This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft File: lBZrcEhD09l1QJXIOpG0k4KCAKI.mft (raw, json) Hash identifier: bE0fuGjo1kaYEmOkxLECUxLJdaQ6+DHP1/3O5aEHLgI= Subject key identifier: 3F:A4:7C:A2:06:34:9B:8C:94:F1:F2:55:93:8A:CD:E6:81:41:C9:89 Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2 Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2 Certificate serial: 019B24E36F0181641F48CE57483470D50393 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft Manifest number: 1835 Signing time: Tue 16 Dec 2025 02:00:43 +0000 Manifest this update: Tue 16 Dec 2025 02:00:43 +0000 Manifest next update: Wed 17 Dec 2025 02:00:43 +0000 Files and hashes: 1: 7NOWSwr6Ix9WqMtFCauUoXq2B4E.roa (hash: 71eyC9fYC2VExHc19u8sJwP29ASsjLuAVH+CBPHOF2M=) 2: BRHlUoVs4kTAJJzJpj2fQx42B0g.roa (hash: v4G5+buvZ/BhLTazPK7WGSu5PzG/f4FLXfPXo1ZLswM=) 3: QE-0-GHrWq5bT_oQzBuxsGZ0jgg.roa (hash: Whew7oC4VAA4M2out/vzMuiYeBE1U3ZiPJv+gEs+1dU=) 4: Z7uuC5XE4-fMCsGBtqQw7mSeH9U.roa (hash: W7maKhHagBpEQgNK15fnWc66E1ZuDuwRIn7gOriSZAo=) 5: h9d0ktI5MHIktnWrhY2zneTKIew.roa (hash: 9qkOa4Wd+V/Z+xQC2CIhkz1VoRa5qCsYXEwwfKMwhGQ=) 6: lBZrcEhD09l1QJXIOpG0k4KCAKI.crl (hash: lYpMu8hcBP5D7olTr+ImnNE2Dzmih6MyWqe3yuJPbg8=) 7: sCbiretHkvpeYn6X-YO7yjpBd3I.roa (hash: m4o26nuHfI88h55NDmirhyFa20WJfqvTKSftUFTfvL0=) 8: zIA6BDrr_xrDLDlzAGpw_9P6klo.roa (hash: pfzDsna4zGoCQX7v3ji49EBWdSr9XYlq27X+4n1BNgY=) 9: zRIEfiHVhkzqHiYdm3McIGPDP2Q.roa (hash: 32bioXyHcsiw84uow4i7c6KhRJSD3457u6OM44k/3vM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 02:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:e3:6f:01:81:64:1f:48:ce:57:48:34:70:d5:03:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94166b704843d3d9754095c83a91b493828200a2 Validity Not Before: Dec 16 02:00:43 2025 GMT Not After : Dec 17 02:00:43 2025 GMT Subject: CN=3fa47ca206349b8c94f1f255938acde68141c989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:bb:02:c7:e7:47:5e:29:51:9b:97:cc:28:a6: 86:ac:23:1a:76:92:0a:c6:87:e2:a1:04:3a:40:7a: 87:d2:0e:b6:ec:b0:f7:05:17:ff:03:83:ea:be:a1: 29:b2:42:12:43:d4:11:5a:cc:fc:e9:d5:65:e7:ab: 7d:4f:57:b7:2d:b0:09:bf:c0:7b:95:39:8a:c3:61: b2:08:88:3f:f9:7a:32:df:50:86:49:f9:ac:c7:5a: fd:f2:1a:26:b9:4a:9b:dd:58:07:56:49:ab:31:43: 88:d0:2b:3f:c0:8a:33:39:1f:69:e7:14:a0:12:a5: dc:5c:72:64:0f:e3:9d:6a:11:b2:42:be:8b:69:c2: 71:bd:7d:26:49:16:3c:b6:d7:f9:31:53:87:ae:b2: cd:5c:65:0c:2a:21:7f:03:4b:c0:ea:f2:cb:8d:b7: 79:07:e8:5e:73:4a:1b:25:a0:0c:a1:f3:7e:43:23: d1:06:b5:2d:7d:f1:50:fe:bf:9c:e8:6d:61:85:bd: d0:8b:b4:c8:b6:1d:f5:6b:a2:d3:7f:1b:39:e6:e0: 0c:4c:9e:e7:a5:2f:27:7b:df:07:06:f8:8c:e5:7e: 40:3a:17:ae:a8:9c:fb:2b:a4:c8:6c:99:d6:80:94: 61:4e:22:ae:c2:01:c5:e4:29:2c:93:51:6f:68:11: 2e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A4:7C:A2:06:34:9B:8C:94:F1:F2:55:93:8A:CD:E6:81:41:C9:89 X509v3 Authority Key Identifier: keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:c0:a9:50:98:df:ef:e0:49:f9:f8:62:d1:31:3d:ab:77:f8: 41:51:8e:b6:90:f4:02:99:e9:39:bc:58:7b:f8:f6:7a:d2:d8: 2f:d5:b8:b7:d0:81:88:29:0f:0b:cd:60:dd:35:db:53:bc:54: 90:de:ff:e8:bc:75:f6:9f:5e:02:fd:7b:46:e0:a3:8e:04:c6: dc:a6:a4:96:b3:95:34:1a:f3:7a:02:d0:0e:31:f2:0f:e7:f6: 03:98:dd:6e:00:b3:6c:5c:bc:ad:e8:fc:89:57:da:59:d8:26: 17:52:7b:67:0d:d4:02:ff:20:42:78:7e:05:55:3d:d0:a3:c6: 21:f3:02:dd:f0:c3:20:f0:d2:a1:51:65:8b:6b:2e:5b:0f:a2: 17:af:02:21:97:a3:03:6a:be:06:6b:7e:da:bb:87:d4:22:e7: 1c:49:f6:88:e7:0f:6b:74:06:72:9a:00:8d:f6:6d:7f:93:6d: 9b:3b:e8:be:09:3d:0b:09:11:84:97:4a:b8:6f:6e:4d:5d:da: 0d:8e:03:d4:8b:73:64:df:68:63:de:9a:0a:5b:89:49:0f:6a: 52:22:cc:b4:d1:1e:bb:7b:6b:78:0e:be:32:f8:67:b6:f1:8a: b2:7a:ef:fa:16:a8:5a:ce:75:c9:54:84:aa:4b:6a:1b:2f:81: 51:a3:84:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsk428BgWQfSM5XSDRw1QOTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0MTY2YjcwNDg0M2QzZDk3NTQwOTVjODNhOTFiNDkzODI4 MjAwYTIwHhcNMjUxMjE2MDIwMDQzWhcNMjUxMjE3MDIwMDQzWjAzMTEwLwYDVQQD EygzZmE0N2NhMjA2MzQ5YjhjOTRmMWYyNTU5MzhhY2RlNjgxNDFjOTg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAobsCx+dHXilRm5fMKKaGrCMadpIK xofioQQ6QHqH0g627LD3BRf/A4PqvqEpskISQ9QRWsz86dVl56t9T1e3LbAJv8B7 lTmKw2GyCIg/+Xoy31CGSfmsx1r98homuUqb3VgHVkmrMUOI0Cs/wIozOR9p5xSg EqXcXHJkD+OdahGyQr6LacJxvX0mSRY8ttf5MVOHrrLNXGUMKiF/A0vA6vLLjbd5 B+hec0obJaAMofN+QyPRBrUtffFQ/r+c6G1hhb3Qi7TIth31a6LTfxs55uAMTJ7n pS8ne98HBviM5X5AOheuqJz7K6TIbJnWgJRhTiKuwgHF5Cksk1FvaBEuZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD+kfKIGNJuMlPHyVZOKzeaBQcmJMB8GA1UdIwQY MBaAFJQWa3BIQ9PZdUCVyDqRtJOCggCiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEJacmNFaEQwOWwxUUpYSU9wRzBrNEtDQUtJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi80M2ZmOGYtY2Q1NC00Y2YxLThhYWYt NGJlMThlZjEyOGI0LzEvbEJacmNFaEQwOWwxUUpYSU9wRzBrNEtDQUtJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi80M2ZmOGYtY2Q1NC00Y2YxLThhYWYtNGJlMThlZjEyOGI0 LzEvbEJacmNFaEQwOWwxUUpYSU9wRzBrNEtDQUtJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARMCpUJjf 7+BJ+fhi0TE9q3f4QVGOtpD0ApnpObxYe/j2etLYL9W4t9CBiCkPC81g3TXbU7xU kN7/6Lx19p9eAv17RuCjjgTG3KaklrOVNBrzegLQDjHyD+f2A5jdbgCzbFy8rej8 iVfaWdgmF1J7Zw3UAv8gQnh+BVU90KPGIfMC3fDDIPDSoVFli2suWw+iF68CIZej A2q+Bmt+2ruH1CLnHEn2iOcPa3QGcpoAjfZtf5Ntmzvovgk9CwkRhJdKuG9uTV3a DY4D1ItzZN9oY96aCluJSQ9qUiLMtNEeu3treA6+MvhntvGKsnrv+haoWs51yVSE qktqGy+BUaOE1g== -----END CERTIFICATE-----Generated at Tue Dec 16 11:48:01 2025 by rpki-client