This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft File: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft (raw, json) Hash identifier: yV8IuBTE/K7PrtZK7DppeE7xjfhMt7NO6YJ3X1IxmqM= Subject key identifier: 1B:83:80:41:F6:6A:8E:2C:62:45:38:9E:89:96:BD:D2:A3:AB:6E:C3 Authority key identifier: 95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0 Certificate issuer: /CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0 Certificate serial: 019B2C9D19ADD06BC9C2C94BF2A0249BFB93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft Manifest number: 0869 Signing time: Wed 17 Dec 2025 14:00:51 +0000 Manifest this update: Wed 17 Dec 2025 14:00:51 +0000 Manifest next update: Thu 18 Dec 2025 14:00:51 +0000 Files and hashes: 1: cCGgeXQG7w7JJ0VVtoCaqK0Nuk0.roa (hash: OWS86sPN3Xs5u+J3GeHiIwJ0UACEogG9zbUxH/qhnWU=) 2: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl (hash: sLEnSb6BZa2ruHsj+Hg4tKb0XiJJofQsDd9DnXiQN7E=) 3: x4XI86xuT3wsfzGO7m_2JB-s4p4.roa (hash: Dt7gE1TI/UXgmAj9V+d2Jv58edUR433oJyH6DVwQHcw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2c:9d:19:ad:d0:6b:c9:c2:c9:4b:f2:a0:24:9b:fb:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0 Validity Not Before: Dec 17 14:00:51 2025 GMT Not After : Dec 18 14:00:51 2025 GMT Subject: CN=1b838041f66a8e2c6245389e8996bdd2a3ab6ec3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:70:cb:b3:c2:82:30:32:d6:34:f3:1e:2b:2c: 0d:5b:07:9c:92:57:b5:18:5c:9d:76:7c:c4:2a:db: 05:8c:ee:3b:0c:9c:f2:ad:cc:0e:95:6a:44:e6:90: 33:c2:37:09:0a:5c:09:7c:ee:a8:2e:e9:15:f8:74: 70:7b:3f:b9:e4:17:f8:bf:b8:18:d4:5f:b3:83:fb: 59:2d:22:03:62:de:89:72:4b:89:f4:cb:c4:51:e4: 0d:22:42:2b:68:b2:2d:9c:b9:6b:81:a8:a7:d6:46: bd:2a:74:23:ac:d7:0a:68:6a:8f:1b:3c:ff:76:32: 7b:1f:35:e3:53:50:7f:b7:e2:bb:0c:ff:21:ab:59: 83:a5:34:e8:84:07:42:c5:6d:0b:8d:94:19:b8:a2: 80:53:ed:fe:50:bb:0d:0b:1d:ba:0d:60:8c:30:c8: 3e:bd:b0:a0:21:1a:d0:f0:e6:66:43:b2:18:cd:19: 9a:10:70:c3:68:56:17:5a:e1:b3:13:c9:5a:9b:a5: 77:bf:bc:1b:c6:3d:c3:88:81:b0:a5:d1:db:61:d3: bf:eb:d9:b0:d2:78:73:81:c8:0e:38:80:c4:a4:09: 5f:77:c2:e6:aa:f6:47:d3:b5:4d:03:65:67:63:f3: 2e:ce:a7:77:35:11:02:bb:22:9a:90:d4:0c:93:96: e1:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:83:80:41:F6:6A:8E:2C:62:45:38:9E:89:96:BD:D2:A3:AB:6E:C3 X509v3 Authority Key Identifier: keyid:95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:0f:a6:bc:12:44:ad:8a:07:30:92:a7:35:ff:95:4d:ed:63: d3:a4:8e:7b:22:fd:f8:bb:45:ff:07:61:55:5b:b2:b4:92:d8: c4:de:91:41:8a:0a:0c:bb:10:50:98:5b:8e:09:56:cb:a6:9c: a5:08:0f:31:da:af:3d:27:5b:d7:54:db:a0:32:6a:23:c2:3b: c5:df:cf:e9:13:84:89:23:d1:36:d1:cf:73:20:52:b5:d1:f3: 48:e0:7d:26:fd:96:65:25:7c:87:7b:a5:53:72:8f:6e:20:cc: 55:2b:31:c1:dd:fa:f3:0b:fb:60:ed:e4:aa:e6:66:4c:83:61: 1e:19:d9:1d:3d:a1:e8:81:d7:65:56:41:e6:f8:05:81:5b:3b: 50:9c:b7:c0:9f:a3:b8:64:c9:bb:1f:6d:c8:2f:0d:33:28:32: 69:a3:29:c2:96:f5:70:cf:39:c8:c2:a6:81:3d:69:3e:7c:83: 34:4b:e8:0f:77:8f:e1:f7:26:0b:9f:b3:b3:75:01:9c:50:8f: e9:46:d9:ba:df:62:51:63:a4:7e:ad:d3:19:5e:cc:53:9f:e5: 28:9c:c3:98:7c:1e:89:4b:e9:60:0c:35:be:c1:ff:4f:f8:44: 95:20:91:cb:d2:d7:4a:a9:bc:7b:3e:3e:e3:4b:9c:1c:f3:9a: 96:ee:cb:97 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZssnRmt0GvJwslL8qAkm/uTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1MTRkZjlmZGMzYTBiMTI4YzIwZWU4YzA2NjI4YzQzYzk1 OGJiZjAwHhcNMjUxMjE3MTQwMDUxWhcNMjUxMjE4MTQwMDUxWjAzMTEwLwYDVQQD EygxYjgzODA0MWY2NmE4ZTJjNjI0NTM4OWU4OTk2YmRkMmEzYWI2ZWMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA33DLs8KCMDLWNPMeKywNWweckle1 GFyddnzEKtsFjO47DJzyrcwOlWpE5pAzwjcJClwJfO6oLukV+HRwez+55Bf4v7gY 1F+zg/tZLSIDYt6JckuJ9MvEUeQNIkIraLItnLlrgain1ka9KnQjrNcKaGqPGzz/ djJ7HzXjU1B/t+K7DP8hq1mDpTTohAdCxW0LjZQZuKKAU+3+ULsNCx26DWCMMMg+ vbCgIRrQ8OZmQ7IYzRmaEHDDaFYXWuGzE8lam6V3v7wbxj3DiIGwpdHbYdO/69mw 0nhzgcgOOIDEpAlfd8LmqvZH07VNA2VnY/Muzqd3NRECuyKakNQMk5bhDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBuDgEH2ao4sYkU4nomWvdKjq27DMB8GA1UdIwQY MBaAFJUU35/cOgsSjCDujAZijEPJWLvwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFJUZm45dzZDeEtNSU82TUJtS01ROGxZdV9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi85N2ZiMGQtZDc3Zi00NDY3LTg2Mjct ZTIyMmJmODUyOWI4LzEvbFJUZm45dzZDeEtNSU82TUJtS01ROGxZdV9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi85N2ZiMGQtZDc3Zi00NDY3LTg2MjctZTIyMmJmODUyOWI4 LzEvbFJUZm45dzZDeEtNSU82TUJtS01ROGxZdV9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHA+mvBJE rYoHMJKnNf+VTe1j06SOeyL9+LtF/wdhVVuytJLYxN6RQYoKDLsQUJhbjglWy6ac pQgPMdqvPSdb11TboDJqI8I7xd/P6ROEiSPRNtHPcyBStdHzSOB9Jv2WZSV8h3ul U3KPbiDMVSsxwd368wv7YO3kquZmTINhHhnZHT2h6IHXZVZB5vgFgVs7UJy3wJ+j uGTJux9tyC8NMygyaaMpwpb1cM85yMKmgT1pPnyDNEvoD3eP4fcmC5+zs3UBnFCP 6UbZut9iUWOkfq3TGV7MU5/lKJzDmHweiUvpYAw1vsH/T/hElSCRy9LXSqm8ez4+ 40ucHPOalu7Llw== -----END CERTIFICATE-----Generated at Wed Dec 17 19:07:35 2025 by rpki-client