This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft File: lNmOj-xoB3WhVyZuDGt4sUGjT14.mft (raw, json) Hash identifier: VGDJQVRg+KNBYdiLS1B3iZF73E0fCGuRJIEd+Uztkuw= Subject key identifier: D9:09:45:F4:D0:B3:5E:59:7E:71:A2:1E:AA:B2:1E:C4:7D:2F:1B:04 Authority key identifier: 94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E Certificate issuer: /CN=94d98e8fec680775a157266e0c6b78b141a34f5e Certificate serial: 019B0AEC877B7EB6D7F9369161685F0829FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft Manifest number: 1054 Signing time: Thu 11 Dec 2025 01:00:31 +0000 Manifest this update: Thu 11 Dec 2025 01:00:31 +0000 Manifest next update: Fri 12 Dec 2025 01:00:31 +0000 Files and hashes: 1: 0YppZtvRSXBHB8NFrLn_rzdM4Wg.roa (hash: AIX2Owt5viXo6Wp2eQTWR2x2rHaX/2g8xn17pbf1zi4=) 2: H0U-Km3rz_YtidSX7xAdJ-A_RzA.roa (hash: L4ck5kUvwk5NkXR5fk3e/8692feGx3cZZTXMDkDHo6o=) 3: g-HCwg43gOP2XekDaAD-cD_7090.roa (hash: Jn45q0K3JSLnPfSEDl4boKCYCQ7bL8Tz9HcRFUZBtsc=) 4: lNmOj-xoB3WhVyZuDGt4sUGjT14.crl (hash: 62r2CgV0hzCRjwOI+cB7ct68zogSZH4iOKyUHR95MOw=) 5: sYNq23EbdC4t0IdwpQDOgH5L4bA.roa (hash: 0lkFdLqNWcSIUxzZEBi9m/kq7AF/EimUAe9h4IymUms=) 6: uNzKfKgIpPbpXrUU6oGeZECqr9M.roa (hash: s2axTj5E8SUZbZUz5S5Jplmoh/pA2RgMQVViMaq+JJo=) 7: vP0VJrJmKW9-lmRN_sGvd9GiOjQ.roa (hash: olwIbl5Siou5wUh96CRmMWnDTZ9SiZIYbaP5/hjT0zA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 23:21:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0a:ec:87:7b:7e:b6:d7:f9:36:91:61:68:5f:08:29:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94d98e8fec680775a157266e0c6b78b141a34f5e Validity Not Before: Dec 11 01:00:31 2025 GMT Not After : Dec 12 01:00:31 2025 GMT Subject: CN=d90945f4d0b35e597e71a21eaab21ec47d2f1b04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:64:df:9b:f3:f1:72:58:37:15:81:8e:f3:eb: 3d:db:f0:cc:4e:d0:96:f2:13:41:55:83:1a:18:c7: be:04:e7:4d:1f:c8:21:8b:42:66:7e:1a:97:06:02: 01:fe:7a:ae:bc:a5:f0:4a:19:1c:71:e4:42:85:aa: 54:9d:03:a2:50:50:b6:4c:da:a8:12:2b:17:43:21: 7c:58:fc:46:33:7d:0b:40:97:ef:b2:da:f1:86:32: eb:a1:95:da:8e:fd:fb:35:58:be:c2:6d:d9:58:fa: 36:b0:79:91:d8:14:b5:a9:19:01:0b:e2:92:c8:1d: 04:43:03:99:c1:18:0d:08:50:e8:09:9f:9a:37:03: 74:83:44:aa:45:f3:38:cc:e2:a1:ae:7d:5f:d4:b2: 2e:46:c3:b2:7e:6f:20:76:1a:7f:6c:08:cf:0c:1d: 08:e2:6e:79:29:4e:ee:3a:3e:a3:d5:5d:fb:8d:28: 5b:41:5e:2b:d8:25:a1:5d:ac:15:86:58:ec:69:53: af:6f:de:43:9c:0a:46:9b:16:70:b4:56:b2:a8:5c: 6c:42:df:43:12:5f:03:86:78:3f:1e:aa:56:9f:c5: 76:05:29:91:06:84:a2:39:be:95:65:c4:05:07:f7: 43:4e:d3:12:c3:5c:b7:e2:e2:88:31:c7:51:d7:a7: 5e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:09:45:F4:D0:B3:5E:59:7E:71:A2:1E:AA:B2:1E:C4:7D:2F:1B:04 X509v3 Authority Key Identifier: keyid:94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:2a:02:7c:a1:b7:69:93:3c:7e:c3:c8:63:20:5c:61:54:6a: 47:bd:4a:38:e6:e7:35:7d:9e:be:bf:2b:41:f6:65:a6:c6:12: f7:a9:4c:9a:e3:63:d3:b8:33:dd:6e:11:7f:21:c9:16:99:d5: 04:86:20:14:dd:79:4d:98:36:15:73:02:91:e5:b0:65:bd:0c: 8d:e2:0e:3a:b4:55:73:98:62:94:30:1d:a2:6b:ac:2c:f6:29: 28:9f:c7:00:81:7c:c9:1f:25:a6:d0:5f:a0:34:74:dd:f3:ea: b7:62:86:d4:21:b9:44:74:41:7e:82:84:31:39:ff:5c:7e:54: 45:1d:a7:b7:55:c5:07:7c:12:64:76:0b:fc:29:73:98:f5:dd: 53:b0:aa:5c:e0:6b:53:d6:6d:a0:46:20:62:ea:3b:1e:f8:8f: 01:9b:e8:19:8c:18:e5:9b:6c:d9:1a:5e:3f:5b:a4:d6:23:72: 2c:64:36:6f:10:d8:92:a9:02:92:fb:3e:fc:bf:94:1b:88:0a: 6e:22:37:00:d6:5e:50:c8:6b:fc:24:53:c0:f8:f0:f4:ea:e2: e2:b6:e9:b7:b0:6d:f8:18:cf:2c:b9:27:9e:15:3b:5a:e9:1e: 32:57:e5:81:a5:f3:4b:e6:d7:e4:4c:07:bc:32:cd:fd:27:11: 41:5f:c2:91 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsK7Id7frbX+TaRYWhfCCn9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0ZDk4ZThmZWM2ODA3NzVhMTU3MjY2ZTBjNmI3OGIxNDFh MzRmNWUwHhcNMjUxMjExMDEwMDMxWhcNMjUxMjEyMDEwMDMxWjAzMTEwLwYDVQQD EyhkOTA5NDVmNGQwYjM1ZTU5N2U3MWEyMWVhYWIyMWVjNDdkMmYxYjA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhWTfm/Pxclg3FYGO8+s92/DMTtCW 8hNBVYMaGMe+BOdNH8ghi0JmfhqXBgIB/nquvKXwShkcceRChapUnQOiUFC2TNqo EisXQyF8WPxGM30LQJfvstrxhjLroZXajv37NVi+wm3ZWPo2sHmR2BS1qRkBC+KS yB0EQwOZwRgNCFDoCZ+aNwN0g0SqRfM4zOKhrn1f1LIuRsOyfm8gdhp/bAjPDB0I 4m55KU7uOj6j1V37jShbQV4r2CWhXawVhljsaVOvb95DnApGmxZwtFayqFxsQt9D El8Dhng/HqpWn8V2BSmRBoSiOb6VZcQFB/dDTtMSw1y34uKIMcdR16detQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNkJRfTQs15ZfnGiHqqyHsR9LxsEMB8GA1UdIwQY MBaAFJTZjo/saAd1oVcmbgxreLFBo09eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbE5tT2oteG9CM1doVnladURHdDRzVUdqVDE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi83YWUzYzctNjdlNC00NGRlLWIxMzkt ODdkMTdkZjc0YzdlLzEvbE5tT2oteG9CM1doVnladURHdDRzVUdqVDE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi83YWUzYzctNjdlNC00NGRlLWIxMzktODdkMTdkZjc0Yzdl LzEvbE5tT2oteG9CM1doVnladURHdDRzVUdqVDE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJyoCfKG3 aZM8fsPIYyBcYVRqR71KOObnNX2evr8rQfZlpsYS96lMmuNj07gz3W4RfyHJFpnV BIYgFN15TZg2FXMCkeWwZb0MjeIOOrRVc5hilDAdomusLPYpKJ/HAIF8yR8lptBf oDR03fPqt2KG1CG5RHRBfoKEMTn/XH5URR2nt1XFB3wSZHYL/ClzmPXdU7CqXOBr U9ZtoEYgYuo7HviPAZvoGYwY5Zts2RpeP1uk1iNyLGQ2bxDYkqkCkvs+/L+UG4gK biI3ANZeUMhr/CRTwPjw9Ori4rbpt7Bt+BjPLLknnhU7WukeMlflgaXzS+bX5EwH vDLN/ScRQV/CkQ== -----END CERTIFICATE-----Generated at Thu Dec 11 06:38:50 2025 by rpki-client