This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json) Hash identifier: f3S7YBR7fWtxSHDfYbcU5nMnV3LnOwqtCF5axR1HS2M= Subject key identifier: 06:5E:20:26:3E:AB:24:88:63:F4:24:D3:3F:56:39:A9:9A:C1:C3:BC Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a Certificate serial: 019B2EF97B97C915FE1C477D231B2FD0E4AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft Manifest number: 1781 Signing time: Thu 18 Dec 2025 01:01:00 +0000 Manifest this update: Thu 18 Dec 2025 01:01:00 +0000 Manifest next update: Fri 19 Dec 2025 01:01:00 +0000 Files and hashes: 1: kL5tCodlPmsKcG8VmzS3vTT-EpU.roa (hash: rTcyxkJLmIdGub6lXVfezUyk6BdEW9e85j13e1XiRBA=) 2: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: EbU0JF2jZXE8oO/vJE6F8tSd2k85vqtuOljlT96TB+E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:f9:7b:97:c9:15:fe:1c:47:7d:23:1b:2f:d0:e4:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a Validity Not Before: Dec 18 01:01:00 2025 GMT Not After : Dec 19 01:01:00 2025 GMT Subject: CN=065e20263eab248863f424d33f5639a99ac1c3bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9d:51:97:3d:9d:80:68:be:9a:6d:d0:fe:a9: 0e:16:67:47:c8:b5:08:b7:b7:24:49:38:8c:d7:f2: 10:0e:4b:4f:3a:21:a8:50:2b:d9:a7:33:b7:6f:0c: e4:6d:a6:fe:50:14:d3:73:99:71:32:a5:c5:6b:27: ec:53:14:ab:35:e5:bb:2a:b2:85:a1:cd:1c:8a:c2: 56:81:0c:1c:ad:55:e4:e7:95:1a:4b:0f:2a:ac:ef: 93:73:29:f2:0a:5f:0a:43:e7:9d:a4:6f:e2:5a:06: 81:f6:99:cd:da:20:0f:dc:57:3b:7d:f9:0c:54:d1: d5:a7:ab:a3:58:dc:bb:ee:a0:f1:07:79:f4:a6:90: d7:49:9c:9b:3b:22:39:1b:f3:ba:3e:09:74:7c:38: 59:fe:94:47:54:8f:0a:10:e1:25:3f:ae:70:dd:5d: ef:67:25:b6:8b:7e:39:8c:ed:0d:fd:1d:df:4b:b8: ed:ee:ab:a6:ea:23:a7:ac:bc:8a:db:99:a7:17:b1: d0:8d:94:29:88:49:43:7e:3d:8e:4e:b7:06:1a:fb: 4a:0f:0f:da:0c:ba:99:0e:8d:26:f0:d7:8a:6a:44: c9:99:04:61:ca:5a:6f:de:c4:0e:e3:61:0d:5a:fb: 18:82:ca:25:99:be:26:3a:60:be:02:b9:4e:e8:86: 9a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:5E:20:26:3E:AB:24:88:63:F4:24:D3:3F:56:39:A9:9A:C1:C3:BC X509v3 Authority Key Identifier: keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:5a:26:85:78:e3:c6:41:22:43:60:9d:3e:c5:7d:b5:e0:ec: 8b:a0:fd:7c:06:ab:e0:3e:46:ce:3d:00:11:ea:d4:e3:a0:26: 7f:c4:04:51:6f:4f:66:14:0a:22:86:8c:ff:c4:1f:dd:46:c7: 48:d6:ea:9d:9b:13:a2:9a:15:2f:93:91:2f:cd:48:4d:98:c6: 50:08:88:79:f5:68:48:53:b2:cf:d9:93:9f:b6:f5:b3:79:7f: 53:88:67:f5:94:44:7f:4b:e1:09:35:1a:18:e0:48:56:86:e3: 98:11:ec:33:b7:9f:9a:31:8c:c2:a6:c7:e2:54:3c:a7:20:7d: 00:4f:95:5e:1c:a6:53:7b:d5:e7:43:fa:71:ba:27:38:de:bb: e9:22:5e:0e:a4:ae:79:ca:1e:98:ea:aa:f9:27:1b:44:ad:b5: b3:29:98:b4:08:fe:54:f2:75:34:3c:60:9b:69:a4:fd:56:49: 48:cf:8e:e5:07:eb:1d:09:13:3f:50:18:cb:ac:41:fd:39:83: 86:f0:5e:34:a6:41:96:7a:f5:af:ca:f0:44:24:ae:df:29:3e: b6:41:75:21:4a:48:6d:47:b4:9c:90:ed:d7:a3:4c:52:da:c8: 9e:3f:63:03:64:61:16:02:57:d2:19:36:de:e9:5f:10:3b:e6: 69:a6:89:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+XuXyRX+HEd9Ixsv0OSvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0Yzg2YzliMzVkNzgyMTE2YjJjZDg1ODNhMjdjZWI0MDNi OGY2MWEwHhcNMjUxMjE4MDEwMTAwWhcNMjUxMjE5MDEwMTAwWjAzMTEwLwYDVQQD EygwNjVlMjAyNjNlYWIyNDg4NjNmNDI0ZDMzZjU2MzlhOTlhYzFjM2JjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtp1Rlz2dgGi+mm3Q/qkOFmdHyLUI t7ckSTiM1/IQDktPOiGoUCvZpzO3bwzkbab+UBTTc5lxMqXFayfsUxSrNeW7KrKF oc0cisJWgQwcrVXk55UaSw8qrO+TcynyCl8KQ+edpG/iWgaB9pnN2iAP3Fc7ffkM VNHVp6ujWNy77qDxB3n0ppDXSZybOyI5G/O6Pgl0fDhZ/pRHVI8KEOElP65w3V3v ZyW2i345jO0N/R3fS7jt7qum6iOnrLyK25mnF7HQjZQpiElDfj2OTrcGGvtKDw/a DLqZDo0m8NeKakTJmQRhylpv3sQO42ENWvsYgsolmb4mOmC+ArlO6IaahwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAZeICY+qySIY/Qk0z9WOamawcO8MB8GA1UdIwQY MBaAFJTIbJs114IRayzYWDonzrQDuPYaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMt MzViMGM5NjUyNGZhLzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMtMzViMGM5NjUyNGZh LzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIVomhXjj xkEiQ2CdPsV9teDsi6D9fAar4D5Gzj0AEerU46Amf8QEUW9PZhQKIoaM/8Qf3UbH SNbqnZsTopoVL5ORL81ITZjGUAiIefVoSFOyz9mTn7b1s3l/U4hn9ZREf0vhCTUa GOBIVobjmBHsM7efmjGMwqbH4lQ8pyB9AE+VXhymU3vV50P6cbonON676SJeDqSu ecoemOqq+ScbRK21symYtAj+VPJ1NDxgm2mk/VZJSM+O5QfrHQkTP1AYy6xB/TmD hvBeNKZBlnr1r8rwRCSu3yk+tkF1IUpIbUe0nJDt16NMUtrInj9jA2RhFgJX0hk2 3ulfEDvmaaaJWg== -----END CERTIFICATE-----Generated at Thu Dec 18 08:53:18 2025 by rpki-client