This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft File: OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft (raw, json) Hash identifier: c4R6R2PbxlLh9Jh1SH4+fDqEhqFpGDt3afOc/Os+Bto= Subject key identifier: 65:73:0F:D4:5B:1E:AD:12:E1:28:26:27:34:E4:12:5B:D3:E5:9B:A7 Authority key identifier: 38:BC:79:4C:5F:BA:AC:63:2A:7F:FB:43:DB:14:F7:39:CD:53:B2:C4 Certificate issuer: /CN=38bc794c5fbaac632a7ffb43db14f739cd53b2c4 Certificate serial: 019B410044D46D416B2B8B2D31A2D9C0D663 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft Manifest number: 03DA Signing time: Sun 21 Dec 2025 13:01:35 +0000 Manifest this update: Sun 21 Dec 2025 13:01:35 +0000 Manifest next update: Mon 22 Dec 2025 13:01:35 +0000 Files and hashes: 1: OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl (hash: cY9l6cXvrBJr+LAoDZ6cjwE00AMk+KIixWYNWUSDg/g=) 2: Xpmq2qI8X7GAALvPIhXOimJgH5Y.roa (hash: AgxExCu/sRjU92nC3fyyQWh5ZarDgbI5r/jd4t48QXE=) 3: qjyhGLzSjen3GpqWTeSFco9KSwQ.roa (hash: kp7IkbSOmQC+WxD6X5wnwhQy2Cc5wCQoIJuVSNYbr0Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:00:44:d4:6d:41:6b:2b:8b:2d:31:a2:d9:c0:d6:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38bc794c5fbaac632a7ffb43db14f739cd53b2c4 Validity Not Before: Dec 21 13:01:35 2025 GMT Not After : Dec 22 13:01:35 2025 GMT Subject: CN=65730fd45b1ead12e128262734e4125bd3e59ba7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:59:a4:86:e6:af:47:7e:58:59:4a:7b:ce:b8: 36:dd:21:9b:e0:54:ed:f9:48:cb:fa:c6:f4:9f:15: 14:1a:f4:83:9f:f5:85:42:48:ed:7d:31:98:89:99: d4:41:34:00:92:22:6f:a2:d7:bf:3f:f3:90:0c:81: 0d:86:4d:3c:6b:0d:e2:50:c2:61:d7:4f:dc:ea:66: 6a:3f:9a:9f:87:a1:3a:cf:c6:25:88:23:69:e9:34: b1:bb:47:11:60:bd:af:7e:31:a2:0d:be:59:c8:d2: 0b:4c:c1:d8:68:71:61:e0:ae:98:6f:05:a8:ce:c0: 71:be:0e:ab:27:b3:7c:83:6a:f6:51:1d:d1:7e:41: f6:3a:d8:03:94:d5:e8:c5:3d:b8:ec:8a:64:09:3c: 90:20:4c:5f:8e:06:86:fb:cf:cb:9d:55:ea:2b:4d: 68:77:81:4b:09:19:07:f7:c3:dd:a6:41:a5:99:75: d6:c4:54:b0:5e:53:ea:8a:b0:15:fe:02:be:40:9e: 8e:10:e3:5b:bc:57:54:a0:e3:9c:44:78:aa:5a:8b: 1b:b5:7d:40:c6:0c:62:a7:df:e5:f8:94:fa:e4:50: ef:74:21:a6:ed:69:63:90:f8:a6:91:80:30:31:62: d9:a8:e5:1a:94:17:9f:dc:9a:a9:7d:30:fe:ef:c6: 4b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:73:0F:D4:5B:1E:AD:12:E1:28:26:27:34:E4:12:5B:D3:E5:9B:A7 X509v3 Authority Key Identifier: keyid:38:BC:79:4C:5F:BA:AC:63:2A:7F:FB:43:DB:14:F7:39:CD:53:B2:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/1a3d98-c14f-4d06-a466-d985394e3c10/1/OLx5TF-6rGMqf_tD2xT3Oc1TssQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:f3:62:7d:4c:07:3a:4e:d6:4c:a2:8a:b9:59:34:47:44:1d: 5a:81:84:d5:39:ae:4d:8b:9a:0f:23:42:8c:33:50:cb:99:d8: 61:dd:a5:e9:a6:f1:c9:98:a5:e6:76:dc:74:21:b2:02:d9:97: c3:20:18:51:e3:e5:2f:ab:19:b9:f9:23:98:84:ed:48:25:5b: e8:23:55:02:dc:da:4a:50:76:5d:86:9b:20:c4:eb:23:56:01: 56:23:82:8f:a4:4e:5e:bf:c0:a0:8b:8a:d3:a7:bd:42:b7:59: bf:05:09:de:8c:b6:c0:1e:dc:00:ab:8b:d8:91:22:48:98:5f: a1:04:5e:e1:6b:bd:55:3c:f5:72:06:ef:df:4a:14:16:13:c7: 8b:57:c7:2f:41:ed:8d:df:95:52:cd:08:c2:d7:92:a9:fe:b2: 70:a7:99:ac:b4:41:72:4c:78:19:54:0e:b6:ad:6e:e3:d6:07: 86:81:39:66:dc:c6:6e:cd:29:b8:c4:52:17:b6:9f:27:eb:e6: 6a:25:c2:9d:f2:f1:97:dd:23:52:1b:66:9c:36:e9:e0:cc:0f: 2c:1d:b5:6f:d5:34:64:4a:20:6c:aa:70:73:07:c1:79:75:ed: d1:db:f0:24:b0:38:62:e0:03:ca:00:f2:c7:44:21:bf:ad:16: 3f:7b:84:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBAETUbUFrK4stMaLZwNZjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4YmM3OTRjNWZiYWFjNjMyYTdmZmI0M2RiMTRmNzM5Y2Q1 M2IyYzQwHhcNMjUxMjIxMTMwMTM1WhcNMjUxMjIyMTMwMTM1WjAzMTEwLwYDVQQD Eyg2NTczMGZkNDViMWVhZDEyZTEyODI2MjczNGU0MTI1YmQzZTU5YmE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyFmkhuavR35YWUp7zrg23SGb4FTt +UjL+sb0nxUUGvSDn/WFQkjtfTGYiZnUQTQAkiJvote/P/OQDIENhk08aw3iUMJh 10/c6mZqP5qfh6E6z8YliCNp6TSxu0cRYL2vfjGiDb5ZyNILTMHYaHFh4K6YbwWo zsBxvg6rJ7N8g2r2UR3RfkH2OtgDlNXoxT247IpkCTyQIExfjgaG+8/LnVXqK01o d4FLCRkH98PdpkGlmXXWxFSwXlPqirAV/gK+QJ6OEONbvFdUoOOcRHiqWosbtX1A xgxip9/l+JT65FDvdCGm7WljkPimkYAwMWLZqOUalBef3JqpfTD+78ZLKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGVzD9RbHq0S4SgmJzTkElvT5ZunMB8GA1UdIwQY MBaAFDi8eUxfuqxjKn/7Q9sU9znNU7LEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0x4NVRGLTZyR01xZl90RDJ4VDNPYzFUc3NRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8xYTNkOTgtYzE0Zi00ZDA2LWE0NjYt ZDk4NTM5NGUzYzEwLzEvT0x4NVRGLTZyR01xZl90RDJ4VDNPYzFUc3NRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi8xYTNkOTgtYzE0Zi00ZDA2LWE0NjYtZDk4NTM5NGUzYzEw LzEvT0x4NVRGLTZyR01xZl90RDJ4VDNPYzFUc3NRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATfNifUwH Ok7WTKKKuVk0R0QdWoGE1TmuTYuaDyNCjDNQy5nYYd2l6abxyZil5nbcdCGyAtmX wyAYUePlL6sZufkjmITtSCVb6CNVAtzaSlB2XYabIMTrI1YBViOCj6ROXr/AoIuK 06e9QrdZvwUJ3oy2wB7cAKuL2JEiSJhfoQRe4Wu9VTz1cgbv30oUFhPHi1fHL0Ht jd+VUs0IwteSqf6ycKeZrLRBckx4GVQOtq1u49YHhoE5ZtzGbs0puMRSF7afJ+vm aiXCnfLxl90jUhtmnDbp4MwPLB21b9U0ZEogbKpwcwfBeXXt0dvwJLA4YuADygDy x0Qhv60WP3uEKA== -----END CERTIFICATE-----Generated at Sun Dec 21 19:49:56 2025 by rpki-client