This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/e27d9b-931a-488b-ac35-8ffbd6c73bf5/1/la6L0zJJzx7V8NQ5gUfv0y0lQho.mft File: la6L0zJJzx7V8NQ5gUfv0y0lQho.mft (raw, json) Hash identifier: ZxZt59PN5hxbxqu6Gp9IticVbvTXiTePAdTjWgUnYZk= Subject key identifier: D1:05:61:63:3E:13:5A:0F:C0:24:59:AD:E4:4D:80:C1:55:6C:63:31 Authority key identifier: 95:AE:8B:D3:32:49:CF:1E:D5:F0:D4:39:81:47:EF:D3:2D:25:42:1A Certificate issuer: /CN=95ae8bd33249cf1ed5f0d4398147efd32d25421a Certificate serial: 019AF31BEEE79C8D0ECF4B68A594A93E9E65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/la6L0zJJzx7V8NQ5gUfv0y0lQho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/e27d9b-931a-488b-ac35-8ffbd6c73bf5/1/la6L0zJJzx7V8NQ5gUfv0y0lQho.mft Manifest number: 0ED1 Signing time: Sat 06 Dec 2025 10:01:25 +0000 Manifest this update: Sat 06 Dec 2025 10:01:25 +0000 Manifest next update: Sun 07 Dec 2025 10:01:25 +0000 Files and hashes: 1: la6L0zJJzx7V8NQ5gUfv0y0lQho.crl (hash: sTaiwRuqiscsylcBzJuci9Hasm35L03+Y6fQdyZb/CM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/e27d9b-931a-488b-ac35-8ffbd6c73bf5/1/la6L0zJJzx7V8NQ5gUfv0y0lQho.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/e27d9b-931a-488b-ac35-8ffbd6c73bf5/1/la6L0zJJzx7V8NQ5gUfv0y0lQho.mft rsync://rpki.ripe.net/repository/DEFAULT/la6L0zJJzx7V8NQ5gUfv0y0lQho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:ee:e7:9c:8d:0e:cf:4b:68:a5:94:a9:3e:9e:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95ae8bd33249cf1ed5f0d4398147efd32d25421a Validity Not Before: Dec 6 10:01:25 2025 GMT Not After : Dec 7 10:01:25 2025 GMT Subject: CN=d10561633e135a0fc02459ade44d80c1556c6331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:46:d0:e8:7e:e1:6f:a2:c6:f1:4b:09:5a:3f: 86:49:3a:76:2a:88:cb:1d:6b:87:ff:9c:8d:9d:0a: 81:7d:13:94:03:37:5d:f8:50:62:5d:2e:ea:31:2e: c8:8f:0d:49:0f:37:0e:0e:19:b1:2d:36:14:f6:54: 86:a2:4e:95:76:a5:7b:09:e8:51:d2:03:b7:44:b5: 83:c7:46:fe:42:b6:7b:c5:eb:eb:c6:82:d7:25:26: c2:32:9d:30:a2:4d:26:64:d8:33:fa:5c:76:b2:ea: 58:39:9c:86:ab:c5:ce:90:4d:c8:4d:c2:e1:03:56: 60:57:3c:3d:63:bb:cf:e2:56:38:08:89:7c:53:31: de:68:d8:62:9c:90:4f:81:fb:d7:ef:3b:90:4b:04: 32:11:71:5a:b5:59:5a:07:19:18:ca:e2:f6:a3:e2: 41:09:95:4e:58:17:74:0e:db:2e:3a:be:21:66:75: b6:4d:02:8e:34:47:d9:35:a3:7a:5b:e3:d0:e0:a4: 8d:42:17:d5:aa:74:34:c7:80:69:cc:d2:ba:2a:a5: 26:64:05:ab:41:2c:68:54:5b:82:9e:38:a4:d3:e2: b6:fe:be:f2:06:04:81:a0:b2:84:9b:21:50:79:cd: 0c:68:47:ae:76:bd:c2:96:dd:1f:05:67:32:19:1d: 6e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:05:61:63:3E:13:5A:0F:C0:24:59:AD:E4:4D:80:C1:55:6C:63:31 X509v3 Authority Key Identifier: keyid:95:AE:8B:D3:32:49:CF:1E:D5:F0:D4:39:81:47:EF:D3:2D:25:42:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/la6L0zJJzx7V8NQ5gUfv0y0lQho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/e27d9b-931a-488b-ac35-8ffbd6c73bf5/1/la6L0zJJzx7V8NQ5gUfv0y0lQho.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/e27d9b-931a-488b-ac35-8ffbd6c73bf5/1/la6L0zJJzx7V8NQ5gUfv0y0lQho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:1f:e0:84:7b:d4:16:64:ff:11:8d:a2:a6:cc:06:9a:52:3a: 25:26:87:93:ce:39:8a:40:e9:9f:6f:11:6e:67:75:4e:70:97: 8e:d0:e6:a4:7a:5d:4e:94:ae:f5:1e:5e:9a:a7:c4:6e:9c:0a: 69:8c:15:00:75:70:c0:76:27:37:31:9d:9b:91:b9:df:2e:dd: 08:be:cf:ab:8d:4e:a5:7e:ba:56:a9:42:6f:35:29:0a:9f:5f: 9c:7a:a2:ff:be:e9:2b:04:c9:ff:83:d8:cb:1c:54:77:84:8b: 4a:11:88:4a:b2:24:e6:f2:b6:10:62:0d:a8:df:46:79:4f:ee: 87:5e:0b:e1:6d:a6:6a:c6:45:88:31:f6:98:9c:b9:55:f6:bf: 48:e2:35:3a:73:95:27:44:7d:d6:2e:30:08:1a:13:1e:56:a0: ae:6e:50:20:44:cc:9f:21:15:af:97:90:e0:12:d2:42:47:41: e6:a0:b8:ea:77:18:09:2c:e5:4e:b8:fd:07:5c:9f:39:47:50: c6:9e:56:d9:60:dc:38:26:68:bb:9e:b2:cd:7b:c1:ce:b0:22: b2:1b:1e:df:72:3d:5e:b6:5f:82:56:fd:16:b8:df:52:2b:23: 60:64:e1:c1:2c:6b:ff:77:7c:2f:f8:78:7e:59:46:7d:16:f6: fa:0d:44:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG+7nnI0Oz0topZSpPp5lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1YWU4YmQzMzI0OWNmMWVkNWYwZDQzOTgxNDdlZmQzMmQy NTQyMWEwHhcNMjUxMjA2MTAwMTI1WhcNMjUxMjA3MTAwMTI1WjAzMTEwLwYDVQQD EyhkMTA1NjE2MzNlMTM1YTBmYzAyNDU5YWRlNDRkODBjMTU1NmM2MzMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwkbQ6H7hb6LG8UsJWj+GSTp2KojL HWuH/5yNnQqBfROUAzdd+FBiXS7qMS7Ijw1JDzcODhmxLTYU9lSGok6VdqV7CehR 0gO3RLWDx0b+QrZ7xevrxoLXJSbCMp0wok0mZNgz+lx2supYOZyGq8XOkE3ITcLh A1ZgVzw9Y7vP4lY4CIl8UzHeaNhinJBPgfvX7zuQSwQyEXFatVlaBxkYyuL2o+JB CZVOWBd0DtsuOr4hZnW2TQKONEfZNaN6W+PQ4KSNQhfVqnQ0x4BpzNK6KqUmZAWr QSxoVFuCnjik0+K2/r7yBgSBoLKEmyFQec0MaEeudr3Clt0fBWcyGR1uAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNEFYWM+E1oPwCRZreRNgMFVbGMxMB8GA1UdIwQY MBaAFJWui9MySc8e1fDUOYFH79MtJUIaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGE2TDB6Skp6eDdWOE5RNWdVZnYweTBsUWhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9lMjdkOWItOTMxYS00ODhiLWFjMzUt OGZmYmQ2YzczYmY1LzEvbGE2TDB6Skp6eDdWOE5RNWdVZnYweTBsUWhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi9lMjdkOWItOTMxYS00ODhiLWFjMzUtOGZmYmQ2YzczYmY1 LzEvbGE2TDB6Skp6eDdWOE5RNWdVZnYweTBsUWhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgh/ghHvU FmT/EY2ipswGmlI6JSaHk845ikDpn28Rbmd1TnCXjtDmpHpdTpSu9R5emqfEbpwK aYwVAHVwwHYnNzGdm5G53y7dCL7Pq41OpX66VqlCbzUpCp9fnHqi/77pKwTJ/4PY yxxUd4SLShGISrIk5vK2EGINqN9GeU/uh14L4W2masZFiDH2mJy5Vfa/SOI1OnOV J0R91i4wCBoTHlagrm5QIETMnyEVr5eQ4BLSQkdB5qC46ncYCSzlTrj9B1yfOUdQ xp5W2WDcOCZou56yzXvBzrAishse33I9XrZfglb9FrjfUisjYGThwSxr/3d8L/h4 fllGfRb2+g1EtA== -----END CERTIFICATE-----Generated at Sat Dec 6 13:50:30 2025 by rpki-client