This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json) Hash identifier: uQkJn+cijr1WPkA9RP8Zb+dMVl3YmRyNjCzUIgZ5s74= Subject key identifier: 3B:3C:54:07:30:63:63:45:ED:9A:EE:7D:8B:87:3D:22:59:DB:7E:77 Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a Certificate serial: 019AF12D2F7DE6637A0DCF841FA45F27A2CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 01:01:01 +0000 Manifest this update: Sat 06 Dec 2025 01:01:01 +0000 Manifest next update: Sun 07 Dec 2025 01:01:01 +0000 Files and hashes: 1: kL5tCodlPmsKcG8VmzS3vTT-EpU.roa (hash: rTcyxkJLmIdGub6lXVfezUyk6BdEW9e85j13e1XiRBA=) 2: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: 4Xb8EKcrX1G4qSWmngffaV21gvh4sx9l5eW6X31XtsQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:2f:7d:e6:63:7a:0d:cf:84:1f:a4:5f:27:a2:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a Validity Not Before: Dec 6 01:01:01 2025 GMT Not After : Dec 7 01:01:01 2025 GMT Subject: CN=3b3c540730636345ed9aee7d8b873d2259db7e77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5e:b8:47:e6:b1:51:ad:22:46:7c:19:f0:10: 31:85:cd:78:8a:7b:d1:b8:bc:42:12:24:15:7c:54: 39:9d:85:48:d1:4b:cb:61:04:2a:59:83:72:e6:41: 6a:01:42:79:92:9e:0a:60:f4:fb:da:b9:d1:a6:a6: 29:fa:87:b1:13:2b:8d:4d:6e:ea:49:a6:60:06:ab: 86:1b:82:06:0b:c7:db:ab:50:40:2e:88:b9:50:5d: 04:b7:49:74:e9:fa:4c:5f:6a:4a:ee:7b:aa:b4:81: 51:85:e4:d2:77:f3:97:fa:d5:52:eb:ba:74:1b:9e: e6:ee:33:23:27:4b:ab:9a:bd:e3:1d:6c:b3:c5:e6: 79:26:89:02:81:31:af:39:40:5c:e8:87:ab:79:09: 20:86:06:a2:1c:f3:4f:0b:69:84:41:be:f0:97:a5: 0c:cf:e3:7a:53:f5:88:b3:73:bf:b0:39:36:33:6a: e5:90:ad:86:15:5f:c0:e2:82:79:3c:68:ed:72:4f: d4:68:ac:4f:fa:e5:3b:4e:bf:09:a3:9d:1d:75:c1: 87:e6:d8:6b:44:48:98:68:64:53:06:b1:58:63:b8: 7a:40:d7:c5:8e:b3:9e:5a:04:e1:2b:60:9d:48:2e: 71:fd:4f:b5:e2:28:28:96:b0:e7:85:0c:5b:40:43: 4a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:3C:54:07:30:63:63:45:ED:9A:EE:7D:8B:87:3D:22:59:DB:7E:77 X509v3 Authority Key Identifier: keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:fb:11:d6:c9:1e:4d:78:3e:53:5e:39:86:1f:53:0c:26:27: 73:10:6d:91:eb:e5:ca:30:7c:49:3e:3c:ce:0f:34:5d:d1:b0: ee:20:e1:a5:f6:33:8b:b4:d1:8f:1c:b6:29:b1:d0:bd:d5:63: 1b:f7:34:92:65:2b:53:58:2d:52:5b:c7:df:76:33:74:7a:5e: 59:8f:f2:15:47:10:72:07:57:05:4e:88:d0:8b:6d:42:4f:6d: 89:80:7f:08:c9:f1:0c:77:4e:ce:ca:2d:88:8b:82:b6:4d:72: 05:89:44:6a:a7:09:52:e5:91:f6:0a:fc:5b:27:68:e9:2c:40: 98:e5:86:ad:40:26:1e:15:80:09:61:8c:4c:c8:95:d1:55:c9: ad:c8:82:37:37:de:13:1f:bf:95:a8:29:89:5f:49:b8:f7:5f: 9b:59:b0:ba:d3:1a:5c:56:a3:3e:22:ac:9e:0c:b5:b2:8c:51: 36:1e:7f:d9:b3:8f:31:95:2a:23:5f:0f:0b:da:b8:64:e1:c9: 4f:2a:0e:6c:07:00:47:87:7b:0f:ff:c0:77:81:c2:9f:49:a9: 5b:06:f3:c9:e6:81:dc:f3:12:8b:a8:76:1e:35:7d:5c:92:8c: 60:dc:9a:e2:d1:64:db:22:ee:c7:c5:70:73:7c:33:da:15:a5: 30:4c:a0:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLS995mN6Dc+EH6RfJ6LKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0Yzg2YzliMzVkNzgyMTE2YjJjZDg1ODNhMjdjZWI0MDNi OGY2MWEwHhcNMjUxMjA2MDEwMTAxWhcNMjUxMjA3MDEwMTAxWjAzMTEwLwYDVQQD EygzYjNjNTQwNzMwNjM2MzQ1ZWQ5YWVlN2Q4Yjg3M2QyMjU5ZGI3ZTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuF64R+axUa0iRnwZ8BAxhc14invR uLxCEiQVfFQ5nYVI0UvLYQQqWYNy5kFqAUJ5kp4KYPT72rnRpqYp+oexEyuNTW7q SaZgBquGG4IGC8fbq1BALoi5UF0Et0l06fpMX2pK7nuqtIFRheTSd/OX+tVS67p0 G57m7jMjJ0urmr3jHWyzxeZ5JokCgTGvOUBc6IereQkghgaiHPNPC2mEQb7wl6UM z+N6U/WIs3O/sDk2M2rlkK2GFV/A4oJ5PGjtck/UaKxP+uU7Tr8Jo50ddcGH5thr REiYaGRTBrFYY7h6QNfFjrOeWgThK2CdSC5x/U+14igolrDnhQxbQENK5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDs8VAcwY2NF7ZrufYuHPSJZ2353MB8GA1UdIwQY MBaAFJTIbJs114IRayzYWDonzrQDuPYaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMt MzViMGM5NjUyNGZhLzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMtMzViMGM5NjUyNGZh LzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANfsR1ske TXg+U145hh9TDCYncxBtkevlyjB8ST48zg80XdGw7iDhpfYzi7TRjxy2KbHQvdVj G/c0kmUrU1gtUlvH33YzdHpeWY/yFUcQcgdXBU6I0IttQk9tiYB/CMnxDHdOzsot iIuCtk1yBYlEaqcJUuWR9gr8Wydo6SxAmOWGrUAmHhWACWGMTMiV0VXJrciCNzfe Ex+/lagpiV9JuPdfm1mwutMaXFajPiKsngy1soxRNh5/2bOPMZUqI18PC9q4ZOHJ TyoObAcAR4d7D//Ad4HCn0mpWwbzyeaB3PMSi6h2HjV9XJKMYNya4tFk2yLux8Vw c3wz2hWlMEyggw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:12:13 2025 by rpki-client