This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft File: OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft (raw, json) Hash identifier: rfLXBR2KGilVnxC69xOTW7icLhGiS1nG5Bzp3bvZ2PU= Subject key identifier: 32:00:81:39:39:90:45:87:54:AB:4D:E8:C6:02:68:ED:2E:F8:41:8A Authority key identifier: 38:9D:D4:12:6F:8B:E0:7A:F4:54:49:7C:A0:F5:66:52:95:48:2A:D5 Certificate issuer: /CN=389dd4126f8be07af454497ca0f5665295482ad5 Certificate serial: 019AF50B3C75B58E47303AACF9AA86C3879C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft Manifest number: 06BF Signing time: Sat 06 Dec 2025 19:02:25 +0000 Manifest this update: Sat 06 Dec 2025 19:02:25 +0000 Manifest next update: Sun 07 Dec 2025 19:02:25 +0000 Files and hashes: 1: OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.crl (hash: 9hJwNgKN4sDzAsdthw3dQFcAXDBkSIPqmrXSOKJKLQs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft rsync://rpki.ripe.net/repository/DEFAULT/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:3c:75:b5:8e:47:30:3a:ac:f9:aa:86:c3:87:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=389dd4126f8be07af454497ca0f5665295482ad5 Validity Not Before: Dec 6 19:02:25 2025 GMT Not After : Dec 7 19:02:25 2025 GMT Subject: CN=320081393990458754ab4de8c60268ed2ef8418a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ba:7c:da:08:32:9f:ab:49:00:b5:07:67:87: d0:33:30:c2:af:dc:45:a8:29:85:f7:ca:a6:bc:58: 00:8c:03:04:b8:5c:fe:ef:9b:2b:62:6a:14:29:0c: a8:49:72:a5:5e:6f:fd:c5:be:9b:ef:37:60:c7:1e: f9:66:c6:3f:fd:ac:c3:40:ef:48:a1:3e:25:f3:f0: 4a:97:2a:3d:15:f6:35:40:f2:1f:ad:0c:24:a6:31: 3e:a6:40:80:c3:d4:8a:94:4f:6b:46:df:3f:84:9c: 78:81:d2:34:49:3c:67:40:ed:a7:a0:d4:7a:76:3e: 50:84:69:63:d0:02:87:8e:40:29:7c:03:30:85:d4: 1c:6d:57:6d:34:8f:3b:33:00:e3:da:b4:7e:18:05: ac:5e:b4:84:57:15:12:99:fd:88:fc:50:c1:f7:59: ec:9b:5b:4a:78:fd:8a:b4:1d:e5:22:63:7e:82:11: b9:d7:dc:55:e4:60:03:b2:3b:4b:65:b6:a0:39:7d: 41:b2:2d:d0:11:92:dd:dd:ff:7f:dd:6b:2c:99:5c: 43:f1:03:11:bc:7a:08:f1:d4:33:e0:24:fb:1b:1a: 77:e9:b1:a2:fe:7e:4a:33:41:83:25:7a:fc:44:27: d3:7b:a2:b9:e5:f6:91:c0:ad:54:0a:8f:5b:bb:36: 5a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:00:81:39:39:90:45:87:54:AB:4D:E8:C6:02:68:ED:2E:F8:41:8A X509v3 Authority Key Identifier: keyid:38:9D:D4:12:6F:8B:E0:7A:F4:54:49:7C:A0:F5:66:52:95:48:2A:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:4e:f8:ee:ce:2f:0f:73:30:f3:f3:1f:ca:fe:ec:90:08:ee: f4:c3:83:14:8a:20:a7:4d:c1:50:b0:9d:6d:f7:d8:dc:25:80: 7c:13:97:6b:8d:a5:ad:60:96:98:dc:01:0f:42:61:fe:6e:3b: bc:e9:04:9d:58:94:c2:a6:41:ad:93:79:5b:ff:3f:b5:c7:bc: 0d:c2:78:7f:04:68:1b:3b:77:26:17:1b:fb:97:95:5a:d4:22: 7e:76:8c:95:f1:91:a5:12:63:d2:7a:55:4d:c3:92:8c:c7:bb: 74:54:76:bb:71:0d:da:29:74:86:5b:1d:91:9a:fc:45:32:02: 69:03:35:eb:45:02:a5:03:5d:a0:20:9b:99:5f:aa:90:f6:15: 4b:2d:f3:9f:c4:83:09:ff:86:08:7c:66:d5:69:2d:9e:22:b5: ce:b4:ac:11:11:2f:3e:34:1e:14:27:8c:72:3c:ac:53:b5:9d: b5:fe:41:5f:85:da:2e:ea:50:5a:f7:4f:42:e7:fd:a3:7a:39: 4e:d3:45:54:ae:69:4d:ef:4a:74:83:2e:99:7a:46:46:67:13: c9:37:d1:2b:4a:64:6d:cf:bd:75:96:6f:ae:01:fa:71:b5:bd: 61:2b:e8:13:ca:f6:37:67:b6:a1:61:39:af:22:5e:f5:f5:1c: 51:c6:9e:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1Czx1tY5HMDqs+aqGw4ecMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4OWRkNDEyNmY4YmUwN2FmNDU0NDk3Y2EwZjU2NjUyOTU0 ODJhZDUwHhcNMjUxMjA2MTkwMjI1WhcNMjUxMjA3MTkwMjI1WjAzMTEwLwYDVQQD EygzMjAwODEzOTM5OTA0NTg3NTRhYjRkZThjNjAyNjhlZDJlZjg0MThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8Lp82ggyn6tJALUHZ4fQMzDCr9xF qCmF98qmvFgAjAMEuFz+75srYmoUKQyoSXKlXm/9xb6b7zdgxx75ZsY//azDQO9I oT4l8/BKlyo9FfY1QPIfrQwkpjE+pkCAw9SKlE9rRt8/hJx4gdI0STxnQO2noNR6 dj5QhGlj0AKHjkApfAMwhdQcbVdtNI87MwDj2rR+GAWsXrSEVxUSmf2I/FDB91ns m1tKeP2KtB3lImN+ghG519xV5GADsjtLZbagOX1Bsi3QEZLd3f9/3WssmVxD8QMR vHoI8dQz4CT7Gxp36bGi/n5KM0GDJXr8RCfTe6K55faRwK1UCo9buzZaAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDIAgTk5kEWHVKtN6MYCaO0u+EGKMB8GA1UdIwQY MBaAFDid1BJvi+B69FRJfKD1ZlKVSCrVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0ozVUVtLUw0SHIwVkVsOG9QVm1VcFZJS3RVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi85MTAzMTMtY2UxMC00ZDZmLTgyN2Mt NWM1NWVjMjIxZTEyLzEvT0ozVUVtLUw0SHIwVkVsOG9QVm1VcFZJS3RVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi85MTAzMTMtY2UxMC00ZDZmLTgyN2MtNWM1NWVjMjIxZTEy LzEvT0ozVUVtLUw0SHIwVkVsOG9QVm1VcFZJS3RVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcE747s4v D3Mw8/Mfyv7skAju9MODFIogp03BULCdbffY3CWAfBOXa42lrWCWmNwBD0Jh/m47 vOkEnViUwqZBrZN5W/8/tce8DcJ4fwRoGzt3Jhcb+5eVWtQifnaMlfGRpRJj0npV TcOSjMe7dFR2u3EN2il0hlsdkZr8RTICaQM160UCpQNdoCCbmV+qkPYVSy3zn8SD Cf+GCHxm1WktniK1zrSsEREvPjQeFCeMcjysU7Wdtf5BX4XaLupQWvdPQuf9o3o5 TtNFVK5pTe9KdIMumXpGRmcTyTfRK0pkbc+9dZZvrgH6cbW9YSvoE8r2N2e2oWE5 ryJe9fUcUcaeVw== -----END CERTIFICATE-----Generated at Sat Dec 6 21:42:08 2025 by rpki-client