This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft File: LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft (raw, json) Hash identifier: ptrUF0Kj25jpzJeo7IDi9GjS0p4iNziI6OGHo3bq7oA= Subject key identifier: 6F:27:AA:E3:60:38:62:2E:05:D7:A2:44:7E:CB:5E:C3:5F:11:AD:32 Authority key identifier: 2C:98:22:00:8D:9C:C7:01:2D:60:30:42:9B:28:D8:58:DB:BA:CA:43 Certificate issuer: /CN=2c9822008d9cc7012d6030429b28d858dbbaca43 Certificate serial: 019B5975DDE9A78844890964A93E536547AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LJgiAI2cxwEtYDBCmyjYWNu6ykM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft Manifest number: 0EF7 Signing time: Fri 26 Dec 2025 07:00:55 +0000 Manifest this update: Fri 26 Dec 2025 07:00:55 +0000 Manifest next update: Sat 27 Dec 2025 07:00:55 +0000 Files and hashes: 1: LJgiAI2cxwEtYDBCmyjYWNu6ykM.crl (hash: 7FbRUGiwdJjZ9LQOXr4mWWPat7irXFtC4bJHfVdwtZU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft rsync://rpki.ripe.net/repository/DEFAULT/LJgiAI2cxwEtYDBCmyjYWNu6ykM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:75:dd:e9:a7:88:44:89:09:64:a9:3e:53:65:47:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2c9822008d9cc7012d6030429b28d858dbbaca43 Validity Not Before: Dec 26 07:00:55 2025 GMT Not After : Dec 27 07:00:55 2025 GMT Subject: CN=6f27aae36038622e05d7a2447ecb5ec35f11ad32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3c:9d:6b:1a:f6:c7:89:f5:37:b6:be:3b:44: 2f:28:ae:f9:92:5b:7b:37:92:2b:01:fc:df:5d:ae: 20:4b:08:6c:a2:aa:dd:64:eb:4a:88:a8:ff:9c:90: 2d:64:c1:8f:63:ff:94:73:1e:54:a6:f8:bf:d3:1b: c5:47:73:91:b2:42:c2:26:dd:37:d1:65:4f:07:99: a3:a5:45:26:29:52:2e:2a:2c:cb:5f:6a:7d:b3:08: 06:28:57:c1:d3:2d:27:91:4d:1d:a1:c4:bc:b9:47: 0a:1a:1a:dd:ff:9f:e1:52:ef:b5:8b:d1:e7:b5:bb: b8:5f:c4:3a:a7:1a:da:1b:3b:3d:2c:f1:90:7a:8f: 67:4a:b1:21:5f:c1:91:28:96:3f:de:c1:0a:3f:53: 1d:48:bb:8b:d0:c9:70:c8:f7:1f:97:41:fe:9b:36: f9:0a:f3:e6:a9:4b:aa:f8:b6:3a:85:1d:c3:26:ff: 3e:00:72:16:c6:13:92:d2:7f:58:9c:b9:79:e8:ca: d4:ff:dd:5d:5c:0a:20:c0:c4:d6:dc:fb:8a:b7:ff: 9b:54:e8:c3:af:82:23:97:74:8d:ee:d5:0b:ff:88: f3:e2:8f:18:e2:4a:9f:d2:c2:44:49:50:14:10:bb: 71:30:f9:ec:cf:25:cd:4e:05:cf:2e:48:e8:39:0f: 48:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:27:AA:E3:60:38:62:2E:05:D7:A2:44:7E:CB:5E:C3:5F:11:AD:32 X509v3 Authority Key Identifier: keyid:2C:98:22:00:8D:9C:C7:01:2D:60:30:42:9B:28:D8:58:DB:BA:CA:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJgiAI2cxwEtYDBCmyjYWNu6ykM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:f0:27:7f:6a:b8:5c:96:46:f6:60:eb:f5:a1:ac:b3:5b:7c: 23:92:59:31:4f:a5:6d:8f:d0:e2:19:b2:72:52:42:f9:a0:5b: 1c:27:70:31:19:59:6e:a2:df:23:a5:ee:fe:a7:37:62:7e:0e: fe:37:2e:86:10:94:31:76:e0:ca:b5:8c:78:bc:c8:e6:cc:c1: fa:f4:24:16:9b:b3:2b:06:8e:1d:3a:54:26:e0:cc:fd:a1:a8: 43:ae:d3:7f:ac:5f:70:15:6e:53:f4:56:d3:6e:7c:e6:98:d5: 79:cb:21:72:f7:9f:75:b4:82:4a:c2:3d:b3:50:3d:3f:10:a9: aa:fa:0f:01:4d:27:05:dc:df:b9:9c:e6:e7:23:02:ab:f3:f4: 98:88:d8:f4:60:07:29:fa:24:1c:a0:00:09:bc:eb:6a:65:14: 8e:7b:73:af:1a:64:50:9c:99:0f:d0:90:0d:98:95:2d:07:19: 41:5a:d8:69:d9:0a:1b:dc:c6:ab:22:6f:47:0e:76:42:21:86: b6:43:f4:8b:51:f4:4b:cf:69:ab:17:0a:64:ab:84:8c:91:f8: 4d:86:11:86:3d:25:8e:68:28:c1:a2:7f:ce:f3:f0:ad:a2:9a: 7d:7b:ad:40:bd:0a:17:89:d8:0c:ea:fb:01:02:97:7a:99:46: 37:56:a2:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdd3pp4hEiQlkqT5TZUerMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjOTgyMjAwOGQ5Y2M3MDEyZDYwMzA0MjliMjhkODU4ZGJi YWNhNDMwHhcNMjUxMjI2MDcwMDU1WhcNMjUxMjI3MDcwMDU1WjAzMTEwLwYDVQQD Eyg2ZjI3YWFlMzYwMzg2MjJlMDVkN2EyNDQ3ZWNiNWVjMzVmMTFhZDMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAujydaxr2x4n1N7a+O0QvKK75klt7 N5IrAfzfXa4gSwhsoqrdZOtKiKj/nJAtZMGPY/+Ucx5Upvi/0xvFR3ORskLCJt03 0WVPB5mjpUUmKVIuKizLX2p9swgGKFfB0y0nkU0docS8uUcKGhrd/5/hUu+1i9Hn tbu4X8Q6pxraGzs9LPGQeo9nSrEhX8GRKJY/3sEKP1MdSLuL0MlwyPcfl0H+mzb5 CvPmqUuq+LY6hR3DJv8+AHIWxhOS0n9YnLl56MrU/91dXAogwMTW3PuKt/+bVOjD r4Ijl3SN7tUL/4jz4o8Y4kqf0sJESVAUELtxMPnszyXNTgXPLkjoOQ9InwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG8nquNgOGIuBdeiRH7LXsNfEa0yMB8GA1UdIwQY MBaAFCyYIgCNnMcBLWAwQpso2FjbuspDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTEpnaUFJMmN4d0V0WURCQ215allXTnU2eWtNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi81MGFjMTItZmQ5My00OTM5LWEyZWYt NDFjYTJkM2FhZTcxLzEvTEpnaUFJMmN4d0V0WURCQ215allXTnU2eWtNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi81MGFjMTItZmQ5My00OTM5LWEyZWYtNDFjYTJkM2FhZTcx LzEvTEpnaUFJMmN4d0V0WURCQ215allXTnU2eWtNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjfAnf2q4 XJZG9mDr9aGss1t8I5JZMU+lbY/Q4hmyclJC+aBbHCdwMRlZbqLfI6Xu/qc3Yn4O /jcuhhCUMXbgyrWMeLzI5szB+vQkFpuzKwaOHTpUJuDM/aGoQ67Tf6xfcBVuU/RW 02585pjVecshcvefdbSCSsI9s1A9PxCpqvoPAU0nBdzfuZzm5yMCq/P0mIjY9GAH KfokHKAACbzramUUjntzrxpkUJyZD9CQDZiVLQcZQVrYadkKG9zGqyJvRw52QiGG tkP0i1H0S89pqxcKZKuEjJH4TYYRhj0ljmgowaJ/zvPwraKafXutQL0KF4nYDOr7 AQKXeplGN1aiQQ== -----END CERTIFICATE-----Generated at Fri Dec 26 14:16:59 2025 by rpki-client