This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/cea01b-ee94-4a02-8d62-0dc01fc88141/1/LsJnz2xrO4jpahG_KemnOlWMXkA.mft File: LsJnz2xrO4jpahG_KemnOlWMXkA.mft (raw, json) Hash identifier: d8//JdeQ958z6LP8Wg9us0uFeWCF3If4Z7IWykAoP5w= Subject key identifier: E2:A2:B1:34:10:7D:C2:59:BE:41:90:1C:D6:20:7B:A0:37:67:49:77 Authority key identifier: 2E:C2:67:CF:6C:6B:3B:88:E9:6A:11:BF:29:E9:A7:3A:55:8C:5E:40 Certificate issuer: /CN=2ec267cf6c6b3b88e96a11bf29e9a73a558c5e40 Certificate serial: 019AF5412669BCF7CC32D5B5DE7BDDD43B73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LsJnz2xrO4jpahG_KemnOlWMXkA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/cea01b-ee94-4a02-8d62-0dc01fc88141/1/LsJnz2xrO4jpahG_KemnOlWMXkA.mft Manifest number: 16F2 Signing time: Sat 06 Dec 2025 20:01:18 +0000 Manifest this update: Sat 06 Dec 2025 20:01:18 +0000 Manifest next update: Sun 07 Dec 2025 20:01:18 +0000 Files and hashes: 1: LsJnz2xrO4jpahG_KemnOlWMXkA.crl (hash: HX/pS61SZ85Neq4rWit/pyvjbmfymRJ/E5lqXhJzC0Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/cea01b-ee94-4a02-8d62-0dc01fc88141/1/LsJnz2xrO4jpahG_KemnOlWMXkA.crl rsync://rpki.ripe.net/repository/DEFAULT/17/cea01b-ee94-4a02-8d62-0dc01fc88141/1/LsJnz2xrO4jpahG_KemnOlWMXkA.mft rsync://rpki.ripe.net/repository/DEFAULT/LsJnz2xrO4jpahG_KemnOlWMXkA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:41:26:69:bc:f7:cc:32:d5:b5:de:7b:dd:d4:3b:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ec267cf6c6b3b88e96a11bf29e9a73a558c5e40 Validity Not Before: Dec 6 20:01:18 2025 GMT Not After : Dec 7 20:01:18 2025 GMT Subject: CN=e2a2b134107dc259be41901cd6207ba037674977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c5:55:2f:4e:ef:09:a5:f5:56:c2:c2:30:68: 46:5c:df:ed:33:eb:e1:69:1d:44:b8:5c:21:01:b2: 2e:5c:7a:b5:b0:b6:b3:d6:a0:8f:d0:8c:00:73:f7: 2d:ac:2f:04:b3:bb:1c:02:36:db:b4:6b:a1:90:34: 57:54:9f:a0:dc:61:70:0f:6f:53:e3:77:a6:76:a3: ac:47:90:4e:d1:39:50:e8:d6:7c:8d:15:e2:3d:16: 05:2f:b0:2f:22:20:2a:5e:f3:5b:9e:62:a2:1f:2c: 44:24:76:d0:04:ea:18:9d:ef:e8:68:24:b0:10:1d: 70:e2:88:f3:3b:26:3d:54:0f:24:4e:bc:2b:2d:6c: 3b:d8:09:e8:a6:72:ab:05:fc:60:f1:b9:b9:22:63: 94:8a:dc:dc:8a:51:6f:81:2c:13:c5:ef:03:29:11: 6d:c8:43:89:f7:89:6b:e2:09:34:e1:fb:88:68:aa: f7:82:d7:de:e8:90:bf:88:3b:71:8b:af:ef:e5:82: ee:93:7b:af:9e:b2:53:44:4f:e6:54:f9:36:08:d3: 29:02:25:57:ce:32:a0:31:e6:7c:4d:61:63:69:4c: ba:e2:d2:bf:b0:30:e6:08:50:dc:17:18:66:4c:71: 18:ab:fc:1d:75:0a:da:f3:80:8e:29:b2:0b:93:f9: 06:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:A2:B1:34:10:7D:C2:59:BE:41:90:1C:D6:20:7B:A0:37:67:49:77 X509v3 Authority Key Identifier: keyid:2E:C2:67:CF:6C:6B:3B:88:E9:6A:11:BF:29:E9:A7:3A:55:8C:5E:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LsJnz2xrO4jpahG_KemnOlWMXkA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/cea01b-ee94-4a02-8d62-0dc01fc88141/1/LsJnz2xrO4jpahG_KemnOlWMXkA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/cea01b-ee94-4a02-8d62-0dc01fc88141/1/LsJnz2xrO4jpahG_KemnOlWMXkA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:40:11:b2:95:08:44:ae:47:19:44:3f:d5:f0:9a:42:df:d4: 80:ea:ce:56:ba:43:c7:01:d1:58:7a:c9:70:0b:39:7b:fe:bb: 6a:a0:4b:50:b1:cc:7f:6d:43:1f:95:91:cd:38:75:4f:75:c6: cd:e9:9e:46:b7:22:02:db:bf:ec:1b:d7:65:39:45:55:0f:d7: ed:0f:4c:ec:b1:c2:7d:09:36:eb:29:40:26:56:2f:c9:89:fd: 76:08:3c:6b:b6:7c:17:2a:de:77:c6:e3:0d:ff:3c:13:a0:8c: 86:25:80:d9:12:2f:ac:5f:3d:e3:a9:8c:ae:f3:a8:2f:57:cb: 75:fb:99:5e:a2:2f:5e:3e:e7:06:9f:81:b0:48:59:e6:5b:f6: 74:ca:ab:d9:0d:60:d8:0f:bc:7c:c5:25:ec:a7:2e:09:fb:17: 48:d1:7f:42:2e:84:b3:a1:5a:50:1b:01:5f:1e:f7:10:a7:7d: d3:b8:76:a5:bf:ee:18:4d:77:ff:9c:18:1b:9f:5f:e3:35:83: 95:c7:be:37:e5:8d:c1:86:39:28:aa:ec:70:fa:5f:26:b8:21: ae:89:6b:75:32:25:0c:3e:41:f2:e9:f8:c9:6c:a3:83:98:46: ac:ee:e7:98:a9:7d:3c:42:52:79:05:4c:c4:fb:78:e0:88:bf: 81:41:4f:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1QSZpvPfMMtW13nvd1DtzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlYzI2N2NmNmM2YjNiODhlOTZhMTFiZjI5ZTlhNzNhNTU4 YzVlNDAwHhcNMjUxMjA2MjAwMTE4WhcNMjUxMjA3MjAwMTE4WjAzMTEwLwYDVQQD EyhlMmEyYjEzNDEwN2RjMjU5YmU0MTkwMWNkNjIwN2JhMDM3Njc0OTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyMVVL07vCaX1VsLCMGhGXN/tM+vh aR1EuFwhAbIuXHq1sLaz1qCP0IwAc/ctrC8Es7scAjbbtGuhkDRXVJ+g3GFwD29T 43emdqOsR5BO0TlQ6NZ8jRXiPRYFL7AvIiAqXvNbnmKiHyxEJHbQBOoYne/oaCSw EB1w4ojzOyY9VA8kTrwrLWw72AnopnKrBfxg8bm5ImOUitzcilFvgSwTxe8DKRFt yEOJ94lr4gk04fuIaKr3gtfe6JC/iDtxi6/v5YLuk3uvnrJTRE/mVPk2CNMpAiVX zjKgMeZ8TWFjaUy64tK/sDDmCFDcFxhmTHEYq/wddQra84COKbILk/kGzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOKisTQQfcJZvkGQHNYge6A3Z0l3MB8GA1UdIwQY MBaAFC7CZ89sazuI6WoRvynppzpVjF5AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTHNKbnoyeHJPNGpwYWhHX0tlbW5PbFdNWGtBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9jZWEwMWItZWU5NC00YTAyLThkNjIt MGRjMDFmYzg4MTQxLzEvTHNKbnoyeHJPNGpwYWhHX0tlbW5PbFdNWGtBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9jZWEwMWItZWU5NC00YTAyLThkNjItMGRjMDFmYzg4MTQx LzEvTHNKbnoyeHJPNGpwYWhHX0tlbW5PbFdNWGtBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi0ARspUI RK5HGUQ/1fCaQt/UgOrOVrpDxwHRWHrJcAs5e/67aqBLULHMf21DH5WRzTh1T3XG zemeRrciAtu/7BvXZTlFVQ/X7Q9M7LHCfQk26ylAJlYvyYn9dgg8a7Z8Fyred8bj Df88E6CMhiWA2RIvrF8946mMrvOoL1fLdfuZXqIvXj7nBp+BsEhZ5lv2dMqr2Q1g 2A+8fMUl7KcuCfsXSNF/Qi6Es6FaUBsBXx73EKd907h2pb/uGE13/5wYG59f4zWD lce+N+WNwYY5KKrscPpfJrghrolrdTIlDD5B8un4yWyjg5hGrO7nmKl9PEJSeQVM xPt44Ii/gUFPEg== -----END CERTIFICATE-----Generated at Sat Dec 6 23:01:02 2025 by rpki-client