMTn2yz0XrjzZF1y+qT694zccnwWrIdt04aTmoazkhzE/hT4cejtLeX151BbVFSG y10Y4GIXBxVQXRaeGbNP4Wf6lbFl6O10mpi5VcSstSw04aZJf6prrUIa6CNLjV7E hhKWI0AIAGO3/TERnWPDxRytVYEJHF7SoznpBE6YEGN55sFrH3YgygTyKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO19QXumSWlZPhpajPfYwX6nkwodMB8GA1UdIwQY MBaAFDuaQQ7VJvhsMm2RtigKRBoWwMZ2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzVwQkR0VW0tR3d5YlpHMktBcEVHaGJBeG5ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC81ZThlMDQtZTZlYS00ZDU5LWIyZjct ZGYwYTZkYzI4MmEwLzEvTzVwQkR0VW0tR3d5YlpHMktBcEVHaGJBeG5ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC81ZThlMDQtZTZlYS00ZDU5LWIyZjctZGYwYTZkYzI4MmEw LzEvTzVwQkR0VW0tR3d5YlpHMktBcEVHaGJBeG5ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACHQchh75 HGyY3Hs1hC4FIYOEIkQC2ydTHVcFP8E62xPMSEtrNv7BewUnNdw9jX9iFeTNv2Nf 35WpENVRxl8kLSqO6vipIlSmmt+T00PF8dGrxNJS6HLWvHxfrDDtcZeXf6lFTghU C7QS5HsPiY0DjsmEKFxeyt9Q9cepwz6UDtZtSDf5Y63R9+1V55R+MYoAHg47vIwB 6PLqHe7whCtwitSEzAVt/ENkgMOsZT/CdNXBqQ6JY4nxDhm26OLbjNoCY7nf4DMc GtDEaoDD+4A2ZEoMi7JkLqwx4b5EhmfCsWBsrK26QtWPPXBU3BLhDWUbV4kFBpct 9o8kT5TLjzZcbw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:34:43 2025 by rpki-client