This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft File: OklF5GdkAp0lgdggwzc_pEWFVTk.mft (raw, json) Hash identifier: bWlMbknEPTC5TdKIbZqF/4y8mx8jKVwuWOcz2fYYKm8= Subject key identifier: 9F:80:E3:03:70:E8:F7:E3:36:57:85:A0:0A:A4:7C:BA:48:9F:69:7C Authority key identifier: 3A:49:45:E4:67:64:02:9D:25:81:D8:20:C3:37:3F:A4:45:85:55:39 Certificate issuer: /CN=3a4945e46764029d2581d820c3373fa445855539 Certificate serial: 019AF24000D0FEA8E40C1AAAE7D0866400D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft Manifest number: 1770 Signing time: Sat 06 Dec 2025 06:01:11 +0000 Manifest this update: Sat 06 Dec 2025 06:01:11 +0000 Manifest next update: Sun 07 Dec 2025 06:01:11 +0000 Files and hashes: 1: 1-yPHrZgsoThpMDnxsp8ik7ZJAmM.roa (hash: PkPdKCMYMFbeGyHu/UiymTakLQYctiNwfIAb9+YJYgQ=) 2: 5QRzBx43AV-rVFibUIkxX67tvbI.roa (hash: gayo6a2ZkLUJa9zMEpLRBH3Ls/m1iB/K2c1cMPBX4/Y=) 3: 6Xm-75V0sXQGqzDZtgBZ1MB1y7U.roa (hash: y6WKfvCzgcr5qRF8JvQX+THC7a2GBmmRXVuRnQY8PoA=) 4: OklF5GdkAp0lgdggwzc_pEWFVTk.crl (hash: 6nAXVCF0Woq9b68E416R2gfkjyzBV8JSSDgjjXp/AkI=) 5: U6V2FCr3duwrLHYXfMUAwbMQYWE.roa (hash: n65sXgOD4a9BNyNZnLy9ePNv9aeblojwP3q3G8dIAXE=) 6: aEuO7f3JtpWyu2f1MPnzErrljgU.roa (hash: YH8NEIJKb+pPrmGWzPR+jhBeuD5w3MtFJDL2dbR+PwQ=) 7: hE4J7-nVjBP1I1amWriRZQbCRjQ.roa (hash: t96fk3QnxrV27k+4LVx0l6UARkEoivZQZo9G+qQHzNc=) 8: tVLlOiV7SvnosXMuOA6u9tK4RqI.roa (hash: /FYDglX8ng94EWH9NM8VS2sIZeZUQbmdZE0FSeyFXmg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:00:d0:fe:a8:e4:0c:1a:aa:e7:d0:86:64:00:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a4945e46764029d2581d820c3373fa445855539 Validity Not Before: Dec 6 06:01:11 2025 GMT Not After : Dec 7 06:01:11 2025 GMT Subject: CN=9f80e30370e8f7e3365785a00aa47cba489f697c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d2:99:b5:48:5e:e6:9c:2e:03:0c:43:17:4f: 3d:7b:bc:ca:15:0f:d5:93:e2:e9:4e:e3:10:2e:6d: 39:ed:c1:97:30:a4:c1:f6:f6:25:11:0c:c3:9c:ad: 06:5d:ca:70:75:73:17:d3:b4:67:4a:ab:6a:27:4f: 28:09:9b:78:0c:d6:2e:3f:7c:98:33:3d:07:8e:8a: 96:01:26:85:67:5f:10:7b:ae:24:11:76:cc:4d:9a: d2:1c:fd:22:d0:0a:72:e1:20:c8:69:64:1b:74:0a: 69:e0:9d:9b:51:cd:d7:51:ed:c3:68:c4:a0:e8:f7: a4:35:d3:e2:46:a9:e9:ab:90:e5:a2:d8:3d:ec:7c: 61:78:d3:12:86:9f:83:ad:50:7c:6f:b5:da:0c:a6: 39:33:bb:1d:6f:db:82:dc:e2:61:8c:06:34:83:a5: 5c:25:aa:a5:5f:52:50:9a:f7:06:ec:20:9b:4f:81: 62:45:ae:c8:09:a1:db:9b:79:a3:7f:42:7a:bc:c2: bc:59:01:fe:67:ee:90:25:1c:00:80:e1:f2:7a:e3: d5:e5:11:08:3b:04:78:67:bb:e9:04:6c:89:82:47: e6:2f:24:8f:84:b0:b3:85:1e:54:16:21:7e:d3:d9: 8b:69:56:6e:94:df:08:46:3a:46:f4:48:19:33:4d: 35:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:80:E3:03:70:E8:F7:E3:36:57:85:A0:0A:A4:7C:BA:48:9F:69:7C X509v3 Authority Key Identifier: keyid:3A:49:45:E4:67:64:02:9D:25:81:D8:20:C3:37:3F:A4:45:85:55:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:4e:e6:8b:7b:a3:e5:96:b7:82:a8:fc:85:77:5e:64:7c:94: 21:97:e1:9a:eb:ce:d5:86:01:3d:ff:51:83:0b:66:8b:bf:85: bd:66:ec:45:4c:88:be:31:7c:40:4a:2f:f6:53:db:d5:01:9c: 9f:df:c5:91:9a:ff:3c:ae:ef:bf:f1:93:65:24:25:8c:85:ad: 27:f0:67:39:d7:61:2a:32:ea:9b:f6:21:ce:09:b0:ab:2a:88: 98:ed:4c:8f:86:63:4d:e3:e5:4e:94:78:61:15:75:19:33:49: 32:61:09:07:b3:67:b8:ba:6a:2e:31:42:0c:3a:83:09:30:ee: 86:f7:7d:bf:42:b7:9c:72:97:34:9a:65:ea:85:00:87:13:1e: 4d:4d:f4:d4:66:e2:bc:da:37:cb:a2:6f:90:2b:2f:61:72:21: 78:67:6f:90:dd:ac:79:d2:4f:27:f0:e1:9c:df:45:8c:9a:93: 8f:9a:8e:c6:1b:e3:16:01:bf:a4:9a:95:fd:58:8d:c0:b0:f7: da:53:a7:0a:3c:71:4f:28:4b:78:c5:c9:45:25:97:de:e9:dc: 49:62:13:89:06:fc:5b:77:7f:87:dd:eb:33:48:8b:cf:89:d0: 1c:e3:45:64:bc:67:6a:33:e1:68:96:36:f6:fe:98:94:e1:8a: 2d:fa:20:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQADQ/qjkDBqq59CGZADQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNDk0NWU0Njc2NDAyOWQyNTgxZDgyMGMzMzczZmE0NDU4 NTU1MzkwHhcNMjUxMjA2MDYwMTExWhcNMjUxMjA3MDYwMTExWjAzMTEwLwYDVQQD Eyg5ZjgwZTMwMzcwZThmN2UzMzY1Nzg1YTAwYWE0N2NiYTQ4OWY2OTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1dKZtUhe5pwuAwxDF089e7zKFQ/V k+LpTuMQLm057cGXMKTB9vYlEQzDnK0GXcpwdXMX07RnSqtqJ08oCZt4DNYuP3yY Mz0HjoqWASaFZ18Qe64kEXbMTZrSHP0i0Apy4SDIaWQbdApp4J2bUc3XUe3DaMSg 6PekNdPiRqnpq5Dlotg97HxheNMShp+DrVB8b7XaDKY5M7sdb9uC3OJhjAY0g6Vc JaqlX1JQmvcG7CCbT4FiRa7ICaHbm3mjf0J6vMK8WQH+Z+6QJRwAgOHyeuPV5REI OwR4Z7vpBGyJgkfmLySPhLCzhR5UFiF+09mLaVZulN8IRjpG9EgZM001KwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ+A4wNw6PfjNleFoAqkfLpIn2l8MB8GA1UdIwQY MBaAFDpJReRnZAKdJYHYIMM3P6RFhVU5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS80ZWY2ODAtN2M1NS00YTViLTg1Njgt MzM2YWM5NDU2NDY0LzEvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS80ZWY2ODAtN2M1NS00YTViLTg1NjgtMzM2YWM5NDU2NDY0 LzEvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn07mi3uj 5Za3gqj8hXdeZHyUIZfhmuvO1YYBPf9Rgwtmi7+FvWbsRUyIvjF8QEov9lPb1QGc n9/FkZr/PK7vv/GTZSQljIWtJ/BnOddhKjLqm/YhzgmwqyqImO1Mj4ZjTePlTpR4 YRV1GTNJMmEJB7NnuLpqLjFCDDqDCTDuhvd9v0K3nHKXNJpl6oUAhxMeTU301Gbi vNo3y6JvkCsvYXIheGdvkN2sedJPJ/DhnN9FjJqTj5qOxhvjFgG/pJqV/ViNwLD3 2lOnCjxxTyhLeMXJRSWX3uncSWITiQb8W3d/h93rM0iLz4nQHONFZLxnajPhaJY2 9v6YlOGKLfogzg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:19:46 2025 by rpki-client