This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft File: LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft (raw, json) Hash identifier: +fquipRhiDzlAVdWa6NQv9eVNB6hqvaghOGXDGmyUwg= Subject key identifier: B0:56:C9:B8:58:76:EF:69:83:62:53:05:FD:15:26:85:15:A7:AC:0C Authority key identifier: 2F:32:52:07:D5:CE:E0:EC:EA:99:E4:70:24:53:40:7B:56:4C:39:CA Certificate issuer: /CN=2f325207d5cee0ecea99e4702453407b564c39ca Certificate serial: 019B34C5A1163432D3093AD256563802DC5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LzJSB9XO4OzqmeRwJFNAe1ZMOco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft Manifest number: 1780 Signing time: Fri 19 Dec 2025 04:02:05 +0000 Manifest this update: Fri 19 Dec 2025 04:02:05 +0000 Manifest next update: Sat 20 Dec 2025 04:02:05 +0000 Files and hashes: 1: LzJSB9XO4OzqmeRwJFNAe1ZMOco.crl (hash: Wdu2+nNNeoQF5SP78hxzTQl92yAotoNRq/IuW2lAE0U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft rsync://rpki.ripe.net/repository/DEFAULT/LzJSB9XO4OzqmeRwJFNAe1ZMOco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 04:02:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c5:a1:16:34:32:d3:09:3a:d2:56:56:38:02:dc:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2f325207d5cee0ecea99e4702453407b564c39ca Validity Not Before: Dec 19 04:02:05 2025 GMT Not After : Dec 20 04:02:05 2025 GMT Subject: CN=b056c9b85876ef6983625305fd15268515a7ac0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:a6:73:07:79:4c:14:97:43:d4:cc:5f:a1:d5: 20:39:cb:21:3d:c1:0c:8e:ea:40:5e:d1:6b:e9:13: 9c:29:c5:e0:5e:cf:50:8e:55:89:70:03:46:93:21: 7e:7e:18:f7:ec:55:fe:80:66:10:7f:ce:3a:c8:17: a5:ea:92:1c:cb:e1:59:74:55:67:89:33:73:35:a2: 08:88:b4:28:1d:c8:2d:25:de:87:69:34:89:21:cf: 1f:c1:fb:7c:4a:9b:0a:98:71:b1:27:77:44:9f:1c: fb:20:d7:94:fa:a3:95:e9:41:dd:67:49:2f:dd:46: 4c:35:d7:7b:29:21:07:e7:9f:9c:2d:fd:45:c5:30: 8e:e1:81:92:41:84:e3:ae:3b:bf:79:62:69:41:53: 82:79:7e:d7:73:b9:48:f6:9d:90:4a:b6:18:bb:99: 8a:77:02:89:c7:60:8c:4a:29:27:c2:23:61:58:71: 3e:0c:11:2a:4a:35:af:83:8f:82:22:b1:6f:6c:20: f5:0c:7a:bc:06:b8:60:db:7d:64:91:92:24:ab:07: d4:88:8e:8b:5d:d4:82:41:f2:b2:3b:c9:cf:d3:47: 0d:8d:3c:a8:d7:45:01:7b:80:4b:4e:06:c9:89:ed: 61:e9:76:33:41:c1:e1:7e:d6:61:d0:42:56:ab:69: 18:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:56:C9:B8:58:76:EF:69:83:62:53:05:FD:15:26:85:15:A7:AC:0C X509v3 Authority Key Identifier: keyid:2F:32:52:07:D5:CE:E0:EC:EA:99:E4:70:24:53:40:7B:56:4C:39:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LzJSB9XO4OzqmeRwJFNAe1ZMOco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:27:2a:a2:28:7d:03:9c:e0:b4:66:0f:21:c8:0d:c5:9e:f8: 27:cf:27:7e:1f:99:98:1c:b2:a3:13:11:8a:51:6c:d2:ff:91: 06:3a:0a:61:27:ac:6f:97:b8:f6:c5:f2:66:45:6b:3b:dd:a3: 0f:7f:1e:a2:1c:d7:88:3c:df:77:b1:5c:50:5b:68:9d:0d:47: 9e:ac:64:23:38:e3:e4:21:29:e4:59:00:e5:18:17:42:87:11: 9e:f3:59:30:12:9a:46:42:4d:c2:be:4a:23:39:f9:4b:83:fd: ce:e9:83:cc:3d:2b:fb:71:96:78:80:92:dc:1c:a1:89:a1:ae: 4f:5c:d7:78:99:21:c6:11:93:8c:62:4d:0d:88:35:94:d2:5d: 22:06:fb:85:98:ea:6a:88:93:06:7a:a9:c1:92:9d:c2:f2:62: 09:8e:04:02:20:b2:6f:96:ad:7b:0c:43:49:11:34:55:0d:73: c0:0a:e0:c3:02:20:e8:3b:c6:3f:a0:36:1f:bc:ad:36:23:f4: 35:f0:9a:0c:a7:cc:21:1c:11:20:b1:35:cb:8f:7c:0f:5a:1e: e2:ae:2f:78:93:42:83:c1:e4:12:ad:25:aa:1f:c1:ce:47:b7: c1:fa:4f:5a:3f:0a:f7:b3:00:ca:2b:b3:e4:e6:45:1f:04:ca: 6b:91:6f:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xaEWNDLTCTrSVlY4AtxbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmMzI1MjA3ZDVjZWUwZWNlYTk5ZTQ3MDI0NTM0MDdiNTY0 YzM5Y2EwHhcNMjUxMjE5MDQwMjA1WhcNMjUxMjIwMDQwMjA1WjAzMTEwLwYDVQQD EyhiMDU2YzliODU4NzZlZjY5ODM2MjUzMDVmZDE1MjY4NTE1YTdhYzBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi6ZzB3lMFJdD1MxfodUgOcshPcEM jupAXtFr6ROcKcXgXs9QjlWJcANGkyF+fhj37FX+gGYQf846yBel6pIcy+FZdFVn iTNzNaIIiLQoHcgtJd6HaTSJIc8fwft8SpsKmHGxJ3dEnxz7INeU+qOV6UHdZ0kv 3UZMNdd7KSEH55+cLf1FxTCO4YGSQYTjrju/eWJpQVOCeX7Xc7lI9p2QSrYYu5mK dwKJx2CMSiknwiNhWHE+DBEqSjWvg4+CIrFvbCD1DHq8Brhg231kkZIkqwfUiI6L XdSCQfKyO8nP00cNjTyo10UBe4BLTgbJie1h6XYzQcHhftZh0EJWq2kYiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLBWybhYdu9pg2JTBf0VJoUVp6wMMB8GA1UdIwQY MBaAFC8yUgfVzuDs6pnkcCRTQHtWTDnKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTHpKU0I5WE80T3pxbWVSd0pGTkFlMVpNT2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS80YmUyZDctOWE0Mi00NTc4LThiOGIt OTBhZTZkMGM5YjMzLzEvTHpKU0I5WE80T3pxbWVSd0pGTkFlMVpNT2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS80YmUyZDctOWE0Mi00NTc4LThiOGItOTBhZTZkMGM5YjMz LzEvTHpKU0I5WE80T3pxbWVSd0pGTkFlMVpNT2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaicqoih9 A5zgtGYPIcgNxZ74J88nfh+ZmByyoxMRilFs0v+RBjoKYSesb5e49sXyZkVrO92j D38eohzXiDzfd7FcUFtonQ1HnqxkIzjj5CEp5FkA5RgXQocRnvNZMBKaRkJNwr5K Izn5S4P9zumDzD0r+3GWeICS3ByhiaGuT1zXeJkhxhGTjGJNDYg1lNJdIgb7hZjq aoiTBnqpwZKdwvJiCY4EAiCyb5atewxDSRE0VQ1zwArgwwIg6DvGP6A2H7ytNiP0 NfCaDKfMIRwRILE1y498D1oe4q4veJNCg8HkEq0lqh/Bzke3wfpPWj8K97MAyiuz 5OZFHwTKa5Fvqg== -----END CERTIFICATE-----Generated at Fri Dec 19 13:09:10 2025 by rpki-client