This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft File: lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json) Hash identifier: KoUyUyM8djH707ZdKNcSKw+gUQYTefo/Tw8cZPTYJhk= Subject key identifier: 93:0B:6C:AD:3D:CB:3E:D9:9C:69:9D:8E:48:31:10:AA:9B:25:A7:1A Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58 Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458 Certificate serial: 019B3D9074F8FBBEAC8833E13A52E300077C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft Manifest number: 0EE8 Signing time: Sat 20 Dec 2025 21:00:35 +0000 Manifest this update: Sat 20 Dec 2025 21:00:35 +0000 Manifest next update: Sun 21 Dec 2025 21:00:35 +0000 Files and hashes: 1: kBsht6KNIVIdqBo-LjM3rdj9_48.roa (hash: yvy0FENQOdTgUPrF3X0q20Rd17JBcuTbTmhNZ8raWkU=) 2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: E4fS7p0dWu+ltvlkqqeUPPYuIBYvdvoXhz5O5z2W2+Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:90:74:f8:fb:be:ac:88:33:e1:3a:52:e3:00:07:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458 Validity Not Before: Dec 20 21:00:35 2025 GMT Not After : Dec 21 21:00:35 2025 GMT Subject: CN=930b6cad3dcb3ed99c699d8e483110aa9b25a71a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4e:b4:4b:b5:10:f3:be:15:31:55:43:55:85: b7:9c:ed:7b:d6:4a:e2:61:a5:0b:97:1e:7d:08:40: 5c:f4:38:6a:7b:56:9a:4a:08:64:3a:42:47:dc:1d: 6e:7c:5b:26:c3:42:01:2a:86:36:17:94:64:b1:f8: 0c:e1:52:08:87:ac:2c:8f:62:07:1c:38:a4:15:cd: 65:f0:4c:03:f8:3e:26:cf:d7:51:62:2c:f1:22:89: 24:d0:9e:eb:db:bf:78:e3:3d:77:ff:c7:bd:12:4f: ee:05:1a:94:ea:ed:8c:ba:3e:a5:34:97:ef:ac:f3: 6f:b8:db:ea:50:a0:c4:fc:1c:db:fa:99:4d:4f:8f: ad:7d:b2:59:c9:bf:c2:44:00:eb:d8:9d:ea:20:4c: b5:c1:d1:42:e0:8f:63:6a:aa:7e:63:d6:50:58:db: 50:d6:32:08:c4:bc:7c:10:12:46:ee:b6:28:79:39: e8:cf:b3:a8:3c:75:b2:2f:37:6a:78:e6:f2:0c:2e: 07:a8:b9:ad:ab:1b:33:59:0f:52:ff:5a:ba:a8:79: c7:af:07:e9:f1:bf:b7:e5:bb:fd:a7:a9:92:b1:cc: 7f:c4:12:60:f0:3d:01:05:b3:cb:24:bd:35:8d:4e: 09:a5:61:e5:47:4d:25:0f:3e:01:ad:c1:6c:a7:31: b2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:0B:6C:AD:3D:CB:3E:D9:9C:69:9D:8E:48:31:10:AA:9B:25:A7:1A X509v3 Authority Key Identifier: keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:fa:73:90:40:e1:1b:99:f1:45:99:08:12:44:cb:94:30:8b: b8:62:16:24:fd:13:75:4e:9e:17:e7:1e:6b:58:cf:04:d3:3a: 14:44:6c:04:66:ff:d6:ea:41:83:9e:ef:11:ef:05:73:21:0f: c6:fc:e3:7d:7b:4c:ef:40:aa:85:c4:7c:b3:9c:ba:3f:10:39: 04:bc:5a:3b:60:86:a8:2d:ef:5c:86:8e:75:11:1b:c9:b8:df: 81:0e:42:a7:63:31:c0:24:3e:6d:6c:f9:fd:ed:dc:22:76:6b: e2:f7:77:a1:d2:fa:81:3d:8a:88:df:ed:53:95:18:d2:ac:e0: 06:34:bb:0f:e5:85:bf:f9:c7:e8:62:04:9a:ee:ce:cf:04:e9: 09:15:a7:25:1e:37:17:3b:39:76:0f:40:5b:8a:a2:52:ac:0c: b6:a4:32:c3:b7:35:2f:da:e9:21:c7:ba:d1:d8:30:a1:4f:dd: c6:5d:63:6f:2c:4e:0e:b4:95:b9:0c:e8:86:25:ae:06:98:f6: ed:8a:15:f8:41:5e:0a:54:10:6d:d3:87:21:85:24:cd:03:62: 0d:fb:17:1e:83:7e:f6:5c:6b:c9:ec:d7:59:9b:e2:ec:fe:f6: 51:9e:1e:97:5d:66:df:04:f2:13:f0:c4:9e:cd:da:16:f0:57: 09:7e:78:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9kHT4+76siDPhOlLjAAd8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2MGM2ZDc4N2U2YjVlYjY0MjQ4ZGQ5YTdhMTA2NWIxMDUz Zjc0NTgwHhcNMjUxMjIwMjEwMDM1WhcNMjUxMjIxMjEwMDM1WjAzMTEwLwYDVQQD Eyg5MzBiNmNhZDNkY2IzZWQ5OWM2OTlkOGU0ODMxMTBhYTliMjVhNzFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzE60S7UQ874VMVVDVYW3nO171kri YaULlx59CEBc9Dhqe1aaSghkOkJH3B1ufFsmw0IBKoY2F5RksfgM4VIIh6wsj2IH HDikFc1l8EwD+D4mz9dRYizxIokk0J7r27944z13/8e9Ek/uBRqU6u2Muj6lNJfv rPNvuNvqUKDE/Bzb+plNT4+tfbJZyb/CRADr2J3qIEy1wdFC4I9jaqp+Y9ZQWNtQ 1jIIxLx8EBJG7rYoeTnoz7OoPHWyLzdqeObyDC4HqLmtqxszWQ9S/1q6qHnHrwfp 8b+35bv9p6mSscx/xBJg8D0BBbPLJL01jU4JpWHlR00lDz4BrcFspzGyowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJMLbK09yz7ZnGmdjkgxEKqbJacaMB8GA1UdIwQY MBaAFJYMbXh+a162QkjdmnoQZbEFP3RYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGd4dGVINXJYclpDU04yYWVoQmxzUVVfZEZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8wNWFiMTYtMjIyOC00ODhlLWIxNTIt ZWIwOTIxODk1NzE0LzEvbGd4dGVINXJYclpDU04yYWVoQmxzUVVfZEZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC8wNWFiMTYtMjIyOC00ODhlLWIxNTItZWIwOTIxODk1NzE0 LzEvbGd4dGVINXJYclpDU04yYWVoQmxzUVVfZEZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADvpzkEDh G5nxRZkIEkTLlDCLuGIWJP0TdU6eF+cea1jPBNM6FERsBGb/1upBg57vEe8FcyEP xvzjfXtM70CqhcR8s5y6PxA5BLxaO2CGqC3vXIaOdREbybjfgQ5Cp2MxwCQ+bWz5 /e3cInZr4vd3odL6gT2KiN/tU5UY0qzgBjS7D+WFv/nH6GIEmu7OzwTpCRWnJR43 Fzs5dg9AW4qiUqwMtqQyw7c1L9rpIce60dgwoU/dxl1jbyxODrSVuQzohiWuBpj2 7YoV+EFeClQQbdOHIYUkzQNiDfsXHoN+9lxryezXWZvi7P72UZ4el11m3wTyE/DE ns3aFvBXCX54dA== -----END CERTIFICATE-----Generated at Sat Dec 20 23:11:45 2025 by rpki-client