This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.mft File: OvdxDfit1ku5aI4PRYG-pn5ALGY.mft (raw, json) Hash identifier: AlGSV/QauWRXRthHrcX9wmWxnVrvgtknSjjGIke4LkY= Subject key identifier: D4:BD:83:3A:6E:EC:21:8C:BF:A0:7E:4C:48:61:10:D5:22:4C:DF:E2 Authority key identifier: 3A:F7:71:0D:F8:AD:D6:4B:B9:68:8E:0F:45:81:BE:A6:7E:40:2C:66 Certificate issuer: /CN=3af7710df8add64bb9688e0f4581bea67e402c66 Certificate serial: 019B104A090C76F44613430979612D38D53E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvdxDfit1ku5aI4PRYG-pn5ALGY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.mft Manifest number: 0CAD Signing time: Fri 12 Dec 2025 02:00:45 +0000 Manifest this update: Fri 12 Dec 2025 02:00:45 +0000 Manifest next update: Sat 13 Dec 2025 02:00:45 +0000 Files and hashes: 1: 1-5V6RXgQOXjxU3mO34q_0PmmYk4.roa (hash: UBzppXP3Ubih2qJBoeebTWZSAjaul2dwW+uHzrrKrpI=) 2: OvdxDfit1ku5aI4PRYG-pn5ALGY.crl (hash: cXmKoENhfhQK/87Bxq0ZGKAD4eOrTNIBjn7MIQY9+Fg=) 3: XSqKcr4vohHwUX7C_jwkOz3T4S8.roa (hash: S5RGDFj4AygaOQ9nMJnUMnAW4DmVGX2kAbpxmhv1Nxo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.mft rsync://rpki.ripe.net/repository/DEFAULT/OvdxDfit1ku5aI4PRYG-pn5ALGY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:4a:09:0c:76:f4:46:13:43:09:79:61:2d:38:d5:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3af7710df8add64bb9688e0f4581bea67e402c66 Validity Not Before: Dec 12 02:00:45 2025 GMT Not After : Dec 13 02:00:45 2025 GMT Subject: CN=d4bd833a6eec218cbfa07e4c486110d5224cdfe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9a:8f:27:a1:09:60:70:ef:3d:33:ef:e6:3c: af:93:cd:1f:a9:63:9b:af:62:c2:44:17:36:e8:bc: 8c:85:c0:37:ad:e2:2f:09:5a:10:40:b9:43:06:1b: 35:9f:27:26:88:6a:f2:cf:8e:f4:09:e2:f8:99:98: a2:61:0a:d7:7c:30:33:a3:ee:6c:71:f2:82:49:97: 3c:4c:c5:f5:bd:59:8a:99:8b:93:19:9b:0b:76:f1: 9a:bd:0a:59:25:b0:f6:ba:f1:dd:df:3e:fe:67:ce: f8:3a:b3:21:e5:bd:4a:00:f9:34:60:ea:8a:4e:00: a9:f3:b9:13:7e:83:f4:40:e5:8d:94:52:4e:89:02: 26:4c:50:4d:72:03:a8:98:76:cb:15:11:71:5d:9a: 80:33:27:8c:b0:1f:13:3a:2a:18:ea:62:3d:ca:06: de:65:f9:b8:e7:33:bb:eb:ca:4a:3c:4e:18:eb:55: 27:bd:dd:42:22:94:46:6d:57:5b:3c:10:7d:15:02: 10:6e:1f:72:1e:c5:c1:ab:2d:cd:4b:82:1c:ca:47: 09:e8:5e:b8:97:e4:a5:01:f8:25:fc:85:72:9b:98: 9d:80:04:46:8d:94:c4:50:e1:f5:bc:8c:dd:71:bb: 0f:1b:fd:2e:9d:97:da:8e:7c:09:d9:57:f5:d3:fa: 6b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:BD:83:3A:6E:EC:21:8C:BF:A0:7E:4C:48:61:10:D5:22:4C:DF:E2 X509v3 Authority Key Identifier: keyid:3A:F7:71:0D:F8:AD:D6:4B:B9:68:8E:0F:45:81:BE:A6:7E:40:2C:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvdxDfit1ku5aI4PRYG-pn5ALGY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:e3:57:c7:f5:d9:5f:72:18:84:f3:79:93:81:8c:40:d2:c0: d9:90:ac:32:6f:5c:f4:21:d1:32:56:3c:75:c6:77:51:50:4d: af:42:eb:bc:22:5a:92:b8:d7:0e:35:f0:17:11:cc:14:f6:bf: 2e:94:9a:c5:d9:7f:eb:49:fa:5a:ba:ed:14:f5:e9:19:d0:62: c8:c5:18:a8:42:6e:32:29:a3:43:ea:c8:e0:8c:64:a0:a2:a8: f8:16:0f:f0:05:11:9d:5b:64:70:5d:db:35:b1:f4:ba:ac:b9: 23:b2:22:08:5a:83:21:1e:48:a0:06:74:64:4b:84:5d:6f:ba: 2c:9f:93:88:86:ea:ba:0b:6d:2f:e0:35:ff:6e:65:3a:70:47: 48:f1:f2:05:d6:a4:96:ff:56:bb:bf:7e:8d:7f:8a:93:dc:c9: bd:ae:4c:7f:65:e9:e6:19:d0:cb:bf:c3:bc:03:4c:7a:ba:0c: 68:04:92:0e:81:27:58:b8:47:40:cb:d4:fb:dc:c9:ff:66:46: ef:9d:a9:d7:38:e3:c8:e7:d5:0a:08:4d:3b:5b:6f:9a:d7:96: 23:9d:73:d2:32:c0:72:3d:65:6c:08:8d:4b:26:f8:91:7a:f7: 57:c4:1f:8f:64:34:e6:46:04:23:87:91:e0:8e:74:e7:b1:6d: d7:81:3c:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQSgkMdvRGE0MJeWEtONU+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZjc3MTBkZjhhZGQ2NGJiOTY4OGUwZjQ1ODFiZWE2N2U0 MDJjNjYwHhcNMjUxMjEyMDIwMDQ1WhcNMjUxMjEzMDIwMDQ1WjAzMTEwLwYDVQQD EyhkNGJkODMzYTZlZWMyMThjYmZhMDdlNGM0ODYxMTBkNTIyNGNkZmUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZqPJ6EJYHDvPTPv5jyvk80fqWOb r2LCRBc26LyMhcA3reIvCVoQQLlDBhs1nycmiGryz470CeL4mZiiYQrXfDAzo+5s cfKCSZc8TMX1vVmKmYuTGZsLdvGavQpZJbD2uvHd3z7+Z874OrMh5b1KAPk0YOqK TgCp87kTfoP0QOWNlFJOiQImTFBNcgOomHbLFRFxXZqAMyeMsB8TOioY6mI9ygbe Zfm45zO768pKPE4Y61Unvd1CIpRGbVdbPBB9FQIQbh9yHsXBqy3NS4IcykcJ6F64 l+SlAfgl/IVym5idgARGjZTEUOH1vIzdcbsPG/0unZfajnwJ2Vf10/pr+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNS9gzpu7CGMv6B+TEhhENUiTN/iMB8GA1UdIwQY MBaAFDr3cQ34rdZLuWiOD0WBvqZ+QCxmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3ZkeERmaXQxa3U1YUk0UFJZRy1wbjVBTEdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi9mNTlmZTMtOTU2ZS00OTM3LTg1OGQt ZWVjNDE2YTg4NmY3LzEvT3ZkeERmaXQxa3U1YUk0UFJZRy1wbjVBTEdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi9mNTlmZTMtOTU2ZS00OTM3LTg1OGQtZWVjNDE2YTg4NmY3 LzEvT3ZkeERmaXQxa3U1YUk0UFJZRy1wbjVBTEdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAruNXx/XZ X3IYhPN5k4GMQNLA2ZCsMm9c9CHRMlY8dcZ3UVBNr0LrvCJakrjXDjXwFxHMFPa/ LpSaxdl/60n6WrrtFPXpGdBiyMUYqEJuMimjQ+rI4IxkoKKo+BYP8AURnVtkcF3b NbH0uqy5I7IiCFqDIR5IoAZ0ZEuEXW+6LJ+TiIbqugttL+A1/25lOnBHSPHyBdak lv9Wu79+jX+Kk9zJva5Mf2Xp5hnQy7/DvANMeroMaASSDoEnWLhHQMvU+9zJ/2ZG 752p1zjjyOfVCghNO1tvmteWI51z0jLAcj1lbAiNSyb4kXr3V8Qfj2Q05kYEI4eR 4I5057Ft14E8SA== -----END CERTIFICATE-----Generated at Fri Dec 12 09:09:09 2025 by rpki-client