This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft File: OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft (raw, json) Hash identifier: JmTDdNMyenWE0QyDgbuDpov0ZtqU8c3x/aWMStZ9wmg= Subject key identifier: 93:4D:BF:16:07:19:2E:33:0B:C6:13:24:3B:61:03:DD:2F:20:19:44 Authority key identifier: 38:BC:79:4C:5F:BA:AC:63:2A:7F:FB:43:DB:14:F7:39:CD:53:B2:C4 Certificate issuer: /CN=38bc794c5fbaac632a7ffb43db14f739cd53b2c4 Certificate serial: 019B1683302051B0492B7822BE05E86E8583 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft Manifest number: 03C4 Signing time: Sat 13 Dec 2025 07:00:54 +0000 Manifest this update: Sat 13 Dec 2025 07:00:54 +0000 Manifest next update: Sun 14 Dec 2025 07:00:54 +0000 Files and hashes: 1: OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl (hash: yt1ZswZ+rykXPkxXjWdkM6Juctt3kVgbpHLQo1b2kw4=) 2: Xpmq2qI8X7GAALvPIhXOimJgH5Y.roa (hash: AgxExCu/sRjU92nC3fyyQWh5ZarDgbI5r/jd4t48QXE=) 3: qjyhGLzSjen3GpqWTeSFco9KSwQ.roa (hash: kp7IkbSOmQC+WxD6X5wnwhQy2Cc5wCQoIJuVSNYbr0Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:16:83:30:20:51:b0:49:2b:78:22:be:05:e8:6e:85:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38bc794c5fbaac632a7ffb43db14f739cd53b2c4 Validity Not Before: Dec 13 07:00:54 2025 GMT Not After : Dec 14 07:00:54 2025 GMT Subject: CN=934dbf1607192e330bc613243b6103dd2f201944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:dc:cd:fd:4e:a1:da:88:04:18:a2:85:83:9c: 27:2c:62:46:bb:12:a7:bb:a3:3c:80:ab:89:01:33: 65:34:bd:1e:13:97:63:6d:4b:eb:1c:8a:f2:3f:e0: b7:01:2a:7c:62:6b:f5:73:4e:5d:20:70:94:0c:76: 40:64:91:ad:18:b6:d6:85:89:25:f9:25:62:28:16: 18:f6:c0:24:98:ec:5f:77:5c:50:fb:5c:77:9c:0c: f6:c6:df:35:68:5b:e6:db:94:54:20:b6:9c:ad:01: 63:f9:4d:9b:ad:8e:b6:a0:10:a0:f6:a5:1c:bc:33: 86:81:75:db:c1:69:dc:a3:72:fc:9b:cf:4e:20:ae: d6:74:fa:47:ec:eb:2b:e8:dd:a9:d6:cc:d8:df:10: 91:0d:0b:59:f5:a5:31:46:d2:2d:11:19:03:46:0e: 6d:25:72:12:2e:94:7b:ee:46:4d:79:65:80:d5:43: df:6d:74:63:55:15:5f:6e:04:de:b1:b3:b9:be:82: 2b:f4:9e:2d:41:7a:78:69:89:6f:e4:f6:b2:07:98: 0b:bf:99:35:42:f5:86:2d:f1:71:cf:88:12:ec:07: 40:30:3a:85:a0:0e:76:55:af:8d:1e:a6:f8:64:bb: 30:31:2d:a8:89:40:0b:62:3d:1c:ca:16:50:9d:c5: 3d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:4D:BF:16:07:19:2E:33:0B:C6:13:24:3B:61:03:DD:2F:20:19:44 X509v3 Authority Key Identifier: keyid:38:BC:79:4C:5F:BA:AC:63:2A:7F:FB:43:DB:14:F7:39:CD:53:B2:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:87:0c:1a:00:14:ec:a5:cb:e2:bf:30:bd:68:46:e9:95:89: 8a:b6:23:46:b5:1f:75:b2:14:93:8b:8c:18:62:82:3c:a9:79: a3:a3:55:7b:bc:cb:08:fb:5e:4a:91:99:44:c6:55:ad:fb:3c: 8d:89:46:2d:f6:83:d2:b3:b2:1d:73:e5:e5:e4:3a:3e:b1:ed: 7e:e8:65:77:f6:f5:a3:a3:3d:e2:6b:83:ef:9e:03:09:09:38: f6:83:58:2a:c2:0f:14:40:16:26:38:de:ff:29:e7:0c:2c:a3: 1f:66:ea:45:08:b4:b7:2c:95:fb:63:1c:3b:11:b6:fd:55:f1: 47:9f:f6:66:f2:69:c2:4d:3c:5d:11:43:d9:8d:18:79:ad:be: 43:1c:f9:c4:65:19:9b:ba:39:43:56:c2:c3:08:82:c4:af:b4: 75:05:33:a4:99:cc:86:8f:8d:2c:98:d6:53:6f:7c:85:6b:ee: db:dc:fa:90:cf:24:ac:4d:03:16:dc:54:33:7d:e0:40:d2:6b: 4d:e1:41:5d:10:22:48:b6:25:0e:c9:68:04:f6:d0:88:1d:5d: 1e:32:07:ee:cc:b6:2b:69:9e:67:5b:5b:6b:34:69:ce:82:f2: b6:65:3b:27:a6:5d:c2:ec:ab:c5:f0:8a:c4:c8:4f:0b:72:76: f4:fd:c0:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsWgzAgUbBJK3givgXoboWDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4YmM3OTRjNWZiYWFjNjMyYTdmZmI0M2RiMTRmNzM5Y2Q1 M2IyYzQwHhcNMjUxMjEzMDcwMDU0WhcNMjUxMjE0MDcwMDU0WjAzMTEwLwYDVQQD Eyg5MzRkYmYxNjA3MTkyZTMzMGJjNjEzMjQzYjYxMDNkZDJmMjAxOTQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9zN/U6h2ogEGKKFg5wnLGJGuxKn u6M8gKuJATNlNL0eE5djbUvrHIryP+C3ASp8Ymv1c05dIHCUDHZAZJGtGLbWhYkl +SViKBYY9sAkmOxfd1xQ+1x3nAz2xt81aFvm25RUILacrQFj+U2brY62oBCg9qUc vDOGgXXbwWnco3L8m89OIK7WdPpH7Osr6N2p1szY3xCRDQtZ9aUxRtItERkDRg5t JXISLpR77kZNeWWA1UPfbXRjVRVfbgTesbO5voIr9J4tQXp4aYlv5PayB5gLv5k1 QvWGLfFxz4gS7AdAMDqFoA52Va+NHqb4ZLswMS2oiUALYj0cyhZQncU9dQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJNNvxYHGS4zC8YTJDthA90vIBlEMB8GA1UdIwQY MBaAFDi8eUxfuqxjKn/7Q9sU9znNU7LEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0x4NVRGLTZyR01xZl90RDJ4VDNPYzFUc3NRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8xYTNkOTgtYzE0Zi00ZDA2LWE0NjYt ZDk4NTM5NGUzYzEwLzEvT0x4NVRGLTZyR01xZl90RDJ4VDNPYzFUc3NRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi8xYTNkOTgtYzE0Zi00ZDA2LWE0NjYtZDk4NTM5NGUzYzEw LzEvT0x4NVRGLTZyR01xZl90RDJ4VDNPYzFUc3NRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbYcMGgAU 7KXL4r8wvWhG6ZWJirYjRrUfdbIUk4uMGGKCPKl5o6NVe7zLCPteSpGZRMZVrfs8 jYlGLfaD0rOyHXPl5eQ6PrHtfuhld/b1o6M94muD754DCQk49oNYKsIPFEAWJjje /ynnDCyjH2bqRQi0tyyV+2McOxG2/VXxR5/2ZvJpwk08XRFD2Y0Yea2+Qxz5xGUZ m7o5Q1bCwwiCxK+0dQUzpJnMho+NLJjWU298hWvu29z6kM8krE0DFtxUM33gQNJr TeFBXRAiSLYlDsloBPbQiB1dHjIH7sy2K2meZ1tbazRpzoLytmU7J6ZdwuyrxfCK xMhPC3J29P3Ang== -----END CERTIFICATE-----Generated at Sat Dec 13 11:30:27 2025 by rpki-client