This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft File: lkptHqRrxAuqMavE9ByQZn7-Nu0.mft (raw, json) Hash identifier: z4GvonIEiab4g5CY31yEcMywBQyDuGvMAA/Xy+4HCto= Subject key identifier: AE:75:9B:12:37:11:82:7E:A3:20:0F:DA:22:2B:20:09:83:38:B2:E4 Authority key identifier: 96:4A:6D:1E:A4:6B:C4:0B:AA:31:AB:C4:F4:1C:90:66:7E:FE:36:ED Certificate issuer: /CN=964a6d1ea46bc40baa31abc4f41c90667efe36ed Certificate serial: 019AF31CB5F19D4FF32C5775F9CF76EEAFB4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft Manifest number: 082E Signing time: Sat 06 Dec 2025 10:02:16 +0000 Manifest this update: Sat 06 Dec 2025 10:02:16 +0000 Manifest next update: Sun 07 Dec 2025 10:02:16 +0000 Files and hashes: 1: lkptHqRrxAuqMavE9ByQZn7-Nu0.crl (hash: cScYSf3z9zOzpQN11VQcYjMvN56W9Dkvn8XohHn227o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:b5:f1:9d:4f:f3:2c:57:75:f9:cf:76:ee:af:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=964a6d1ea46bc40baa31abc4f41c90667efe36ed Validity Not Before: Dec 6 10:02:16 2025 GMT Not After : Dec 7 10:02:16 2025 GMT Subject: CN=ae759b123711827ea3200fda222b20098338b2e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:03:55:b4:5a:00:c0:bc:fe:f1:f4:25:79:e6: 99:27:6b:89:af:9c:c6:e2:bf:1e:a3:f4:3d:81:03: e2:74:09:7c:71:f1:10:7b:8d:69:df:fe:5b:3c:64: 2e:8a:78:c7:1c:cc:84:75:ac:da:d7:3f:eb:de:aa: 05:aa:a2:bd:aa:84:6b:73:26:6c:9b:8d:da:ea:e7: 3d:c6:6e:29:b5:de:ca:e3:bd:e1:a7:94:ff:5f:59: 34:73:3c:dc:e6:15:25:3d:c0:8c:87:b4:30:ec:08: 12:45:45:8b:8d:36:26:9d:35:95:91:a2:1a:25:ee: b7:4c:7a:da:56:e0:9d:72:8e:ce:c0:a6:1b:d6:26: c1:f0:35:f7:e5:fc:c3:6a:3b:72:a4:eb:cd:c9:2e: 2f:f3:08:dd:56:ce:78:ca:0d:e4:78:92:10:0c:6e: 80:0d:d9:dc:cb:e1:34:bb:d0:2c:3d:99:76:6d:8b: ba:50:9d:a2:f3:5b:88:83:ae:c7:c1:bc:f5:be:44: a7:b6:80:a5:fc:cb:d0:95:fe:e4:4f:ab:e5:d8:78: 37:6a:ab:6a:39:4e:42:d0:9a:56:94:b3:ee:e0:97: a2:ac:b9:4a:ef:98:c2:5a:38:80:42:c9:42:6c:69: 65:f2:47:a3:1a:e8:1a:17:85:0b:5c:2f:5d:a3:7f: ed:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:75:9B:12:37:11:82:7E:A3:20:0F:DA:22:2B:20:09:83:38:B2:E4 X509v3 Authority Key Identifier: keyid:96:4A:6D:1E:A4:6B:C4:0B:AA:31:AB:C4:F4:1C:90:66:7E:FE:36:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:10:56:6d:3c:a4:fb:76:9d:6d:4c:87:17:49:b8:04:c4:49: fa:4d:5d:e6:cd:7f:c1:fd:1e:fe:a4:39:c5:ba:77:39:06:a2: 8b:af:8a:44:7b:aa:00:5d:84:bc:7c:5b:a4:9e:b8:3a:a9:12: 60:29:04:76:6d:6c:c6:78:e8:4b:d7:46:04:38:b3:58:a8:8e: 24:69:a6:12:b3:bb:49:80:7f:ec:e1:04:51:b2:ba:be:ac:bb: 82:fb:c9:ff:07:36:08:68:17:8a:2f:7b:c4:94:29:47:e7:4d: 0e:78:fd:e9:8e:8d:d5:92:16:66:f4:e1:53:63:9e:35:c1:86: 96:c4:ce:ee:91:be:f4:bf:a9:d7:3f:44:4b:0b:7e:d6:f1:9b: 99:95:a4:8a:36:2f:c7:00:37:13:3d:68:f9:77:62:b1:bf:b8: f1:64:3e:51:26:81:ca:81:da:26:cc:55:07:70:42:66:7b:b9: a4:5f:65:dc:df:87:d9:4f:4b:77:a9:6d:17:fd:96:fa:08:eb: 21:39:a8:64:c9:2e:d8:06:db:00:6b:73:d4:34:bf:2b:26:b2: c9:b6:65:96:d3:87:0f:43:3c:ca:15:85:32:3c:b9:79:10:7b: 28:c9:52:05:a6:d1:90:10:44:51:f4:68:eb:13:98:1f:b0:e3: f9:71:f1:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHLXxnU/zLFd1+c927q+0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2NGE2ZDFlYTQ2YmM0MGJhYTMxYWJjNGY0MWM5MDY2N2Vm ZTM2ZWQwHhcNMjUxMjA2MTAwMjE2WhcNMjUxMjA3MTAwMjE2WjAzMTEwLwYDVQQD EyhhZTc1OWIxMjM3MTE4MjdlYTMyMDBmZGEyMjJiMjAwOTgzMzhiMmU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzQNVtFoAwLz+8fQleeaZJ2uJr5zG 4r8eo/Q9gQPidAl8cfEQe41p3/5bPGQuinjHHMyEdaza1z/r3qoFqqK9qoRrcyZs m43a6uc9xm4ptd7K473hp5T/X1k0czzc5hUlPcCMh7Qw7AgSRUWLjTYmnTWVkaIa Je63THraVuCdco7OwKYb1ibB8DX35fzDajtypOvNyS4v8wjdVs54yg3keJIQDG6A Ddncy+E0u9AsPZl2bYu6UJ2i81uIg67Hwbz1vkSntoCl/MvQlf7kT6vl2Hg3aqtq OU5C0JpWlLPu4JeirLlK75jCWjiAQslCbGll8kejGugaF4ULXC9do3/tFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK51mxI3EYJ+oyAP2iIrIAmDOLLkMB8GA1UdIwQY MBaAFJZKbR6ka8QLqjGrxPQckGZ+/jbtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGtwdEhxUnJ4QXVxTWF2RTlCeVFabjctTnUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9lZGM0MWUtMzUyZS00MTJiLTlhZTYt YTA5NTFlZjdkZmNkLzEvbGtwdEhxUnJ4QXVxTWF2RTlCeVFabjctTnUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC9lZGM0MWUtMzUyZS00MTJiLTlhZTYtYTA5NTFlZjdkZmNk LzEvbGtwdEhxUnJ4QXVxTWF2RTlCeVFabjctTnUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADhBWbTyk +3adbUyHF0m4BMRJ+k1d5s1/wf0e/qQ5xbp3OQaii6+KRHuqAF2EvHxbpJ64OqkS YCkEdm1sxnjoS9dGBDizWKiOJGmmErO7SYB/7OEEUbK6vqy7gvvJ/wc2CGgXii97 xJQpR+dNDnj96Y6N1ZIWZvThU2OeNcGGlsTO7pG+9L+p1z9ESwt+1vGbmZWkijYv xwA3Ez1o+Xdisb+48WQ+USaByoHaJsxVB3BCZnu5pF9l3N+H2U9Ld6ltF/2W+gjr ITmoZMku2AbbAGtz1DS/KyayybZlltOHD0M8yhWFMjy5eRB7KMlSBabRkBBEUfRo 6xOYH7Dj+XHxTw== -----END CERTIFICATE-----Generated at Sat Dec 6 16:08:19 2025 by rpki-client