This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json) Hash identifier: 4KIpMuJoO95rDQCoYoY0KsaUB4YxCV0pl1iDy1LucMg= Subject key identifier: 54:2F:C6:24:16:C0:8E:82:49:75:A1:EF:19:5B:1D:F7:0D:F1:C1:D4 Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00 Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000 Certificate serial: 019B0D80464228E5038C7378996228997526 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft Manifest number: 1780 Signing time: Thu 11 Dec 2025 13:01:08 +0000 Manifest this update: Thu 11 Dec 2025 13:01:08 +0000 Manifest next update: Fri 12 Dec 2025 13:01:08 +0000 Files and hashes: 1: 96CoHDqUFKRWLMKpuPNky2AThV0.roa (hash: 2dbkXGtx2Y2iGJ3uWXJRyOKWK4j+bBsW6iNp6F1vwRk=) 2: Zv6rhEtfx_jSCXc_S8UyXA0vo2U.roa (hash: upx9rJYDv3PHx1B1uURg+ybXETCTfjV8bsr8SvgJ3XM=) 3: biGYeNx8PlSGKHRmVucthKOSlnY.roa (hash: YxlSQax5Hky2oIIKAGXfmWIsjyjpaMRbBxvVdrI+BSI=) 4: g1Zk3nIRea2SYaHqoN92Ss1LCL8.roa (hash: aHQejC3hHy18rRg2jbGxWbnzx0KaJtZTncqKQ8jXn3M=) 5: kZbYAR7_VQFdZ98vhS7MW7IOa5g.roa (hash: veptVlnHGE2k0mSrEVT7abLTAqTrUJe6t8F1/LuZDvo=) 6: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: syf9LFjtMG1/QkXRZrG9OtrcbwGEVNH4t/bYKskpxxY=) 7: mmvuqSKrxCIOK5dTOpgllxAuYB8.roa (hash: cXrhSBrwqA5XppxSkBQnZWJRKIyKnPJRdZjf9M/iItg=) 8: rZuO-15UbHThyJRmeryxRpgLk2M.roa (hash: /ED0vNPFUaV7PRvXzqX2jHZ983s8HtxjtsJuRuMtCvI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 13:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0d:80:46:42:28:e5:03:8c:73:78:99:62:28:99:75:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000 Validity Not Before: Dec 11 13:01:08 2025 GMT Not After : Dec 12 13:01:08 2025 GMT Subject: CN=542fc62416c08e824975a1ef195b1df70df1c1d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ed:ba:82:a6:72:85:5d:1c:ec:26:33:11:dc: 3f:c9:17:b6:9b:3f:3c:25:1c:cc:d7:d3:d2:bb:75: 16:13:af:77:4c:b9:38:cc:92:5c:77:57:01:28:e5: 16:ad:c2:cb:21:34:4b:58:e0:c3:ff:99:27:32:9d: b9:73:9a:3c:3a:c1:72:00:70:d4:7b:9b:cc:8a:28: 0d:f9:6a:cf:60:c6:d4:03:70:51:ea:5b:21:a6:d3: 9e:35:27:e7:c9:c2:3d:cf:af:5b:b5:29:e6:be:32: bf:20:c7:82:9a:ab:7b:0f:ee:2e:e0:88:d9:6a:bd: d8:83:37:e5:22:75:e0:4a:55:32:ad:04:8c:28:92: 33:6b:b7:8e:4d:00:e5:e4:8f:39:ad:e6:f8:8f:15: 9d:57:85:93:02:f7:41:d0:07:7f:7a:0a:67:4e:a2: 59:16:b8:07:91:9e:24:d8:74:4d:96:e8:ab:a2:3d: 8b:42:9e:95:2a:0c:a1:03:09:0b:dd:ac:5c:b4:a0: c0:c2:58:39:10:8d:a6:02:f0:9e:81:5d:43:c4:89: de:c6:61:54:86:41:1c:37:94:32:7f:90:9b:88:4d: 5a:e2:d6:96:b6:2d:e0:a6:c3:44:45:d3:a3:63:a5: 0c:05:52:f4:b9:d7:ea:d0:c9:91:2b:81:be:06:60: a8:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:2F:C6:24:16:C0:8E:82:49:75:A1:EF:19:5B:1D:F7:0D:F1:C1:D4 X509v3 Authority Key Identifier: keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:2a:d2:5d:33:45:9f:3a:27:6e:df:de:77:a6:d6:85:0a:f4: e8:65:8d:56:99:2d:a3:53:b6:28:a7:ea:b0:f0:22:69:0f:2b: 37:7e:aa:4e:ac:68:a7:1d:f4:9a:10:7c:87:e5:f7:74:c8:23: 17:84:ab:7e:cd:03:ad:20:b3:89:7f:f2:10:6c:60:09:11:ec: e8:93:82:ea:dd:c1:bd:82:5e:a8:7e:19:f8:65:c1:6b:71:8c: 2d:70:03:cc:5c:82:a0:49:ce:4c:3c:6a:47:f8:39:f9:e1:b7: f8:54:b7:47:f4:64:8a:99:88:e5:fe:c5:70:1a:fc:60:e0:d6: 17:46:4e:e1:a0:f2:3e:ed:1e:a6:7f:f4:4f:7e:16:7d:35:9c: 4d:30:f2:9f:3a:d6:7f:66:24:a5:c3:52:e0:d6:52:e8:9c:1e: 38:d5:b5:69:48:57:97:a9:98:33:92:28:f7:7e:e9:47:74:37: 17:ea:6a:f8:70:82:ad:97:2b:a7:13:8e:e3:ae:6d:b0:1f:7f: e5:46:f9:ef:ef:0f:80:e0:a3:74:69:43:75:55:b3:54:ed:4a: 0c:98:5a:da:93:d4:7c:eb:fb:96:28:04:be:aa:35:c7:c9:32: 6e:e9:6d:3c:bb:52:a2:aa:8e:5d:58:f7:b1:8e:c4:d4:b0:a3: e9:3a:3e:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsNgEZCKOUDjHN4mWIomXUmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0MGExMGEyNTY3MjhmMTFhNGJiYWFkYzMyMDRiN2YwYTM1 YTUwMDAwHhcNMjUxMjExMTMwMTA4WhcNMjUxMjEyMTMwMTA4WjAzMTEwLwYDVQQD Eyg1NDJmYzYyNDE2YzA4ZTgyNDk3NWExZWYxOTViMWRmNzBkZjFjMWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoe26gqZyhV0c7CYzEdw/yRe2mz88 JRzM19PSu3UWE693TLk4zJJcd1cBKOUWrcLLITRLWODD/5knMp25c5o8OsFyAHDU e5vMiigN+WrPYMbUA3BR6lshptOeNSfnycI9z69btSnmvjK/IMeCmqt7D+4u4IjZ ar3YgzflInXgSlUyrQSMKJIza7eOTQDl5I85reb4jxWdV4WTAvdB0Ad/egpnTqJZ FrgHkZ4k2HRNluiroj2LQp6VKgyhAwkL3axctKDAwlg5EI2mAvCegV1DxInexmFU hkEcN5Qyf5CbiE1a4taWti3gpsNERdOjY6UMBVL0udfq0MmRK4G+BmCoMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFQvxiQWwI6CSXWh7xlbHfcN8cHUMB8GA1UdIwQY MBaAFJQKEKJWco8RpLuq3DIEt/CjWlAAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYt ZGNlNmQ2OTA5MjQ3LzEvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYtZGNlNmQ2OTA5MjQ3 LzEvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtirSXTNF nzonbt/ed6bWhQr06GWNVpkto1O2KKfqsPAiaQ8rN36qTqxopx30mhB8h+X3dMgj F4Srfs0DrSCziX/yEGxgCRHs6JOC6t3BvYJeqH4Z+GXBa3GMLXADzFyCoEnOTDxq R/g5+eG3+FS3R/RkipmI5f7FcBr8YODWF0ZO4aDyPu0epn/0T34WfTWcTTDynzrW f2YkpcNS4NZS6JweONW1aUhXl6mYM5Io937pR3Q3F+pq+HCCrZcrpxOO465tsB9/ 5Ub57+8PgOCjdGlDdVWzVO1KDJha2pPUfOv7ligEvqo1x8kybultPLtSoqqOXVj3 sY7E1LCj6To+8w== -----END CERTIFICATE-----Generated at Thu Dec 11 23:27:11 2025 by rpki-client