This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft File: l72bhlMeVEr6AwnYvip7ppFj-a0.mft (raw, json) Hash identifier: IknSFInt4OGFwSr4fbEOUcG6PRl2jHe0se3mvRVjgvQ= Subject key identifier: 99:27:97:6D:E7:2B:52:B3:31:92:1C:56:3A:B7:BF:EE:DA:CA:9A:CA Authority key identifier: 97:BD:9B:86:53:1E:54:4A:FA:03:09:D8:BE:2A:7B:A6:91:63:F9:AD Certificate issuer: /CN=97bd9b86531e544afa0309d8be2a7ba69163f9ad Certificate serial: 019B1193D325430EA2AFABBDAFC024979A12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft Manifest number: 1527 Signing time: Fri 12 Dec 2025 08:00:59 +0000 Manifest this update: Fri 12 Dec 2025 08:00:59 +0000 Manifest next update: Sat 13 Dec 2025 08:00:59 +0000 Files and hashes: 1: 2t_P7Z4EHzx6RCn0NGvyeQ2m4hw.roa (hash: 6yZ6J/mreE0RoEYWMI2NLTt5Zn18y6jZiBf2p+Imiq4=) 2: 8sek3R_CiH2Ce26peT_yPJJM1Q4.roa (hash: MMoHl1B7kl6idkVB+mLHeo7h0pXBE+uaRVofbjNMtN0=) 3: R1LtSR--SIXBiaZh4E5Q6En2fhk.roa (hash: QyJjIQmpOVOlqsTG9jHRUnt61S51UgFdXw/l/jQZvj8=) 4: l72bhlMeVEr6AwnYvip7ppFj-a0.crl (hash: jTEmUz5SsgqTtFEeJwQd7ag6WfxiUnA+qpLy8wYtgmI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:11:93:d3:25:43:0e:a2:af:ab:bd:af:c0:24:97:9a:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97bd9b86531e544afa0309d8be2a7ba69163f9ad Validity Not Before: Dec 12 08:00:59 2025 GMT Not After : Dec 13 08:00:59 2025 GMT Subject: CN=9927976de72b52b331921c563ab7bfeedaca9aca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:72:e5:a9:27:a0:10:52:77:5a:45:c2:fc:1f: 81:9d:22:49:46:6c:a3:b9:a7:6f:34:68:b6:6d:a1: de:f9:b6:c6:15:c4:a8:79:f1:c2:b3:93:de:1a:95: 39:66:55:5f:05:7c:da:36:f4:c3:f8:ea:2a:77:8e: 12:ec:e6:76:f0:86:bf:d4:77:89:74:15:3c:bd:65: 52:c6:f1:6a:3c:35:53:76:c8:fc:e6:f8:68:83:54: e1:c5:e7:44:18:75:8f:94:92:fe:5d:6d:9f:b2:5d: 63:a7:7f:dc:0f:37:6a:16:e6:34:4d:67:e5:39:39: 35:f3:16:77:37:3d:61:2f:18:92:8e:6f:f4:dc:89: f5:a2:ea:3f:c7:48:6e:47:0d:41:a6:18:b8:5b:c9: 6c:b1:7d:6f:f6:19:4f:8e:ca:30:af:30:e9:6d:77: 1f:18:c1:ca:c3:63:c0:b7:ea:7d:59:b2:d0:5c:05: f1:34:54:06:d1:48:18:2b:a9:d6:f4:83:44:2b:c4: ef:77:17:f2:a2:04:dd:0d:28:a2:eb:9e:a0:24:17: 43:da:1f:cf:3b:f1:4c:08:ef:3f:5a:2a:e7:63:d3: 8e:73:8f:f8:7b:a0:56:f9:c8:1f:c6:b6:92:7d:bb: aa:57:de:61:4c:5f:50:3c:7e:bb:72:88:9f:ae:3d: 14:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:27:97:6D:E7:2B:52:B3:31:92:1C:56:3A:B7:BF:EE:DA:CA:9A:CA X509v3 Authority Key Identifier: keyid:97:BD:9B:86:53:1E:54:4A:FA:03:09:D8:BE:2A:7B:A6:91:63:F9:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:be:9a:47:85:3d:05:13:14:2d:46:c6:fe:8a:f1:ca:ff:56: f6:df:16:26:73:c3:dc:5e:6e:01:f2:a0:7b:09:cc:18:b0:f0: d7:7a:e0:61:e1:d1:97:65:40:ee:ba:e4:3d:fe:51:27:d6:93: 99:f2:2f:55:db:89:89:ff:6c:c0:51:56:db:0b:aa:c7:ba:b8: 9e:39:e5:76:f4:8b:3c:71:73:7c:88:a1:6f:2f:32:2c:4c:7a: 22:9c:7b:23:a4:30:48:89:89:fc:6b:60:03:d1:5a:f6:1c:10: 70:3c:8e:bc:49:e9:40:1c:33:d5:72:a9:2f:e4:d2:45:96:72: dc:ff:e1:5e:fb:e3:5f:45:9d:08:18:0c:35:0d:0c:a0:c3:3b: dd:4e:4f:18:8c:3b:cc:29:ba:ce:43:e8:0e:b4:6b:e7:45:0b: cb:08:d3:5a:e3:b5:e0:52:1b:4d:4b:d7:13:36:f4:04:f0:7f: 87:a4:e2:e8:4f:51:a7:a8:51:ae:13:d3:29:e9:22:19:cc:6a: 99:c5:58:5c:cb:f7:1b:83:20:ff:ab:60:dc:dd:e7:36:db:37: 61:e0:37:0e:76:66:8e:6b:94:a6:0c:73:95:91:79:10:62:81: 9b:ca:1f:71:bb:49:21:e0:ca:66:79:74:be:4a:bf:a6:76:be: 9a:ee:94:97 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsRk9MlQw6ir6u9r8Akl5oSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3YmQ5Yjg2NTMxZTU0NGFmYTAzMDlkOGJlMmE3YmE2OTE2 M2Y5YWQwHhcNMjUxMjEyMDgwMDU5WhcNMjUxMjEzMDgwMDU5WjAzMTEwLwYDVQQD Eyg5OTI3OTc2ZGU3MmI1MmIzMzE5MjFjNTYzYWI3YmZlZWRhY2E5YWNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHLlqSegEFJ3WkXC/B+BnSJJRmyj uadvNGi2baHe+bbGFcSoefHCs5PeGpU5ZlVfBXzaNvTD+Ooqd44S7OZ28Ia/1HeJ dBU8vWVSxvFqPDVTdsj85vhog1ThxedEGHWPlJL+XW2fsl1jp3/cDzdqFuY0TWfl OTk18xZ3Nz1hLxiSjm/03In1ouo/x0huRw1Bphi4W8lssX1v9hlPjsowrzDpbXcf GMHKw2PAt+p9WbLQXAXxNFQG0UgYK6nW9INEK8TvdxfyogTdDSii656gJBdD2h/P O/FMCO8/WirnY9OOc4/4e6BW+cgfxraSfbuqV95hTF9QPH67coifrj0UrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJknl23nK1KzMZIcVjq3v+7ayprKMB8GA1UdIwQY MBaAFJe9m4ZTHlRK+gMJ2L4qe6aRY/mtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDcyYmhsTWVWRXI2QXduWXZpcDdwcEZqLWEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi9kNGJkOGItNTVmNC00NzY1LWFkMjIt MzQ2MGNjMjY0ODBiLzEvbDcyYmhsTWVWRXI2QXduWXZpcDdwcEZqLWEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi9kNGJkOGItNTVmNC00NzY1LWFkMjItMzQ2MGNjMjY0ODBi LzEvbDcyYmhsTWVWRXI2QXduWXZpcDdwcEZqLWEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAL6aR4U9 BRMULUbG/orxyv9W9t8WJnPD3F5uAfKgewnMGLDw13rgYeHRl2VA7rrkPf5RJ9aT mfIvVduJif9swFFW2wuqx7q4njnldvSLPHFzfIihby8yLEx6Ipx7I6QwSImJ/Gtg A9Fa9hwQcDyOvEnpQBwz1XKpL+TSRZZy3P/hXvvjX0WdCBgMNQ0MoMM73U5PGIw7 zCm6zkPoDrRr50ULywjTWuO14FIbTUvXEzb0BPB/h6Ti6E9Rp6hRrhPTKekiGcxq mcVYXMv3G4Mg/6tg3N3nNts3YeA3DnZmjmuUpgxzlZF5EGKBm8ofcbtJIeDKZnl0 vkq/pna+mu6Ulw== -----END CERTIFICATE-----Generated at Fri Dec 12 15:32:34 2025 by rpki-client