This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.mft File: loH8jHM3xqHSC4SADfhion5f29c.mft (raw, json) Hash identifier: tmDuQds2Dgn5MtX5asnQN0IjU52UhTChAH98P40j/OE= Subject key identifier: 31:91:32:DE:57:58:3C:E9:9B:FB:D9:EE:62:EB:6C:9A:15:78:BD:63 Authority key identifier: 96:81:FC:8C:73:37:C6:A1:D2:0B:84:80:0D:F8:62:A2:7E:5F:DB:D7 Certificate issuer: /CN=9681fc8c7337c6a1d20b84800df862a27e5fdbd7 Certificate serial: 019B210788A3364EE8938E9EFBC99CDC0548 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/loH8jHM3xqHSC4SADfhion5f29c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.mft Manifest number: 021B Signing time: Mon 15 Dec 2025 08:01:40 +0000 Manifest this update: Mon 15 Dec 2025 08:01:40 +0000 Manifest next update: Tue 16 Dec 2025 08:01:40 +0000 Files and hashes: 1: F7JL5bHYyLaweW8pONIwm4V1Ta8.roa (hash: 9Al0+nQsmlduPmazSDY0bBkTJLPuHl1nJV+djdoKlfw=) 2: aOIjfYULj8ZZW-4gX-UQwdrDQ9U.roa (hash: 0raPVOn63vL6rgNpBZdFkEjdsenkXzmQ/PYsO0nF2sE=) 3: loH8jHM3xqHSC4SADfhion5f29c.crl (hash: rmCMDuNtfNvlvhqd+lhYXEKuiu//eOjn/Paalyc8Nt4=) 4: qxk1xepxwGG51OB8xsnLC_37Uaw.roa (hash: ypZE1fVxTf8ts+4DLxa1x+J1+KV7fqtGzn+ax6Dq94A=) 5: w1BzHYlYCb3EG4ztspZKX_15RAY.roa (hash: ASsa3u4RFIDCrpyjiaJAOUJvMGU5bhKQs1/vB/xTB6w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.crl rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.mft rsync://rpki.ripe.net/repository/DEFAULT/loH8jHM3xqHSC4SADfhion5f29c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:07:88:a3:36:4e:e8:93:8e:9e:fb:c9:9c:dc:05:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9681fc8c7337c6a1d20b84800df862a27e5fdbd7 Validity Not Before: Dec 15 08:01:40 2025 GMT Not After : Dec 16 08:01:40 2025 GMT Subject: CN=319132de57583ce99bfbd9ee62eb6c9a1578bd63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3e:a5:7f:42:91:88:f1:15:d2:d2:6d:3a:66: 31:c2:8a:f1:78:c4:ce:41:bd:8e:79:f6:89:0d:6f: 80:3a:50:06:82:8b:2b:b1:c1:2f:e7:4d:37:1f:a6: c0:f7:d3:5b:f7:0a:82:2f:10:5b:79:7f:16:b8:aa: 7d:a2:43:4c:8d:27:a6:76:f5:c0:22:40:8e:bb:33: 8f:1c:42:35:e9:71:45:d9:69:e8:4f:9b:b2:a5:99: d8:f4:9d:10:ce:87:21:1e:33:07:79:e1:12:51:3f: 47:0b:6d:77:63:76:ce:d4:99:6a:08:2c:f3:17:30: 54:dc:c6:20:27:46:e7:d4:09:c3:60:a1:c7:70:fe: 11:1f:3d:6c:bb:d6:5b:cc:21:99:59:6e:37:ae:f7: 59:8c:d3:8e:c7:4c:7f:f1:1e:a9:a1:8f:76:c4:7c: 0f:7a:b2:52:20:ca:4e:a1:e5:cf:48:1d:99:f4:96: c5:65:3c:1f:3c:fb:d2:f8:1f:c0:6e:5c:e1:2b:d2: 1c:75:e6:cc:ef:b5:17:a7:b6:33:c0:56:e7:0c:3c: 11:c5:f8:1c:c1:88:ad:f1:1d:f7:fe:a3:ed:9e:69: 14:c7:d5:8e:ea:6b:7e:75:76:27:8d:f3:44:8d:8e: 06:01:6a:33:b6:71:5c:b1:fc:5a:fb:25:72:7b:f7: ef:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:91:32:DE:57:58:3C:E9:9B:FB:D9:EE:62:EB:6C:9A:15:78:BD:63 X509v3 Authority Key Identifier: keyid:96:81:FC:8C:73:37:C6:A1:D2:0B:84:80:0D:F8:62:A2:7E:5F:DB:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/loH8jHM3xqHSC4SADfhion5f29c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:1d:e3:ad:f0:f1:48:f3:39:6f:36:2a:74:30:ba:60:4a:78: ca:97:ca:4e:fa:f6:00:7e:23:1e:6d:9d:30:9b:56:ea:82:89: 52:d9:c6:d8:7d:b3:eb:3a:b3:8b:75:fe:4e:d6:fc:9e:c5:63: ae:63:58:7c:28:c3:0e:08:e9:25:98:90:42:07:68:ff:03:c1: 52:d4:48:39:81:cc:1a:15:a7:b2:e4:c8:ca:6f:5e:0c:b8:0c: d5:ad:0a:67:91:b7:c9:43:28:34:e5:0d:fb:ac:9d:f0:82:6a: 84:b9:8a:f9:b2:71:c6:51:1e:33:2d:9d:d4:82:87:a0:28:3b: 67:53:4c:e8:98:3b:60:ee:96:f9:cf:f0:27:72:db:d5:d4:5a: d1:e8:87:72:65:d5:ba:15:2d:9c:78:8f:1d:ba:e9:b5:87:4a: 70:b2:66:20:0c:1b:d1:2a:6e:3d:a3:5a:ad:ff:f1:13:63:5f: 3e:af:d7:0e:82:ad:fe:99:34:8b:3f:93:c1:9d:3b:15:ef:91: 33:fe:c2:20:a0:6d:0b:7b:b9:a8:7f:79:67:1d:a4:57:d7:81: f3:92:72:83:01:bd:00:c7:66:d2:48:f9:48:22:1c:bb:ae:29: da:fb:12:c4:88:61:c8:c4:16:cb:9d:13:81:fb:4c:0a:45:1f: 72:67:a3:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZshB4ijNk7ok46e+8mc3AVIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2ODFmYzhjNzMzN2M2YTFkMjBiODQ4MDBkZjg2MmEyN2U1 ZmRiZDcwHhcNMjUxMjE1MDgwMTQwWhcNMjUxMjE2MDgwMTQwWjAzMTEwLwYDVQQD EygzMTkxMzJkZTU3NTgzY2U5OWJmYmQ5ZWU2MmViNmM5YTE1NzhiZDYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0j6lf0KRiPEV0tJtOmYxworxeMTO Qb2OefaJDW+AOlAGgosrscEv5003H6bA99Nb9wqCLxBbeX8WuKp9okNMjSemdvXA IkCOuzOPHEI16XFF2WnoT5uypZnY9J0QzochHjMHeeESUT9HC213Y3bO1JlqCCzz FzBU3MYgJ0bn1AnDYKHHcP4RHz1su9ZbzCGZWW43rvdZjNOOx0x/8R6poY92xHwP erJSIMpOoeXPSB2Z9JbFZTwfPPvS+B/AblzhK9IcdebM77UXp7YzwFbnDDwRxfgc wYit8R33/qPtnmkUx9WO6mt+dXYnjfNEjY4GAWoztnFcsfxa+yVye/fvJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDGRMt5XWDzpm/vZ7mLrbJoVeL1jMB8GA1UdIwQY MBaAFJaB/IxzN8ah0guEgA34YqJ+X9vXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbG9IOGpITTN4cUhTQzRTQURmaGlvbjVmMjljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny80MGU1ZDUtZWQ0MS00ZGQzLTkzMzIt NTNkOTYwOTlkN2IxLzEvbG9IOGpITTN4cUhTQzRTQURmaGlvbjVmMjljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny80MGU1ZDUtZWQ0MS00ZGQzLTkzMzItNTNkOTYwOTlkN2Ix LzEvbG9IOGpITTN4cUhTQzRTQURmaGlvbjVmMjljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoR3jrfDx SPM5bzYqdDC6YEp4ypfKTvr2AH4jHm2dMJtW6oKJUtnG2H2z6zqzi3X+Ttb8nsVj rmNYfCjDDgjpJZiQQgdo/wPBUtRIOYHMGhWnsuTIym9eDLgM1a0KZ5G3yUMoNOUN +6yd8IJqhLmK+bJxxlEeMy2d1IKHoCg7Z1NM6Jg7YO6W+c/wJ3Lb1dRa0eiHcmXV uhUtnHiPHbrptYdKcLJmIAwb0SpuPaNarf/xE2NfPq/XDoKt/pk0iz+TwZ07Fe+R M/7CIKBtC3u5qH95Zx2kV9eB85JygwG9AMdm0kj5SCIcu64p2vsSxIhhyMQWy50T gftMCkUfcmejaQ== -----END CERTIFICATE-----Generated at Mon Dec 15 16:52:57 2025 by rpki-client