This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft File: Lg1AUXqHO33CrrKNDtai-ZOj100.mft (raw, json) Hash identifier: MCG8ONxjJO/Q0BKNSu/qFU1CGv3+6ZEWfKpJah1R/ec= Subject key identifier: 9E:E8:72:F7:6D:02:57:45:D7:CF:62:05:F2:43:70:D5:47:B6:49:E8 Authority key identifier: 2E:0D:40:51:7A:87:3B:7D:C2:AE:B2:8D:0E:D6:A2:F9:93:A3:D7:4D Certificate issuer: /CN=2e0d40517a873b7dc2aeb28d0ed6a2f993a3d74d Certificate serial: 019B2588BCCECF1BBD061EF16F4983A54AB8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft Manifest number: 1462 Signing time: Tue 16 Dec 2025 05:01:16 +0000 Manifest this update: Tue 16 Dec 2025 05:01:16 +0000 Manifest next update: Wed 17 Dec 2025 05:01:16 +0000 Files and hashes: 1: Lg1AUXqHO33CrrKNDtai-ZOj100.crl (hash: 0CwNU9fDtdolpyd7UPOdbinGtP2CnVxcVHnVy+qwE2w=) 2: g5xnqTmVEZ7ZlTEWt6r937lOqAI.roa (hash: W28IbFUf6cfPKtxTT1Bs+8ajjdC7s7Nv39N6DzwHNwU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.crl rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:88:bc:ce:cf:1b:bd:06:1e:f1:6f:49:83:a5:4a:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e0d40517a873b7dc2aeb28d0ed6a2f993a3d74d Validity Not Before: Dec 16 05:01:16 2025 GMT Not After : Dec 17 05:01:16 2025 GMT Subject: CN=9ee872f76d025745d7cf6205f24370d547b649e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:75:52:db:a2:03:b7:f3:22:6e:8a:16:bd:af: 7a:18:43:ea:55:1c:87:47:be:6e:d6:4b:14:ed:a5: fd:36:31:a3:ce:19:76:bd:41:c0:3a:e3:b2:60:7f: 19:36:8e:e0:a2:5b:2a:64:18:83:bf:94:5d:74:d9: 5a:ea:a1:31:c7:1a:5f:dc:33:71:be:ec:ae:50:80: b8:82:88:cb:86:36:ef:2d:50:84:3a:a0:16:5c:b8: 6b:70:e6:70:c4:0c:a8:b4:61:ee:3e:1c:af:54:a6: 20:f0:e7:36:1f:ec:f9:25:aa:f1:87:ac:4d:28:30: 50:94:24:0b:93:f4:0d:84:2a:ba:5d:4b:a7:d3:aa: 0e:13:82:f6:86:e0:dc:74:19:ae:a1:38:60:a3:ed: 6e:98:79:62:43:bf:77:ce:85:cd:7f:b9:65:05:2c: 56:a3:cf:04:ef:f0:22:c1:50:90:6c:eb:69:38:5f: 64:ee:93:b4:2a:e5:c2:b3:8c:e2:7e:25:1a:46:dc: cd:1e:f0:86:23:df:89:67:c3:0e:e7:e4:70:23:35: eb:0b:2d:7b:81:e6:c5:88:31:63:70:34:69:5b:ce: 18:51:32:26:9c:5a:77:29:1b:d4:f8:46:4f:54:df: 94:3c:53:1a:e2:bd:ee:3b:f9:df:a5:7a:f3:5e:8b: 59:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:E8:72:F7:6D:02:57:45:D7:CF:62:05:F2:43:70:D5:47:B6:49:E8 X509v3 Authority Key Identifier: keyid:2E:0D:40:51:7A:87:3B:7D:C2:AE:B2:8D:0E:D6:A2:F9:93:A3:D7:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:8b:a7:45:45:fb:57:be:63:1b:26:fc:6f:1a:2e:ac:bd:ca: 55:58:c2:cd:10:c4:ed:0b:d7:24:27:d0:6e:43:95:12:d2:3d: 4f:2b:e7:50:33:29:fb:ba:91:8a:03:93:1a:2d:d1:9a:0e:87: b0:ca:cb:bd:b8:bf:f3:a5:75:ea:a0:29:2d:f2:01:0e:d6:79: 3a:5a:2b:7b:37:6d:58:58:6c:bb:90:f1:b6:7a:8f:b8:11:50: f4:1b:59:64:5e:47:fb:9c:5c:67:6e:30:56:9b:85:fd:76:89: 54:a0:d9:27:a2:da:68:c8:bb:02:68:c6:88:48:80:85:9d:65: e6:8c:aa:77:56:0e:e2:0e:e0:de:45:16:7a:79:73:14:3d:ae: f2:8d:21:f9:47:de:51:b3:e2:8b:dd:e6:2f:d0:9e:af:ee:a2: b5:e9:f4:ff:e4:c1:af:c2:3f:88:b7:c5:e1:c4:10:35:71:ea: 19:74:87:bd:13:3a:a8:37:38:86:45:7f:a7:81:6f:81:e5:e4: e3:a5:3e:6c:01:a6:5c:69:6c:be:07:30:9a:2b:ce:b4:03:2f: 44:fc:6e:b0:6c:a1:f5:a2:25:60:cc:d0:7f:28:63:b7:45:72: dd:aa:11:20:ed:fc:71:e0:ae:8b:a4:84:00:bc:75:ac:ca:c9: 2a:94:79:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsliLzOzxu9Bh7xb0mDpUq4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlMGQ0MDUxN2E4NzNiN2RjMmFlYjI4ZDBlZDZhMmY5OTNh M2Q3NGQwHhcNMjUxMjE2MDUwMTE2WhcNMjUxMjE3MDUwMTE2WjAzMTEwLwYDVQQD Eyg5ZWU4NzJmNzZkMDI1NzQ1ZDdjZjYyMDVmMjQzNzBkNTQ3YjY0OWU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3XVS26IDt/MibooWva96GEPqVRyH R75u1ksU7aX9NjGjzhl2vUHAOuOyYH8ZNo7golsqZBiDv5RddNla6qExxxpf3DNx vuyuUIC4gojLhjbvLVCEOqAWXLhrcOZwxAyotGHuPhyvVKYg8Oc2H+z5Jarxh6xN KDBQlCQLk/QNhCq6XUun06oOE4L2huDcdBmuoThgo+1umHliQ793zoXNf7llBSxW o88E7/AiwVCQbOtpOF9k7pO0KuXCs4zifiUaRtzNHvCGI9+JZ8MO5+RwIzXrCy17 gebFiDFjcDRpW84YUTImnFp3KRvU+EZPVN+UPFMa4r3uO/nfpXrzXotZ2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ7ocvdtAldF189iBfJDcNVHtknoMB8GA1UdIwQY MBaAFC4NQFF6hzt9wq6yjQ7WovmTo9dNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTGcxQVVYcUhPMzNDcnJLTkR0YWktWk9qMTAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8xNGU5MjAtMTRhNy00MWNmLWJkZDct NTc3ODY5NTFiNzhmLzEvTGcxQVVYcUhPMzNDcnJLTkR0YWktWk9qMTAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC8xNGU5MjAtMTRhNy00MWNmLWJkZDctNTc3ODY5NTFiNzhm LzEvTGcxQVVYcUhPMzNDcnJLTkR0YWktWk9qMTAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXIunRUX7 V75jGyb8bxourL3KVVjCzRDE7QvXJCfQbkOVEtI9TyvnUDMp+7qRigOTGi3Rmg6H sMrLvbi/86V16qApLfIBDtZ5OlorezdtWFhsu5DxtnqPuBFQ9BtZZF5H+5xcZ24w VpuF/XaJVKDZJ6LaaMi7AmjGiEiAhZ1l5oyqd1YO4g7g3kUWenlzFD2u8o0h+Ufe UbPii93mL9Cer+6iten0/+TBr8I/iLfF4cQQNXHqGXSHvRM6qDc4hkV/p4FvgeXk 46U+bAGmXGlsvgcwmivOtAMvRPxusGyh9aIlYMzQfyhjt0Vy3aoRIO38ceCui6SE ALx1rMrJKpR5aw== -----END CERTIFICATE-----Generated at Tue Dec 16 10:04:35 2025 by rpki-client