This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft File: oL_QbOhVti2baIzYxTXV9JTNOTI.mft (raw, json) Hash identifier: JRUmRIQneckzQKH7vkfMVBfCGuCj/Q2+cPY2/dXSep8= Subject key identifier: E2:F7:E0:91:D7:4F:20:2C:5E:66:A9:7E:E0:A3:E6:49:A7:D9:66:BE Authority key identifier: A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32 Certificate issuer: /CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932 Certificate serial: 019B50A99C4E9E0CBD822D9DD88295677AB5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft Manifest number: 1796 Signing time: Wed 24 Dec 2025 14:00:51 +0000 Manifest this update: Wed 24 Dec 2025 14:00:51 +0000 Manifest next update: Thu 25 Dec 2025 14:00:51 +0000 Files and hashes: 1: YZGMIvadW2xPxhoSXpNJb8SDWu8.roa (hash: jQfGmlQO1sTVXZe+wmgboQPBpNBgVW+6jbuLSLsW9ZU=) 2: oL_QbOhVti2baIzYxTXV9JTNOTI.crl (hash: j8F3TowQAZvb6A/G6Pq0ttRliQmVANy1fRVVFbS/oD4=) 3: rtetBP97DUA2lCqt3_qex3wy1cw.roa (hash: wIFAeHjq7EkgeOiBpciajSkZ9QKt8Kq/92+zr7+OjbA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 14:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:50:a9:9c:4e:9e:0c:bd:82:2d:9d:d8:82:95:67:7a:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932 Validity Not Before: Dec 24 14:00:51 2025 GMT Not After : Dec 25 14:00:51 2025 GMT Subject: CN=e2f7e091d74f202c5e66a97ee0a3e649a7d966be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c6:18:4a:d2:78:af:e5:27:2b:a4:85:d9:cc: 10:81:83:df:dc:dd:f3:eb:39:4e:e4:91:81:35:98: f1:c1:f3:ef:f1:45:fa:1a:f9:77:89:ee:80:98:9e: 38:a9:03:80:61:a7:ca:7d:a2:88:25:df:c4:41:49: b7:04:43:64:07:e6:09:01:81:18:40:2b:b1:f9:e5: 7e:ed:5b:4a:eb:4f:1a:67:e4:af:89:21:f0:12:c5: 51:6f:c7:6e:64:50:b7:86:37:76:d7:d3:39:10:10: a3:9d:b9:b9:2d:38:08:59:6d:9d:2e:54:72:02:4b: 43:14:88:b4:b0:fe:b0:77:56:22:26:3f:e8:eb:4a: ea:40:27:39:bd:a9:9c:81:9f:30:6e:e3:76:8b:07: 1f:7f:3d:88:f3:b7:62:47:ea:77:ed:3c:9c:53:70: f6:4d:fd:7f:33:e5:d0:4f:c0:75:8c:70:4f:c2:e3: 23:a6:81:a8:20:9a:ee:ab:75:6b:79:ed:5a:03:1a: 51:ac:72:60:10:49:2b:3d:b7:c5:e4:97:71:a3:9d: 21:d6:07:a8:74:fe:25:06:ab:c5:c0:fe:5e:b5:c5: f4:69:71:a9:e0:fd:90:cf:20:42:74:66:5c:e7:e9: 93:b4:0f:ac:fe:d1:48:d9:bb:02:ee:91:b7:3c:e1: aa:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:F7:E0:91:D7:4F:20:2C:5E:66:A9:7E:E0:A3:E6:49:A7:D9:66:BE X509v3 Authority Key Identifier: keyid:A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d8:4a:71:5c:79:9b:26:25:bb:35:47:1c:bc:00:bf:8d:f8:ba: 7a:65:99:31:81:ea:03:1b:b9:2b:be:47:aa:2f:8f:18:f4:65: e0:83:93:64:23:f7:70:32:c8:57:b6:a7:93:4d:dd:b1:58:a8: 77:6f:f7:37:fc:30:c1:ec:6c:50:89:6e:d4:37:10:1b:f2:6e: 11:0b:23:bc:c1:59:39:24:36:0e:35:d2:00:f4:ee:8c:36:e2: e0:5e:35:da:19:0f:f9:c0:04:43:02:39:42:37:41:8a:3a:c1: 4d:52:1c:2d:28:36:b6:ce:e6:11:0b:fc:96:d6:9d:63:8c:a6: 54:99:4f:6b:b0:e4:05:59:90:b1:c4:7c:41:0c:df:6c:d4:c6: c8:46:cf:2b:5b:3d:30:61:86:6d:57:55:67:7e:c0:89:87:65: 3c:b2:b7:df:d2:61:55:ac:0f:b3:1b:78:27:b7:f4:19:2e:78: 9d:03:6e:df:82:62:4d:0f:a3:d3:77:4a:1f:a1:55:35:be:69: ad:ee:9b:4a:eb:ba:b8:04:c8:1c:cf:2a:8d:ad:56:a7:d9:ae: 1e:25:77:3c:f0:be:77:6f:ea:43:6f:88:82:ac:d1:15:1b:9f: a9:2f:e3:96:d3:3f:7f:ff:6f:ed:b4:79:a8:aa:98:a9:a6:36: 30:b2:3a:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtQqZxOngy9gi2d2IKVZ3q1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYmZkMDZjZTg1NWI2MmQ5YjY4OGNkOGM1MzVkNWY0OTRj ZDM5MzIwHhcNMjUxMjI0MTQwMDUxWhcNMjUxMjI1MTQwMDUxWjAzMTEwLwYDVQQD EyhlMmY3ZTA5MWQ3NGYyMDJjNWU2NmE5N2VlMGEzZTY0OWE3ZDk2NmJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8YYStJ4r+UnK6SF2cwQgYPf3N3z 6zlO5JGBNZjxwfPv8UX6Gvl3ie6AmJ44qQOAYafKfaKIJd/EQUm3BENkB+YJAYEY QCux+eV+7VtK608aZ+SviSHwEsVRb8duZFC3hjd219M5EBCjnbm5LTgIWW2dLlRy AktDFIi0sP6wd1YiJj/o60rqQCc5vamcgZ8wbuN2iwcffz2I87diR+p37TycU3D2 Tf1/M+XQT8B1jHBPwuMjpoGoIJruq3Vree1aAxpRrHJgEEkrPbfF5Jdxo50h1geo dP4lBqvFwP5etcX0aXGp4P2QzyBCdGZc5+mTtA+s/tFI2bsC7pG3POGqVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOL34JHXTyAsXmapfuCj5kmn2Wa+MB8GA1UdIwQY MBaAFKC/0GzoVbYtm2iM2MU11fSUzTkyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8wMzMxNmQtMDRlMC00NjYwLWE2M2Ut NjcxODM5MjAwNjA0LzEvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS8wMzMxNmQtMDRlMC00NjYwLWE2M2UtNjcxODM5MjAwNjA0 LzEvb0xfUWJPaFZ0aTJiYUl6WXhUWFY5SlROT1RJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2EpxXHmb JiW7NUccvAC/jfi6emWZMYHqAxu5K75Hqi+PGPRl4IOTZCP3cDLIV7ank03dsVio d2/3N/wwwexsUIlu1DcQG/JuEQsjvMFZOSQ2DjXSAPTujDbi4F412hkP+cAEQwI5 QjdBijrBTVIcLSg2ts7mEQv8ltadY4ymVJlPa7DkBVmQscR8QQzfbNTGyEbPK1s9 MGGGbVdVZ37AiYdlPLK339JhVawPsxt4J7f0GS54nQNu34JiTQ+j03dKH6FVNb5p re6bSuu6uATIHM8qja1Wp9muHiV3PPC+d2/qQ2+IgqzRFRufqS/jltM/f/9v7bR5 qKqYqaY2MLI6PA== -----END CERTIFICATE-----Generated at Wed Dec 24 22:23:19 2025 by rpki-client