This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft File: Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft (raw, json) Hash identifier: c/n2+ASjXBWU8wOYrVQr21x+CjWut7oaDAWzFs0+WpM= Subject key identifier: 39:9E:80:A2:59:8C:13:7E:7E:98:99:D7:8B:F7:4E:E4:85:3E:F1:62 Authority key identifier: 3A:DF:D4:8A:97:72:0C:D8:54:02:9D:DB:26:6C:51:F9:1F:07:67:0D Certificate issuer: /CN=3adfd48a97720cd854029ddb266c51f91f07670d Certificate serial: 019B38D8602CE06D8D2C7BC12B68124CCF3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft Manifest number: 0D86 Signing time: Fri 19 Dec 2025 23:01:02 +0000 Manifest this update: Fri 19 Dec 2025 23:01:02 +0000 Manifest next update: Sat 20 Dec 2025 23:01:02 +0000 Files and hashes: 1: Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl (hash: ghYhAeEDHRx0E+l1S00L3y6Nl6xheGgwKRbbV8T0eNA=) 2: vm_KzfoiY4cVzVJi9fJVQUcZlJs.roa (hash: lyBGyAokiSjopS7O45WDbuUZk8SIrQSCpnYKsmtEQ5s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 23:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:d8:60:2c:e0:6d:8d:2c:7b:c1:2b:68:12:4c:cf:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3adfd48a97720cd854029ddb266c51f91f07670d Validity Not Before: Dec 19 23:01:02 2025 GMT Not After : Dec 20 23:01:02 2025 GMT Subject: CN=399e80a2598c137e7e9899d78bf74ee4853ef162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:05:49:da:69:cf:05:6e:12:d0:1f:79:e3:0d: 09:76:39:f0:1f:6d:6d:3f:34:c9:92:94:15:ae:38: 60:cb:48:51:f6:ca:4b:1d:64:ec:28:9f:1a:ef:58: a7:b9:d5:ef:bc:8e:e7:03:e4:a7:0c:d8:df:7b:4e: 19:92:42:ec:1b:e7:bd:bf:53:cd:c3:2f:2a:d8:52: 31:76:bf:85:a5:54:b2:b6:32:50:09:02:07:8a:76: 72:55:26:7d:01:ce:58:2c:d2:03:51:ea:41:d6:26: 48:47:a7:a3:96:ae:85:cb:ac:ad:1a:f9:25:ce:17: c3:bd:97:d5:0b:20:65:ad:f4:1b:10:2c:0e:0b:96: 03:db:74:6e:07:94:14:49:e3:46:79:90:72:1d:e3: e7:b1:17:ca:0e:de:5e:dc:ab:09:4f:8d:6f:5b:7d: 87:33:c3:80:85:5a:1c:32:36:02:17:a5:f4:75:1f: 97:59:5e:13:81:3e:75:ff:68:1b:6d:6e:50:be:5f: 8f:45:9b:d5:9d:a4:fd:6f:c5:9f:d2:07:92:d6:c6: 97:67:b4:c5:ff:69:82:44:bd:44:61:f8:a9:9a:d9: ee:d6:9b:bf:68:54:f6:ff:9d:79:6c:fc:0e:36:4f: 19:ab:21:87:b8:03:29:57:06:80:27:17:f1:6b:8c: be:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:9E:80:A2:59:8C:13:7E:7E:98:99:D7:8B:F7:4E:E4:85:3E:F1:62 X509v3 Authority Key Identifier: keyid:3A:DF:D4:8A:97:72:0C:D8:54:02:9D:DB:26:6C:51:F9:1F:07:67:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:8d:27:3f:4f:ba:f3:fc:8f:24:08:44:3c:a1:88:30:1f:f3: 62:33:3d:d4:18:e2:87:2d:c5:38:d2:8a:d5:bf:0f:cd:b0:a9: 77:6f:84:91:de:d0:69:fa:82:05:09:a3:ab:41:2b:f2:8f:b4: f5:08:65:1a:76:99:07:34:31:bb:4f:d3:0b:32:43:e4:69:51: 21:87:77:d5:9c:bd:e2:16:dd:08:9d:02:41:0f:13:4a:01:8c: 1d:92:18:d2:56:7b:42:5c:4b:10:1c:95:de:08:02:d8:45:c5: 92:05:0e:ce:51:6f:06:20:5b:03:43:cc:f2:59:7e:33:69:e7: 62:b3:bc:76:61:12:07:05:ae:26:4f:51:b6:3d:df:c8:06:5f: c2:7c:6a:5f:62:f3:e9:23:28:79:49:55:17:60:26:1d:82:3f: a0:a0:b2:ff:ce:7d:8f:6b:0d:fa:96:62:ec:7d:f4:1b:7b:14: 58:d7:bc:b9:e9:b1:e2:1e:94:36:a0:82:58:d7:64:7d:42:13: 53:79:9e:71:1a:59:fc:01:97:25:c0:c5:1f:27:37:79:46:18: b4:dd:90:13:d6:d6:06:1f:4b:f1:26:16:8b:2c:77:4d:df:b0: 88:c1:23:0c:88:0c:fa:e1:b3:5d:d1:bc:9e:06:a2:a3:b4:59: 9d:e0:33:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs42GAs4G2NLHvBK2gSTM88MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZGZkNDhhOTc3MjBjZDg1NDAyOWRkYjI2NmM1MWY5MWYw NzY3MGQwHhcNMjUxMjE5MjMwMTAyWhcNMjUxMjIwMjMwMTAyWjAzMTEwLwYDVQQD EygzOTllODBhMjU5OGMxMzdlN2U5ODk5ZDc4YmY3NGVlNDg1M2VmMTYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArAVJ2mnPBW4S0B954w0JdjnwH21t PzTJkpQVrjhgy0hR9spLHWTsKJ8a71inudXvvI7nA+SnDNjfe04ZkkLsG+e9v1PN wy8q2FIxdr+FpVSytjJQCQIHinZyVSZ9Ac5YLNIDUepB1iZIR6ejlq6Fy6ytGvkl zhfDvZfVCyBlrfQbECwOC5YD23RuB5QUSeNGeZByHePnsRfKDt5e3KsJT41vW32H M8OAhVocMjYCF6X0dR+XWV4TgT51/2gbbW5Qvl+PRZvVnaT9b8Wf0geS1saXZ7TF /2mCRL1EYfipmtnu1pu/aFT2/515bPwONk8ZqyGHuAMpVwaAJxfxa4y+BQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDmegKJZjBN+fpiZ14v3TuSFPvFiMB8GA1UdIwQY MBaAFDrf1IqXcgzYVAKd2yZsUfkfB2cNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3RfVWlwZHlETmhVQXAzYkpteFItUjhIWncwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9hMmViNWEtMDk2Mi00NWJjLWE2Mzct ZjAxMDRkZGYyODExLzEvT3RfVWlwZHlETmhVQXAzYkpteFItUjhIWncwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My9hMmViNWEtMDk2Mi00NWJjLWE2MzctZjAxMDRkZGYyODEx LzEvT3RfVWlwZHlETmhVQXAzYkpteFItUjhIWncwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABo0nP0+6 8/yPJAhEPKGIMB/zYjM91Bjihy3FONKK1b8PzbCpd2+Ekd7QafqCBQmjq0Er8o+0 9QhlGnaZBzQxu0/TCzJD5GlRIYd31Zy94hbdCJ0CQQ8TSgGMHZIY0lZ7QlxLEByV 3ggC2EXFkgUOzlFvBiBbA0PM8ll+M2nnYrO8dmESBwWuJk9Rtj3fyAZfwnxqX2Lz 6SMoeUlVF2AmHYI/oKCy/859j2sN+pZi7H30G3sUWNe8uemx4h6UNqCCWNdkfUIT U3mecRpZ/AGXJcDFHyc3eUYYtN2QE9bWBh9L8SYWiyx3Td+wiMEjDIgM+uGzXdG8 ngaio7RZneAzPg== -----END CERTIFICATE-----Generated at Sat Dec 20 03:29:52 2025 by rpki-client