This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.mft File: LQcZ69mnslPhSyXN7EzdFUoRHjA.mft (raw, json) Hash identifier: k6Dxu0jKLcGlolnFALuhIuP80DnEqOohi828D4QtVZY= Subject key identifier: C3:B1:3B:69:57:37:24:81:9E:FB:E8:38:1F:C5:70:DA:4E:24:42:21 Authority key identifier: 2D:07:19:EB:D9:A7:B2:53:E1:4B:25:CD:EC:4C:DD:15:4A:11:1E:30 Certificate issuer: /CN=2d0719ebd9a7b253e14b25cdec4cdd154a111e30 Certificate serial: 019B3833612499B19E3F21495FC44A905CD6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LQcZ69mnslPhSyXN7EzdFUoRHjA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.mft Manifest number: 0409 Signing time: Fri 19 Dec 2025 20:00:49 +0000 Manifest this update: Fri 19 Dec 2025 20:00:49 +0000 Manifest next update: Sat 20 Dec 2025 20:00:49 +0000 Files and hashes: 1: 3RDyrZvZCaLxq028Ow5HCrsQefI.roa (hash: NXFuVuevT7dKqj3U3xabeRYu8pGJV55BCTjMmY4c/fY=) 2: LQcZ69mnslPhSyXN7EzdFUoRHjA.crl (hash: pstENwEDxzSwcucxMj4CNCiOgfxNpN2Oj+hcICRo/RQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.crl rsync://rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.mft rsync://rpki.ripe.net/repository/DEFAULT/LQcZ69mnslPhSyXN7EzdFUoRHjA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:33:61:24:99:b1:9e:3f:21:49:5f:c4:4a:90:5c:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d0719ebd9a7b253e14b25cdec4cdd154a111e30 Validity Not Before: Dec 19 20:00:49 2025 GMT Not After : Dec 20 20:00:49 2025 GMT Subject: CN=c3b13b69573724819efbe8381fc570da4e244221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:17:3a:30:e6:f2:24:ab:e8:70:3a:ad:5b:58: b1:8b:73:db:5e:7e:1e:74:0e:52:93:19:a3:5c:42: 10:52:ee:2f:b8:76:61:6e:06:db:c8:3b:b7:70:4b: 8d:c4:66:14:87:03:ec:df:67:d4:ed:4d:57:63:89: 7e:41:08:db:4f:df:7d:cf:d5:eb:6f:a2:d8:32:cc: ee:70:6e:6e:89:67:ca:aa:96:98:4a:39:0f:ed:aa: 6b:a6:70:35:ad:0a:53:f7:77:39:1b:a8:9f:07:2b: 10:df:aa:bb:74:3c:e0:e9:75:26:4c:34:5b:cb:7e: f5:2f:72:e3:86:21:78:3b:3d:bd:76:bf:27:30:26: 90:04:60:61:33:17:2d:d3:12:4c:bb:49:85:95:ff: 7b:ca:25:ef:c1:0e:3b:2b:1d:76:05:24:d4:dc:a5: d0:a1:a0:55:5e:a7:06:29:76:4e:d4:87:df:20:4c: 28:03:c1:4f:d4:a5:12:e6:e5:39:09:2a:55:58:58: 4c:07:d8:e6:da:ca:11:c8:4c:d6:6e:83:ef:57:3c: f7:ce:c3:07:9e:27:73:9d:4e:89:84:c3:2d:52:fc: 9a:f5:2c:5e:0f:ca:a8:bd:74:95:3f:d4:08:c0:91: cd:d2:52:47:ae:8b:0f:0b:6d:e3:f2:05:a4:8d:4e: 94:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:B1:3B:69:57:37:24:81:9E:FB:E8:38:1F:C5:70:DA:4E:24:42:21 X509v3 Authority Key Identifier: keyid:2D:07:19:EB:D9:A7:B2:53:E1:4B:25:CD:EC:4C:DD:15:4A:11:1E:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LQcZ69mnslPhSyXN7EzdFUoRHjA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:15:02:70:da:e6:7e:35:3f:0f:e7:58:26:cc:34:f0:da:29: 3c:c3:f9:ad:14:97:57:9b:50:3b:6e:1b:b8:33:22:77:d6:03: 91:4e:00:b6:18:8c:bd:a3:99:40:71:79:30:9d:7a:cf:d7:65: dc:8e:de:79:30:94:8e:29:97:e7:0b:a1:b9:02:a3:f4:b4:d5: 81:21:a5:d1:c9:4c:3d:04:d2:e4:01:e5:b9:64:8a:47:67:ce: 5a:e2:e4:43:11:ea:aa:e5:f4:40:f0:2d:35:7d:84:a3:15:a2: 04:ea:be:d9:8e:15:78:e9:58:79:e8:60:8c:d7:86:52:e3:cd: 28:1e:aa:ef:9a:a9:02:68:76:92:1b:2d:ab:6f:9f:47:9e:89: c0:7a:38:89:7b:fe:ba:09:9b:e8:c2:df:a9:3e:34:4f:e9:d0: df:f2:ec:e1:61:3d:c6:a9:11:56:72:c0:be:af:0e:fe:63:32: 41:6c:9a:43:93:ce:aa:58:fd:d9:25:c3:4d:1c:b7:d8:2b:c7: 3d:15:1f:43:35:45:a8:fd:a5:a8:b7:f1:d2:a7:0c:be:b8:6d: e4:01:f5:cc:89:96:a8:eb:f5:37:a4:a9:9f:ea:f3:55:dd:0b: 71:f9:72:96:51:c1:2e:e2:6a:81:b5:64:8c:6e:ad:10:ba:e6: 4a:be:89:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs4M2EkmbGePyFJX8RKkFzWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkMDcxOWViZDlhN2IyNTNlMTRiMjVjZGVjNGNkZDE1NGEx MTFlMzAwHhcNMjUxMjE5MjAwMDQ5WhcNMjUxMjIwMjAwMDQ5WjAzMTEwLwYDVQQD EyhjM2IxM2I2OTU3MzcyNDgxOWVmYmU4MzgxZmM1NzBkYTRlMjQ0MjIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRc6MObyJKvocDqtW1ixi3PbXn4e dA5SkxmjXEIQUu4vuHZhbgbbyDu3cEuNxGYUhwPs32fU7U1XY4l+QQjbT999z9Xr b6LYMszucG5uiWfKqpaYSjkP7aprpnA1rQpT93c5G6ifBysQ36q7dDzg6XUmTDRb y371L3LjhiF4Oz29dr8nMCaQBGBhMxct0xJMu0mFlf97yiXvwQ47Kx12BSTU3KXQ oaBVXqcGKXZO1IffIEwoA8FP1KUS5uU5CSpVWFhMB9jm2soRyEzWboPvVzz3zsMH nidznU6JhMMtUvya9SxeD8qovXSVP9QIwJHN0lJHrosPC23j8gWkjU6UEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMOxO2lXNySBnvvoOB/FcNpOJEIhMB8GA1UdIwQY MBaAFC0HGevZp7JT4UslzexM3RVKER4wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFFjWjY5bW5zbFBoU3lYTjdFemRGVW9SSGpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC9hMWEyYTUtMzhlMC00NThmLTg2MDAt Mzc3NDkzY2U1ODc3LzEvTFFjWjY5bW5zbFBoU3lYTjdFemRGVW9SSGpBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC9hMWEyYTUtMzhlMC00NThmLTg2MDAtMzc3NDkzY2U1ODc3 LzEvTFFjWjY5bW5zbFBoU3lYTjdFemRGVW9SSGpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfxUCcNrm fjU/D+dYJsw08NopPMP5rRSXV5tQO24buDMid9YDkU4AthiMvaOZQHF5MJ16z9dl 3I7eeTCUjimX5wuhuQKj9LTVgSGl0clMPQTS5AHluWSKR2fOWuLkQxHqquX0QPAt NX2EoxWiBOq+2Y4VeOlYeehgjNeGUuPNKB6q75qpAmh2khstq2+fR56JwHo4iXv+ ugmb6MLfqT40T+nQ3/Ls4WE9xqkRVnLAvq8O/mMyQWyaQ5POqlj92SXDTRy32CvH PRUfQzVFqP2lqLfx0qcMvrht5AH1zImWqOv1N6Spn+rzVd0LcflyllHBLuJqgbVk jG6tELrmSr6Jpg== -----END CERTIFICATE-----Generated at Sat Dec 20 00:16:11 2025 by rpki-client