This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft File: O1RMoOK-GOn9dOKBMkowsOotHVI.mft (raw, json) Hash identifier: X31e8SOkTflYlnD37fYs2aGUlsfpZJ9zby71cEfQWSQ= Subject key identifier: 96:9E:A4:A2:37:23:72:8D:A8:3D:43:B2:EF:87:53:4F:44:B6:86:16 Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52 Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52 Certificate serial: 019AABA70D6A0D14B62D645BF0C9ABD4CF2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft Manifest number: 0DE2 Signing time: Sat 22 Nov 2025 13:00:43 +0000 Manifest this update: Sat 22 Nov 2025 13:00:43 +0000 Manifest next update: Sun 23 Nov 2025 13:00:43 +0000 Files and hashes: 1: MdL7TM_8FI4FSNKpOGmHEkxh3Ic.roa (hash: kNSd9iF0Y8DMXrvxWEyFS2FyQT8gup1m11Nuuk6HbNM=) 2: O1RMoOK-GOn9dOKBMkowsOotHVI.crl (hash: lzuFHm6OGlOp0eZTZ9c0hZBRFqgmRMsH0v5Loj2y5cw=) 3: cwI21tJzYqOr9HSPPCz6L9ZgwVI.roa (hash: XU/ushJjB+n9xmj9cQdOxUY6BAOcpjTXGMQ5mCVCcNA=) 4: nKxYgxU46C1nM-kLwKHXoqpeCuk.roa (hash: acmNPfWY5Vqfewon1zfQxYgK/f0iZyi1LFngzxJT1rE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ab:a7:0d:6a:0d:14:b6:2d:64:5b:f0:c9:ab:d4:cf:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52 Validity Not Before: Nov 22 13:00:43 2025 GMT Not After : Nov 23 13:00:43 2025 GMT Subject: CN=969ea4a23723728da83d43b2ef87534f44b68616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:47:87:f2:88:e0:9e:d3:c6:59:ff:0a:5a:5a: c1:80:2b:2d:b0:5a:34:95:09:ea:c3:7e:48:a3:23: 8f:4e:40:c4:22:8f:5c:74:a1:26:35:63:b2:a8:78: 62:e1:f0:6e:4b:52:49:74:98:6d:bc:e0:e0:5f:38: 55:e4:28:66:84:24:4e:6f:fe:06:8d:9e:cd:d8:61: 37:a9:2c:31:35:87:be:12:ab:6d:4c:cf:86:1b:4a: bb:a0:f0:62:41:04:3e:5d:b3:85:1d:d0:b5:a9:9f: 04:da:13:ea:5b:53:e5:9a:26:da:00:58:af:20:50: b8:b5:2e:97:b0:32:b2:40:46:da:ba:fc:ad:1f:c2: 60:b1:c1:bd:b6:e3:31:69:ed:63:22:30:7b:af:bc: 5f:81:21:fc:e6:4e:f2:b2:6b:b6:f4:56:7f:81:dc: 17:2e:24:df:2b:7e:96:fe:f3:3b:88:74:59:02:4e: fe:97:19:96:cb:67:ac:65:fe:9b:8c:2f:20:f1:93: f3:27:af:71:81:64:f5:be:54:96:7f:54:03:64:f6: cb:03:76:5a:99:bc:58:0e:62:93:d8:1e:4c:1d:f4: 0f:31:16:24:b2:04:55:f6:ef:f7:ad:90:4f:9c:24: 1a:2f:09:81:6e:2c:b9:cc:c1:40:66:dc:09:7d:2f: 24:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:9E:A4:A2:37:23:72:8D:A8:3D:43:B2:EF:87:53:4F:44:B6:86:16 X509v3 Authority Key Identifier: keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:32:a0:b1:60:fb:a6:b6:58:2c:74:04:0c:3f:3c:c6:12:38: 3d:9d:94:61:15:b9:98:b4:16:3f:b4:d7:92:ab:57:57:32:33: 9b:3e:63:de:9b:dd:73:35:d8:51:f5:b7:25:e6:25:13:8f:e8: 52:11:eb:a2:ae:03:c3:fb:06:76:f4:71:96:a4:9e:b2:62:83: 23:b2:53:eb:90:8e:6f:77:d0:6a:29:97:a2:4e:d6:87:78:38: 40:e5:73:41:d9:cf:73:3b:81:1f:64:d7:61:fd:1d:70:1d:64: b1:60:48:0e:95:b0:ff:c0:74:7c:90:6a:a9:fe:b9:20:d8:0b: 9e:1d:1a:a4:8d:99:7f:80:eb:7a:ea:f8:39:08:d9:44:82:aa: cc:88:a9:e7:d9:42:d8:e0:22:97:f0:e7:68:31:25:70:7a:9d: c9:66:0d:2d:1e:65:3b:d6:a0:84:bc:3a:9a:1c:76:5b:1e:53: 90:f1:79:ca:2c:86:eb:23:1e:cd:6f:a2:e8:e0:6d:10:19:2e: 10:2d:67:83:46:e0:7f:58:d6:93:97:aa:ce:d7:c3:b7:46:2c: b0:6b:0b:cf:ac:1e:44:0a:33:8e:72:55:b0:a2:9c:a2:15:57: ff:2a:f7:70:7b:70:a8:91:bc:f5:66:bb:a8:ee:40:8e:1a:7a: 00:9a:64:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqrpw1qDRS2LWRb8Mmr1M8tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiNTQ0Y2EwZTJiZTE4ZTlmZDc0ZTI4MTMyNGEzMGIwZWEy ZDFkNTIwHhcNMjUxMTIyMTMwMDQzWhcNMjUxMTIzMTMwMDQzWjAzMTEwLwYDVQQD Eyg5NjllYTRhMjM3MjM3MjhkYTgzZDQzYjJlZjg3NTM0ZjQ0YjY4NjE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUeH8ojgntPGWf8KWlrBgCstsFo0 lQnqw35IoyOPTkDEIo9cdKEmNWOyqHhi4fBuS1JJdJhtvODgXzhV5ChmhCROb/4G jZ7N2GE3qSwxNYe+EqttTM+GG0q7oPBiQQQ+XbOFHdC1qZ8E2hPqW1PlmibaAFiv IFC4tS6XsDKyQEbauvytH8JgscG9tuMxae1jIjB7r7xfgSH85k7ysmu29FZ/gdwX LiTfK36W/vM7iHRZAk7+lxmWy2esZf6bjC8g8ZPzJ69xgWT1vlSWf1QDZPbLA3Za mbxYDmKT2B5MHfQPMRYksgRV9u/3rZBPnCQaLwmBbiy5zMFAZtwJfS8k/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJaepKI3I3KNqD1Dsu+HU09EtoYWMB8GA1UdIwQY MBaAFDtUTKDivhjp/XTigTJKMLDqLR1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzFSTW9PSy1HT245ZE9LQk1rb3dzT290SFZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8zMDMwYmItNDJjMi00ZTNjLTg1OWEt ODc2YTlkNzYyOWY2LzEvTzFSTW9PSy1HT245ZE9LQk1rb3dzT290SFZJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8zMDMwYmItNDJjMi00ZTNjLTg1OWEtODc2YTlkNzYyOWY2 LzEvTzFSTW9PSy1HT245ZE9LQk1rb3dzT290SFZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHDKgsWD7 prZYLHQEDD88xhI4PZ2UYRW5mLQWP7TXkqtXVzIzmz5j3pvdczXYUfW3JeYlE4/o UhHroq4Dw/sGdvRxlqSesmKDI7JT65COb3fQaimXok7Wh3g4QOVzQdnPczuBH2TX Yf0dcB1ksWBIDpWw/8B0fJBqqf65INgLnh0apI2Zf4Dreur4OQjZRIKqzIip59lC 2OAil/DnaDElcHqdyWYNLR5lO9aghLw6mhx2Wx5TkPF5yiyG6yMezW+i6OBtEBku EC1ng0bgf1jWk5eqztfDt0YssGsLz6weRAozjnJVsKKcohVX/yr3cHtwqJG89Wa7 qO5Ajhp6AJpkyQ== -----END CERTIFICATE-----Generated at Sat Nov 22 21:49:16 2025 by rpki-client