This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft File: lhzPqdAsvwWWDjovkHmFnM1urW0.mft (raw, json) Hash identifier: BaFx6dV9UNhRluenurBA5ysu8MIxb6oBV6Skp7ZwmIY= Subject key identifier: B1:56:2B:45:7B:93:C0:8A:24:EE:1E:EB:06:48:1A:21:2F:BC:3E:8F Authority key identifier: 96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D Certificate issuer: /CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d Certificate serial: 019B202B455398027C2D36730AF023C8E986 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft Manifest number: 177A Signing time: Mon 15 Dec 2025 04:01:05 +0000 Manifest this update: Mon 15 Dec 2025 04:01:05 +0000 Manifest next update: Tue 16 Dec 2025 04:01:05 +0000 Files and hashes: 1: lhzPqdAsvwWWDjovkHmFnM1urW0.crl (hash: 6I8AQSIBY3cSlqKqK2BV184+HLYQjmFIEppOnxigqwQ=) 2: qTElxIuYhBq2Kr2moM3xQmQlUEA.roa (hash: 6HA56HJcMMODNW40FbLFvKXa1rIMDv54m0DX5YcNqN0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 04:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:20:2b:45:53:98:02:7c:2d:36:73:0a:f0:23:c8:e9:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d Validity Not Before: Dec 15 04:01:05 2025 GMT Not After : Dec 16 04:01:05 2025 GMT Subject: CN=b1562b457b93c08a24ee1eeb06481a212fbc3e8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1b:c2:a7:c6:0f:f9:d8:40:f3:ac:bc:4d:b5: 1b:ba:a1:2b:e3:72:b5:62:06:dd:d5:a9:b9:ef:7a: d2:c0:50:6b:cf:a2:2a:7f:83:ae:19:fe:0e:c7:d4: f2:bf:c2:eb:99:aa:24:4e:77:a8:36:7e:62:bc:e3: 8a:a5:c4:ca:16:39:2d:bb:6a:3b:e7:75:3f:8b:28: 95:29:2f:08:5f:ef:d9:1a:13:0e:c1:95:a5:62:96: 23:62:cd:55:24:58:ae:20:54:c6:d0:87:df:63:95: 12:28:38:e6:fd:2a:27:fb:06:d7:ee:9e:8d:8f:0f: 33:4a:75:12:0a:13:55:db:e0:13:16:26:98:e9:e0: c0:c2:be:99:48:28:75:b4:32:8e:49:2e:65:b0:10: 4f:a0:3d:fd:4d:33:02:6c:0f:f0:9b:83:cd:ea:39: a3:96:90:89:d7:a7:2c:ec:16:4a:e1:d2:75:e8:77: 1b:99:0f:3e:ae:2a:aa:0a:59:75:32:2c:cb:87:1f: c3:ad:c6:5e:2a:d2:56:4e:d2:d7:16:43:fc:e5:dd: 1f:53:9e:03:44:97:46:03:07:90:b5:cc:57:66:10: e4:b5:4b:9f:3d:18:a6:a1:2a:6c:66:52:a3:6a:9c: 5c:f2:05:ee:4b:44:82:72:f8:ed:9a:36:a2:44:8d: 3c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:56:2B:45:7B:93:C0:8A:24:EE:1E:EB:06:48:1A:21:2F:BC:3E:8F X509v3 Authority Key Identifier: keyid:96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:c5:be:9b:73:e7:91:80:73:13:c8:d1:c2:91:eb:f0:28:0a: 17:cf:b0:0e:b5:5c:4b:79:ea:b1:02:47:1d:1f:da:02:41:62: e0:29:7b:e4:fd:b6:64:d1:5a:71:a5:45:05:77:93:58:d7:54: c7:c4:7e:9d:e6:b6:4b:2b:95:f8:03:06:b9:a7:3b:ba:f7:96: 2f:63:28:04:89:9f:ae:fe:84:a4:91:70:5a:a4:ca:68:52:12: bd:c2:b0:75:15:09:4c:a1:38:f2:51:ff:59:0f:4b:eb:5b:e9: be:dc:ec:22:3f:81:3e:d7:0e:83:ef:c4:ce:6f:84:bf:46:da: 7b:dc:d7:92:c8:f7:49:a4:09:4a:50:b0:7b:59:67:2e:1e:95: c1:3b:4a:33:49:c9:5d:be:d2:2b:b0:82:ce:e4:87:e1:0e:e0: a6:75:56:78:b8:89:4b:16:2d:e6:38:d9:42:71:35:61:92:ec: f1:7d:e1:f2:a2:1d:97:d1:e6:cc:ec:3c:d9:7b:fd:3f:c3:5b: ae:b5:ab:3e:6a:81:3f:60:b2:8f:bd:f8:55:56:42:73:d4:c7: 58:f2:93:bc:43:20:e7:59:2f:16:39:35:20:f6:55:02:59:ea: 6d:76:a3:f6:7c:ef:f7:15:10:07:0c:3b:85:81:cd:2e:10:02: 86:96:15:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsgK0VTmAJ8LTZzCvAjyOmGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2MWNjZmE5ZDAyY2JmMDU5NjBlM2EyZjkwNzk4NTljY2Q2 ZWFkNmQwHhcNMjUxMjE1MDQwMTA1WhcNMjUxMjE2MDQwMTA1WjAzMTEwLwYDVQQD EyhiMTU2MmI0NTdiOTNjMDhhMjRlZTFlZWIwNjQ4MWEyMTJmYmMzZThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhvCp8YP+dhA86y8TbUbuqEr43K1 Ygbd1am573rSwFBrz6Iqf4OuGf4Ox9Tyv8LrmaokTneoNn5ivOOKpcTKFjktu2o7 53U/iyiVKS8IX+/ZGhMOwZWlYpYjYs1VJFiuIFTG0IffY5USKDjm/Son+wbX7p6N jw8zSnUSChNV2+ATFiaY6eDAwr6ZSCh1tDKOSS5lsBBPoD39TTMCbA/wm4PN6jmj lpCJ16cs7BZK4dJ16HcbmQ8+riqqCll1MizLhx/DrcZeKtJWTtLXFkP85d0fU54D RJdGAweQtcxXZhDktUufPRimoSpsZlKjapxc8gXuS0SCcvjtmjaiRI08SwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLFWK0V7k8CKJO4e6wZIGiEvvD6PMB8GA1UdIwQY MBaAFJYcz6nQLL8Flg46L5B5hZzNbq1tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGh6UHFkQXN2d1dXRGpvdmtIbUZuTTF1clcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi81NTU3ZmMtNzY1My00MGE5LTk5YzMt N2VhOTkwNWMzZmJkLzEvbGh6UHFkQXN2d1dXRGpvdmtIbUZuTTF1clcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi81NTU3ZmMtNzY1My00MGE5LTk5YzMtN2VhOTkwNWMzZmJk LzEvbGh6UHFkQXN2d1dXRGpvdmtIbUZuTTF1clcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlcW+m3Pn kYBzE8jRwpHr8CgKF8+wDrVcS3nqsQJHHR/aAkFi4Cl75P22ZNFacaVFBXeTWNdU x8R+nea2SyuV+AMGuac7uveWL2MoBImfrv6EpJFwWqTKaFISvcKwdRUJTKE48lH/ WQ9L61vpvtzsIj+BPtcOg+/Ezm+Ev0bae9zXksj3SaQJSlCwe1lnLh6VwTtKM0nJ Xb7SK7CCzuSH4Q7gpnVWeLiJSxYt5jjZQnE1YZLs8X3h8qIdl9HmzOw82Xv9P8Nb rrWrPmqBP2Cyj734VVZCc9THWPKTvEMg51kvFjk1IPZVAlnqbXaj9nzv9xUQBww7 hYHNLhAChpYVPA== -----END CERTIFICATE-----Generated at Mon Dec 15 13:20:27 2025 by rpki-client