This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft File: ovl077UOcpyeAVqLwrbCsGGd_IQ.mft (raw, json) Hash identifier: toR6PQR1+xahRsbr+Fu+33W+4FR+UDR33kW21b1Sa1A= Subject key identifier: 62:8E:FC:A8:9B:D0:3B:75:7C:31:51:36:C7:DD:3A:4F:C8:27:76:4A Authority key identifier: A2:F9:74:EF:B5:0E:72:9C:9E:01:5A:8B:C2:B6:C2:B0:61:9D:FC:84 Certificate issuer: /CN=a2f974efb50e729c9e015a8bc2b6c2b0619dfc84 Certificate serial: 019B5A1B16301A12B97AA1E9BAA2FCAC6663 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft Manifest number: 0C62 Signing time: Fri 26 Dec 2025 10:01:23 +0000 Manifest this update: Fri 26 Dec 2025 10:01:23 +0000 Manifest next update: Sat 27 Dec 2025 10:01:23 +0000 Files and hashes: 1: Uk_aanYMRxowJq16GMNyhbsFOEw.roa (hash: creuRsSl8nSakc/hCQHakSFNIaRZLii8X1gMM9BUYWY=) 2: ovl077UOcpyeAVqLwrbCsGGd_IQ.crl (hash: Qvu9Xnu83Y3b3KXNR6Yu7hVAJp+ng9wMT6EmbD1KcEY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.crl rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:1b:16:30:1a:12:b9:7a:a1:e9:ba:a2:fc:ac:66:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2f974efb50e729c9e015a8bc2b6c2b0619dfc84 Validity Not Before: Dec 26 10:01:23 2025 GMT Not After : Dec 27 10:01:23 2025 GMT Subject: CN=628efca89bd03b757c315136c7dd3a4fc827764a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5b:e2:dc:31:93:89:a1:94:05:ca:43:9f:74: f9:90:79:91:a5:7b:38:65:f4:9c:89:a5:a0:82:25: 7d:9c:08:eb:ae:08:17:da:e1:e8:90:49:cb:2a:c5: 8b:28:f7:05:89:e3:23:7a:f4:84:55:ec:36:6b:50: d6:d7:67:cb:4b:71:a6:b5:86:8a:4c:25:01:f4:6b: a8:a8:0c:50:27:fd:60:f9:1f:c0:9a:ce:b6:0c:9b: e1:eb:b1:cf:3d:c0:80:d3:aa:a7:8a:e4:73:1e:91: 10:be:47:81:3a:cb:95:8a:48:93:22:31:e6:19:b7: e1:c7:4a:40:73:2d:03:c6:85:94:13:ce:9b:fa:d3: d5:a3:18:41:c2:12:f9:06:3e:1f:36:67:47:57:d9: 4c:0b:e5:9f:93:7c:b5:03:c9:90:98:5b:1b:d6:11: 32:fc:50:fd:20:b8:fa:ed:55:20:e0:29:c6:9b:34: cb:4e:12:19:11:bb:c1:7a:66:55:b2:bd:34:81:94: 99:71:a3:45:23:1e:92:db:e7:09:48:c0:ce:6d:d8: 10:8b:22:38:51:3e:45:71:c1:7a:06:b4:1d:c2:23: c3:ff:3b:af:ce:49:56:cf:83:95:b2:00:93:f4:95: fe:6f:78:79:c8:08:a3:31:ff:9b:e6:f2:ab:5c:66: 1b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:8E:FC:A8:9B:D0:3B:75:7C:31:51:36:C7:DD:3A:4F:C8:27:76:4A X509v3 Authority Key Identifier: keyid:A2:F9:74:EF:B5:0E:72:9C:9E:01:5A:8B:C2:B6:C2:B0:61:9D:FC:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ovl077UOcpyeAVqLwrbCsGGd_IQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/668345-f5bc-4a3f-b6ff-10df49f65616/1/ovl077UOcpyeAVqLwrbCsGGd_IQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:99:4b:56:96:23:20:1b:68:b3:58:79:8b:24:71:fb:f6:6a: 45:45:05:5a:a6:9a:8c:7c:21:3d:c2:10:3e:02:df:36:fd:61: 6d:7e:20:22:7a:4a:c1:df:35:1d:16:25:32:74:af:a6:a8:96: 7c:fb:79:d3:09:c0:ee:d2:9d:ad:f7:af:9c:71:d0:31:18:56: c2:50:b0:14:ac:61:51:7c:53:15:af:91:8d:c8:5a:1f:93:11: d9:f9:31:45:04:ba:07:70:80:c6:fd:df:fe:99:aa:1e:30:b7: d2:7e:38:af:fc:fe:23:e5:77:9c:80:4b:73:cb:21:bb:b9:2f: 0c:80:23:fb:9f:4b:85:57:33:20:76:00:55:ae:d4:59:50:51: 01:ae:dc:9e:02:d4:1d:03:e4:f4:70:59:41:c9:63:07:a9:89: 64:4d:2a:28:39:cc:b7:38:73:45:4e:1c:c6:b0:00:da:e7:8d: 08:95:f9:80:7b:34:22:91:11:a6:6a:4e:2a:20:a8:9c:7b:4c: 56:88:07:a1:b0:02:37:78:e1:58:fa:7b:34:b7:5d:c8:e1:71: 4f:61:5e:da:fc:5a:d0:1e:6d:1b:9a:9a:2b:47:32:4c:51:4f: 3b:12:33:56:f2:2f:a9:64:fc:72:a6:b5:11:bf:03:e9:40:23: 59:99:f3:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaGxYwGhK5eqHpuqL8rGZjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyZjk3NGVmYjUwZTcyOWM5ZTAxNWE4YmMyYjZjMmIwNjE5 ZGZjODQwHhcNMjUxMjI2MTAwMTIzWhcNMjUxMjI3MTAwMTIzWjAzMTEwLwYDVQQD Eyg2MjhlZmNhODliZDAzYjc1N2MzMTUxMzZjN2RkM2E0ZmM4Mjc3NjRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFvi3DGTiaGUBcpDn3T5kHmRpXs4 ZfSciaWggiV9nAjrrggX2uHokEnLKsWLKPcFieMjevSEVew2a1DW12fLS3GmtYaK TCUB9GuoqAxQJ/1g+R/Ams62DJvh67HPPcCA06qniuRzHpEQvkeBOsuVikiTIjHm Gbfhx0pAcy0DxoWUE86b+tPVoxhBwhL5Bj4fNmdHV9lMC+Wfk3y1A8mQmFsb1hEy /FD9ILj67VUg4CnGmzTLThIZEbvBemZVsr00gZSZcaNFIx6S2+cJSMDObdgQiyI4 UT5FccF6BrQdwiPD/zuvzklWz4OVsgCT9JX+b3h5yAijMf+b5vKrXGYbDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGKO/Kib0Dt1fDFRNsfdOk/IJ3ZKMB8GA1UdIwQY MBaAFKL5dO+1DnKcngFai8K2wrBhnfyEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3ZsMDc3VU9jcHllQVZxTHdyYkNzR0dkX0lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC82NjgzNDUtZjViYy00YTNmLWI2ZmYt MTBkZjQ5ZjY1NjE2LzEvb3ZsMDc3VU9jcHllQVZxTHdyYkNzR0dkX0lRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC82NjgzNDUtZjViYy00YTNmLWI2ZmYtMTBkZjQ5ZjY1NjE2 LzEvb3ZsMDc3VU9jcHllQVZxTHdyYkNzR0dkX0lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ5lLVpYj IBtos1h5iyRx+/ZqRUUFWqaajHwhPcIQPgLfNv1hbX4gInpKwd81HRYlMnSvpqiW fPt50wnA7tKdrfevnHHQMRhWwlCwFKxhUXxTFa+RjchaH5MR2fkxRQS6B3CAxv3f /pmqHjC30n44r/z+I+V3nIBLc8shu7kvDIAj+59LhVczIHYAVa7UWVBRAa7cngLU HQPk9HBZQcljB6mJZE0qKDnMtzhzRU4cxrAA2ueNCJX5gHs0IpERpmpOKiConHtM VogHobACN3jhWPp7NLddyOFxT2Fe2vxa0B5tG5qaK0cyTFFPOxIzVvIvqWT8cqa1 Eb8D6UAjWZnzDA== -----END CERTIFICATE-----Generated at Fri Dec 26 15:46:30 2025 by rpki-client