This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft File: MtOVxX39MMDNLDD0IziuTBSnUKE.mft (raw, json) Hash identifier: oXHEYV+NULzuBmGcnUuR7kPxTs7COXMlHQpV2q5NwkU= Subject key identifier: 55:16:2B:7D:FE:21:4E:5C:11:85:84:B7:ED:9F:16:2B:25:79:BD:A2 Authority key identifier: 32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1 Certificate issuer: /CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1 Certificate serial: 019AF12DF8778407A31C05BAE4A5E9870835 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft Manifest number: 0C4A Signing time: Sat 06 Dec 2025 01:01:52 +0000 Manifest this update: Sat 06 Dec 2025 01:01:52 +0000 Manifest next update: Sun 07 Dec 2025 01:01:52 +0000 Files and hashes: 1: MtOVxX39MMDNLDD0IziuTBSnUKE.crl (hash: yU0J8IBC4sSEh0xzQpRbE/MlZcfRDq7yhi8JLC8Jir4=) 2: n5cNfAezq-PA0qRMQcD4Vk_fATk.roa (hash: 3AWrOq42owDA1epXEWxZ5qyQ/E7NiBYhiJKMNg3oKTI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:f8:77:84:07:a3:1c:05:ba:e4:a5:e9:87:08:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1 Validity Not Before: Dec 6 01:01:52 2025 GMT Not After : Dec 7 01:01:52 2025 GMT Subject: CN=55162b7dfe214e5c118584b7ed9f162b2579bda2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:47:b8:e9:25:17:f9:64:0b:a1:5f:14:e7:ea: 3d:91:37:14:0b:72:c4:29:e3:0c:6d:f2:9f:05:e0: 62:01:6f:0c:6c:95:32:79:db:ad:0a:c0:7e:22:40: c9:ad:c8:b8:1e:90:84:79:38:ad:3c:48:d0:52:eb: 86:9b:a5:a9:81:39:d7:c2:33:4c:eb:d7:47:b8:11: 14:54:3d:c9:62:73:1f:e6:b3:62:27:f6:e2:2f:1e: 64:16:1a:fa:2a:f5:2b:d2:46:f9:2b:bc:1f:7f:95: 83:41:0c:2e:d1:35:91:88:87:28:7f:3b:8d:02:07: a4:b0:a6:e1:44:5b:22:6d:a1:d5:e3:cb:19:43:31: bb:f4:3b:bc:ca:1b:2f:ba:d4:31:35:da:b8:c2:00: d3:29:1e:32:79:9f:95:7b:bb:f0:17:9b:25:41:17: 7d:a2:94:e6:7f:57:ed:00:eb:e5:ce:31:5d:45:46: 33:c7:26:39:66:9e:76:dd:d0:54:3c:dd:50:8d:c5: fe:58:bd:eb:07:fd:0c:8e:f9:5b:f4:58:cd:e6:b1: 1d:20:1a:f6:7b:57:59:46:b9:2a:e3:64:ff:54:b9: 06:dd:1e:47:45:9c:fa:cd:ef:21:17:6e:17:5e:95: ff:db:ad:ea:8e:5e:67:6d:e0:90:b8:a7:7c:38:9e: b4:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:16:2B:7D:FE:21:4E:5C:11:85:84:B7:ED:9F:16:2B:25:79:BD:A2 X509v3 Authority Key Identifier: keyid:32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:d0:ac:37:da:f9:de:e1:f9:93:d7:9d:05:62:28:36:79:ae: e6:1a:d1:5a:2f:1c:15:65:63:03:14:7c:ad:ee:f8:d5:6d:07: e0:f9:4f:31:e7:c7:66:36:75:62:17:08:96:50:8a:23:15:ef: 4e:a6:04:2b:29:8f:4f:14:38:a7:78:59:1a:d6:09:c9:be:88: 29:5e:0b:23:13:25:e4:b1:3a:52:d2:99:5e:c8:7f:4c:57:b5: d2:75:ad:a6:9c:e7:39:b4:ab:5b:79:8e:1e:e2:45:1d:11:6d: 94:32:e6:4e:0d:ae:f1:7e:62:5e:14:21:b5:7e:a5:76:43:f9: 8c:d8:6b:26:d4:f6:8f:b6:e3:e4:64:ff:54:b7:dc:87:97:ff: 8b:1b:ce:94:0f:0b:00:99:69:72:a0:5e:fa:a6:d0:f7:98:30: 91:aa:96:eb:69:67:3f:2a:c9:15:2f:73:f1:36:0e:85:0a:50: 23:79:75:5f:93:e0:a1:2f:15:2b:9d:36:01:13:66:41:a0:c2: 85:aa:62:fe:d0:12:95:a8:58:f0:94:eb:7d:03:dc:c4:8a:0d: a8:cb:e3:b1:04:30:06:d9:63:14:78:28:4d:bc:75:e8:52:06: bf:4e:4f:86:47:b1:37:ee:13:55:15:9c:45:9f:07:b4:e4:66: 8f:57:7e:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLfh3hAejHAW65KXphwg1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyZDM5NWM1N2RmZDMwYzBjZDJjMzBmNDIzMzhhZTRjMTRh NzUwYTEwHhcNMjUxMjA2MDEwMTUyWhcNMjUxMjA3MDEwMTUyWjAzMTEwLwYDVQQD Eyg1NTE2MmI3ZGZlMjE0ZTVjMTE4NTg0YjdlZDlmMTYyYjI1NzliZGEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Ue46SUX+WQLoV8U5+o9kTcUC3LE KeMMbfKfBeBiAW8MbJUyedutCsB+IkDJrci4HpCEeTitPEjQUuuGm6WpgTnXwjNM 69dHuBEUVD3JYnMf5rNiJ/biLx5kFhr6KvUr0kb5K7wff5WDQQwu0TWRiIcofzuN AgeksKbhRFsibaHV48sZQzG79Du8yhsvutQxNdq4wgDTKR4yeZ+Ve7vwF5slQRd9 opTmf1ftAOvlzjFdRUYzxyY5Zp523dBUPN1QjcX+WL3rB/0Mjvlb9FjN5rEdIBr2 e1dZRrkq42T/VLkG3R5HRZz6ze8hF24XXpX/263qjl5nbeCQuKd8OJ60nwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFUWK33+IU5cEYWEt+2fFisleb2iMB8GA1UdIwQY MBaAFDLTlcV9/TDAzSww9CM4rkwUp1ChMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXRPVnhYMzlNTUROTEREMEl6aXVUQlNuVUtFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8zNWI0OWItMDNhMy00MTAxLWEzZmUt MWQ4ZTE5ZGY0YTYyLzEvTXRPVnhYMzlNTUROTEREMEl6aXVUQlNuVUtFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8zNWI0OWItMDNhMy00MTAxLWEzZmUtMWQ4ZTE5ZGY0YTYy LzEvTXRPVnhYMzlNTUROTEREMEl6aXVUQlNuVUtFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP9CsN9r5 3uH5k9edBWIoNnmu5hrRWi8cFWVjAxR8re741W0H4PlPMefHZjZ1YhcIllCKIxXv TqYEKymPTxQ4p3hZGtYJyb6IKV4LIxMl5LE6UtKZXsh/TFe10nWtppznObSrW3mO HuJFHRFtlDLmTg2u8X5iXhQhtX6ldkP5jNhrJtT2j7bj5GT/VLfch5f/ixvOlA8L AJlpcqBe+qbQ95gwkaqW62lnPyrJFS9z8TYOhQpQI3l1X5PgoS8VK502ARNmQaDC hapi/tASlahY8JTrfQPcxIoNqMvjsQQwBtljFHgoTbx16FIGv05PhkexN+4TVRWc RZ8HtORmj1d+Bw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:06:18 2025 by rpki-client