This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft File: cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft (raw, json) Hash identifier: db/bHvz3HMr5ncsoWGo3RhNGhUeCQtZYGTC+kXamihA= Subject key identifier: 5C:36:3E:2E:D1:2C:9D:FD:B8:98:BC:7D:E0:1A:01:B1:34:69:32:35 Authority key identifier: 70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59 Certificate issuer: /CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59 Certificate serial: 019AF31C8F3C3EA071B088ED84D803E74D00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft Manifest number: 13AB Signing time: Sat 06 Dec 2025 10:02:06 +0000 Manifest this update: Sat 06 Dec 2025 10:02:06 +0000 Manifest next update: Sun 07 Dec 2025 10:02:06 +0000 Files and hashes: 1: Pmv8pM8XqssRTrBIwYfMIrBu2co.roa (hash: v4JQsWfqUQF/aizb6/kkH5lzSW7tzkWIy4FJVzppxAI=) 2: RQjHthweEF9-820WAQ_PQzmnlEM.roa (hash: nBMPnR4O6VvmGYLIOUpQxt7mk0o9gXGO9uw/qf7b94A=) 3: Wwvcf_CdHRy8gkrOQZUQURuseiI.roa (hash: xkPyebxyoo94+1+QeBv80ewSsDDTwjJTGd/zo7NXJ5g=) 4: cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl (hash: b4YSrHVfKjceyc0UorfWAPb50iCZ3Mm7XeLSSaNmSoE=) 5: lVsIvIm2siK76Iwlc1JEpwaFSPI.roa (hash: TUnieu9UOgS3hw0oaMGHMZ2FiYRQqrhlAMNc6BYERoE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:8f:3c:3e:a0:71:b0:88:ed:84:d8:03:e7:4d:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59 Validity Not Before: Dec 6 10:02:06 2025 GMT Not After : Dec 7 10:02:06 2025 GMT Subject: CN=5c363e2ed12c9dfdb898bc7de01a01b134693235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5c:d3:b9:63:3c:e6:df:1f:1f:b7:2d:70:cb: 94:8c:46:e8:29:be:51:27:26:1d:cb:77:52:cf:d2: ae:bd:d1:87:75:bb:2d:d7:f5:91:cf:d1:d1:bb:76: e7:78:0c:c4:54:38:57:62:2d:73:f8:59:e6:9a:a2: 9b:ed:23:16:48:52:90:0b:7e:d3:a5:05:7b:8f:49: 7d:82:af:d0:43:2e:e1:f1:74:bc:4c:f7:7d:91:7f: 0b:47:95:ba:c8:e9:f8:01:bc:1d:17:bd:35:e3:45: db:b0:42:ce:20:76:03:8b:ba:db:69:a8:9c:0b:78: 33:60:64:da:a6:ef:5e:9c:d9:79:ae:11:58:29:df: bf:3f:f1:56:29:98:5e:04:6b:83:6a:18:a3:bc:f5: 81:a9:e0:5c:03:5b:ea:8e:73:f3:d4:e7:79:bf:0a: cb:8e:c3:cb:c1:22:ec:8f:93:6f:0f:38:40:20:e1: 83:a2:b5:41:b1:2d:97:24:a6:ae:5d:8f:69:43:62: be:9a:e0:ac:59:48:c6:ac:c6:c9:14:0e:1e:e4:5b: 70:74:a7:32:2c:65:5b:0f:34:fd:e9:8a:89:95:4b: 96:2b:6e:af:d4:24:95:55:13:41:dc:d3:0d:fb:7f: f4:af:a3:f2:6e:e6:a1:c8:0c:f8:52:07:45:dc:93: 1c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:36:3E:2E:D1:2C:9D:FD:B8:98:BC:7D:E0:1A:01:B1:34:69:32:35 X509v3 Authority Key Identifier: keyid:70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:24:7c:df:ef:84:50:fa:ae:ff:8c:82:d2:7b:97:1d:12:54: ae:ea:88:39:32:13:4b:54:00:3a:b0:02:c3:b0:1d:07:21:9a: c9:99:af:a1:cd:61:77:33:db:b7:84:69:08:95:14:5b:f6:67: 24:20:2c:e9:99:6d:72:24:c3:68:4f:40:de:49:0e:25:70:86: fd:e8:e2:e6:5b:72:32:3a:66:c7:66:5c:3f:a0:ad:92:ee:10: 18:24:50:ec:6e:85:26:63:6f:bb:73:ad:a8:00:d8:98:30:6b: 39:df:d8:3b:dc:d7:1c:b5:d1:48:12:e6:35:7e:f3:46:5f:73: bb:e3:7a:67:b8:11:fa:0d:8a:3b:19:e6:b7:30:12:c3:fb:15: 80:da:b5:f7:17:32:af:9b:4e:a0:73:47:2b:42:3f:25:bc:4a: 1d:97:ee:ae:cc:fb:4f:da:92:61:d3:f9:2e:f9:5a:6b:81:7d: 07:9b:85:bc:21:92:e4:17:a4:d2:ba:28:53:90:e2:0e:2e:1c: 3d:fb:d5:09:3c:e9:2b:e6:6b:fa:74:bc:4e:fa:04:4a:f9:a5: a1:fc:d9:15:36:e9:6c:36:27:93:65:1e:ff:f8:b1:99:0c:ee: f1:4b:f1:1b:50:52:28:e1:83:ab:ba:8b:77:17:69:81:55:a4: eb:a5:7d:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHI88PqBxsIjthNgD500AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwYjE5MGQ2Zjg5YTQzNGNjZTVjYjhjMGQ0YjM4YTE2Njlk ZWZiNTkwHhcNMjUxMjA2MTAwMjA2WhcNMjUxMjA3MTAwMjA2WjAzMTEwLwYDVQQD Eyg1YzM2M2UyZWQxMmM5ZGZkYjg5OGJjN2RlMDFhMDFiMTM0NjkzMjM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAylzTuWM85t8fH7ctcMuUjEboKb5R JyYdy3dSz9KuvdGHdbst1/WRz9HRu3bneAzEVDhXYi1z+FnmmqKb7SMWSFKQC37T pQV7j0l9gq/QQy7h8XS8TPd9kX8LR5W6yOn4AbwdF70140XbsELOIHYDi7rbaaic C3gzYGTapu9enNl5rhFYKd+/P/FWKZheBGuDahijvPWBqeBcA1vqjnPz1Od5vwrL jsPLwSLsj5NvDzhAIOGDorVBsS2XJKauXY9pQ2K+muCsWUjGrMbJFA4e5FtwdKcy LGVbDzT96YqJlUuWK26v1CSVVRNB3NMN+3/0r6PybuahyAz4UgdF3JMcOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFw2Pi7RLJ39uJi8feAaAbE0aTI1MB8GA1UdIwQY MBaAFHCxkNb4mkNMzly4wNSzihZp3vtZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0xHUTF2aWFRMHpPWExqQTFMT0tGbW5lLTFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8yM2RjNjEtN2U5ZC00MGIzLTkxYjYt NDZiZDdkNzk0ZmI2LzEvY0xHUTF2aWFRMHpPWExqQTFMT0tGbW5lLTFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC8yM2RjNjEtN2U5ZC00MGIzLTkxYjYtNDZiZDdkNzk0ZmI2 LzEvY0xHUTF2aWFRMHpPWExqQTFMT0tGbW5lLTFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZiR83++E UPqu/4yC0nuXHRJUruqIOTITS1QAOrACw7AdByGayZmvoc1hdzPbt4RpCJUUW/Zn JCAs6ZltciTDaE9A3kkOJXCG/eji5ltyMjpmx2ZcP6Ctku4QGCRQ7G6FJmNvu3Ot qADYmDBrOd/YO9zXHLXRSBLmNX7zRl9zu+N6Z7gR+g2KOxnmtzASw/sVgNq19xcy r5tOoHNHK0I/JbxKHZfursz7T9qSYdP5Lvlaa4F9B5uFvCGS5Bek0rooU5DiDi4c PfvVCTzpK+Zr+nS8TvoESvmlofzZFTbpbDYnk2Ue//ixmQzu8UvxG1BSKOGDq7qL dxdpgVWk66V90A== -----END CERTIFICATE-----Generated at Sat Dec 6 19:54:44 2025 by rpki-client