This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.mft File: ldcL-AoHyf_L7wzYRltFjWE9zIU.mft (raw, json) Hash identifier: 1chdAv8YOVAdytvclWLG2XSKvXHnuhMT/UdjrDHWVQc= Subject key identifier: EB:AF:D8:D4:EA:4E:E2:E2:52:5B:CF:6A:BC:D9:E6:B8:C9:BF:C1:E3 Authority key identifier: 95:D7:0B:F8:0A:07:C9:FF:CB:EF:0C:D8:46:5B:45:8D:61:3D:CC:85 Certificate issuer: /CN=95d70bf80a07c9ffcbef0cd8465b458d613dcc85 Certificate serial: 019B1ACE2EB1B519D3017B95EB14B0A164C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ldcL-AoHyf_L7wzYRltFjWE9zIU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.mft Manifest number: 0A56 Signing time: Sun 14 Dec 2025 03:01:18 +0000 Manifest this update: Sun 14 Dec 2025 03:01:18 +0000 Manifest next update: Mon 15 Dec 2025 03:01:18 +0000 Files and hashes: 1: Li8wKnrdmOXpX94BLLLbjVutDVE.roa (hash: B7wnEDA93LjWijQLqvYkWeQvccIg2ujkRKA0vpbO5ig=) 2: ldcL-AoHyf_L7wzYRltFjWE9zIU.crl (hash: JnQoVkV7QYWxpO7ePHfySmUSO4uyYGyPrWjFHPx7ChI=) 3: tMCBLo17Jcu9nYj5dm70vUGR7Kw.asa (hash: 6ybtRyvqW2iRo23vB9EOMEnUyiFtXyklB8ljlHnEAdI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.mft rsync://rpki.ripe.net/repository/DEFAULT/ldcL-AoHyf_L7wzYRltFjWE9zIU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:ce:2e:b1:b5:19:d3:01:7b:95:eb:14:b0:a1:64:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95d70bf80a07c9ffcbef0cd8465b458d613dcc85 Validity Not Before: Dec 14 03:01:18 2025 GMT Not After : Dec 15 03:01:18 2025 GMT Subject: CN=ebafd8d4ea4ee2e2525bcf6abcd9e6b8c9bfc1e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:e4:47:e8:76:54:c9:fa:ee:27:f3:8b:5b:a7: 4b:98:c1:11:e3:d2:6d:cd:b1:6e:e5:a5:1b:e8:6c: 97:98:4a:12:19:34:34:9b:05:38:24:c7:30:9e:8d: b7:50:17:05:12:86:a3:13:59:ad:0f:18:37:cb:bc: 5b:da:ee:78:ec:72:f6:d5:af:d5:a8:4a:f7:17:52: cb:02:d0:77:04:8c:68:5d:3b:6b:26:3e:b7:b1:4c: d9:cf:33:4a:7d:10:a4:d5:e7:a4:a9:75:3a:b4:2f: d9:7e:33:ba:28:e4:b4:ed:7a:19:9a:84:ee:8f:4b: 68:b3:e7:fe:f0:ae:56:c3:32:8e:f3:f0:fb:43:6a: 82:85:20:4c:be:3b:f6:38:ab:ef:54:b0:02:8b:33: 9f:c9:6f:b8:9c:c2:f1:e0:a9:05:6b:df:88:9a:02: 6c:12:bf:26:fd:45:41:e1:ac:0f:65:b9:ac:7e:8c: e0:3a:e0:9e:78:80:53:01:11:f1:d5:fd:2a:91:49: 7c:9c:1e:57:13:ef:71:8b:07:be:ab:c2:95:72:9f: a5:e1:7c:6e:c0:09:72:a4:61:e3:37:8c:fa:94:8b: cc:87:da:b2:26:66:43:18:59:6c:d4:83:7a:e9:c3: c3:c8:d5:26:df:14:dd:65:08:21:b2:59:69:82:59: a3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:AF:D8:D4:EA:4E:E2:E2:52:5B:CF:6A:BC:D9:E6:B8:C9:BF:C1:E3 X509v3 Authority Key Identifier: keyid:95:D7:0B:F8:0A:07:C9:FF:CB:EF:0C:D8:46:5B:45:8D:61:3D:CC:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ldcL-AoHyf_L7wzYRltFjWE9zIU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:fe:05:34:cf:7d:eb:0c:af:1e:fd:bc:88:41:fe:8f:44:16: ca:aa:3d:a6:75:ab:1e:78:cb:45:db:54:0f:a7:d3:00:ff:43: bf:98:53:8d:2b:36:56:ab:17:88:f0:e6:71:b9:4b:95:a7:3d: e6:fc:9f:c9:b5:b6:d2:0c:38:c4:65:fd:8d:01:bf:2d:f1:17: ba:e1:33:db:89:7c:3d:1d:f1:49:3f:9c:a2:04:99:0d:e0:f7: b0:9b:d6:23:60:15:df:ca:ca:ed:53:25:bc:89:8a:16:e8:47: ce:f5:f7:7f:03:34:e7:8d:dd:67:d3:ef:f2:f5:48:6d:1e:b3: 0f:ac:20:b2:ae:ad:ac:b3:40:d5:69:84:b4:31:45:59:85:ee: d8:3d:5c:48:d2:99:90:fb:2a:8c:e9:f9:13:8b:02:e5:4d:b1: 9c:27:2e:9a:ef:29:a7:9f:d6:ee:1c:9c:81:09:3e:41:3a:6d: 1a:e8:a4:91:79:fd:af:94:ff:42:5c:ff:02:09:7b:7a:73:33: cb:ca:f5:be:44:86:92:ca:bb:c5:e7:17:e1:c7:0c:2e:a2:46: b3:4f:fc:b3:cf:80:37:d7:75:8e:7d:7b:1c:7f:ea:a8:96:76: 10:3c:1f:2a:2f:c5:44:74:ac:c4:14:98:87:b4:e7:e2:d9:de: d2:b0:dd:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsazi6xtRnTAXuV6xSwoWTFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1ZDcwYmY4MGEwN2M5ZmZjYmVmMGNkODQ2NWI0NThkNjEz ZGNjODUwHhcNMjUxMjE0MDMwMTE4WhcNMjUxMjE1MDMwMTE4WjAzMTEwLwYDVQQD EyhlYmFmZDhkNGVhNGVlMmUyNTI1YmNmNmFiY2Q5ZTZiOGM5YmZjMWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkeRH6HZUyfruJ/OLW6dLmMER49Jt zbFu5aUb6GyXmEoSGTQ0mwU4JMcwno23UBcFEoajE1mtDxg3y7xb2u547HL21a/V qEr3F1LLAtB3BIxoXTtrJj63sUzZzzNKfRCk1eekqXU6tC/ZfjO6KOS07XoZmoTu j0tos+f+8K5WwzKO8/D7Q2qChSBMvjv2OKvvVLACizOfyW+4nMLx4KkFa9+ImgJs Er8m/UVB4awPZbmsfozgOuCeeIBTARHx1f0qkUl8nB5XE+9xiwe+q8KVcp+l4Xxu wAlypGHjN4z6lIvMh9qyJmZDGFls1IN66cPDyNUm3xTdZQghsllpglmjNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOuv2NTqTuLiUlvParzZ5rjJv8HjMB8GA1UdIwQY MBaAFJXXC/gKB8n/y+8M2EZbRY1hPcyFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGRjTC1Bb0h5Zl9MN3d6WVJsdEZqV0U5eklVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8yYjBlMTEtZjE4ZC00NzU3LTkwMTEt NjY3OGViODFiOGIwLzEvbGRjTC1Bb0h5Zl9MN3d6WVJsdEZqV0U5eklVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC8yYjBlMTEtZjE4ZC00NzU3LTkwMTEtNjY3OGViODFiOGIw LzEvbGRjTC1Bb0h5Zl9MN3d6WVJsdEZqV0U5eklVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKf4FNM99 6wyvHv28iEH+j0QWyqo9pnWrHnjLRdtUD6fTAP9Dv5hTjSs2VqsXiPDmcblLlac9 5vyfybW20gw4xGX9jQG/LfEXuuEz24l8PR3xST+cogSZDeD3sJvWI2AV38rK7VMl vImKFuhHzvX3fwM0543dZ9Pv8vVIbR6zD6wgsq6trLNA1WmEtDFFWYXu2D1cSNKZ kPsqjOn5E4sC5U2xnCcumu8pp5/W7hycgQk+QTptGuikkXn9r5T/Qlz/Agl7enMz y8r1vkSGksq7xecX4ccMLqJGs0/8s8+AN9d1jn17HH/qqJZ2EDwfKi/FRHSsxBSY h7Tn4tne0rDdrw== -----END CERTIFICATE-----Generated at Sun Dec 14 07:45:52 2025 by rpki-client