This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.mft File: OpL12TZ1K68tDfcTKZSZzs-p9I0.mft (raw, json) Hash identifier: 9sIkf5XKxp1DH8Wv62wThR3Lmytnh88kxkusuEMD7NM= Subject key identifier: 08:A7:4D:54:BB:24:E2:05:64:92:E8:20:5A:FA:73:BD:FF:C6:D2:5D Authority key identifier: 3A:92:F5:D9:36:75:2B:AF:2D:0D:F7:13:29:94:99:CE:CF:A9:F4:8D Certificate issuer: /CN=3a92f5d936752baf2d0df713299499cecfa9f48d Certificate serial: 019B473876551F2C8D9610145D623E856624 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpL12TZ1K68tDfcTKZSZzs-p9I0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.mft Manifest number: 1794 Signing time: Mon 22 Dec 2025 18:00:41 +0000 Manifest this update: Mon 22 Dec 2025 18:00:41 +0000 Manifest next update: Tue 23 Dec 2025 18:00:41 +0000 Files and hashes: 1: NJaotZFnvbCZC6dKCr_vEzEYn6M.roa (hash: dqeYK6phWm8PSJhw0mmBUevUz1KleMZYBxhoQuo4/mw=) 2: OpL12TZ1K68tDfcTKZSZzs-p9I0.crl (hash: izTjv7epKoJ2jaRA+wFJHYwPRpSLeOGYtsXt8xiyCEI=) 3: abyvfDmy4Q3zVDJIfxfSkrtZdLo.roa (hash: IZm94vPLNr133XeI56Dl5DQUBKwgG1pbFRgf8ws+6Pw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.crl rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.mft rsync://rpki.ripe.net/repository/DEFAULT/OpL12TZ1K68tDfcTKZSZzs-p9I0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 15:30:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:47:38:76:55:1f:2c:8d:96:10:14:5d:62:3e:85:66:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a92f5d936752baf2d0df713299499cecfa9f48d Validity Not Before: Dec 22 18:00:41 2025 GMT Not After : Dec 23 18:00:41 2025 GMT Subject: CN=08a74d54bb24e2056492e8205afa73bdffc6d25d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:96:85:57:cf:eb:fd:4d:8d:18:d6:1f:da:f3: 4c:6c:cd:59:12:a6:64:2f:5e:de:8a:50:d2:e8:f3: 6c:46:0e:4c:de:68:61:fb:5d:dd:48:73:74:ac:7c: 5a:bc:c1:8a:8d:fc:15:9f:b0:44:03:2a:c3:3a:6a: 0f:0c:be:6f:95:3b:48:52:39:84:97:33:05:3a:a3: 2f:ec:37:5f:2a:78:51:bc:c3:b0:32:c3:5a:2b:e5: c4:1c:8e:97:21:f4:d0:3b:e9:cc:54:51:c2:f4:e2: 7c:49:da:51:b3:f3:50:b9:e8:87:bb:1b:c4:de:a2: cf:04:d3:3b:e8:16:e1:f5:58:41:ec:3b:9f:20:01: a7:52:67:bd:ac:e3:d5:30:dd:dd:df:e2:42:2a:41: 4a:7a:35:21:10:b4:00:4e:5a:9c:9a:1b:6c:d2:9c: 4c:95:f4:d9:d0:88:14:6d:10:81:c5:ee:39:73:22: df:a8:c5:46:fe:ff:f2:21:25:ae:8d:79:1d:a2:02: 9e:d9:7c:5c:cb:13:e4:8e:22:b0:48:b4:44:78:3f: 61:09:6b:5e:83:92:d5:5a:d4:69:99:d6:d8:9d:75: 3c:52:3e:ad:44:df:92:b4:e3:c3:85:39:25:a7:bd: f5:6c:93:ba:83:5e:5b:87:c6:f1:71:48:a9:5a:fd: e8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A7:4D:54:BB:24:E2:05:64:92:E8:20:5A:FA:73:BD:FF:C6:D2:5D X509v3 Authority Key Identifier: keyid:3A:92:F5:D9:36:75:2B:AF:2D:0D:F7:13:29:94:99:CE:CF:A9:F4:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpL12TZ1K68tDfcTKZSZzs-p9I0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:52:9e:61:eb:3f:f2:29:f1:e7:2d:e6:19:96:30:78:5c:52: c3:21:f0:07:89:29:6a:93:a8:87:92:17:15:33:4a:fc:46:83: f2:8e:20:48:47:e9:d6:a3:6a:86:26:b5:4d:0f:72:17:2d:0a: 32:bd:e0:1b:1a:a6:97:c5:8b:38:cc:2e:bf:06:ed:e5:c2:2e: 9d:8c:93:e0:21:c8:ba:1d:70:a0:da:11:61:f1:c2:da:8a:22: 74:9f:59:de:c4:32:d3:af:63:f6:a2:70:80:48:69:ec:94:2f: 67:b6:41:4b:3e:22:21:35:3e:30:77:84:28:a5:9f:af:63:03: a4:42:b6:ae:72:63:f0:9a:31:31:77:d2:48:e9:90:0c:08:67: 0c:05:0b:1e:fb:ff:68:5a:0d:fd:1f:c0:1d:b6:c6:be:89:90: 78:d9:5e:22:10:e5:dc:76:4c:3a:45:14:38:94:4e:08:70:1d: df:ba:8d:4f:b7:eb:80:a9:cd:d6:3d:66:d6:40:40:9c:dd:72: 8e:cc:db:6d:80:db:9c:52:5a:ff:30:42:b7:ef:0d:49:b4:7c: 8b:2e:0e:f5:b3:eb:65:7d:43:f7:39:50:cc:f7:e0:de:ba:22: f6:1b:dd:7f:21:39:09:1f:35:d0:fe:62:a0:69:9e:02:b6:bf: 8e:b4:3d:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtHOHZVHyyNlhAUXWI+hWYkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhOTJmNWQ5MzY3NTJiYWYyZDBkZjcxMzI5OTQ5OWNlY2Zh OWY0OGQwHhcNMjUxMjIyMTgwMDQxWhcNMjUxMjIzMTgwMDQxWjAzMTEwLwYDVQQD EygwOGE3NGQ1NGJiMjRlMjA1NjQ5MmU4MjA1YWZhNzNiZGZmYzZkMjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2paFV8/r/U2NGNYf2vNMbM1ZEqZk L17eilDS6PNsRg5M3mhh+13dSHN0rHxavMGKjfwVn7BEAyrDOmoPDL5vlTtIUjmE lzMFOqMv7DdfKnhRvMOwMsNaK+XEHI6XIfTQO+nMVFHC9OJ8SdpRs/NQueiHuxvE 3qLPBNM76Bbh9VhB7DufIAGnUme9rOPVMN3d3+JCKkFKejUhELQATlqcmhts0pxM lfTZ0IgUbRCBxe45cyLfqMVG/v/yISWujXkdogKe2XxcyxPkjiKwSLREeD9hCWte g5LVWtRpmdbYnXU8Uj6tRN+StOPDhTklp731bJO6g15bh8bxcUipWv3okwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAinTVS7JOIFZJLoIFr6c73/xtJdMB8GA1UdIwQY MBaAFDqS9dk2dSuvLQ33EymUmc7PqfSNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3BMMTJUWjFLNjh0RGZjVEtaU1p6cy1wOUkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83Y2QxNTctYzU4Zi00Y2I5LTgyNTIt MTY5NmIyNDZjZDUwLzEvT3BMMTJUWjFLNjh0RGZjVEtaU1p6cy1wOUkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS83Y2QxNTctYzU4Zi00Y2I5LTgyNTItMTY5NmIyNDZjZDUw LzEvT3BMMTJUWjFLNjh0RGZjVEtaU1p6cy1wOUkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATVKeYes/ 8inx5y3mGZYweFxSwyHwB4kpapOoh5IXFTNK/EaD8o4gSEfp1qNqhia1TQ9yFy0K Mr3gGxqml8WLOMwuvwbt5cIunYyT4CHIuh1woNoRYfHC2ooidJ9Z3sQy069j9qJw gEhp7JQvZ7ZBSz4iITU+MHeEKKWfr2MDpEK2rnJj8JoxMXfSSOmQDAhnDAULHvv/ aFoN/R/AHbbGvomQeNleIhDl3HZMOkUUOJROCHAd37qNT7frgKnN1j1m1kBAnN1y jszbbYDbnFJa/zBCt+8NSbR8iy4O9bPrZX1D9zlQzPfg3roi9hvdfyE5CR810P5i oGmeAra/jrQ9EQ== -----END CERTIFICATE-----Generated at Mon Dec 22 20:44:43 2025 by rpki-client