This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft File: OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft (raw, json) Hash identifier: jOfdh67PxkXYAjlkOxJ4SdpRHRpW4SsOkBCn1C+0xi8= Subject key identifier: 1C:DF:5D:60:42:EF:B6:81:6D:3C:CB:C1:43:5A:C1:93:2D:9C:B8:D6 Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26 Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26 Certificate serial: 019B495DA1FBF34DE32772E5A9921160AA91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft Manifest number: 12A5 Signing time: Tue 23 Dec 2025 04:00:31 +0000 Manifest this update: Tue 23 Dec 2025 04:00:31 +0000 Manifest next update: Wed 24 Dec 2025 04:00:31 +0000 Files and hashes: 1: 4iN5nDTRDVV1CTGuGlGWY0Ybm9Y.roa (hash: EMh2tz4i0xV1ZX0fHy8PWh0LdLWVBXB/z2TGKHCydUo=) 2: CBZTZIxMDDoFTLtkXWpJNkPAyZA.roa (hash: cXql8AeIQAC8BMZkK4SJLIjChz+/Hte6gi3o/bh7lrE=) 3: OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl (hash: H9D1QYGaKacJEbH2F9kYPv+nwXb1yBbJbb8/2ipwV/I=) 4: TyU9koBZ-FfwUjRzFMgXymhIcdc.roa (hash: PuygGCOb3s6Y5+fEOZlXXly4EGutd8BVkQrZLC3GUys=) 5: rYkWvcE_3GQZ3jkaDTUiqjj986g.roa (hash: FOkCN5CJZuWhjjVzqhCAbEwhLO4+xpDqIO3h/0CpxnA=) 6: xvMwGEntPrsPSijtn7qckfPF1Lw.roa (hash: cfgqt0GeV7LUHA50FIbHHM6KEXg5Xmqps/DGbUwBUAM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:49:5d:a1:fb:f3:4d:e3:27:72:e5:a9:92:11:60:aa:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26 Validity Not Before: Dec 23 04:00:31 2025 GMT Not After : Dec 24 04:00:31 2025 GMT Subject: CN=1cdf5d6042efb6816d3ccbc1435ac1932d9cb8d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:4e:d9:f6:dd:7d:ca:bf:20:c7:e5:dc:64:25: 35:39:91:8f:3f:8c:93:c8:22:de:92:d7:b1:f9:c8: e3:8f:a8:fe:ec:90:3d:c2:39:ba:79:2a:62:eb:70: dd:d3:2c:5c:f9:25:b4:3c:d2:55:7d:4a:4f:04:f3: 09:54:b2:21:ce:ab:0f:e2:b7:58:6c:18:eb:6d:2b: 52:30:a7:db:df:ab:a5:b9:ca:0f:61:79:e2:49:a9: f2:c2:3b:a7:de:31:06:14:dd:a8:89:44:78:f9:f7: 66:46:52:54:35:a4:af:de:d2:1f:bd:2f:d8:6b:ed: 26:bc:b0:c6:e8:fa:ab:9e:b3:54:8c:42:af:d7:f2: bc:29:b3:71:6f:50:fe:41:25:0a:d8:d1:b8:30:84: 3d:e2:f2:20:d7:2b:be:ec:27:bb:c0:a1:58:0b:c1: c8:3d:6d:31:1a:ed:2b:75:17:af:e4:3a:05:fa:13: 85:68:d8:73:3b:8f:2a:80:88:46:02:ac:02:5d:74: fc:17:95:b4:d5:9b:3b:c3:6d:f7:fa:71:8c:37:aa: bd:8b:b0:8c:82:cd:25:41:33:ae:b5:ce:ec:3c:8b: 12:a7:f6:11:39:71:b7:d9:22:f7:b3:09:22:78:1e: 2a:38:8e:95:7d:48:9d:4e:dd:d3:9d:59:db:0c:40: 19:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:DF:5D:60:42:EF:B6:81:6D:3C:CB:C1:43:5A:C1:93:2D:9C:B8:D6 X509v3 Authority Key Identifier: keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:92:96:3f:32:f5:20:f7:56:53:5f:16:16:df:27:9a:44:6b: 8f:8e:ac:d6:fa:02:a3:b9:01:d9:72:cc:8d:eb:e5:90:40:2a: a0:f5:19:27:d5:b5:3e:7d:0a:3b:e4:e6:b0:ac:4b:27:85:7a: 03:95:cd:4e:9a:aa:bb:2c:f8:80:3b:29:8d:82:8b:2d:f3:48: 55:8c:d0:cf:aa:c6:f6:fc:82:4d:23:3c:14:e6:80:d9:70:90: 10:f9:58:b1:6b:eb:7c:fe:dc:56:ee:4d:59:5a:e4:97:16:de: be:65:d0:25:a7:d7:2a:11:8f:8f:e7:0d:e8:c5:7e:5c:b8:0c: 84:f1:ad:3a:a3:80:44:c1:f0:cf:3d:d2:39:73:2c:f4:1c:cc: 6f:cc:20:85:4f:42:59:66:06:4c:60:97:44:cf:5f:1e:62:2f: 8f:27:b4:79:32:c8:cb:fd:75:fd:a1:ee:b4:ee:12:f7:3a:ea: 7d:5b:f8:a7:9d:1c:e3:44:23:54:fa:e7:a5:96:6d:da:f3:3a: 61:15:40:20:24:06:6d:d2:f5:22:0c:21:06:08:a9:d8:a1:1d: 8d:f5:0e:3c:3f:c7:7e:31:db:58:87:65:cb:19:25:cf:db:14: 51:66:88:3d:3d:f7:5c:c4:d2:72:a9:d3:a7:ee:d0:d3:03:fa: 3d:15:9b:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtJXaH7803jJ3LlqZIRYKqRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZDY1MjE2ODEyZWQyNGZkMWM3MTk4NzFhNTlhOTcxZGVj MzBhMjYwHhcNMjUxMjIzMDQwMDMxWhcNMjUxMjI0MDQwMDMxWjAzMTEwLwYDVQQD EygxY2RmNWQ2MDQyZWZiNjgxNmQzY2NiYzE0MzVhYzE5MzJkOWNiOGQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnE7Z9t19yr8gx+XcZCU1OZGPP4yT yCLektex+cjjj6j+7JA9wjm6eSpi63Dd0yxc+SW0PNJVfUpPBPMJVLIhzqsP4rdY bBjrbStSMKfb36ulucoPYXniSanywjun3jEGFN2oiUR4+fdmRlJUNaSv3tIfvS/Y a+0mvLDG6PqrnrNUjEKv1/K8KbNxb1D+QSUK2NG4MIQ94vIg1yu+7Ce7wKFYC8HI PW0xGu0rdRev5DoF+hOFaNhzO48qgIhGAqwCXXT8F5W01Zs7w233+nGMN6q9i7CM gs0lQTOutc7sPIsSp/YROXG32SL3swkieB4qOI6VfUidTt3TnVnbDEAZ4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBzfXWBC77aBbTzLwUNawZMtnLjWMB8GA1UdIwQY MBaAFDrWUhaBLtJP0ccZhxpZqXHewwomMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3RaU0ZvRXUwa19SeHhtSEdsbXBjZDdEQ2lZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9iOGNhZTQtYjVhZi00MzgwLTk4MTct NDY1MzhjYTUzODNjLzEvT3RaU0ZvRXUwa19SeHhtSEdsbXBjZDdEQ2lZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS9iOGNhZTQtYjVhZi00MzgwLTk4MTctNDY1MzhjYTUzODNj LzEvT3RaU0ZvRXUwa19SeHhtSEdsbXBjZDdEQ2lZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeJKWPzL1 IPdWU18WFt8nmkRrj46s1voCo7kB2XLMjevlkEAqoPUZJ9W1Pn0KO+TmsKxLJ4V6 A5XNTpqquyz4gDspjYKLLfNIVYzQz6rG9vyCTSM8FOaA2XCQEPlYsWvrfP7cVu5N WVrklxbevmXQJafXKhGPj+cN6MV+XLgMhPGtOqOARMHwzz3SOXMs9BzMb8wghU9C WWYGTGCXRM9fHmIvjye0eTLIy/11/aHutO4S9zrqfVv4p50c40QjVPrnpZZt2vM6 YRVAICQGbdL1IgwhBgip2KEdjfUOPD/HfjHbWIdlyxklz9sUUWaIPT33XMTScqnT p+7Q0wP6PRWbLw== -----END CERTIFICATE-----Generated at Tue Dec 23 09:42:00 2025 by rpki-client