This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft File: Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft (raw, json) Hash identifier: SO7i3hsONiHC3PCTaH1vNoSwJ532HUdk1d88sKyww6Y= Subject key identifier: C9:42:26:0E:9B:C5:61:DA:9A:E4:92:15:71:BF:BE:FC:CA:D5:7D:F4 Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11 Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111 Certificate serial: 019AF3526D1EB72B4F88666990E3B0E2ABD5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft Manifest number: 03D1 Signing time: Sat 06 Dec 2025 11:00:56 +0000 Manifest this update: Sat 06 Dec 2025 11:00:56 +0000 Manifest next update: Sun 07 Dec 2025 11:00:56 +0000 Files and hashes: 1: 32WtKH3EfM7-S6v7tTmyQcU-a9s.roa (hash: Fn/80HetfWjEwrwQy2saw9cqkA9VjrY/6O3eDGyjCbw=) 2: Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl (hash: apjwAiZkKbL8mmkw/0cQzt0mQssojW+S6l2zcQ7BeJg=) 3: ef1K6dC6_lGn3rxGTHxMT8fcB0w.roa (hash: KYKxli5ZRinkaBImEiWWBBcr8lpZPoWAqbzOeddaU7I=) 4: pLMH0ozDSiYZXzqiHdSEzphkheE.roa (hash: CFbM9K2hMJ4HkUaVbEdJq2H47xHqfonXY2RvABtKsw8=) 5: yTZK16Petp2vOn3txInnKgFuPZA.roa (hash: f4X49bz3pXDeDuy49E2fyjRi845LCJEWL2iDzuqzg38=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:6d:1e:b7:2b:4f:88:66:69:90:e3:b0:e2:ab:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111 Validity Not Before: Dec 6 11:00:56 2025 GMT Not After : Dec 7 11:00:56 2025 GMT Subject: CN=c942260e9bc561da9ae4921571bfbefccad57df4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:de:7d:00:74:dc:fc:33:e0:dc:32:75:dd:d8: dc:e6:e4:eb:3a:ce:aa:cc:39:cd:e8:0e:cd:99:f8: 0b:fb:3d:85:54:99:a7:7f:42:21:ed:eb:17:49:11: 3c:ad:20:1e:2e:8d:9d:b7:f5:df:aa:ac:61:ca:3b: e1:d3:a6:eb:f5:0c:ff:02:34:b5:44:ac:1a:30:41: d1:5d:64:26:77:c6:9c:a5:4c:80:f5:c2:ca:b4:7c: 53:66:1a:d4:55:ba:c4:24:ca:a2:38:84:91:05:a5: d4:66:2c:a9:95:20:57:fc:37:87:76:01:bf:68:57: f2:aa:f4:3d:cb:29:f7:9d:32:c5:48:e9:b7:6a:a7: c1:db:b0:25:db:bf:11:43:cc:53:79:b2:4f:ca:5f: 05:6e:0f:30:6c:cd:d0:ab:43:b1:b9:1e:78:df:f3: 1c:0e:2d:89:4c:3f:e7:77:b9:55:84:46:84:70:9b: f1:34:de:d2:52:fd:db:f3:3a:f7:b6:16:06:c5:8d: eb:cf:87:c1:39:b7:9d:ea:8a:32:9f:2a:a2:7e:82: 4b:d0:56:a9:2c:c4:d9:fd:66:59:69:1b:fd:4c:13: 4e:54:96:57:51:b3:86:7d:8b:22:99:3f:45:39:98: d5:cd:23:45:65:81:6f:56:4b:80:de:3b:dd:c5:11: 08:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:42:26:0E:9B:C5:61:DA:9A:E4:92:15:71:BF:BE:FC:CA:D5:7D:F4 X509v3 Authority Key Identifier: keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:80:b3:5b:fc:35:c8:c8:a9:d8:71:87:ea:2f:f0:9d:55:1c: a9:de:d3:83:64:bd:0b:1e:0a:ab:fe:8b:9e:fd:77:09:4d:14: 93:16:42:e3:98:38:3c:56:9e:fb:3b:27:f0:d3:c2:28:6c:67: 2c:71:21:45:5e:85:f3:b4:1d:09:a7:41:c8:90:4c:ff:f0:3d: 4f:96:f2:98:30:c2:85:9b:41:c4:3c:fa:0a:c0:b1:f3:42:08: ef:b2:fa:a8:00:f9:61:2d:70:57:f2:66:75:9e:70:1d:14:94: e3:ee:d2:21:83:24:00:b1:bb:6d:47:08:fa:60:23:94:23:31: 57:89:ef:c3:c4:5a:e9:72:ba:7d:9f:70:59:82:3d:88:40:19: 7b:6b:a9:95:9a:3b:16:7c:49:c6:a1:94:49:f2:37:e8:a0:29: bc:e6:ad:59:76:d4:d0:50:ed:1b:9d:88:a5:25:94:58:1a:3e: 57:ce:d5:30:6b:b2:44:1d:ba:e0:f6:f4:cf:fa:a8:f7:07:73: 98:50:88:64:27:58:82:cc:f7:26:08:1d:30:0c:1e:60:2b:51: 73:2e:e8:69:00:cc:44:f4:60:7f:76:a9:e2:c4:15:5e:44:79: c8:1a:bc:fe:1e:8d:19:2b:57:29:51:6b:1c:d9:a5:3c:e3:cf: 31:88:68:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUm0etytPiGZpkOOw4qvVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkZmVmMmI4MzlhZDA3Nzg2ODMzYjFiZWRjYThiMGIxOTIw M2UxMTEwHhcNMjUxMjA2MTEwMDU2WhcNMjUxMjA3MTEwMDU2WjAzMTEwLwYDVQQD EyhjOTQyMjYwZTliYzU2MWRhOWFlNDkyMTU3MWJmYmVmY2NhZDU3ZGY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4N59AHTc/DPg3DJ13djc5uTrOs6q zDnN6A7NmfgL+z2FVJmnf0Ih7esXSRE8rSAeLo2dt/Xfqqxhyjvh06br9Qz/AjS1 RKwaMEHRXWQmd8acpUyA9cLKtHxTZhrUVbrEJMqiOISRBaXUZiyplSBX/DeHdgG/ aFfyqvQ9yyn3nTLFSOm3aqfB27Al278RQ8xTebJPyl8Fbg8wbM3Qq0OxuR543/Mc Di2JTD/nd7lVhEaEcJvxNN7SUv3b8zr3thYGxY3rz4fBObed6ooynyqifoJL0Fap LMTZ/WZZaRv9TBNOVJZXUbOGfYsimT9FOZjVzSNFZYFvVkuA3jvdxREI+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMlCJg6bxWHamuSSFXG/vvzK1X30MB8GA1UdIwQY MBaAFC3+8rg5rQd4aDOxvtyosLGSA+ERMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTGY3eXVEbXRCM2hvTTdHLTNLaXdzWklENFJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8wMzU3ZTgtM2VhMC00OTY4LTllZjkt N2Q3MDUxOWI3NmRhLzEvTGY3eXVEbXRCM2hvTTdHLTNLaXdzWklENFJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC8wMzU3ZTgtM2VhMC00OTY4LTllZjktN2Q3MDUxOWI3NmRh LzEvTGY3eXVEbXRCM2hvTTdHLTNLaXdzWklENFJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ4CzW/w1 yMip2HGH6i/wnVUcqd7Tg2S9Cx4Kq/6Lnv13CU0UkxZC45g4PFae+zsn8NPCKGxn LHEhRV6F87QdCadByJBM//A9T5bymDDChZtBxDz6CsCx80II77L6qAD5YS1wV/Jm dZ5wHRSU4+7SIYMkALG7bUcI+mAjlCMxV4nvw8Ra6XK6fZ9wWYI9iEAZe2uplZo7 FnxJxqGUSfI36KApvOatWXbU0FDtG52IpSWUWBo+V87VMGuyRB264Pb0z/qo9wdz mFCIZCdYgsz3JggdMAweYCtRcy7oaQDMRPRgf3ap4sQVXkR5yBq8/h6NGStXKVFr HNmlPOPPMYhoPQ== -----END CERTIFICATE-----Generated at Sat Dec 6 16:30:02 2025 by rpki-client