This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft File: lJgy8CXL76HqG8oMOQtjwXaUjNI.mft (raw, json) Hash identifier: yX3PojxlViIc4f8bZ6mn2fjthpX+Y6Xs/rOiKDGe56w= Subject key identifier: 01:40:AA:E6:8D:75:79:A3:EE:AA:A4:C9:99:82:8F:F4:9C:17:21:CF Authority key identifier: 94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2 Certificate issuer: /CN=949832f025cbefa1ea1bca0c390b63c176948cd2 Certificate serial: 019B1CF3340050C824EEDF70F16CF318EC09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft Manifest number: 05F2 Signing time: Sun 14 Dec 2025 13:00:59 +0000 Manifest this update: Sun 14 Dec 2025 13:00:59 +0000 Manifest next update: Mon 15 Dec 2025 13:00:59 +0000 Files and hashes: 1: euJQQHPXaEEafjtTEpsACoT0UO8.roa (hash: LMr9+ppvHgb0CfRsIuadMwP8K1TTGxo74gFD8Bmp2bs=) 2: lJgy8CXL76HqG8oMOQtjwXaUjNI.crl (hash: QvcMimdN+EAqItBmXGPmtGNPzosyWR3msIEneBeZ/K8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1c:f3:34:00:50:c8:24:ee:df:70:f1:6c:f3:18:ec:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=949832f025cbefa1ea1bca0c390b63c176948cd2 Validity Not Before: Dec 14 13:00:59 2025 GMT Not After : Dec 15 13:00:59 2025 GMT Subject: CN=0140aae68d7579a3eeaaa4c999828ff49c1721cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:27:33:69:ad:0a:3a:a1:0c:e6:1f:b4:d0:da: 1d:de:dd:d3:a3:97:71:fb:46:80:e6:2e:9c:07:41: 06:91:99:10:62:f1:1c:d6:31:5a:6a:ed:73:83:49: 5c:ff:37:88:cd:18:3e:ca:eb:0d:4d:d1:91:ca:59: 54:99:e9:5f:9f:88:14:8d:e5:0b:8b:02:b7:aa:18: dc:59:08:e7:ae:60:8b:da:06:84:8b:a3:a6:3b:6d: 72:43:a0:62:eb:d6:02:dd:9d:ff:d7:61:11:2b:59: 72:4e:99:64:19:d5:0b:80:40:16:93:c5:69:c0:39: 43:a1:42:c6:b7:4c:53:cb:4e:9a:f5:e4:30:20:78: 73:c6:c6:f2:6f:24:75:0d:36:92:1d:ce:8f:89:c0: d6:c9:0d:79:fa:01:33:9d:6b:a4:c4:69:c4:68:32: 98:18:5c:dc:c2:6f:13:85:fb:4e:77:a0:a4:4a:2d: 32:73:63:3e:d8:cf:a7:c7:fc:cc:06:e9:f5:34:db: d8:ce:22:7e:30:73:04:fb:81:83:7f:42:0d:5c:6e: 1a:63:33:ca:a4:ab:80:d9:b2:07:e8:c4:09:c2:be: 97:f7:ca:00:cf:a2:e6:12:7e:9e:e9:48:46:0e:a6: ac:36:8f:81:67:c1:29:f4:33:ff:91:9a:6c:b8:07: 91:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:40:AA:E6:8D:75:79:A3:EE:AA:A4:C9:99:82:8F:F4:9C:17:21:CF X509v3 Authority Key Identifier: keyid:94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:34:7f:2f:1c:90:8c:fa:e1:4d:73:6d:f3:6b:d8:96:c3:da: 0a:64:59:2a:1f:5b:ef:d5:0d:94:2e:eb:21:8c:3d:c2:2e:69: 5e:f3:62:f2:e6:07:4f:ff:c5:d2:6d:5d:5a:70:ba:94:47:c7: a0:61:9b:e2:f2:c6:6d:a0:d8:fc:28:34:86:e1:e4:5d:13:f5: e9:81:36:62:d3:5c:33:92:62:50:f2:9b:39:35:aa:19:b1:3a: e5:e5:b9:a9:9c:57:f8:24:22:7a:bc:a8:2d:f6:1f:ac:26:38: 2a:10:fc:68:c6:54:ab:6b:72:bf:d0:1c:e6:ff:c8:14:7c:45: 98:38:47:63:04:49:cd:30:63:1e:8a:70:48:cf:b0:f4:fd:51: 13:28:e1:a3:d0:33:c8:f9:89:b6:77:30:98:f0:f6:1f:fd:ff: 35:60:de:9d:72:c8:cc:b3:31:09:3b:b2:d2:39:fb:d1:64:b4: cf:43:cb:7a:fa:e7:a8:96:17:98:3a:78:fd:21:53:0c:70:cc: 3e:4d:3e:ba:5b:ba:6c:5d:17:6a:99:93:1a:2a:0e:f9:b0:0c: 04:b4:90:b9:bd:04:01:78:b5:2f:8e:03:1f:f5:30:f3:d1:62: 99:6d:46:7a:df:21:1d:fd:62:e0:97:25:82:6e:ac:da:3f:b9: 15:1a:5f:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsc8zQAUMgk7t9w8WzzGOwJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0OTgzMmYwMjVjYmVmYTFlYTFiY2EwYzM5MGI2M2MxNzY5 NDhjZDIwHhcNMjUxMjE0MTMwMDU5WhcNMjUxMjE1MTMwMDU5WjAzMTEwLwYDVQQD EygwMTQwYWFlNjhkNzU3OWEzZWVhYWE0Yzk5OTgyOGZmNDljMTcyMWNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsyczaa0KOqEM5h+00Nod3t3To5dx +0aA5i6cB0EGkZkQYvEc1jFaau1zg0lc/zeIzRg+yusNTdGRyllUmelfn4gUjeUL iwK3qhjcWQjnrmCL2gaEi6OmO21yQ6Bi69YC3Z3/12ERK1lyTplkGdULgEAWk8Vp wDlDoULGt0xTy06a9eQwIHhzxsbybyR1DTaSHc6PicDWyQ15+gEznWukxGnEaDKY GFzcwm8ThftOd6CkSi0yc2M+2M+nx/zMBun1NNvYziJ+MHME+4GDf0INXG4aYzPK pKuA2bIH6MQJwr6X98oAz6LmEn6e6UhGDqasNo+BZ8Ep9DP/kZpsuAeRSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAFAquaNdXmj7qqkyZmCj/ScFyHPMB8GA1UdIwQY MBaAFJSYMvAly++h6hvKDDkLY8F2lIzSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEpneThDWEw3NkhxRzhvTU9RdGp3WGFVak5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lNWMwNTYtMDNiMS00NmE5LWIyMTQt NzhmYzNiYzI4YmExLzEvbEpneThDWEw3NkhxRzhvTU9RdGp3WGFVak5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9lNWMwNTYtMDNiMS00NmE5LWIyMTQtNzhmYzNiYzI4YmEx LzEvbEpneThDWEw3NkhxRzhvTU9RdGp3WGFVak5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbDR/LxyQ jPrhTXNt82vYlsPaCmRZKh9b79UNlC7rIYw9wi5pXvNi8uYHT//F0m1dWnC6lEfH oGGb4vLGbaDY/Cg0huHkXRP16YE2YtNcM5JiUPKbOTWqGbE65eW5qZxX+CQieryo LfYfrCY4KhD8aMZUq2tyv9Ac5v/IFHxFmDhHYwRJzTBjHopwSM+w9P1REyjho9Az yPmJtncwmPD2H/3/NWDenXLIzLMxCTuy0jn70WS0z0PLevrnqJYXmDp4/SFTDHDM Pk0+ulu6bF0XapmTGioO+bAMBLSQub0EAXi1L44DH/Uw89FimW1Get8hHf1i4Jcl gm6s2j+5FRpfTA== -----END CERTIFICATE-----Generated at Sun Dec 14 15:18:16 2025 by rpki-client