This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft File: OoLcXHHOpyxlsCahJnifOIZXC6Y.mft (raw, json) Hash identifier: W/ZrCACcngzyZBDUfVEeNThFB504IITyk76NrABadO4= Subject key identifier: 6D:C1:BC:F6:7F:6B:F7:9A:00:31:94:D6:B3:70:62:3D:7C:51:20:E8 Authority key identifier: 3A:82:DC:5C:71:CE:A7:2C:65:B0:26:A1:26:78:9F:38:86:57:0B:A6 Certificate issuer: /CN=3a82dc5c71cea72c65b026a126789f3886570ba6 Certificate serial: 019AF12EC13787DC3526BA38259EBD4D8DBB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoLcXHHOpyxlsCahJnifOIZXC6Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 01:02:44 +0000 Manifest this update: Sat 06 Dec 2025 01:02:44 +0000 Manifest next update: Sun 07 Dec 2025 01:02:44 +0000 Files and hashes: 1: OoLcXHHOpyxlsCahJnifOIZXC6Y.crl (hash: 4hk1yV26zZ4kbQ9+et7BkYt72wNqCtD1UQFF00cWY/A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft rsync://rpki.ripe.net/repository/DEFAULT/OoLcXHHOpyxlsCahJnifOIZXC6Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:c1:37:87:dc:35:26:ba:38:25:9e:bd:4d:8d:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a82dc5c71cea72c65b026a126789f3886570ba6 Validity Not Before: Dec 6 01:02:44 2025 GMT Not After : Dec 7 01:02:44 2025 GMT Subject: CN=6dc1bcf67f6bf79a003194d6b370623d7c5120e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cf:d9:1c:15:5e:df:c8:db:5b:ea:0f:66:c7: 2d:f6:2f:ae:16:67:f2:f1:fb:61:3c:06:c8:a5:f7: 25:1b:4a:61:9c:c2:fb:4f:2b:bd:2b:c7:77:c5:84: 45:69:9f:a9:20:3b:a0:62:10:60:27:10:f6:01:32: 76:f3:5f:e1:4b:52:87:14:63:41:a1:0c:5e:6d:b0: c8:00:42:3f:ba:2d:92:44:8e:6b:5b:53:97:16:b7: a3:82:b7:3d:f5:e0:3e:4f:0b:2c:7c:b7:78:8e:fa: cd:1a:79:28:6b:45:f0:3a:f1:a3:c3:4b:a9:a8:0f: 73:2f:0d:ff:91:4e:b2:56:79:cc:86:47:41:e5:21: fa:b2:63:ac:ee:19:e8:7c:b0:cd:97:4a:e1:2d:ec: 17:e1:36:94:a1:d6:4e:27:d1:2b:9f:6e:e8:50:fc: 27:ca:6b:29:a5:1a:06:e4:3d:58:3b:c2:c5:d9:44: 21:21:04:37:e9:aa:3c:10:93:7e:31:8b:02:a3:41: df:1d:20:9c:0f:50:25:9d:4a:04:22:c4:43:71:72: ec:ff:a1:42:42:2e:6f:09:ed:90:a4:72:ad:cd:38: 39:4b:dc:e9:9c:fb:0d:80:a9:9d:0e:5d:a3:3f:9b: cc:d8:7a:18:26:15:5c:a3:26:65:38:c0:d2:2c:3f: a9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:C1:BC:F6:7F:6B:F7:9A:00:31:94:D6:B3:70:62:3D:7C:51:20:E8 X509v3 Authority Key Identifier: keyid:3A:82:DC:5C:71:CE:A7:2C:65:B0:26:A1:26:78:9F:38:86:57:0B:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoLcXHHOpyxlsCahJnifOIZXC6Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:ce:7e:84:01:78:48:b8:59:9e:a1:62:f9:70:5c:54:61:67: c0:7d:0b:bc:85:30:c5:11:12:86:6b:92:79:f0:aa:55:b7:07: 8b:30:fe:b7:d8:28:88:d9:c0:d2:a1:c8:0e:08:c1:e9:4f:ee: 6f:80:56:11:10:a6:b2:50:0c:af:68:fb:e9:97:6c:29:e1:f3: 4a:f2:3b:bb:3d:24:27:44:38:10:46:7e:f9:54:01:cb:a1:ba: 93:5d:e3:82:93:5f:1c:11:2b:a1:65:6f:8d:3e:0b:cf:ea:29: 8d:c9:1a:a7:30:37:e0:97:3c:8f:1b:31:a4:f5:9d:08:5d:1b: bd:7b:e4:06:48:f4:eb:c3:fb:a9:d2:0e:60:18:0a:1b:76:af: 27:3f:b8:33:f0:be:4f:df:5f:d5:ae:96:af:32:80:44:b9:35: 93:ed:9b:8a:b4:e6:23:cd:59:af:15:40:d1:0c:82:b8:b9:0a: b8:5a:06:64:84:63:f6:78:f6:1a:68:3c:b8:94:e3:cc:42:fb: 6e:83:ba:f7:0e:84:29:5e:4a:98:8e:ae:07:b6:e2:ca:e4:48: b7:51:d7:a4:cc:25:46:5a:3a:64:02:e4:f9:4e:3a:06:0b:7f: 80:cb:de:ee:cb:92:61:b4:36:1b:7f:2c:1c:66:16:20:5c:6f: f5:f6:01:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLsE3h9w1Jro4JZ69TY27MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhODJkYzVjNzFjZWE3MmM2NWIwMjZhMTI2Nzg5ZjM4ODY1 NzBiYTYwHhcNMjUxMjA2MDEwMjQ0WhcNMjUxMjA3MDEwMjQ0WjAzMTEwLwYDVQQD Eyg2ZGMxYmNmNjdmNmJmNzlhMDAzMTk0ZDZiMzcwNjIzZDdjNTEyMGU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0M/ZHBVe38jbW+oPZsct9i+uFmfy 8fthPAbIpfclG0phnML7Tyu9K8d3xYRFaZ+pIDugYhBgJxD2ATJ281/hS1KHFGNB oQxebbDIAEI/ui2SRI5rW1OXFrejgrc99eA+TwssfLd4jvrNGnkoa0XwOvGjw0up qA9zLw3/kU6yVnnMhkdB5SH6smOs7hnofLDNl0rhLewX4TaUodZOJ9Ern27oUPwn ymsppRoG5D1YO8LF2UQhIQQ36ao8EJN+MYsCo0HfHSCcD1AlnUoEIsRDcXLs/6FC Qi5vCe2QpHKtzTg5S9zpnPsNgKmdDl2jP5vM2HoYJhVcoyZlOMDSLD+pJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG3BvPZ/a/eaADGU1rNwYj18USDoMB8GA1UdIwQY MBaAFDqC3FxxzqcsZbAmoSZ4nziGVwumMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT29MY1hISE9weXhsc0NhaEpuaWZPSVpYQzZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9kNTk1OGMtMTRjYS00MWQ1LThkNDIt ZGMxZmFiNDM5ZTMwLzEvT29MY1hISE9weXhsc0NhaEpuaWZPSVpYQzZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi9kNTk1OGMtMTRjYS00MWQ1LThkNDItZGMxZmFiNDM5ZTMw LzEvT29MY1hISE9weXhsc0NhaEpuaWZPSVpYQzZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANc5+hAF4 SLhZnqFi+XBcVGFnwH0LvIUwxREShmuSefCqVbcHizD+t9goiNnA0qHIDgjB6U/u b4BWERCmslAMr2j76ZdsKeHzSvI7uz0kJ0Q4EEZ++VQBy6G6k13jgpNfHBEroWVv jT4Lz+opjckapzA34Jc8jxsxpPWdCF0bvXvkBkj068P7qdIOYBgKG3avJz+4M/C+ T99f1a6WrzKARLk1k+2birTmI81ZrxVA0QyCuLkKuFoGZIRj9nj2Gmg8uJTjzEL7 boO69w6EKV5KmI6uB7biyuRIt1HXpMwlRlo6ZALk+U46Bgt/gMve7suSYbQ2G38s HGYWIFxv9fYBRA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:24:57 2025 by rpki-client