This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft File: OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft (raw, json) Hash identifier: IQKexCoImPf3kZjr4vRj2VHpO7b6ew2YZE+WKv2Z1QA= Subject key identifier: EC:9A:42:59:7C:59:1D:B0:FE:13:15:3D:75:93:23:69:3A:A1:8E:53 Authority key identifier: 38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61 Certificate issuer: /CN=38b912a1eab18eb729745e8978138b25c4407761 Certificate serial: 019AF389468A83EBFE284B654D4803E6B38A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft Manifest number: 0E44 Signing time: Sat 06 Dec 2025 12:00:51 +0000 Manifest this update: Sat 06 Dec 2025 12:00:51 +0000 Manifest next update: Sun 07 Dec 2025 12:00:51 +0000 Files and hashes: 1: FVz1Gs3goS-mz1CP7z4LNut0fHE.roa (hash: +EzGyBevLVejen0VLkmFtejit+8sBRd5jz7yFu64Sbw=) 2: OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl (hash: FpSoTqAxtBBf0QZAdbKDVP66rrf5wOiWftOjxIOTE/4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:46:8a:83:eb:fe:28:4b:65:4d:48:03:e6:b3:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38b912a1eab18eb729745e8978138b25c4407761 Validity Not Before: Dec 6 12:00:51 2025 GMT Not After : Dec 7 12:00:51 2025 GMT Subject: CN=ec9a42597c591db0fe13153d759323693aa18e53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:72:79:60:57:4d:d7:9d:3c:52:22:fc:fb:f0: 79:49:da:1f:76:90:74:2e:fb:31:66:fc:ea:61:3b: 5e:b3:42:37:93:93:49:84:5b:90:65:d8:b1:64:01: 9d:b0:f3:1f:57:16:4d:67:2d:7f:c5:62:e0:12:d6: 2e:a1:df:39:c6:c6:26:0a:52:99:f1:1d:ac:63:34: 25:d1:99:f0:5f:1f:9d:28:0e:c2:ea:ea:e0:23:41: be:1e:06:0e:0b:4a:5b:05:db:37:e0:e9:11:32:05: 64:2b:e3:fb:03:2d:02:c6:1b:8f:0f:88:40:05:c9: 4f:5d:3b:69:9a:fa:bd:cc:78:c3:5a:70:9f:1c:3d: cd:01:9f:af:91:29:43:49:bb:52:21:57:62:67:3d: 8a:75:01:f2:7c:4f:68:e0:9b:fb:5e:97:26:28:c0: 81:da:bf:0c:99:7d:ac:bf:c4:bb:44:d6:63:bd:5f: 48:b6:68:6d:6e:aa:96:4b:76:41:f0:77:01:f8:8a: 73:33:6e:0d:e7:6f:42:97:f9:10:04:f6:f5:1a:f2: a1:c4:b7:d6:9a:09:d6:25:39:40:ab:67:09:f1:f0: d1:45:48:bf:07:1b:a1:8f:58:ca:2e:f5:56:ee:7f: a7:36:5d:53:f3:ec:9f:45:24:07:5a:ea:4d:c1:3f: 38:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:9A:42:59:7C:59:1D:B0:FE:13:15:3D:75:93:23:69:3A:A1:8E:53 X509v3 Authority Key Identifier: keyid:38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:36:12:61:a2:5e:26:11:b3:6c:9c:4a:3a:3e:93:00:0e:23: 22:f8:ef:3a:1a:29:07:b4:59:d5:6d:d7:47:91:34:c5:15:82: eb:3c:f4:7d:05:d0:7c:d5:ba:c6:8c:74:16:5c:af:84:2b:18: aa:d7:2a:0b:34:da:bb:c3:00:9d:d2:aa:f9:76:49:da:bc:18: ae:43:e2:77:95:f9:1e:2e:60:17:1b:3b:14:bd:b5:62:89:01: a2:cc:97:58:a7:50:db:25:28:b3:25:64:72:26:17:e8:71:b1: 29:60:ab:d6:52:d7:b5:66:78:3c:d6:6e:79:8d:97:f4:2a:98: ed:f6:cc:4c:7b:3b:d7:fc:29:60:17:15:0e:18:e7:5d:8c:bb: 76:1a:0a:bc:61:31:d8:c2:7c:21:3c:35:28:bf:82:99:b6:bc: a2:6b:e2:ee:dc:15:30:a5:83:2f:14:0f:a5:84:39:f9:26:66: a0:6e:9d:e6:a7:b9:7f:f8:57:25:48:09:f4:7a:2b:a5:1b:85: 53:b0:7b:7f:2a:27:cb:6f:13:98:16:b1:a3:47:a3:62:85:6b: 2b:5c:80:c8:0d:6b:9e:a1:01:cd:e1:50:d6:d1:70:eb:05:42: 9c:a4:a1:23:96:ab:8e:bb:c8:d5:25:26:88:c2:f9:f0:d6:4c: 2f:07:3e:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziUaKg+v+KEtlTUgD5rOKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4YjkxMmExZWFiMThlYjcyOTc0NWU4OTc4MTM4YjI1YzQ0 MDc3NjEwHhcNMjUxMjA2MTIwMDUxWhcNMjUxMjA3MTIwMDUxWjAzMTEwLwYDVQQD EyhlYzlhNDI1OTdjNTkxZGIwZmUxMzE1M2Q3NTkzMjM2OTNhYTE4ZTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4XJ5YFdN1508UiL8+/B5SdofdpB0 LvsxZvzqYTtes0I3k5NJhFuQZdixZAGdsPMfVxZNZy1/xWLgEtYuod85xsYmClKZ 8R2sYzQl0ZnwXx+dKA7C6urgI0G+HgYOC0pbBds34OkRMgVkK+P7Ay0CxhuPD4hA BclPXTtpmvq9zHjDWnCfHD3NAZ+vkSlDSbtSIVdiZz2KdQHyfE9o4Jv7XpcmKMCB 2r8MmX2sv8S7RNZjvV9ItmhtbqqWS3ZB8HcB+IpzM24N529Cl/kQBPb1GvKhxLfW mgnWJTlAq2cJ8fDRRUi/Bxuhj1jKLvVW7n+nNl1T8+yfRSQHWupNwT84xwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOyaQll8WR2w/hMVPXWTI2k6oY5TMB8GA1UdIwQY MBaAFDi5EqHqsY63KXReiXgTiyXEQHdhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0xrU29lcXhqcmNwZEY2SmVCT0xKY1JBZDJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi8zZmFlOTYtNGFhZS00NTQ0LWJlZjIt YzFkNTIxMTY2YmVjLzEvT0xrU29lcXhqcmNwZEY2SmVCT0xKY1JBZDJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi8zZmFlOTYtNGFhZS00NTQ0LWJlZjItYzFkNTIxMTY2YmVj LzEvT0xrU29lcXhqcmNwZEY2SmVCT0xKY1JBZDJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjTYSYaJe JhGzbJxKOj6TAA4jIvjvOhopB7RZ1W3XR5E0xRWC6zz0fQXQfNW6xox0FlyvhCsY qtcqCzTau8MAndKq+XZJ2rwYrkPid5X5Hi5gFxs7FL21YokBosyXWKdQ2yUosyVk ciYX6HGxKWCr1lLXtWZ4PNZueY2X9CqY7fbMTHs71/wpYBcVDhjnXYy7dhoKvGEx 2MJ8ITw1KL+Cmba8omvi7twVMKWDLxQPpYQ5+SZmoG6d5qe5f/hXJUgJ9HorpRuF U7B7fyony28TmBaxo0ejYoVrK1yAyA1rnqEBzeFQ1tFw6wVCnKShI5arjrvI1SUm iML58NZMLwc+Vw== -----END CERTIFICATE-----Generated at Sat Dec 6 22:44:29 2025 by rpki-client