This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft File: lmsFxmHHalvMSNqDju22lz8VO4Y.mft (raw, json) Hash identifier: y5SD3iYEquLeH8+u3trbKFe0JgG1BJYRsq1ES2zuMtQ= Subject key identifier: 2D:18:EF:D5:D4:22:CD:08:3C:7E:48:E7:83:4B:4E:29:68:50:47:30 Authority key identifier: 96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86 Certificate issuer: /CN=966b05c661c76a5bcc48da838eedb6973f153b86 Certificate serial: 019B36E9F9480DB23764253C5187EB24D772 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft Manifest number: 178A Signing time: Fri 19 Dec 2025 14:01:01 +0000 Manifest this update: Fri 19 Dec 2025 14:01:01 +0000 Manifest next update: Sat 20 Dec 2025 14:01:01 +0000 Files and hashes: 1: lmsFxmHHalvMSNqDju22lz8VO4Y.crl (hash: lVVGl2NAryR8eCEqOjOaQPaxeXWXD+VDl92oH4MYJok=) 2: vW8nbP0mTPSGV0n46D4WrlPJlkA.roa (hash: FBmE53kvVV07M6urD1OzTmvwStXQDG55TxBqouWfpJ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:e9:f9:48:0d:b2:37:64:25:3c:51:87:eb:24:d7:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=966b05c661c76a5bcc48da838eedb6973f153b86 Validity Not Before: Dec 19 14:01:01 2025 GMT Not After : Dec 20 14:01:01 2025 GMT Subject: CN=2d18efd5d422cd083c7e48e7834b4e2968504730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d4:25:96:61:69:b4:1f:4b:ce:07:ff:31:4d: 88:76:1a:84:58:ab:50:da:7c:40:2f:dd:7f:da:07: 7f:aa:50:8e:3a:de:a2:6c:1d:73:cf:0f:68:32:1f: 82:2a:64:b5:19:b4:8d:d1:6e:1b:42:22:f2:09:ef: 32:b5:ee:03:e2:3d:81:e7:d6:6c:f5:ec:10:f3:ef: d5:66:c5:0b:b0:2c:8b:dd:7d:71:7a:3c:9c:ca:a9: aa:7f:8b:48:16:b4:b4:a5:4f:9a:d4:e7:44:de:22: 28:45:7c:f2:8f:20:4e:39:f8:8b:2f:0f:09:ec:50: a7:37:20:d1:d2:f7:4e:13:09:c9:cf:62:8f:a0:87: a2:f8:09:a5:2b:0b:0f:2c:58:58:32:ae:5b:b6:c6: 3d:56:1f:42:c3:f3:cf:28:14:86:aa:18:bc:a1:cc: 66:a3:8f:b9:eb:89:7e:ab:80:1a:4b:d6:a3:0e:29: 08:72:ef:b8:fd:b6:40:50:da:c9:93:9b:68:ac:0f: 82:c5:81:96:eb:e0:14:f5:31:98:30:c1:ce:5d:a6: 42:93:dc:76:d0:ad:96:72:fa:97:1c:ad:45:ae:d4: a0:f5:e8:47:96:ae:de:9c:7a:22:f6:55:a7:93:db: 83:71:a2:f3:89:dc:f3:4e:f6:24:d7:c5:f1:a0:19: fb:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:18:EF:D5:D4:22:CD:08:3C:7E:48:E7:83:4B:4E:29:68:50:47:30 X509v3 Authority Key Identifier: keyid:96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:3c:c7:b5:4d:5d:0c:bc:6a:11:a8:ae:97:1d:b5:e7:8d:2e: 9e:2e:53:d5:75:c5:4e:bd:cf:13:d9:46:e2:f6:4d:a2:7e:41: de:c3:f0:46:26:be:6c:cd:a4:68:57:83:32:f5:72:08:48:37: fc:0d:fa:08:02:b1:77:fd:28:62:30:e1:e9:0c:9a:44:62:9a: ec:66:10:2e:6f:45:86:13:c1:e1:bc:28:ed:30:0f:bd:8a:05: cb:63:cd:9a:c2:5c:cb:f5:b2:47:31:98:e1:1f:44:e0:94:4f: 90:b2:87:a3:1f:8e:f4:f9:0a:aa:fa:94:09:d7:47:28:2e:f4: 85:35:d9:89:0b:eb:02:d9:f7:21:c7:6d:1e:11:17:6d:f3:a3: d1:68:07:30:82:a2:45:6f:98:cc:a5:39:68:dd:71:80:d5:df: 97:c4:15:dc:5f:b7:e6:eb:20:1c:3c:bd:7b:4e:7e:dd:97:9e: c5:8e:7b:fb:4b:ba:5a:a3:b4:5f:50:84:2a:ac:75:67:7b:67: 65:22:dd:24:42:ea:eb:92:c1:ab:40:57:1d:58:fa:90:95:fb: d2:4d:05:00:08:22:82:14:96:2a:dd:c7:9c:d4:9f:42:57:ce: 24:06:1b:86:4e:bd:25:b2:47:38:1c:63:7b:91:0e:46:aa:fa: 27:6a:f8:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs26flIDbI3ZCU8UYfrJNdyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2NmIwNWM2NjFjNzZhNWJjYzQ4ZGE4MzhlZWRiNjk3M2Yx NTNiODYwHhcNMjUxMjE5MTQwMTAxWhcNMjUxMjIwMTQwMTAxWjAzMTEwLwYDVQQD EygyZDE4ZWZkNWQ0MjJjZDA4M2M3ZTQ4ZTc4MzRiNGUyOTY4NTA0NzMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstQllmFptB9Lzgf/MU2IdhqEWKtQ 2nxAL91/2gd/qlCOOt6ibB1zzw9oMh+CKmS1GbSN0W4bQiLyCe8yte4D4j2B59Zs 9ewQ8+/VZsULsCyL3X1xejycyqmqf4tIFrS0pU+a1OdE3iIoRXzyjyBOOfiLLw8J 7FCnNyDR0vdOEwnJz2KPoIei+AmlKwsPLFhYMq5btsY9Vh9Cw/PPKBSGqhi8ocxm o4+564l+q4AaS9ajDikIcu+4/bZAUNrJk5torA+CxYGW6+AU9TGYMMHOXaZCk9x2 0K2WcvqXHK1FrtSg9ehHlq7enHoi9lWnk9uDcaLzidzzTvYk18XxoBn7ZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC0Y79XUIs0IPH5I54NLTiloUEcwMB8GA1UdIwQY MBaAFJZrBcZhx2pbzEjag47ttpc/FTuGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbG1zRnhtSEhhbHZNU05xRGp1MjJsejhWTzRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC82ODkxZGYtOTcxZS00ZTYwLThjYmMt ZTNjMmYzMmNmM2I3LzEvbG1zRnhtSEhhbHZNU05xRGp1MjJsejhWTzRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC82ODkxZGYtOTcxZS00ZTYwLThjYmMtZTNjMmYzMmNmM2I3 LzEvbG1zRnhtSEhhbHZNU05xRGp1MjJsejhWTzRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARjzHtU1d DLxqEaiulx21540uni5T1XXFTr3PE9lG4vZNon5B3sPwRia+bM2kaFeDMvVyCEg3 /A36CAKxd/0oYjDh6QyaRGKa7GYQLm9FhhPB4bwo7TAPvYoFy2PNmsJcy/WyRzGY 4R9E4JRPkLKHox+O9PkKqvqUCddHKC70hTXZiQvrAtn3IcdtHhEXbfOj0WgHMIKi RW+YzKU5aN1xgNXfl8QV3F+35usgHDy9e05+3ZeexY57+0u6WqO0X1CEKqx1Z3tn ZSLdJELq65LBq0BXHVj6kJX70k0FAAgighSWKt3HnNSfQlfOJAYbhk69JbJHOBxj e5EORqr6J2r4cA== -----END CERTIFICATE-----Generated at Fri Dec 19 16:21:54 2025 by rpki-client