This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft File: O2MTmh9PiMMM7iIckUajbbVU_3A.mft (raw, json) Hash identifier: nbsSaPR/XbedGgzpvUFqj5XODS7NPEmylXhQ8F0RjM0= Subject key identifier: 9A:66:32:B6:D7:17:7E:5E:EC:CB:C9:59:59:26:80:44:0B:3F:60:15 Authority key identifier: 3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70 Certificate issuer: /CN=3b63139a1f4f88c30cee221c9146a36db554ff70 Certificate serial: 019AF12DFB2C83041BE0D283F5C5D195D4FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft Manifest number: 09FB Signing time: Sat 06 Dec 2025 01:01:53 +0000 Manifest this update: Sat 06 Dec 2025 01:01:53 +0000 Manifest next update: Sun 07 Dec 2025 01:01:53 +0000 Files and hashes: 1: JoFwTwAv-_c9ZLWMyBNEWDPvfas.roa (hash: ErYlkkNh49mz7B2O46c+uSN3yYpaocdKkRzHsCd2I3A=) 2: O2MTmh9PiMMM7iIckUajbbVU_3A.crl (hash: zjTpavBa42dA0YNW8KJic/RhOdXrsJKRRWrjRlBCLAM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:fb:2c:83:04:1b:e0:d2:83:f5:c5:d1:95:d4:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b63139a1f4f88c30cee221c9146a36db554ff70 Validity Not Before: Dec 6 01:01:53 2025 GMT Not After : Dec 7 01:01:53 2025 GMT Subject: CN=9a6632b6d7177e5eeccbc959592680440b3f6015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a2:03:38:e5:26:dc:c0:48:bc:99:b5:9b:69: 7b:4b:11:b2:3a:7a:99:c9:e6:c9:83:38:8b:b7:22: 3a:76:05:d4:c6:13:4d:35:46:65:99:c8:79:81:de: 33:43:b0:22:88:b1:47:c1:7d:77:48:08:d5:26:f1: 82:e2:4e:be:b1:05:ae:33:29:01:81:c7:b5:3f:5e: fb:aa:25:fe:98:a9:94:5a:1f:56:ea:b0:d3:fe:5c: c7:a0:87:a9:a0:f2:c0:b0:0d:84:cd:eb:7c:4c:62: 10:be:97:06:95:77:23:c0:d0:16:66:61:e3:8b:09: 7c:c5:9b:2c:53:be:b4:06:3d:6a:21:9e:4e:3a:30: 07:5b:c6:e9:7e:69:0a:34:30:02:22:6b:6b:1f:4a: 09:23:60:0f:09:13:07:68:64:a1:3e:5e:67:e9:61: c7:08:3a:78:98:b2:c7:e3:f3:29:b2:31:b9:42:0b: 16:4a:87:da:c5:07:e2:e4:de:80:b2:1e:f2:42:34: 53:7c:7c:da:17:ff:92:e7:67:a6:51:40:10:b5:0a: d6:d3:23:09:d2:7d:01:f7:da:90:97:0a:af:72:45: 9d:f5:e2:8e:8c:aa:20:38:bf:69:0b:f4:f1:c9:0b: 03:32:98:4c:b0:14:15:ad:df:d7:c6:6e:23:93:a4: f0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:66:32:B6:D7:17:7E:5E:EC:CB:C9:59:59:26:80:44:0B:3F:60:15 X509v3 Authority Key Identifier: keyid:3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:5c:f1:3c:65:28:fc:9c:1e:0a:da:cc:76:ff:22:e3:ab:c5: 67:d4:e2:8c:b0:78:5d:3e:24:d7:90:d9:63:78:54:a0:5f:46: 01:ad:ea:f2:9b:e9:a7:91:2e:5d:80:47:54:8b:e1:80:ad:5a: f6:cf:95:7b:bb:59:3a:61:59:b7:e1:dd:65:ba:fe:81:7b:1f: 09:0e:4c:d1:dc:66:9c:25:60:00:3c:76:42:69:81:81:83:4c: c3:ff:c7:cd:b0:0f:13:a5:b2:cf:b2:00:13:17:c2:47:d8:35: bf:32:6d:b7:b9:0d:b1:17:36:cd:be:3d:7e:f9:3d:b4:f8:50: c7:6a:15:2d:f5:75:7f:8f:e4:7c:39:77:fe:6d:24:14:c0:a0: d3:ac:66:f3:cd:de:23:47:f9:3f:bb:2f:47:4c:76:39:f2:a6: 1f:e6:18:2c:88:cf:e0:46:2f:c4:81:18:b0:0f:39:f0:32:29: 5f:c7:e7:d8:d0:37:58:a0:a5:b1:be:d4:6d:bc:b7:e1:3e:a7: b9:09:c9:da:3c:66:61:39:71:08:84:8e:57:12:26:cd:2b:c0: 1b:be:e4:0e:11:1f:55:72:f5:28:d5:9a:2b:1b:91:ec:f3:c4: 3a:61:25:01:2d:d9:26:0a:f4:85:a5:74:72:7d:99:63:3d:82: 58:51:2b:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLfssgwQb4NKD9cXRldT/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiNjMxMzlhMWY0Zjg4YzMwY2VlMjIxYzkxNDZhMzZkYjU1 NGZmNzAwHhcNMjUxMjA2MDEwMTUzWhcNMjUxMjA3MDEwMTUzWjAzMTEwLwYDVQQD Eyg5YTY2MzJiNmQ3MTc3ZTVlZWNjYmM5NTk1OTI2ODA0NDBiM2Y2MDE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtKIDOOUm3MBIvJm1m2l7SxGyOnqZ yebJgziLtyI6dgXUxhNNNUZlmch5gd4zQ7AiiLFHwX13SAjVJvGC4k6+sQWuMykB gce1P177qiX+mKmUWh9W6rDT/lzHoIepoPLAsA2Ezet8TGIQvpcGlXcjwNAWZmHj iwl8xZssU760Bj1qIZ5OOjAHW8bpfmkKNDACImtrH0oJI2APCRMHaGShPl5n6WHH CDp4mLLH4/MpsjG5QgsWSofaxQfi5N6Ash7yQjRTfHzaF/+S52emUUAQtQrW0yMJ 0n0B99qQlwqvckWd9eKOjKogOL9pC/TxyQsDMphMsBQVrd/Xxm4jk6TwQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJpmMrbXF35e7MvJWVkmgEQLP2AVMB8GA1UdIwQY MBaAFDtjE5ofT4jDDO4iHJFGo221VP9wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzJNVG1oOVBpTU1NN2lJY2tVYWpiYlZVXzNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wMjY5YzUtMjY4Yy00NWU5LTgwNjct MGY3YTQwYjVmNmYzLzEvTzJNVG1oOVBpTU1NN2lJY2tVYWpiYlZVXzNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS8wMjY5YzUtMjY4Yy00NWU5LTgwNjctMGY3YTQwYjVmNmYz LzEvTzJNVG1oOVBpTU1NN2lJY2tVYWpiYlZVXzNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQVzxPGUo /JweCtrMdv8i46vFZ9TijLB4XT4k15DZY3hUoF9GAa3q8pvpp5EuXYBHVIvhgK1a 9s+Ve7tZOmFZt+HdZbr+gXsfCQ5M0dxmnCVgADx2QmmBgYNMw//HzbAPE6Wyz7IA ExfCR9g1vzJtt7kNsRc2zb49fvk9tPhQx2oVLfV1f4/kfDl3/m0kFMCg06xm883e I0f5P7svR0x2OfKmH+YYLIjP4EYvxIEYsA858DIpX8fn2NA3WKClsb7Ubby34T6n uQnJ2jxmYTlxCISOVxImzSvAG77kDhEfVXL1KNWaKxuR7PPEOmElAS3ZJgr0haV0 cn2ZYz2CWFErmA== -----END CERTIFICATE-----Generated at Sat Dec 6 06:57:43 2025 by rpki-client