This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft File: Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft (raw, json) Hash identifier: 3m77zbqb21oI6NzajpDJrp3fLZ/erxm2NM2QR16vcdw= Subject key identifier: 75:7F:77:BC:A0:AD:C2:7C:10:9B:2E:FD:7C:6B:54:18:9E:AE:9E:68 Authority key identifier: 3A:D7:7F:E6:8F:A9:DA:B6:44:FD:0A:3D:FB:3A:02:56:6A:80:95:90 Certificate issuer: /CN=3ad77fe68fa9dab644fd0a3dfb3a02566a809590 Certificate serial: 019B454A8A0E0A9F08DB5EE6851B0DBADF6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft Manifest number: 178C Signing time: Mon 22 Dec 2025 09:01:11 +0000 Manifest this update: Mon 22 Dec 2025 09:01:11 +0000 Manifest next update: Tue 23 Dec 2025 09:01:11 +0000 Files and hashes: 1: MChEll1heVmbFidBBJvsHOrl4fE.roa (hash: ARoQGxRNkrRdwVI3hmAp61vYLz+zRk9Xivm5xOWKmgg=) 2: Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl (hash: XLXlDHjFds+nGYgTpCx1Cdr3vWo17E4rXbSqzkTgpAY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 09:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:45:4a:8a:0e:0a:9f:08:db:5e:e6:85:1b:0d:ba:df:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ad77fe68fa9dab644fd0a3dfb3a02566a809590 Validity Not Before: Dec 22 09:01:11 2025 GMT Not After : Dec 23 09:01:11 2025 GMT Subject: CN=757f77bca0adc27c109b2efd7c6b54189eae9e68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7f:17:96:78:70:e5:0f:40:31:4a:74:0f:19: 0c:4f:ca:2a:f0:f7:ab:4f:fb:4a:9a:36:c4:48:17: aa:36:6e:b2:77:b2:5b:84:05:af:b2:ec:d3:77:1e: 46:4d:77:ab:a5:70:66:5c:f1:e5:7a:94:12:f5:a5: 42:e4:de:fb:db:9d:99:b0:4b:25:c3:80:c9:ff:41: 2d:84:71:20:0f:b7:d7:7b:df:b8:3f:a4:b0:67:f1: e4:0f:8a:0e:14:a8:0e:53:21:0f:4d:93:db:7a:34: 98:f9:53:33:fa:18:fa:a6:98:7e:90:17:a2:07:cc: 25:f7:03:28:3f:89:ed:5d:25:11:a8:dc:4c:08:42: dd:52:61:53:bf:8b:24:7a:e8:cd:49:87:47:54:d1: 32:06:03:eb:9b:53:26:09:09:36:21:dd:b1:c9:41: 4c:2c:79:22:91:b3:5d:23:67:17:f1:91:25:b6:ae: 03:ef:76:01:08:17:68:e1:c8:89:96:94:0b:87:1c: eb:6c:54:67:7f:d6:42:c2:35:05:76:96:cd:29:3b: db:77:be:f9:70:56:fc:0f:a1:e2:da:3e:68:0e:5b: 9d:88:11:47:27:39:58:e7:c7:24:58:31:9b:e1:23: 03:eb:b1:f5:64:72:91:4e:7e:5c:a7:f6:63:e0:1b: 11:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:7F:77:BC:A0:AD:C2:7C:10:9B:2E:FD:7C:6B:54:18:9E:AE:9E:68 X509v3 Authority Key Identifier: keyid:3A:D7:7F:E6:8F:A9:DA:B6:44:FD:0A:3D:FB:3A:02:56:6A:80:95:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1374c0-4bd4-4156-a77f-653a70bf0925/1/Otd_5o-p2rZE_Qo9-zoCVmqAlZA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:f6:a0:58:6a:24:c4:44:12:c7:cc:7b:08:2e:d1:2b:69:4e: 60:c1:27:9c:95:06:4d:d3:89:bd:6d:87:33:9d:5a:d2:f9:d7: 26:28:09:78:5a:9c:0b:95:6e:b1:e9:90:6f:59:0b:f9:b0:c3: 57:91:77:46:5f:cc:52:3d:b2:1d:44:01:1d:49:21:a6:08:ab: 77:60:13:e2:f6:69:8f:48:1d:7b:1a:e3:5e:99:ce:93:c2:70: e7:bc:1f:ab:63:30:98:98:98:dc:a9:90:e8:35:63:e0:cd:e5: 02:ff:4c:a8:39:22:21:4b:ce:85:c1:a0:79:f2:5d:59:09:ea: b9:bc:b0:f3:54:b0:7a:34:49:12:26:42:13:4e:f9:94:e5:6b: ac:c3:51:66:01:8d:07:14:97:c8:8c:84:28:2a:4a:ac:a2:26: e9:3c:78:e8:b5:f2:5e:c1:b0:1a:0b:99:29:17:03:06:43:ae: 1c:66:59:40:6a:28:11:fc:4b:0e:78:21:3e:53:aa:06:80:c3: 03:2c:a0:d9:8b:dc:6c:45:d4:b7:42:b1:79:72:ec:37:b2:30: 51:2b:53:d5:da:09:74:f6:8c:91:e6:09:93:b3:60:ea:51:4c: 73:8f:c4:5d:ad:0b:a2:20:68:02:42:b9:be:ee:fa:5e:dd:9b: f7:c2:b7:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtFSooOCp8I217mhRsNut9qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZDc3ZmU2OGZhOWRhYjY0NGZkMGEzZGZiM2EwMjU2NmE4 MDk1OTAwHhcNMjUxMjIyMDkwMTExWhcNMjUxMjIzMDkwMTExWjAzMTEwLwYDVQQD Eyg3NTdmNzdiY2EwYWRjMjdjMTA5YjJlZmQ3YzZiNTQxODllYWU5ZTY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0X8Xlnhw5Q9AMUp0DxkMT8oq8Per T/tKmjbESBeqNm6yd7JbhAWvsuzTdx5GTXerpXBmXPHlepQS9aVC5N77252ZsEsl w4DJ/0EthHEgD7fXe9+4P6SwZ/HkD4oOFKgOUyEPTZPbejSY+VMz+hj6pph+kBei B8wl9wMoP4ntXSURqNxMCELdUmFTv4skeujNSYdHVNEyBgPrm1MmCQk2Id2xyUFM LHkikbNdI2cX8ZEltq4D73YBCBdo4ciJlpQLhxzrbFRnf9ZCwjUFdpbNKTvbd775 cFb8D6Hi2j5oDludiBFHJzlY58ckWDGb4SMD67H1ZHKRTn5cp/Zj4BsRWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHV/d7ygrcJ8EJsu/XxrVBierp5oMB8GA1UdIwQY MBaAFDrXf+aPqdq2RP0KPfs6AlZqgJWQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3RkXzVvLXAyclpFX1FvOS16b0NWbXFBbFpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8xMzc0YzAtNGJkNC00MTU2LWE3N2Yt NjUzYTcwYmYwOTI1LzEvT3RkXzVvLXAyclpFX1FvOS16b0NWbXFBbFpBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC8xMzc0YzAtNGJkNC00MTU2LWE3N2YtNjUzYTcwYmYwOTI1 LzEvT3RkXzVvLXAyclpFX1FvOS16b0NWbXFBbFpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABvagWGok xEQSx8x7CC7RK2lOYMEnnJUGTdOJvW2HM51a0vnXJigJeFqcC5VusemQb1kL+bDD V5F3Rl/MUj2yHUQBHUkhpgird2AT4vZpj0gdexrjXpnOk8Jw57wfq2MwmJiY3KmQ 6DVj4M3lAv9MqDkiIUvOhcGgefJdWQnqubyw81SwejRJEiZCE075lOVrrMNRZgGN BxSXyIyEKCpKrKIm6Tx46LXyXsGwGguZKRcDBkOuHGZZQGooEfxLDnghPlOqBoDD Ayyg2YvcbEXUt0KxeXLsN7IwUStT1doJdPaMkeYJk7Ng6lFMc4/EXa0LoiBoAkK5 vu76Xt2b98K34g== -----END CERTIFICATE-----Generated at Mon Dec 22 11:36:46 2025 by rpki-client