This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft File: lRTVqEAEnUQt83dEU5TfcZIBp3M.mft (raw, json) Hash identifier: EGfMTrepvKh/JAx++8uCLSxClmqP8WcdLnUUZpS4+AE= Subject key identifier: BC:85:1D:A7:D7:FB:3F:81:F9:26:05:6B:A2:CE:5B:4A:77:57:39:D8 Authority key identifier: 95:14:D5:A8:40:04:9D:44:2D:F3:77:44:53:94:DF:71:92:01:A7:73 Certificate issuer: /CN=9514d5a840049d442df377445394df719201a773 Certificate serial: 019B19164AC8B54EAB066E39114F8B978582 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTVqEAEnUQt83dEU5TfcZIBp3M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft Manifest number: 05BC Signing time: Sat 13 Dec 2025 19:00:49 +0000 Manifest this update: Sat 13 Dec 2025 19:00:49 +0000 Manifest next update: Sun 14 Dec 2025 19:00:49 +0000 Files and hashes: 1: h0vy9KP5l8xr8yJ-2ncCcO3rvZU.roa (hash: WW+DmP6TLxBJVPgyfFOFc50eb4JwhFwUi3K7+OUSV3A=) 2: lRTVqEAEnUQt83dEU5TfcZIBp3M.crl (hash: 2SBGN7u7iqru7/pX14XMMNEcAMksMDeIlkX0c5Yy2eY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft rsync://rpki.ripe.net/repository/DEFAULT/lRTVqEAEnUQt83dEU5TfcZIBp3M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:16:4a:c8:b5:4e:ab:06:6e:39:11:4f:8b:97:85:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9514d5a840049d442df377445394df719201a773 Validity Not Before: Dec 13 19:00:49 2025 GMT Not After : Dec 14 19:00:49 2025 GMT Subject: CN=bc851da7d7fb3f81f926056ba2ce5b4a775739d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9c:3b:99:f1:28:27:7d:07:f7:b9:64:63:f6: 82:72:53:f2:a3:5d:b6:cb:7c:4d:84:3b:53:cd:d4: ab:b5:a9:24:c4:d7:84:13:50:d6:fd:ab:11:b4:cd: d3:bd:a7:40:ba:cc:19:85:5c:20:c8:53:80:57:46: a8:07:63:23:98:ec:6f:d2:11:83:71:43:60:fa:d3: 2e:14:e7:6f:99:45:bf:d3:b1:5a:3b:df:43:1c:ff: 27:c6:51:92:c4:94:1f:82:0d:a4:28:c6:79:15:5f: ce:b4:29:a6:42:46:89:95:33:ab:f8:3c:0b:65:93: f7:1f:a6:df:1f:83:6b:a5:aa:30:61:cd:ed:e2:86: b2:0f:5a:05:39:a3:d3:3a:7a:86:e0:8b:38:a8:ca: 9f:6f:be:eb:b9:2f:36:24:c7:09:b9:57:ed:b1:54: b9:de:cc:02:e4:08:64:4c:7b:84:aa:31:5b:77:6d: 93:93:7c:5c:6a:e6:82:dc:74:53:ae:8d:eb:e0:4f: 9a:d3:b5:aa:ba:61:b3:3e:58:99:c1:2f:96:ce:10: 2f:10:45:a5:79:df:33:c3:a2:1c:18:b3:b6:d3:be: 32:62:d6:28:13:24:f3:49:b3:79:52:f2:55:78:b9: 4b:71:f2:63:5d:95:f1:fe:fe:0c:e1:ef:02:55:c3: 47:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:85:1D:A7:D7:FB:3F:81:F9:26:05:6B:A2:CE:5B:4A:77:57:39:D8 X509v3 Authority Key Identifier: keyid:95:14:D5:A8:40:04:9D:44:2D:F3:77:44:53:94:DF:71:92:01:A7:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTVqEAEnUQt83dEU5TfcZIBp3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:ff:c8:98:9f:cc:43:ea:89:de:21:b9:7d:e1:82:cf:19:90: cf:da:2c:4d:17:30:24:63:49:79:46:ec:20:61:35:d1:da:f1: b2:c2:87:00:83:a4:c3:33:03:2b:78:07:bc:b6:8c:21:c8:ce: aa:89:b8:9f:7f:9b:ec:cb:d8:c3:3d:b5:d5:03:7a:77:76:00: bf:ac:3c:c6:48:3e:45:25:88:81:70:ce:d6:cc:f0:26:88:ed: 6d:b5:ac:1a:73:19:38:d0:d9:06:0a:77:11:cd:e1:39:b0:18: cc:69:79:43:a8:5b:f4:53:2b:fa:4d:a8:ab:d8:d3:9b:4b:8d: fc:0b:e2:4a:bb:63:14:5b:e1:0b:24:2c:0c:15:2a:e1:cb:0a: 94:af:14:cf:e8:e4:9b:25:59:68:c1:1b:08:65:5b:4c:a5:d0: 39:4f:76:66:6b:ce:76:15:08:f5:9c:f7:21:6e:71:c1:c7:57: 0c:78:6e:f6:62:0d:33:51:4e:dd:27:e2:83:7e:77:7e:d3:1c: d0:27:98:0f:8c:74:8c:90:a0:a7:fc:1e:1c:f3:c2:8c:50:7b: 9f:7a:00:9e:3c:31:f4:ac:94:6c:30:79:09:43:15:37:24:38: 83:48:1e:79:67:81:d2:d5:0e:7a:88:d7:b8:21:64:d1:8f:6a: c2:d5:73:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZFkrItU6rBm45EU+Ll4WCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1MTRkNWE4NDAwNDlkNDQyZGYzNzc0NDUzOTRkZjcxOTIw MWE3NzMwHhcNMjUxMjEzMTkwMDQ5WhcNMjUxMjE0MTkwMDQ5WjAzMTEwLwYDVQQD EyhiYzg1MWRhN2Q3ZmIzZjgxZjkyNjA1NmJhMmNlNWI0YTc3NTczOWQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxpw7mfEoJ30H97lkY/aCclPyo122 y3xNhDtTzdSrtakkxNeEE1DW/asRtM3TvadAuswZhVwgyFOAV0aoB2MjmOxv0hGD cUNg+tMuFOdvmUW/07FaO99DHP8nxlGSxJQfgg2kKMZ5FV/OtCmmQkaJlTOr+DwL ZZP3H6bfH4NrpaowYc3t4oayD1oFOaPTOnqG4Is4qMqfb77ruS82JMcJuVftsVS5 3swC5AhkTHuEqjFbd22Tk3xcauaC3HRTro3r4E+a07WqumGzPliZwS+WzhAvEEWl ed8zw6IcGLO2074yYtYoEyTzSbN5UvJVeLlLcfJjXZXx/v4M4e8CVcNHMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLyFHafX+z+B+SYFa6LOW0p3VznYMB8GA1UdIwQY MBaAFJUU1ahABJ1ELfN3RFOU33GSAadzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFJUVnFFQUVuVVF0ODNkRVU1VGZjWklCcDNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS84MWUyNDItZTdkMy00OTFmLWJhNjUt NTdkMTU4NDNmN2YwLzEvbFJUVnFFQUVuVVF0ODNkRVU1VGZjWklCcDNNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS84MWUyNDItZTdkMy00OTFmLWJhNjUtNTdkMTU4NDNmN2Yw LzEvbFJUVnFFQUVuVVF0ODNkRVU1VGZjWklCcDNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASP/ImJ/M Q+qJ3iG5feGCzxmQz9osTRcwJGNJeUbsIGE10drxssKHAIOkwzMDK3gHvLaMIcjO qom4n3+b7MvYwz211QN6d3YAv6w8xkg+RSWIgXDO1szwJojtbbWsGnMZONDZBgp3 Ec3hObAYzGl5Q6hb9FMr+k2oq9jTm0uN/AviSrtjFFvhCyQsDBUq4csKlK8Uz+jk myVZaMEbCGVbTKXQOU92ZmvOdhUI9Zz3IW5xwcdXDHhu9mINM1FO3Sfig353ftMc 0CeYD4x0jJCgp/weHPPCjFB7n3oAnjwx9KyUbDB5CUMVNyQ4g0geeWeB0tUOeojX uCFk0Y9qwtVzlQ== -----END CERTIFICATE-----Generated at Sun Dec 14 01:58:04 2025 by rpki-client