This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft File: OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft (raw, json) Hash identifier: Atg+Vab9tvqMzh220dLiNKYeFU5ePU4uztSv0WA1JGc= Subject key identifier: 6E:B8:31:89:81:15:76:40:C6:7A:DC:3E:BE:49:70:C6:85:15:66:77 Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26 Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26 Certificate serial: 019B1B04A691785A799C9F8A99280B2EA745 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft Manifest number: 128D Signing time: Sun 14 Dec 2025 04:00:48 +0000 Manifest this update: Sun 14 Dec 2025 04:00:48 +0000 Manifest next update: Mon 15 Dec 2025 04:00:48 +0000 Files and hashes: 1: 4iN5nDTRDVV1CTGuGlGWY0Ybm9Y.roa (hash: EMh2tz4i0xV1ZX0fHy8PWh0LdLWVBXB/z2TGKHCydUo=) 2: CBZTZIxMDDoFTLtkXWpJNkPAyZA.roa (hash: cXql8AeIQAC8BMZkK4SJLIjChz+/Hte6gi3o/bh7lrE=) 3: OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl (hash: DEvbEcBqNwxTeA6/tDI5UEhbmRaoGP4pcULWSSv4FL0=) 4: TyU9koBZ-FfwUjRzFMgXymhIcdc.roa (hash: PuygGCOb3s6Y5+fEOZlXXly4EGutd8BVkQrZLC3GUys=) 5: rYkWvcE_3GQZ3jkaDTUiqjj986g.roa (hash: FOkCN5CJZuWhjjVzqhCAbEwhLO4+xpDqIO3h/0CpxnA=) 6: xvMwGEntPrsPSijtn7qckfPF1Lw.roa (hash: cfgqt0GeV7LUHA50FIbHHM6KEXg5Xmqps/DGbUwBUAM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:04:a6:91:78:5a:79:9c:9f:8a:99:28:0b:2e:a7:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26 Validity Not Before: Dec 14 04:00:48 2025 GMT Not After : Dec 15 04:00:48 2025 GMT Subject: CN=6eb8318981157640c67adc3ebe4970c685156677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f4:8f:31:c5:30:ab:34:3d:15:12:71:67:7f: b0:b6:f5:10:f7:26:9e:59:24:14:05:7b:62:06:79: 10:77:1a:3c:56:1c:6f:cf:c6:9e:b4:97:fb:35:c5: 26:4d:9e:40:18:ba:50:1b:f9:8a:5a:43:61:a2:b4: b3:02:54:f3:e4:e2:91:f7:13:98:e1:06:38:0a:78: 95:af:b3:ea:eb:22:24:1b:89:1c:1b:68:7d:16:58: cc:d3:26:55:71:88:7f:80:68:a6:cd:53:ad:1c:9b: b6:74:56:38:24:34:b7:7d:de:6f:7d:33:df:6a:be: 91:a6:2d:d4:cd:01:91:0f:e5:22:98:a7:73:ea:68: 7e:91:ad:36:97:2d:63:ab:9b:1b:cb:b8:7d:d0:a2: 95:2a:1f:80:9d:a6:77:7d:7a:f2:bb:2d:46:5f:92: fa:19:36:c3:86:8c:45:b8:0c:9a:61:31:de:2b:67: d6:e1:c4:1b:c3:85:47:75:80:a0:20:19:ad:34:32: e3:26:a2:52:85:47:2c:e2:26:1f:61:2d:d4:23:8d: e0:59:a4:e4:88:3c:ab:49:82:5e:96:33:c0:8f:27: d8:0a:28:44:0c:3b:a8:12:8c:9e:3c:8e:68:b6:90: 51:8d:3b:e0:3e:69:50:8c:dc:31:c4:a4:ab:e2:cb: b6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B8:31:89:81:15:76:40:C6:7A:DC:3E:BE:49:70:C6:85:15:66:77 X509v3 Authority Key Identifier: keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:06:67:2b:c3:26:b2:cb:2f:20:27:29:f6:46:5a:79:00:b5: 37:1f:8b:84:83:74:55:9a:d1:74:e1:f3:3c:19:54:24:ff:0f: 43:34:66:f0:2c:c5:e1:1d:91:1d:50:91:82:ed:15:b0:ee:65: ec:f3:83:40:ce:a4:26:fb:6b:c0:27:bb:a9:60:fc:99:b7:7c: 11:48:a9:c4:26:d2:ca:5c:d9:3a:a5:87:4a:10:cd:e1:5b:e6: bf:20:74:3e:f2:d0:0b:2e:df:92:56:36:11:b6:aa:17:a1:cd: 1a:02:e0:f7:7d:7d:6c:13:29:bf:84:30:a8:ed:12:82:8e:27: 00:8b:de:b6:58:2b:4a:ac:25:05:55:b0:7c:c6:08:38:41:e2: 9d:41:ff:52:cf:c7:86:be:b6:c4:4c:3e:46:58:28:0c:ef:5b: e5:52:11:dd:0c:64:72:1e:61:50:de:3b:e9:0d:ea:e6:15:41: 85:c4:05:b8:7e:e7:21:7c:1d:47:66:1c:60:4f:19:9d:29:ee: 59:7c:2b:1e:ec:23:b4:4e:9a:b9:05:e9:51:e6:7e:9d:81:4c: b8:c8:b9:61:6f:ec:29:36:5e:b9:63:f2:9e:78:58:94:f9:c9: 68:4d:f5:7b:c2:d3:5e:35:ca:79:1b:73:b6:92:b7:f2:ef:28: 51:be:2a:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsbBKaReFp5nJ+KmSgLLqdFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZDY1MjE2ODEyZWQyNGZkMWM3MTk4NzFhNTlhOTcxZGVj MzBhMjYwHhcNMjUxMjE0MDQwMDQ4WhcNMjUxMjE1MDQwMDQ4WjAzMTEwLwYDVQQD Eyg2ZWI4MzE4OTgxMTU3NjQwYzY3YWRjM2ViZTQ5NzBjNjg1MTU2Njc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAofSPMcUwqzQ9FRJxZ3+wtvUQ9yae WSQUBXtiBnkQdxo8Vhxvz8aetJf7NcUmTZ5AGLpQG/mKWkNhorSzAlTz5OKR9xOY 4QY4CniVr7Pq6yIkG4kcG2h9FljM0yZVcYh/gGimzVOtHJu2dFY4JDS3fd5vfTPf ar6Rpi3UzQGRD+UimKdz6mh+ka02ly1jq5sby7h90KKVKh+AnaZ3fXryuy1GX5L6 GTbDhoxFuAyaYTHeK2fW4cQbw4VHdYCgIBmtNDLjJqJShUcs4iYfYS3UI43gWaTk iDyrSYJeljPAjyfYCihEDDuoEoyePI5otpBRjTvgPmlQjNwxxKSr4su2vQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG64MYmBFXZAxnrcPr5JcMaFFWZ3MB8GA1UdIwQY MBaAFDrWUhaBLtJP0ccZhxpZqXHewwomMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3RaU0ZvRXUwa19SeHhtSEdsbXBjZDdEQ2lZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9iOGNhZTQtYjVhZi00MzgwLTk4MTct NDY1MzhjYTUzODNjLzEvT3RaU0ZvRXUwa19SeHhtSEdsbXBjZDdEQ2lZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS9iOGNhZTQtYjVhZi00MzgwLTk4MTctNDY1MzhjYTUzODNj LzEvT3RaU0ZvRXUwa19SeHhtSEdsbXBjZDdEQ2lZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAewZnK8Mm sssvICcp9kZaeQC1Nx+LhIN0VZrRdOHzPBlUJP8PQzRm8CzF4R2RHVCRgu0VsO5l 7PODQM6kJvtrwCe7qWD8mbd8EUipxCbSylzZOqWHShDN4VvmvyB0PvLQCy7fklY2 EbaqF6HNGgLg9319bBMpv4QwqO0Sgo4nAIvetlgrSqwlBVWwfMYIOEHinUH/Us/H hr62xEw+RlgoDO9b5VIR3Qxkch5hUN476Q3q5hVBhcQFuH7nIXwdR2YcYE8ZnSnu WXwrHuwjtE6auQXpUeZ+nYFMuMi5YW/sKTZeuWPynnhYlPnJaE31e8LTXjXKeRtz tpK38u8oUb4qYQ== -----END CERTIFICATE-----Generated at Sun Dec 14 08:45:40 2025 by rpki-client