This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft File: lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft (raw, json) Hash identifier: wu3g900IeOO8YXcoL0POCnvDV5hhe51u/l1nCiqAqhs= Subject key identifier: D1:65:46:4C:B3:3E:51:CE:19:0E:2A:68:FA:FF:93:7D:37:95:03:D0 Authority key identifier: 94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A Certificate issuer: /CN=943bc576732374e8d89d7013ab3630b6e0a9f19a Certificate serial: 019B115D13E197DD93040BED2FB9E434AD96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft Manifest number: 1198 Signing time: Fri 12 Dec 2025 07:01:11 +0000 Manifest this update: Fri 12 Dec 2025 07:01:11 +0000 Manifest next update: Sat 13 Dec 2025 07:01:11 +0000 Files and hashes: 1: H33ZXIhbVy7xU6xnvVekDxlllNY.roa (hash: gLytCIr8moIJFxRmjTSWLIbls8kZi2qpSK/USMqXNdU=) 2: lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl (hash: WL/jq6pIDAGvr40GoA9nXDqUvsl/sFGTPiA3A4bnQNA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:11:5d:13:e1:97:dd:93:04:0b:ed:2f:b9:e4:34:ad:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=943bc576732374e8d89d7013ab3630b6e0a9f19a Validity Not Before: Dec 12 07:01:11 2025 GMT Not After : Dec 13 07:01:11 2025 GMT Subject: CN=d165464cb33e51ce190e2a68faff937d379503d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:94:45:3d:92:81:6d:a1:04:fa:52:2f:3d:0c: 69:4a:54:8b:22:f8:3c:b0:53:51:28:46:0e:8d:c0: 01:7d:5d:4a:1f:20:88:5f:84:52:9b:ea:30:f4:c5: c0:2e:e6:17:17:a5:30:cd:45:d2:35:5c:90:80:66: c6:5a:2f:93:85:1c:1a:e3:76:8c:7f:e6:5f:67:46: aa:9f:30:f9:f5:27:34:77:e3:57:b5:00:ce:3a:dc: 0c:98:6a:a5:ae:2f:0e:37:ea:ef:f6:c5:40:46:d9: 4a:59:99:69:0d:ad:96:8b:90:1c:b8:72:23:b4:b5: 29:0a:54:86:92:cb:b3:83:cb:d2:be:3c:65:68:fe: 12:1e:6d:d6:e9:90:69:29:3d:b9:4c:8e:82:1c:b1: 09:65:4a:14:74:7c:d1:0f:48:72:2f:d7:38:05:c4: 4b:0c:ec:21:3d:cd:4c:8f:34:11:20:64:54:c6:18: ab:d8:d5:b0:e5:ef:89:c8:5d:b3:37:94:1c:16:b9: 5e:10:5c:b1:d5:b6:0e:e3:a8:2b:dd:18:f8:89:b7: fc:3e:b2:e3:5f:26:7a:95:21:f7:82:ba:dd:04:f1: 2f:6c:5f:67:0d:5a:41:0b:70:cd:5b:e7:66:a3:d3: 6f:93:22:84:22:d6:4d:c6:75:d1:22:ba:60:51:21: 89:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:65:46:4C:B3:3E:51:CE:19:0E:2A:68:FA:FF:93:7D:37:95:03:D0 X509v3 Authority Key Identifier: keyid:94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:e9:ee:30:d8:d9:b3:6f:ed:58:39:33:a9:bf:f4:eb:73:9c: 69:1a:a5:0a:72:8c:85:4b:6d:2d:1f:e4:f4:0d:49:7f:92:84: e1:69:eb:14:23:c9:53:88:ac:4a:ee:32:1a:e5:e9:1f:95:e1: c3:f9:fc:7f:9b:5b:2f:9c:fc:a8:1a:f9:0f:7a:b5:7e:c5:d9: fc:b8:a1:95:ca:8c:62:4c:cb:ce:8f:9c:35:61:b7:10:74:34: ca:5e:ea:d9:8b:b6:f6:a0:6b:96:55:2b:89:b3:8b:1b:38:41: dc:1b:c5:bc:a0:bf:03:1e:68:b0:6e:9a:01:23:4e:db:ec:51: a1:d2:de:5a:5e:04:75:2a:e8:e8:07:71:38:a0:34:64:d0:9a: 1a:18:6b:0b:53:4b:d5:29:a7:50:7d:c7:8e:27:68:d9:38:4f: 75:98:e8:89:c1:1e:f8:f4:39:18:d3:ba:41:2d:2e:17:09:10: 24:55:97:75:b1:22:db:c8:0e:12:6d:a0:cd:d4:65:97:08:39: 22:4c:ea:13:79:9c:79:cc:d5:b6:d4:62:62:45:ed:57:cc:97: 5c:98:ec:fc:50:a7:cf:46:47:ef:86:a9:43:22:30:cd:2f:1e: 10:49:22:42:ae:df:80:e4:97:60:4b:d9:f7:b4:d4:40:7b:87: 57:09:28:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsRXRPhl92TBAvtL7nkNK2WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0M2JjNTc2NzMyMzc0ZThkODlkNzAxM2FiMzYzMGI2ZTBh OWYxOWEwHhcNMjUxMjEyMDcwMTExWhcNMjUxMjEzMDcwMTExWjAzMTEwLwYDVQQD EyhkMTY1NDY0Y2IzM2U1MWNlMTkwZTJhNjhmYWZmOTM3ZDM3OTUwM2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA75RFPZKBbaEE+lIvPQxpSlSLIvg8 sFNRKEYOjcABfV1KHyCIX4RSm+ow9MXALuYXF6UwzUXSNVyQgGbGWi+ThRwa43aM f+ZfZ0aqnzD59Sc0d+NXtQDOOtwMmGqlri8ON+rv9sVARtlKWZlpDa2Wi5AcuHIj tLUpClSGksuzg8vSvjxlaP4SHm3W6ZBpKT25TI6CHLEJZUoUdHzRD0hyL9c4BcRL DOwhPc1MjzQRIGRUxhir2NWw5e+JyF2zN5QcFrleEFyx1bYO46gr3Rj4ibf8PrLj XyZ6lSH3grrdBPEvbF9nDVpBC3DNW+dmo9NvkyKEItZNxnXRIrpgUSGJ2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNFlRkyzPlHOGQ4qaPr/k303lQPQMB8GA1UdIwQY MBaAFJQ7xXZzI3To2J1wE6s2MLbgqfGaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbER2RmRuTWpkT2pZblhBVHF6WXd0dUNwOFpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9iOGQwNjUtZWQ4MS00MDllLWIxZjEt NzZhYjNmY2ExZjMyLzEvbER2RmRuTWpkT2pZblhBVHF6WXd0dUNwOFpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS9iOGQwNjUtZWQ4MS00MDllLWIxZjEtNzZhYjNmY2ExZjMy LzEvbER2RmRuTWpkT2pZblhBVHF6WXd0dUNwOFpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP+nuMNjZ s2/tWDkzqb/063OcaRqlCnKMhUttLR/k9A1Jf5KE4WnrFCPJU4isSu4yGuXpH5Xh w/n8f5tbL5z8qBr5D3q1fsXZ/LihlcqMYkzLzo+cNWG3EHQ0yl7q2Yu29qBrllUr ibOLGzhB3BvFvKC/Ax5osG6aASNO2+xRodLeWl4EdSro6AdxOKA0ZNCaGhhrC1NL 1SmnUH3Hjido2ThPdZjoicEe+PQ5GNO6QS0uFwkQJFWXdbEi28gOEm2gzdRllwg5 IkzqE3mceczVttRiYkXtV8yXXJjs/FCnz0ZH74apQyIwzS8eEEkiQq7fgOSXYEvZ 97TUQHuHVwko5w== -----END CERTIFICATE-----Generated at Fri Dec 12 09:09:10 2025 by rpki-client