This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft File: lris-hevk77b78b-tGiPmGBLiq4.mft (raw, json) Hash identifier: DFertSaMKb3nyl3uyQ5urlY1kqBhnAda3sghOV1AXO0= Subject key identifier: CE:2D:75:82:76:FA:EE:51:37:0F:81:9D:B9:F4:9E:A1:07:0B:7A:CC Authority key identifier: 96:B8:AC:FA:17:AF:93:BE:DB:EF:C6:FE:B4:68:8F:98:60:4B:8A:AE Certificate issuer: /CN=96b8acfa17af93bedbefc6feb4688f98604b8aae Certificate serial: 019BAE00F7357D24B416C374E2ED6D078B5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lris-hevk77b78b-tGiPmGBLiq4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft Manifest number: 124E Signing time: Sun 11 Jan 2026 17:00:57 +0000 Manifest this update: Sun 11 Jan 2026 17:00:57 +0000 Manifest next update: Mon 12 Jan 2026 17:00:57 +0000 Files and hashes: 1: 1-_1ND71xAg_YzyTREVjF7BcT090.roa (hash: q6/3yl36YPQO21Sef3A+lExC26TvJGdypkO4TEkJLcg=) 2: lris-hevk77b78b-tGiPmGBLiq4.crl (hash: 0dhLvaRRsczUPf53z91gT42/kfJ7/w51HtbnyjS2oyM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.crl rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft rsync://rpki.ripe.net/repository/DEFAULT/lris-hevk77b78b-tGiPmGBLiq4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 09:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ae:00:f7:35:7d:24:b4:16:c3:74:e2:ed:6d:07:8b:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96b8acfa17af93bedbefc6feb4688f98604b8aae Validity Not Before: Jan 11 17:00:57 2026 GMT Not After : Jan 12 17:00:57 2026 GMT Subject: CN=ce2d758276faee51370f819db9f49ea1070b7acc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:d5:89:e8:9c:6d:00:b5:70:40:59:c9:1c:0a: 8b:51:f5:67:30:70:46:ab:3d:97:d8:b7:cb:8c:56: 46:25:ff:d4:55:33:e3:2f:8a:a0:a9:26:8b:e5:26: 82:97:f7:57:6c:38:88:f2:cc:07:ba:13:ed:ee:67: f1:86:56:c9:63:8b:ca:5d:eb:da:f0:a1:e6:d5:9f: f9:61:1e:d5:6c:29:8a:a2:ab:c1:3f:a0:4c:5a:b4: c7:e3:da:da:de:d2:67:d0:a0:32:fd:d5:11:0e:fe: 21:08:11:e9:d3:2a:b3:0b:83:1b:09:13:dd:f6:58: 97:6f:d9:93:d2:82:06:c8:a3:9b:04:a5:f9:31:c6: 24:c8:fa:b7:1e:53:e4:13:f0:cb:fd:95:bd:af:69: 9e:95:73:d2:67:01:d8:9a:f4:1e:6b:de:58:10:76: 97:59:59:7c:01:1b:19:c4:98:8a:d5:84:62:41:f2: 71:89:a5:33:2f:e3:b5:5e:6b:48:df:e0:7f:2e:e9: 8c:0a:77:ef:ac:bb:75:ff:cc:57:87:19:ea:c8:5d: 61:96:6e:ab:2d:f2:b8:68:23:2f:b9:fd:f2:64:98: ef:d8:87:2f:6a:74:7a:96:04:5f:0d:a5:e5:f0:84: 5e:c3:a0:9f:5e:32:8c:6e:95:6b:5d:93:58:dc:2a: cf:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:2D:75:82:76:FA:EE:51:37:0F:81:9D:B9:F4:9E:A1:07:0B:7A:CC X509v3 Authority Key Identifier: keyid:96:B8:AC:FA:17:AF:93:BE:DB:EF:C6:FE:B4:68:8F:98:60:4B:8A:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lris-hevk77b78b-tGiPmGBLiq4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:22:c4:38:03:20:53:a8:df:b0:b2:db:c5:ff:ce:47:2d:61: 85:66:46:a8:08:3d:d7:f0:50:58:ad:02:36:b6:85:a7:f7:c0: 06:7a:8a:a7:ee:97:38:ce:69:2f:f2:d5:43:16:00:a0:d1:36: ec:0c:b3:86:fd:b1:92:58:8e:f2:69:b7:0f:ca:e4:7a:0b:a4: 46:04:74:3f:32:cc:1b:63:f5:21:db:91:93:de:97:c9:e5:52: bc:5e:8a:86:09:17:1e:91:99:ac:9e:8c:3f:94:62:ed:b0:ad: 92:73:36:b1:93:11:ad:d5:06:de:a9:0e:71:61:9c:ac:5f:22: a2:ac:b1:e4:7d:e1:93:0a:68:89:44:7d:06:a9:11:a4:68:f5: 8f:98:bf:d0:ce:f5:4b:02:dc:fe:13:c1:58:f0:d5:14:87:81: 17:f9:7f:19:ce:4c:00:82:70:05:01:32:a9:2e:fc:d4:89:e9: f1:6b:91:1a:c5:c1:be:45:a6:62:f8:2a:ad:51:8d:73:38:a7: bb:74:02:c9:41:f4:de:7f:92:f8:bd:06:ab:18:cd:a6:b9:76: f6:4d:5c:fd:5b:88:00:e9:7e:fb:ed:e3:ce:fa:0a:36:a4:41: 5f:e7:47:99:96:71:9a:cb:f5:02:5e:82:a0:dd:65:e3:cf:6f: 48:4f:bf:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuuAPc1fSS0FsN04u1tB4tfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2YjhhY2ZhMTdhZjkzYmVkYmVmYzZmZWI0Njg4Zjk4NjA0 YjhhYWUwHhcNMjYwMTExMTcwMDU3WhcNMjYwMTEyMTcwMDU3WjAzMTEwLwYDVQQD EyhjZTJkNzU4Mjc2ZmFlZTUxMzcwZjgxOWRiOWY0OWVhMTA3MGI3YWNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+dWJ6JxtALVwQFnJHAqLUfVnMHBG qz2X2LfLjFZGJf/UVTPjL4qgqSaL5SaCl/dXbDiI8swHuhPt7mfxhlbJY4vKXeva 8KHm1Z/5YR7VbCmKoqvBP6BMWrTH49ra3tJn0KAy/dURDv4hCBHp0yqzC4MbCRPd 9liXb9mT0oIGyKObBKX5McYkyPq3HlPkE/DL/ZW9r2melXPSZwHYmvQea95YEHaX WVl8ARsZxJiK1YRiQfJxiaUzL+O1XmtI3+B/LumMCnfvrLt1/8xXhxnqyF1hlm6r LfK4aCMvuf3yZJjv2IcvanR6lgRfDaXl8IRew6CfXjKMbpVrXZNY3CrP4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM4tdYJ2+u5RNw+Bnbn0nqEHC3rMMB8GA1UdIwQY MBaAFJa4rPoXr5O+2+/G/rRoj5hgS4quMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbHJpcy1oZXZrNzdiNzhiLXRHaVBtR0JMaXE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9jNDdiNDYtY2NkYy00YjVlLTg2MmUt YmRkZmYxOTdjMjlkLzEvbHJpcy1oZXZrNzdiNzhiLXRHaVBtR0JMaXE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My9jNDdiNDYtY2NkYy00YjVlLTg2MmUtYmRkZmYxOTdjMjlk LzEvbHJpcy1oZXZrNzdiNzhiLXRHaVBtR0JMaXE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVCLEOAMg U6jfsLLbxf/ORy1hhWZGqAg91/BQWK0CNraFp/fABnqKp+6XOM5pL/LVQxYAoNE2 7Ayzhv2xkliO8mm3D8rkegukRgR0PzLMG2P1IduRk96XyeVSvF6KhgkXHpGZrJ6M P5Ri7bCtknM2sZMRrdUG3qkOcWGcrF8ioqyx5H3hkwpoiUR9BqkRpGj1j5i/0M71 SwLc/hPBWPDVFIeBF/l/Gc5MAIJwBQEyqS781Inp8WuRGsXBvkWmYvgqrVGNczin u3QCyUH03n+S+L0GqxjNprl29k1c/VuIAOl+++3jzvoKNqRBX+dHmZZxmsv1Al6C oN1l489vSE+/HA== -----END CERTIFICATE-----Generated at Sun Jan 11 19:08:57 2026 by rpki-client