This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft File: lSGiYvUHXiSys8m2nIr0DimIoeQ.mft (raw, json) Hash identifier: Wf+wLbXOMho/tiZavs5SIPc+eHYAfmDbXz3m105CztE= Subject key identifier: 9B:B0:E4:4C:A3:E8:8B:EF:F0:30:B6:5F:9C:2C:53:5E:EC:F2:EB:50 Authority key identifier: 95:21:A2:62:F5:07:5E:24:B2:B3:C9:B6:9C:8A:F4:0E:29:88:A1:E4 Certificate issuer: /CN=9521a262f5075e24b2b3c9b69c8af40e2988a1e4 Certificate serial: 019AF2768B35ACE56BE171ACF66419D268C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSGiYvUHXiSys8m2nIr0DimIoeQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft Manifest number: 0482 Signing time: Sat 06 Dec 2025 07:00:46 +0000 Manifest this update: Sat 06 Dec 2025 07:00:46 +0000 Manifest next update: Sun 07 Dec 2025 07:00:46 +0000 Files and hashes: 1: Lpcsk8pQMiEPT6ApZhOXx9JAafQ.roa (hash: UQY6sisXum2gKK35fkWx14SykCBKN5d6dEz3tT5FKwk=) 2: lSGiYvUHXiSys8m2nIr0DimIoeQ.crl (hash: 3wNcqdC5g0+6vAwTxCDKspnEdgUZqZmQtO8dkmHJbOI=) 3: mRm5Pcaeh7ARiuQSZaTaFIQzlV4.roa (hash: SRjDoFDtCZGIa81wKDyuCO8n9PzLXPSishWYuw7XCOM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.crl rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft rsync://rpki.ripe.net/repository/DEFAULT/lSGiYvUHXiSys8m2nIr0DimIoeQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:8b:35:ac:e5:6b:e1:71:ac:f6:64:19:d2:68:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9521a262f5075e24b2b3c9b69c8af40e2988a1e4 Validity Not Before: Dec 6 07:00:46 2025 GMT Not After : Dec 7 07:00:46 2025 GMT Subject: CN=9bb0e44ca3e88beff030b65f9c2c535eecf2eb50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3a:20:a6:59:b1:7c:c9:ac:e2:47:d5:6b:dc: de:05:56:93:da:77:95:65:71:73:74:90:3d:97:26: 33:e2:1a:e7:88:62:62:6e:27:fc:3e:03:46:46:2d: 84:fc:bb:68:4d:90:02:d4:bc:8e:d2:23:b8:cb:6c: c4:eb:38:28:74:82:c7:cc:23:7c:34:f1:f2:1c:7e: 63:be:c8:63:38:15:e4:27:30:ae:06:3b:e9:b0:ea: ea:9a:0b:8e:d1:37:94:91:cc:4c:6d:a2:02:99:ff: fb:65:9d:86:34:c3:be:3f:5c:a7:4c:c0:70:49:32: 80:54:e2:0b:5b:0c:4a:98:9d:e3:58:c7:53:e1:5d: bf:46:a9:62:1a:03:09:b8:08:f4:8c:0f:5f:ca:5a: 4b:39:5b:73:09:fe:15:74:d1:8b:4e:27:d9:5e:47: 2a:41:d9:97:67:13:1b:cd:dc:90:14:92:f4:89:ef: 54:25:d3:d8:da:9a:39:e5:8b:eb:6e:be:22:f1:3e: 2f:b0:e1:4c:e2:24:bc:2a:bc:71:48:2a:19:73:97: b9:09:54:3f:2a:05:18:1f:4f:1a:84:b7:e4:26:76: 93:55:64:be:df:86:78:02:4c:4c:4a:c2:c7:77:32: e3:cb:e3:6f:d3:fc:28:98:15:51:c9:78:ff:ac:72: 90:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:B0:E4:4C:A3:E8:8B:EF:F0:30:B6:5F:9C:2C:53:5E:EC:F2:EB:50 X509v3 Authority Key Identifier: keyid:95:21:A2:62:F5:07:5E:24:B2:B3:C9:B6:9C:8A:F4:0E:29:88:A1:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSGiYvUHXiSys8m2nIr0DimIoeQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:f1:9d:f4:59:24:56:c2:01:cd:19:73:9d:2e:81:3d:df:4b: 0c:0a:21:66:e0:1b:37:3e:2b:c6:ae:ea:ee:1d:4b:6c:8b:6c: b2:e7:08:77:9a:26:a1:d9:ee:45:a9:93:f9:70:7f:f8:fd:96: f2:c7:4a:7b:31:c1:42:ca:6a:4a:64:7a:5f:36:2f:5a:c3:34: 71:14:46:ab:19:2a:37:c1:39:22:b0:0f:2b:43:b9:1f:14:30: d8:64:87:31:1f:b9:e4:d8:00:fc:71:ce:f7:4b:68:e7:98:e8: 06:fd:d0:5e:ff:09:85:71:58:98:b8:eb:de:7c:17:3a:09:8e: 75:78:19:89:b6:62:78:28:7b:02:46:b1:e3:4d:d5:44:d2:8b: ed:d7:0a:8b:87:14:85:22:cf:1e:ee:ad:03:b1:73:0a:60:38: fa:b2:54:cf:a1:72:1d:e2:f3:c4:b7:4e:f1:a1:4a:3d:54:07: 29:82:e6:b5:8a:37:10:45:69:74:56:82:06:75:c1:4e:33:64: e0:a7:92:b8:a4:4a:18:0c:dc:4b:26:14:9a:63:cf:7c:90:5b: 58:43:b9:b7:e4:dc:17:ef:bd:c3:be:5e:81:a7:39:c4:9a:5b: c9:9e:93:29:f1:bb:90:0f:0f:4f:93:21:b0:39:5a:c9:46:ad: d3:5b:17:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydos1rOVr4XGs9mQZ0mjIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1MjFhMjYyZjUwNzVlMjRiMmIzYzliNjljOGFmNDBlMjk4 OGExZTQwHhcNMjUxMjA2MDcwMDQ2WhcNMjUxMjA3MDcwMDQ2WjAzMTEwLwYDVQQD Eyg5YmIwZTQ0Y2EzZTg4YmVmZjAzMGI2NWY5YzJjNTM1ZWVjZjJlYjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvDogplmxfMms4kfVa9zeBVaT2neV ZXFzdJA9lyYz4hrniGJibif8PgNGRi2E/LtoTZAC1LyO0iO4y2zE6zgodILHzCN8 NPHyHH5jvshjOBXkJzCuBjvpsOrqmguO0TeUkcxMbaICmf/7ZZ2GNMO+P1ynTMBw STKAVOILWwxKmJ3jWMdT4V2/RqliGgMJuAj0jA9fylpLOVtzCf4VdNGLTifZXkcq QdmXZxMbzdyQFJL0ie9UJdPY2po55Yvrbr4i8T4vsOFM4iS8KrxxSCoZc5e5CVQ/ KgUYH08ahLfkJnaTVWS+34Z4AkxMSsLHdzLjy+Nv0/womBVRyXj/rHKQ0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJuw5Eyj6Ivv8DC2X5wsU17s8utQMB8GA1UdIwQY MBaAFJUhomL1B14ksrPJtpyK9A4piKHkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFNHaVl2VUhYaVN5czhtMm5JcjBEaW1Jb2VRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9jMWYyMGUtZDk0Zi00M2M1LWJiOGQt YWQzNjI5YjIwMmMwLzEvbFNHaVl2VUhYaVN5czhtMm5JcjBEaW1Jb2VRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9jMWYyMGUtZDk0Zi00M2M1LWJiOGQtYWQzNjI5YjIwMmMw LzEvbFNHaVl2VUhYaVN5czhtMm5JcjBEaW1Jb2VRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkPGd9Fkk VsIBzRlznS6BPd9LDAohZuAbNz4rxq7q7h1LbItssucId5omodnuRamT+XB/+P2W 8sdKezHBQspqSmR6XzYvWsM0cRRGqxkqN8E5IrAPK0O5HxQw2GSHMR+55NgA/HHO 90to55joBv3QXv8JhXFYmLjr3nwXOgmOdXgZibZieCh7Akax403VRNKL7dcKi4cU hSLPHu6tA7FzCmA4+rJUz6FyHeLzxLdO8aFKPVQHKYLmtYo3EEVpdFaCBnXBTjNk 4KeSuKRKGAzcSyYUmmPPfJBbWEO5t+TcF++9w75egac5xJpbyZ6TKfG7kA8PT5Mh sDlayUat01sXBQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:00:00 2025 by rpki-client