This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json) Hash identifier: B0a8JI+XL45DHXRycyXpsCUcfELl2IwRck5v9WhrIWQ= Subject key identifier: 08:B0:57:EE:4B:DD:F1:A7:9A:87:9A:6A:72:AB:32:A8:21:09:1F:85 Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a Certificate serial: 019B3E6C9173FB505453AED5B806DF526F04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft Manifest number: 1789 Signing time: Sun 21 Dec 2025 01:01:01 +0000 Manifest this update: Sun 21 Dec 2025 01:01:01 +0000 Manifest next update: Mon 22 Dec 2025 01:01:01 +0000 Files and hashes: 1: kL5tCodlPmsKcG8VmzS3vTT-EpU.roa (hash: rTcyxkJLmIdGub6lXVfezUyk6BdEW9e85j13e1XiRBA=) 2: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: wyHajQZxkdITHHJa5uTtd3cvpuzTGxd/dDAxNfoz0Vk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6c:91:73:fb:50:54:53:ae:d5:b8:06:df:52:6f:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a Validity Not Before: Dec 21 01:01:01 2025 GMT Not After : Dec 22 01:01:01 2025 GMT Subject: CN=08b057ee4bddf1a79a879a6a72ab32a821091f85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:23:02:be:4a:db:9c:27:9b:62:b8:57:21:d8: 50:a4:c4:49:75:18:e3:19:2f:7a:50:92:68:78:90: 53:e7:1d:2a:68:d5:0a:fa:21:ea:c2:04:9b:77:ac: fd:d9:7e:d0:5a:fb:42:a1:45:7f:4a:e9:69:ee:c5: 17:ee:49:d8:26:9b:ac:4b:de:5c:fc:7b:0c:ca:70: 58:62:d3:7b:f0:fd:36:0f:05:26:38:e2:e0:76:58: d1:88:87:6b:31:1c:6f:60:68:f1:de:54:f1:28:54: 25:e1:98:9d:62:c8:9f:f4:f6:9a:80:3e:5f:52:3f: fe:86:4e:1d:a0:87:d5:10:ef:07:37:e2:22:5a:1e: 9a:c7:96:9a:2d:3a:17:36:db:e6:46:4f:cc:d5:25: 3d:a5:ed:b7:51:56:a9:7c:78:1d:85:83:e4:53:04: ed:e3:c2:13:6f:13:a1:5c:fb:20:31:07:10:82:6b: 35:c8:a0:e4:57:9d:37:f7:be:94:3f:47:18:b8:b0: 28:19:62:0a:03:a7:e6:00:b5:8e:6a:40:c4:cc:60: d8:af:45:14:4b:c5:6d:b0:8a:8a:ea:24:80:be:dc: ad:b3:56:bb:65:8c:16:48:11:7b:3e:6a:9e:1b:57: 36:56:37:4f:10:27:a7:9a:75:10:4d:35:84:f1:c1: ed:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B0:57:EE:4B:DD:F1:A7:9A:87:9A:6A:72:AB:32:A8:21:09:1F:85 X509v3 Authority Key Identifier: keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:c1:8c:f3:fa:5b:2c:a4:10:43:35:e6:4d:aa:41:a5:d3:62: 13:dd:f3:0b:64:88:0d:35:32:c0:de:b1:1a:00:83:43:ff:8a: c3:51:45:3e:b1:f5:da:bd:25:de:a8:93:29:2e:bb:fa:21:c6: 83:95:4e:ac:97:db:02:9c:98:68:7d:00:1e:d0:75:e0:ef:10: 28:8e:f5:3c:cc:92:c9:1f:8f:b8:d1:dd:6a:49:07:4e:dd:a2: 00:09:66:be:c3:0d:e2:c7:48:a7:73:e0:80:b5:01:f8:82:d5: 9e:eb:dd:6b:05:ce:98:82:c8:46:d7:5b:bc:84:2e:bd:e1:a7: c0:a0:2a:6e:22:14:c4:60:36:e0:3d:fb:2c:39:32:1b:54:39: 72:df:5b:ff:a9:60:06:96:5b:f0:4e:20:a2:09:77:a2:fc:c6: 4a:f0:b4:6e:7a:75:03:af:d1:cf:9c:08:a6:c0:d4:f2:2f:46: 81:06:1a:50:fd:c9:85:10:93:6c:54:c5:9c:e1:94:ba:b0:26: 70:43:52:59:64:70:40:fb:e8:0c:00:23:18:7a:96:6f:9e:39: 69:b2:b2:c1:f4:3b:fc:c3:d5:14:f1:15:38:35:97:b9:a6:a6: 69:1e:a0:34:53:21:44:58:93:76:61:ba:56:d4:04:4c:12:3a: dd:7f:37:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bJFz+1BUU67VuAbfUm8EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0Yzg2YzliMzVkNzgyMTE2YjJjZDg1ODNhMjdjZWI0MDNi OGY2MWEwHhcNMjUxMjIxMDEwMTAxWhcNMjUxMjIyMDEwMTAxWjAzMTEwLwYDVQQD EygwOGIwNTdlZTRiZGRmMWE3OWE4NzlhNmE3MmFiMzJhODIxMDkxZjg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAviMCvkrbnCebYrhXIdhQpMRJdRjj GS96UJJoeJBT5x0qaNUK+iHqwgSbd6z92X7QWvtCoUV/Sulp7sUX7knYJpusS95c /HsMynBYYtN78P02DwUmOOLgdljRiIdrMRxvYGjx3lTxKFQl4ZidYsif9PaagD5f Uj/+hk4doIfVEO8HN+IiWh6ax5aaLToXNtvmRk/M1SU9pe23UVapfHgdhYPkUwTt 48ITbxOhXPsgMQcQgms1yKDkV503976UP0cYuLAoGWIKA6fmALWOakDEzGDYr0UU S8VtsIqK6iSAvtyts1a7ZYwWSBF7PmqeG1c2VjdPECenmnUQTTWE8cHtnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAiwV+5L3fGnmoeaanKrMqghCR+FMB8GA1UdIwQY MBaAFJTIbJs114IRayzYWDonzrQDuPYaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMt MzViMGM5NjUyNGZhLzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMtMzViMGM5NjUyNGZh LzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX8GM8/pb LKQQQzXmTapBpdNiE93zC2SIDTUywN6xGgCDQ/+Kw1FFPrH12r0l3qiTKS67+iHG g5VOrJfbApyYaH0AHtB14O8QKI71PMySyR+PuNHdakkHTt2iAAlmvsMN4sdIp3Pg gLUB+ILVnuvdawXOmILIRtdbvIQuveGnwKAqbiIUxGA24D37LDkyG1Q5ct9b/6lg BpZb8E4gogl3ovzGSvC0bnp1A6/Rz5wIpsDU8i9GgQYaUP3JhRCTbFTFnOGUurAm cENSWWRwQPvoDAAjGHqWb545abKywfQ7/MPVFPEVODWXuaamaR6gNFMhRFiTdmG6 VtQETBI63X83wg== -----END CERTIFICATE-----Generated at Sun Dec 21 08:40:13 2025 by rpki-client