This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft File: lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json) Hash identifier: RmT7XEePPTgbm/Sezi+vAdPE6+V9N+59u/59WOAA4HM= Subject key identifier: 0A:B2:2B:74:D2:29:28:D6:73:80:93:A7:AF:7E:4D:92:DE:B7:7E:6B Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58 Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458 Certificate serial: 019B0F37365B7B08F8C73D7A51F422D6684F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft Manifest number: 0ED0 Signing time: Thu 11 Dec 2025 21:00:35 +0000 Manifest this update: Thu 11 Dec 2025 21:00:35 +0000 Manifest next update: Fri 12 Dec 2025 21:00:35 +0000 Files and hashes: 1: kBsht6KNIVIdqBo-LjM3rdj9_48.roa (hash: yvy0FENQOdTgUPrF3X0q20Rd17JBcuTbTmhNZ8raWkU=) 2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: Hfu/Rs5+bmEFb6q2fTEXcNBfJyg9RGq60NJHNWEMejU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:37:36:5b:7b:08:f8:c7:3d:7a:51:f4:22:d6:68:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458 Validity Not Before: Dec 11 21:00:35 2025 GMT Not After : Dec 12 21:00:35 2025 GMT Subject: CN=0ab22b74d22928d6738093a7af7e4d92deb77e6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:26:64:f3:9a:95:e0:05:ab:aa:e7:06:d1:52: 7c:aa:53:bf:3f:86:95:38:10:71:0d:85:39:12:a8: 3c:91:ed:0d:09:d6:12:62:18:6b:b4:36:21:33:3e: 05:6a:ed:1e:10:a3:aa:5d:e8:ba:df:21:30:a2:f8: 2b:93:9c:e8:bb:02:b9:8c:3f:8a:5c:77:a2:43:b6: 90:e8:31:a6:d8:f5:29:6d:15:cd:4c:79:ab:00:e9: 4e:99:76:6d:a5:5e:b4:a2:33:a9:b7:3f:9e:5c:35: 12:75:8b:4f:24:52:82:69:f4:db:8e:91:cc:c3:ad: ab:aa:7d:c2:f8:5d:3f:c1:6d:b3:bb:a0:11:ce:65: 1b:4b:4a:42:06:cf:8a:39:2c:60:d7:ab:85:da:f3: 36:39:e1:a1:49:12:57:ac:fe:ef:42:50:b8:bd:68: d9:8a:58:fd:53:d4:e7:b4:a7:64:e0:fc:bf:55:b1: b8:18:45:4e:83:88:a4:63:07:1c:5a:cd:dc:8f:64: 54:89:f0:68:bb:bd:14:84:60:17:f1:67:68:75:55: f3:d0:a6:c6:e1:c4:4f:32:d3:66:73:c6:e3:58:24: 04:14:f3:20:e0:a2:c9:43:c9:ab:5f:01:8c:ac:48: f3:93:c1:78:9e:f2:6b:6c:07:01:76:b9:4f:34:67: 43:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:B2:2B:74:D2:29:28:D6:73:80:93:A7:AF:7E:4D:92:DE:B7:7E:6B X509v3 Authority Key Identifier: keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:6a:c8:b5:0c:8b:11:87:43:0d:ec:f1:66:5a:b8:f2:2b:07: 6d:f9:47:be:52:f5:13:df:48:3d:e5:83:ce:b9:ed:43:33:c3: 82:ed:0c:6d:63:17:00:e6:c4:85:d4:34:b4:43:a1:cc:60:dc: e6:7e:1d:17:ff:8f:7f:4f:dd:c0:6d:b7:38:2e:e7:b7:51:f5: 0f:aa:8f:b1:a3:15:4e:39:a0:6e:43:e6:f3:77:80:94:13:35: 98:d1:f9:cb:d5:b4:4a:1a:d4:fe:c4:f1:d9:6b:23:3a:d9:dc: 35:a6:56:f0:79:d9:ad:83:8a:b5:d1:fb:7f:ed:f2:b0:3c:09: 94:d5:87:d6:fd:e1:7b:e1:99:6f:1b:39:1f:fb:d3:b3:48:c2: 9b:37:45:09:eb:a4:df:b8:4a:4d:59:00:82:0c:13:05:75:aa: d8:11:cd:82:a1:a9:f0:c8:03:d8:d0:77:9c:65:d6:57:16:9a: 28:9e:cf:b0:f4:62:bc:a4:58:f4:a5:be:f8:11:87:76:73:63: 62:60:21:20:d7:7c:71:06:b2:61:b3:39:19:f4:8c:5a:2d:53: db:c8:d5:7a:82:e5:3a:ba:81:c5:93:a0:08:5b:6f:b6:4e:22: 65:bf:29:95:51:09:82:3f:c1:88:43:97:02:a0:03:c4:99:de: 28:bd:4b:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPNzZbewj4xz16UfQi1mhPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2MGM2ZDc4N2U2YjVlYjY0MjQ4ZGQ5YTdhMTA2NWIxMDUz Zjc0NTgwHhcNMjUxMjExMjEwMDM1WhcNMjUxMjEyMjEwMDM1WjAzMTEwLwYDVQQD EygwYWIyMmI3NGQyMjkyOGQ2NzM4MDkzYTdhZjdlNGQ5MmRlYjc3ZTZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsiZk85qV4AWrqucG0VJ8qlO/P4aV OBBxDYU5Eqg8ke0NCdYSYhhrtDYhMz4Fau0eEKOqXei63yEwovgrk5zouwK5jD+K XHeiQ7aQ6DGm2PUpbRXNTHmrAOlOmXZtpV60ojOptz+eXDUSdYtPJFKCafTbjpHM w62rqn3C+F0/wW2zu6ARzmUbS0pCBs+KOSxg16uF2vM2OeGhSRJXrP7vQlC4vWjZ ilj9U9TntKdk4Py/VbG4GEVOg4ikYwccWs3cj2RUifBou70UhGAX8WdodVXz0KbG 4cRPMtNmc8bjWCQEFPMg4KLJQ8mrXwGMrEjzk8F4nvJrbAcBdrlPNGdDUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAqyK3TSKSjWc4CTp69+TZLet35rMB8GA1UdIwQY MBaAFJYMbXh+a162QkjdmnoQZbEFP3RYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGd4dGVINXJYclpDU04yYWVoQmxzUVVfZEZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8wNWFiMTYtMjIyOC00ODhlLWIxNTIt ZWIwOTIxODk1NzE0LzEvbGd4dGVINXJYclpDU04yYWVoQmxzUVVfZEZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC8wNWFiMTYtMjIyOC00ODhlLWIxNTItZWIwOTIxODk1NzE0 LzEvbGd4dGVINXJYclpDU04yYWVoQmxzUVVfZEZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIGrItQyL EYdDDezxZlq48isHbflHvlL1E99IPeWDzrntQzPDgu0MbWMXAObEhdQ0tEOhzGDc 5n4dF/+Pf0/dwG23OC7nt1H1D6qPsaMVTjmgbkPm83eAlBM1mNH5y9W0ShrU/sTx 2WsjOtncNaZW8HnZrYOKtdH7f+3ysDwJlNWH1v3he+GZbxs5H/vTs0jCmzdFCeuk 37hKTVkAggwTBXWq2BHNgqGp8MgD2NB3nGXWVxaaKJ7PsPRivKRY9KW++BGHdnNj YmAhINd8cQayYbM5GfSMWi1T28jVeoLlOrqBxZOgCFtvtk4iZb8plVEJgj/BiEOX AqADxJneKL1LoA== -----END CERTIFICATE-----Generated at Fri Dec 12 00:38:04 2025 by rpki-client