This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json) Hash identifier: 7kXipl1VVFM2UYjLYDusMrSomWM1eOWiWLCPtpu+rAA= Subject key identifier: B8:B7:49:A9:BA:93:E3:FE:3C:6F:B3:E5:A6:83:44:FB:82:7D:13:66 Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9 Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9 Certificate serial: 019B33446B9717EA43FDE98BFFE9A0C82B9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft Manifest number: 093D Signing time: Thu 18 Dec 2025 21:01:20 +0000 Manifest this update: Thu 18 Dec 2025 21:01:20 +0000 Manifest next update: Fri 19 Dec 2025 21:01:20 +0000 Files and hashes: 1: 1ZMKCjtoyUotW5zL6d-I3qOaSBE.roa (hash: 5gJp0s5iC22SH9q8M0EDrUjpQSDzsUFawVisJiKFG6A=) 2: D2x90Hp-gN9ES-WMtaRxOkRU7zk.roa (hash: l/qjD5THnTNjpjg3s7YHV5e23ifKj7BiMe0FzY2nCgo=) 3: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: eTx+XQwL7YAC5sqVXXlRZ8fE3abhFOLnFunBpF6ykzc=) 4: XAC3MTIDy2Wt50Hn1LPVCPZj6e0.roa (hash: Dwx9RqPqD8/O5XTxZSeNq9SNO+JNCNDt1UlVOS13grg=) 5: hbNzX9sb-OFJ3CONrcdLuZ55uyU.roa (hash: NFMtgtynDHta0KlGWRazjZvBYm+8qkNagl80fkK/Tdk=) 6: y5t9VCG86iK6aUs1XnSlJL9WwkU.roa (hash: AeobAv5BcqpSnLadsMWLSvPDtqBRihCI6v5wMAmYfok=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 21:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:44:6b:97:17:ea:43:fd:e9:8b:ff:e9:a0:c8:2b:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9 Validity Not Before: Dec 18 21:01:20 2025 GMT Not After : Dec 19 21:01:20 2025 GMT Subject: CN=b8b749a9ba93e3fe3c6fb3e5a68344fb827d1366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:46:29:03:97:35:44:11:92:b3:49:a8:00:5a: f3:bd:4c:d4:f4:d9:85:26:56:74:8c:27:7f:56:b0: 2a:a3:83:c9:b6:d2:0f:ed:91:8d:9c:89:0b:47:9e: ea:ea:c0:34:60:55:f0:a0:75:70:ab:22:6f:08:dc: dc:9a:58:bd:ba:1a:22:71:07:24:02:97:83:c2:39: 57:29:33:96:20:7a:7c:d0:72:f3:36:32:0e:27:12: 0a:8c:23:2a:37:2e:3c:6a:d8:bd:02:f7:bd:29:78: db:26:a5:fb:13:21:cc:b0:2b:17:94:16:c3:55:f9: b2:4f:24:cf:d8:74:f7:38:f7:45:a9:10:f6:54:20: 2f:33:1e:28:17:b4:c2:04:6d:1e:90:82:c1:51:c0: 52:04:ec:1a:40:e4:c7:80:6f:ea:89:9c:a5:3d:f9: 9f:08:f3:6c:35:e7:da:e3:cc:71:b3:29:dd:ea:c1: f9:38:41:fc:dd:73:c1:10:1b:c2:ea:34:36:0b:22: 3a:f3:81:27:c8:96:30:d9:e3:67:f9:7d:3b:c6:13: 03:69:30:76:1c:e0:be:8f:45:97:b0:0e:47:43:92: a5:17:a5:3e:80:f4:61:48:c0:d4:a4:0e:ba:7b:0b: 05:0b:00:d4:22:0e:cf:fc:6d:88:07:2a:f7:18:57: 0e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B7:49:A9:BA:93:E3:FE:3C:6F:B3:E5:A6:83:44:FB:82:7D:13:66 X509v3 Authority Key Identifier: keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:71:c9:6f:15:5a:7b:6a:82:77:7e:12:19:0a:0f:ae:62:ea: e3:69:a1:71:f1:f6:0a:39:09:09:21:63:14:6d:a5:74:ac:6d: fe:fc:ad:16:37:83:ef:f1:5a:54:11:96:ce:2e:23:ee:ee:86: 2f:87:89:8e:57:7e:02:18:63:93:53:3d:12:36:06:14:67:ce: e6:f8:07:25:29:c0:e9:dc:80:6c:fd:43:51:44:fe:cb:20:62: 13:4c:28:22:12:df:9d:df:85:32:cf:95:0f:88:e4:76:c2:70: 95:b0:52:fa:50:e2:91:03:76:e7:9f:46:5c:f6:6f:c3:56:1e: da:f3:f4:ae:c6:22:b7:af:14:9a:d6:4c:2d:ae:e1:1d:c5:66: 31:9a:b1:fd:38:a7:fb:4d:e9:89:ed:9f:c4:6f:03:ae:d6:04: 1e:88:d9:c8:4d:c5:9f:37:64:bd:01:2a:87:dd:33:33:35:13: f6:d2:ff:8f:dd:07:d5:e1:bb:d8:72:98:bc:e0:f0:88:54:a1: 36:80:09:42:9e:5e:82:a4:66:90:53:d4:d1:52:e2:a2:14:62: 2f:60:14:e0:41:b0:aa:3b:31:70:dd:5a:65:da:7a:ff:be:62: 1d:e4:d3:7f:93:c4:98:f5:e9:9f:ff:ac:52:42:c8:9b:97:2e: 35:2b:5e:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszRGuXF+pD/emL/+mgyCuaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5MzZkYWYwMzc1NmJhZjgzYmE0ZjM4ZGJlNWQ2OGNiOWJh Y2VmZjkwHhcNMjUxMjE4MjEwMTIwWhcNMjUxMjE5MjEwMTIwWjAzMTEwLwYDVQQD EyhiOGI3NDlhOWJhOTNlM2ZlM2M2ZmIzZTVhNjgzNDRmYjgyN2QxMzY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEYpA5c1RBGSs0moAFrzvUzU9NmF JlZ0jCd/VrAqo4PJttIP7ZGNnIkLR57q6sA0YFXwoHVwqyJvCNzcmli9uhoicQck ApeDwjlXKTOWIHp80HLzNjIOJxIKjCMqNy48ati9Ave9KXjbJqX7EyHMsCsXlBbD VfmyTyTP2HT3OPdFqRD2VCAvMx4oF7TCBG0ekILBUcBSBOwaQOTHgG/qiZylPfmf CPNsNefa48xxsynd6sH5OEH83XPBEBvC6jQ2CyI684EnyJYw2eNn+X07xhMDaTB2 HOC+j0WXsA5HQ5KlF6U+gPRhSMDUpA66ewsFCwDUIg7P/G2IByr3GFcO9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLi3Sam6k+P+PG+z5aaDRPuCfRNmMB8GA1UdIwQY MBaAFDk22vA3Vrr4O6Tzjb5daMubrO/5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8wNGVhMzMtODNhYS00ZTU2LTk4Y2Mt Zjk1ZjY2ZDYwNTVjLzEvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy8wNGVhMzMtODNhYS00ZTU2LTk4Y2MtZjk1ZjY2ZDYwNTVj LzEvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdXHJbxVa e2qCd34SGQoPrmLq42mhcfH2CjkJCSFjFG2ldKxt/vytFjeD7/FaVBGWzi4j7u6G L4eJjld+Ahhjk1M9EjYGFGfO5vgHJSnA6dyAbP1DUUT+yyBiE0woIhLfnd+FMs+V D4jkdsJwlbBS+lDikQN2559GXPZvw1Ye2vP0rsYit68UmtZMLa7hHcVmMZqx/Tin +03pie2fxG8DrtYEHojZyE3FnzdkvQEqh90zMzUT9tL/j90H1eG72HKYvODwiFSh NoAJQp5egqRmkFPU0VLiohRiL2AU4EGwqjsxcN1aZdp6/75iHeTTf5PEmPXpn/+s UkLIm5cuNStezw== -----END CERTIFICATE-----Generated at Fri Dec 19 05:40:29 2025 by rpki-client