This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft File: oLalsaFMhtTPtGxOhuzUBmgEzJA.mft (raw, json) Hash identifier: dGyl4B06o/BpU75+y7md1sDZpniM3OajOWdm96bK5wM= Subject key identifier: B5:2E:1A:25:A7:78:8B:4F:F9:C8:CC:24:51:0D:44:61:2D:64:B7:38 Authority key identifier: A0:B6:A5:B1:A1:4C:86:D4:CF:B4:6C:4E:86:EC:D4:06:68:04:CC:90 Certificate issuer: /CN=a0b6a5b1a14c86d4cfb46c4e86ecd4066804cc90 Certificate serial: 019B3D232CE729ADE9A5439263753D58F1AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLalsaFMhtTPtGxOhuzUBmgEzJA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft Manifest number: 07A4 Signing time: Sat 20 Dec 2025 19:01:13 +0000 Manifest this update: Sat 20 Dec 2025 19:01:13 +0000 Manifest next update: Sun 21 Dec 2025 19:01:13 +0000 Files and hashes: 1: MCk_wjcNWplBl8XuQ-Q-tXaOPdg.roa (hash: FrFfJHN2MqG7rUNbBMB2RUeLHgQ0eftZ7IS2VaSzx58=) 2: oLalsaFMhtTPtGxOhuzUBmgEzJA.crl (hash: 0r4jxVWiMepS/jPuM319x0Xn+MA/y3ZjBN2IgDinpjc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.crl rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft rsync://rpki.ripe.net/repository/DEFAULT/oLalsaFMhtTPtGxOhuzUBmgEzJA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:23:2c:e7:29:ad:e9:a5:43:92:63:75:3d:58:f1:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0b6a5b1a14c86d4cfb46c4e86ecd4066804cc90 Validity Not Before: Dec 20 19:01:13 2025 GMT Not After : Dec 21 19:01:13 2025 GMT Subject: CN=b52e1a25a7788b4ff9c8cc24510d44612d64b738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:89:39:d1:84:3d:ec:e7:81:f1:62:2e:a1:2b: 57:9c:af:0e:66:e1:d0:2c:63:42:59:9d:26:d7:7b: 2e:a9:77:8d:16:6e:b7:c8:86:57:89:ae:13:c1:14: 7c:01:da:0e:1f:52:98:33:a1:05:20:0d:cf:47:ec: f0:72:e0:81:fa:03:13:c0:42:b4:45:ef:10:2f:cc: 61:e7:cf:b9:db:fb:e8:97:93:45:0b:3a:ec:2a:89: 6c:17:15:13:80:eb:37:7e:3a:9e:e1:91:7e:26:ef: d6:c6:41:4a:ed:97:22:44:cd:5d:f4:bf:28:81:72: 07:1a:48:42:7e:ed:60:3b:14:1e:70:9f:a8:89:b5: 4f:ac:14:20:ea:9d:41:cb:51:64:0c:8f:b6:9f:ca: a8:e8:60:60:55:43:1f:6c:7b:36:a3:41:74:b2:b3: c4:6e:d8:3f:e5:6d:66:80:29:ce:22:c1:60:a8:e2: d4:2f:43:d9:1d:37:38:10:a7:e3:c7:f8:41:c8:3d: b9:59:ce:f9:b1:8f:92:e4:bd:4d:e2:b5:93:50:e7: 00:f5:14:3a:aa:a4:d3:b8:93:e7:4b:a3:85:de:34: 0e:c3:f8:0a:59:d4:13:b2:fd:ec:d1:0f:f0:b8:8c: 8c:21:1f:80:6d:c4:cf:4e:fd:b6:4d:12:e4:4a:e9: c3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:2E:1A:25:A7:78:8B:4F:F9:C8:CC:24:51:0D:44:61:2D:64:B7:38 X509v3 Authority Key Identifier: keyid:A0:B6:A5:B1:A1:4C:86:D4:CF:B4:6C:4E:86:EC:D4:06:68:04:CC:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLalsaFMhtTPtGxOhuzUBmgEzJA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:c1:04:f9:0d:1e:93:ef:94:49:00:85:9e:9a:b3:ae:87:eb: 18:2d:c3:e8:dd:a5:5c:e4:b2:47:b2:5c:e0:ad:fc:6a:dc:7b: 49:85:53:f3:86:d3:8f:a7:0e:cb:6a:2a:2a:0d:94:8c:89:15: 45:66:45:ae:51:10:64:f9:7c:c6:3f:ec:78:0d:11:ac:77:d5: 58:87:2f:34:04:23:00:91:3f:27:ad:18:2b:ba:be:ac:05:9c: 18:04:40:46:2b:7d:76:5d:f7:2b:32:46:22:e0:3f:6d:65:0a: 91:99:a2:a0:85:34:55:dc:80:41:b7:d2:24:c7:30:dc:9e:21: 95:a2:f9:ab:4d:94:fd:49:e0:ae:c9:71:47:0a:65:ab:84:6d: 45:1c:ac:5e:21:a5:0d:3b:98:c5:0c:fa:f9:08:61:06:8b:c5: 07:54:37:51:97:c0:8b:e5:4e:bc:5b:2d:9d:ba:99:67:30:c5: e8:96:68:df:c4:06:ed:c4:c8:d1:3a:66:bc:ef:ce:5b:2b:b0: f0:2b:dd:ae:b3:96:9d:77:4e:cb:45:3a:64:a8:14:dc:ae:e6: 16:ac:bd:9f:2d:74:1f:5c:60:71:ac:20:63:eb:cf:b2:9a:56: f7:77:c4:60:8e:59:a1:82:c7:ec:6f:79:53:7b:df:41:f7:9e: 56:1b:30:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9IyznKa3ppUOSY3U9WPGvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYjZhNWIxYTE0Yzg2ZDRjZmI0NmM0ZTg2ZWNkNDA2Njgw NGNjOTAwHhcNMjUxMjIwMTkwMTEzWhcNMjUxMjIxMTkwMTEzWjAzMTEwLwYDVQQD EyhiNTJlMWEyNWE3Nzg4YjRmZjljOGNjMjQ1MTBkNDQ2MTJkNjRiNzM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnYk50YQ97OeB8WIuoStXnK8OZuHQ LGNCWZ0m13suqXeNFm63yIZXia4TwRR8AdoOH1KYM6EFIA3PR+zwcuCB+gMTwEK0 Re8QL8xh58+52/vol5NFCzrsKolsFxUTgOs3fjqe4ZF+Ju/WxkFK7ZciRM1d9L8o gXIHGkhCfu1gOxQecJ+oibVPrBQg6p1By1FkDI+2n8qo6GBgVUMfbHs2o0F0srPE btg/5W1mgCnOIsFgqOLUL0PZHTc4EKfjx/hByD25Wc75sY+S5L1N4rWTUOcA9RQ6 qqTTuJPnS6OF3jQOw/gKWdQTsv3s0Q/wuIyMIR+AbcTPTv22TRLkSunDGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLUuGiWneItP+cjMJFENRGEtZLc4MB8GA1UdIwQY MBaAFKC2pbGhTIbUz7RsTobs1AZoBMyQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0xhbHNhRk1odFRQdEd4T2h1elVCbWdFekpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9lMWZiNTItOTc5ZC00NDM2LWJlNTEt ODU4NGJlZjBiN2Q1LzEvb0xhbHNhRk1odFRQdEd4T2h1elVCbWdFekpBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC9lMWZiNTItOTc5ZC00NDM2LWJlNTEtODU4NGJlZjBiN2Q1 LzEvb0xhbHNhRk1odFRQdEd4T2h1elVCbWdFekpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXcEE+Q0e k++USQCFnpqzrofrGC3D6N2lXOSyR7Jc4K38atx7SYVT84bTj6cOy2oqKg2UjIkV RWZFrlEQZPl8xj/seA0RrHfVWIcvNAQjAJE/J60YK7q+rAWcGARARit9dl33KzJG IuA/bWUKkZmioIU0VdyAQbfSJMcw3J4hlaL5q02U/UngrslxRwplq4RtRRysXiGl DTuYxQz6+QhhBovFB1Q3UZfAi+VOvFstnbqZZzDF6JZo38QG7cTI0TpmvO/OWyuw 8CvdrrOWnXdOy0U6ZKgU3K7mFqy9ny10H1xgcawgY+vPsppW93fEYI5ZoYLH7G95 U3vfQfeeVhswSg== -----END CERTIFICATE-----Generated at Sun Dec 21 03:24:52 2025 by rpki-client