This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json) Hash identifier: cJ8qE3kY/SSqXQQkzog3oQg5oMq+mcVdWjAtBmZ4TZQ= Subject key identifier: 73:59:34:91:7E:E4:0E:07:89:8A:B2:CE:C8:42:2C:95:89:7A:99:82 Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9 Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9 Certificate serial: 019AF389D09A7CC0CF722FF035DB292719D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft Manifest number: 091C Signing time: Sat 06 Dec 2025 12:01:26 +0000 Manifest this update: Sat 06 Dec 2025 12:01:26 +0000 Manifest next update: Sun 07 Dec 2025 12:01:26 +0000 Files and hashes: 1: 1ZMKCjtoyUotW5zL6d-I3qOaSBE.roa (hash: 5gJp0s5iC22SH9q8M0EDrUjpQSDzsUFawVisJiKFG6A=) 2: D2x90Hp-gN9ES-WMtaRxOkRU7zk.roa (hash: l/qjD5THnTNjpjg3s7YHV5e23ifKj7BiMe0FzY2nCgo=) 3: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: D/tS7mB3t0OmD2NG81Xt4epk6YCJu0sHCLuzl8lX964=) 4: XAC3MTIDy2Wt50Hn1LPVCPZj6e0.roa (hash: Dwx9RqPqD8/O5XTxZSeNq9SNO+JNCNDt1UlVOS13grg=) 5: hbNzX9sb-OFJ3CONrcdLuZ55uyU.roa (hash: NFMtgtynDHta0KlGWRazjZvBYm+8qkNagl80fkK/Tdk=) 6: y5t9VCG86iK6aUs1XnSlJL9WwkU.roa (hash: AeobAv5BcqpSnLadsMWLSvPDtqBRihCI6v5wMAmYfok=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:d0:9a:7c:c0:cf:72:2f:f0:35:db:29:27:19:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9 Validity Not Before: Dec 6 12:01:26 2025 GMT Not After : Dec 7 12:01:26 2025 GMT Subject: CN=735934917ee40e07898ab2cec8422c95897a9982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:7b:45:a3:cc:23:e1:e3:6d:0a:e0:88:c0:5f: 51:36:67:55:f4:18:b1:df:1d:02:26:77:3d:45:15: f1:5b:60:5e:cc:58:96:f8:58:da:9d:d1:3c:16:1c: 61:f9:27:60:d4:5d:ea:5e:67:47:bc:31:47:d4:68: 14:3f:05:9d:ef:43:c8:c9:d1:02:69:6d:d2:7e:5b: 53:6d:71:bc:91:50:37:48:83:e6:a1:e1:a9:54:35: 0f:ad:f9:29:da:bd:9b:2a:58:e8:14:c0:02:67:d9: e0:3e:ff:b7:b3:05:ec:e3:5b:63:11:5e:6f:18:11: 03:24:0c:54:25:af:3b:af:d8:91:83:77:a3:bd:f5: 4b:96:40:3a:14:a4:87:29:21:d9:52:fe:05:97:21: 4e:ed:d7:0f:7f:65:d6:fb:c6:b4:11:60:f5:51:05: 34:d8:fc:66:9f:18:75:42:84:6b:07:2e:b8:ae:8b: 19:00:86:d9:e3:a5:13:bc:8d:85:5f:ac:bc:6a:b4: 95:95:f5:cc:99:bf:b2:c0:b5:ef:e0:44:1b:be:7b: e9:35:0b:dd:1f:be:09:ee:e5:b4:47:40:8a:ed:d8: 76:a7:e6:87:55:3e:cd:f4:c3:cf:4b:d3:f9:2f:22: c9:82:3c:e4:03:5e:9d:5e:4e:d8:42:27:d4:52:da: 75:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:59:34:91:7E:E4:0E:07:89:8A:B2:CE:C8:42:2C:95:89:7A:99:82 X509v3 Authority Key Identifier: keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:e5:35:3c:e5:6b:d5:0f:18:a3:c9:90:c5:f2:db:9f:d3:42: 6e:f9:d5:76:15:c7:e0:0f:14:94:55:ca:7d:d4:07:24:8c:ed: ea:9e:54:76:b8:6e:97:05:02:2a:3e:80:f1:af:2f:d3:98:db: 9e:e1:2c:3d:57:f9:7e:09:0e:df:f4:06:4c:f3:4e:b1:8d:af: 29:6a:06:2f:d7:e9:f0:96:19:de:20:3c:4c:30:da:16:93:84: 23:71:f2:79:cf:3b:1a:8c:ce:ca:02:7a:d7:41:f8:06:a2:8e: 8f:31:85:ed:08:7a:16:90:e0:8b:8a:3c:36:e6:5e:e1:dd:d1: 49:f2:fa:2e:a0:7b:9a:68:35:7a:1d:64:67:84:b0:6e:2f:2a: a8:8a:82:c5:cc:2e:b6:9d:03:f7:48:6a:34:fa:fd:8d:d7:d7: 20:ba:fc:a7:1a:bb:05:77:8b:75:25:f5:74:a7:7b:b0:98:04: fb:4a:d5:20:9f:20:cd:5a:50:b1:ac:61:eb:60:00:83:f3:49: 3c:43:8f:0f:5c:1d:11:33:e4:4b:2a:43:08:64:94:af:02:ed: 3c:51:b1:51:fe:d3:fd:e9:c6:e3:9b:48:e6:83:84:2b:77:4e: 1a:29:6e:6a:be:da:45:0f:7a:33:ad:44:d8:eb:f3:e1:a3:9d: 64:08:c5:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzidCafMDPci/wNdspJxnQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5MzZkYWYwMzc1NmJhZjgzYmE0ZjM4ZGJlNWQ2OGNiOWJh Y2VmZjkwHhcNMjUxMjA2MTIwMTI2WhcNMjUxMjA3MTIwMTI2WjAzMTEwLwYDVQQD Eyg3MzU5MzQ5MTdlZTQwZTA3ODk4YWIyY2VjODQyMmM5NTg5N2E5OTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7XtFo8wj4eNtCuCIwF9RNmdV9Bix 3x0CJnc9RRXxW2BezFiW+FjandE8Fhxh+Sdg1F3qXmdHvDFH1GgUPwWd70PIydEC aW3SfltTbXG8kVA3SIPmoeGpVDUPrfkp2r2bKljoFMACZ9ngPv+3swXs41tjEV5v GBEDJAxUJa87r9iRg3ejvfVLlkA6FKSHKSHZUv4FlyFO7dcPf2XW+8a0EWD1UQU0 2Pxmnxh1QoRrBy64rosZAIbZ46UTvI2FX6y8arSVlfXMmb+ywLXv4EQbvnvpNQvd H74J7uW0R0CK7dh2p+aHVT7N9MPPS9P5LyLJgjzkA16dXk7YQifUUtp1FwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHNZNJF+5A4HiYqyzshCLJWJepmCMB8GA1UdIwQY MBaAFDk22vA3Vrr4O6Tzjb5daMubrO/5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8wNGVhMzMtODNhYS00ZTU2LTk4Y2Mt Zjk1ZjY2ZDYwNTVjLzEvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy8wNGVhMzMtODNhYS00ZTU2LTk4Y2MtZjk1ZjY2ZDYwNTVj LzEvT1RiYThEZFd1dmc3cFBPTnZsMW95NXVzN19rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJOU1POVr 1Q8Yo8mQxfLbn9NCbvnVdhXH4A8UlFXKfdQHJIzt6p5UdrhulwUCKj6A8a8v05jb nuEsPVf5fgkO3/QGTPNOsY2vKWoGL9fp8JYZ3iA8TDDaFpOEI3Hyec87GozOygJ6 10H4BqKOjzGF7Qh6FpDgi4o8NuZe4d3RSfL6LqB7mmg1eh1kZ4Swbi8qqIqCxcwu tp0D90hqNPr9jdfXILr8pxq7BXeLdSX1dKd7sJgE+0rVIJ8gzVpQsaxh62AAg/NJ PEOPD1wdETPkSypDCGSUrwLtPFGxUf7T/enG45tI5oOEK3dOGiluar7aRQ96M61E 2Ovz4aOdZAjFbw== -----END CERTIFICATE-----Generated at Sat Dec 6 21:16:34 2025 by rpki-client