This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.mft File: lZI0IMz-4DjNyutDkjEKBZivej4.mft (raw, json) Hash identifier: xt8E8P676wDP1svxreaylaQy97IzyJqDWqDItLwXTn0= Subject key identifier: 1C:02:62:64:71:09:67:7C:68:AB:A6:1E:37:E1:CF:B0:44:EC:38:5A Authority key identifier: 95:92:34:20:CC:FE:E0:38:CD:CA:EB:43:92:31:0A:05:98:AF:7A:3E Certificate issuer: /CN=95923420ccfee038cdcaeb4392310a0598af7a3e Certificate serial: 019B23D121DC5A90011B0680506B6CADEE07 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lZI0IMz-4DjNyutDkjEKBZivej4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.mft Manifest number: 0382 Signing time: Mon 15 Dec 2025 21:01:06 +0000 Manifest this update: Mon 15 Dec 2025 21:01:06 +0000 Manifest next update: Tue 16 Dec 2025 21:01:06 +0000 Files and hashes: 1: F7hFHVt5GnAjfb0AGvjaQBNPnKg.roa (hash: btzZxwXvt98Q7y5uMwpF7P7FoBwM/PNcqw+tRVhi4ns=) 2: fATmKoPkxnFaeIEAAJJ02F6yM_M.roa (hash: 9vZ8Uz6k4By0kjf2AHSVtoIff7eSff80iL0R5CgM+Wc=) 3: lZI0IMz-4DjNyutDkjEKBZivej4.crl (hash: 9LjxEJs80JmmG4nW+gvLKm3Zk/PP42DXIh98fCn4c6g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.mft rsync://rpki.ripe.net/repository/DEFAULT/lZI0IMz-4DjNyutDkjEKBZivej4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 21:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:23:d1:21:dc:5a:90:01:1b:06:80:50:6b:6c:ad:ee:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95923420ccfee038cdcaeb4392310a0598af7a3e Validity Not Before: Dec 15 21:01:06 2025 GMT Not After : Dec 16 21:01:06 2025 GMT Subject: CN=1c0262647109677c68aba61e37e1cfb044ec385a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c5:e7:ef:b0:ba:5a:f8:46:aa:5e:a8:2e:6d: dd:8a:2c:c0:9a:16:b0:ea:99:c5:81:26:47:55:09: 1e:fd:b0:ff:58:b2:50:da:72:8b:43:32:a1:3f:fc: fc:15:49:48:fc:81:55:99:09:73:87:a4:c0:17:68: e5:a4:73:8a:c9:28:d9:9f:e4:8f:29:88:7f:4c:db: 8f:a3:68:ef:c9:ad:da:c5:34:88:49:66:9a:c8:9c: 92:06:bd:97:35:34:e0:f1:83:8e:3c:7b:c1:7c:2e: 59:f8:da:48:1e:48:e8:45:9c:a1:a0:04:5d:77:b5: 76:76:7d:9e:e8:fb:55:28:50:2f:7b:dc:85:6a:e6: 95:a3:d6:bd:29:43:30:1c:9f:c6:bf:1a:69:85:10: 93:00:38:48:2c:9d:36:39:2d:61:cc:1a:0a:88:f1: 61:95:b3:e8:d2:1f:7c:aa:9c:3a:10:be:b2:05:fd: ce:65:cf:7b:1c:b1:d5:e3:2f:0f:9d:41:c9:d3:e7: a4:78:bd:c1:69:6f:47:8b:d7:9a:78:51:11:d7:01: 90:2d:fc:6a:38:a2:a6:62:bd:b0:d5:60:4a:87:d5: 70:72:8f:16:52:ac:25:f7:73:f2:23:b3:56:dd:99: 7e:ac:fe:3b:56:0c:97:a3:aa:30:95:14:51:c0:73: 72:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:02:62:64:71:09:67:7C:68:AB:A6:1E:37:E1:CF:B0:44:EC:38:5A X509v3 Authority Key Identifier: keyid:95:92:34:20:CC:FE:E0:38:CD:CA:EB:43:92:31:0A:05:98:AF:7A:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lZI0IMz-4DjNyutDkjEKBZivej4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:a5:0e:c3:4f:f4:54:77:7a:67:54:83:1e:92:9c:e3:93:a4: 73:e2:b0:bf:d9:c8:9f:49:77:be:75:e6:66:f9:2a:9a:ea:a0: d6:d8:6c:39:29:78:4e:3f:2d:24:c4:5c:82:37:b3:c6:90:11: 81:2d:ee:18:2a:9e:44:b7:b6:61:78:97:50:1b:2d:60:34:35: 35:6b:24:4b:90:23:f3:9e:b2:c3:e7:ec:f1:4f:63:5e:55:8c: 31:93:f2:99:ed:cd:0b:e2:87:6e:a7:ef:b6:18:9b:e4:17:2f: db:8f:80:78:98:7e:b1:2f:82:ef:24:52:09:17:a5:85:a8:a3: 4e:e2:47:36:b5:07:ff:2e:9b:73:f7:d9:58:b6:c2:67:44:14: 16:a5:2b:14:98:09:05:87:05:c6:04:2a:ba:5e:30:af:56:5b: 9e:de:23:d9:55:33:09:4c:aa:e2:ae:78:2c:56:bd:d2:3e:5e: 48:57:6f:6e:01:60:c4:56:94:97:ab:69:5e:47:3a:6f:c4:2a: b6:52:e5:8f:36:a9:5c:8c:c5:96:9c:4b:91:a8:26:c0:99:7c: 79:be:73:89:3f:a4:34:5c:5e:ae:12:09:bd:b3:4e:2b:2f:da: d3:c5:a2:ef:5b:5f:c4:92:a3:8a:20:c5:f4:fc:de:b4:16:91: 06:21:a6:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsj0SHcWpABGwaAUGtsre4HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1OTIzNDIwY2NmZWUwMzhjZGNhZWI0MzkyMzEwYTA1OThh ZjdhM2UwHhcNMjUxMjE1MjEwMTA2WhcNMjUxMjE2MjEwMTA2WjAzMTEwLwYDVQQD EygxYzAyNjI2NDcxMDk2NzdjNjhhYmE2MWUzN2UxY2ZiMDQ0ZWMzODVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMXn77C6WvhGql6oLm3diizAmhaw 6pnFgSZHVQke/bD/WLJQ2nKLQzKhP/z8FUlI/IFVmQlzh6TAF2jlpHOKySjZn+SP KYh/TNuPo2jvya3axTSISWaayJySBr2XNTTg8YOOPHvBfC5Z+NpIHkjoRZyhoARd d7V2dn2e6PtVKFAve9yFauaVo9a9KUMwHJ/GvxpphRCTADhILJ02OS1hzBoKiPFh lbPo0h98qpw6EL6yBf3OZc97HLHV4y8PnUHJ0+ekeL3BaW9Hi9eaeFER1wGQLfxq OKKmYr2w1WBKh9Vwco8WUqwl93PyI7NW3Zl+rP47VgyXo6owlRRRwHNyUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBwCYmRxCWd8aKumHjfhz7BE7DhaMB8GA1UdIwQY MBaAFJWSNCDM/uA4zcrrQ5IxCgWYr3o+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFpJMElNei00RGpOeXV0RGtqRUtCWml2ZWo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9iODA0MDUtZDE5Yi00ZTBmLWFjMzct NTIwMGZjMTZmZjhjLzEvbFpJMElNei00RGpOeXV0RGtqRUtCWml2ZWo0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9iODA0MDUtZDE5Yi00ZTBmLWFjMzctNTIwMGZjMTZmZjhj LzEvbFpJMElNei00RGpOeXV0RGtqRUtCWml2ZWo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmKUOw0/0 VHd6Z1SDHpKc45Okc+Kwv9nIn0l3vnXmZvkqmuqg1thsOSl4Tj8tJMRcgjezxpAR gS3uGCqeRLe2YXiXUBstYDQ1NWskS5Aj856yw+fs8U9jXlWMMZPyme3NC+KHbqfv thib5Bcv24+AeJh+sS+C7yRSCRelhaijTuJHNrUH/y6bc/fZWLbCZ0QUFqUrFJgJ BYcFxgQqul4wr1Zbnt4j2VUzCUyq4q54LFa90j5eSFdvbgFgxFaUl6tpXkc6b8Qq tlLljzapXIzFlpxLkagmwJl8eb5ziT+kNFxerhIJvbNOKy/a08Wi71tfxJKjiiDF 9PzetBaRBiGmVw== -----END CERTIFICATE-----Generated at Tue Dec 16 04:08:45 2025 by rpki-client