This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft File: lXbbt2mVtJUKhsXwfKjbPrSWePY.mft (raw, json) Hash identifier: e+7b0S/L6TTJIIRJSgzrTP43xqTT0ItR+og0+Jq4aoU= Subject key identifier: 8C:DF:D2:E3:8D:81:71:1A:15:18:E2:A9:86:34:6A:34:A2:17:61:82 Authority key identifier: 95:76:DB:B7:69:95:B4:95:0A:86:C5:F0:7C:A8:DB:3E:B4:96:78:F6 Certificate issuer: /CN=9576dbb76995b4950a86c5f07ca8db3eb49678f6 Certificate serial: 019B2BC1EAABF531B37022BB0A99E842483D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lXbbt2mVtJUKhsXwfKjbPrSWePY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft Manifest number: 04BF Signing time: Wed 17 Dec 2025 10:01:27 +0000 Manifest this update: Wed 17 Dec 2025 10:01:27 +0000 Manifest next update: Thu 18 Dec 2025 10:01:27 +0000 Files and hashes: 1: lXbbt2mVtJUKhsXwfKjbPrSWePY.crl (hash: 9LDhaQf2GaPF6ccN597YXSO4KNCdduaJCVCuKlkQ+JU=) 2: wOkYAGqpSPBGigfUEv7El852HGA.roa (hash: jGAVgltAX4k1B+fH3k6Z7JMTyuIFNv8n6kIlzZB4Zww=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.crl rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft rsync://rpki.ripe.net/repository/DEFAULT/lXbbt2mVtJUKhsXwfKjbPrSWePY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:c1:ea:ab:f5:31:b3:70:22:bb:0a:99:e8:42:48:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9576dbb76995b4950a86c5f07ca8db3eb49678f6 Validity Not Before: Dec 17 10:01:27 2025 GMT Not After : Dec 18 10:01:27 2025 GMT Subject: CN=8cdfd2e38d81711a1518e2a986346a34a2176182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:eb:49:7e:b7:2e:0d:ec:86:72:75:85:bf:9d: 67:83:79:c0:c6:ac:45:2b:21:ab:47:fc:a2:b1:91: ee:2b:a7:b3:b6:14:d4:fc:5e:ba:67:04:ed:35:2a: d4:6f:57:5c:94:28:64:4c:1e:88:15:07:b1:97:2c: 77:30:ff:8f:f7:42:29:43:68:da:cd:42:a2:d5:0e: 34:6b:77:d2:21:d3:2a:4a:a3:02:39:ef:3d:73:f3: ce:43:35:9f:84:35:97:df:0c:98:72:7c:a2:18:6b: 87:63:60:1a:a8:e5:9f:9c:5f:d5:3f:df:68:b6:ee: 40:7a:e0:b6:f2:3e:ce:39:d5:3d:f3:ad:6c:d4:65: 51:2d:77:f9:5d:5a:43:06:89:95:4c:8c:1e:02:76: 85:5c:4b:be:9e:41:fd:6b:65:f7:f8:38:79:e3:f2: 51:ce:e9:b5:86:52:be:e8:1c:b3:f9:3b:0a:ba:55: 0d:ed:69:89:f2:6e:88:92:a2:da:06:84:d0:6b:44: 0f:ab:ad:e0:90:d9:b6:23:cb:a9:9c:0d:4d:02:1e: 0b:8d:ad:c4:47:e0:97:1a:38:59:c2:af:d5:8c:2a: d8:16:86:f6:6d:09:1d:80:48:d6:16:64:35:45:f8: d4:7c:9d:50:71:f6:9e:62:86:e0:a4:07:96:23:22: 55:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:DF:D2:E3:8D:81:71:1A:15:18:E2:A9:86:34:6A:34:A2:17:61:82 X509v3 Authority Key Identifier: keyid:95:76:DB:B7:69:95:B4:95:0A:86:C5:F0:7C:A8:DB:3E:B4:96:78:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lXbbt2mVtJUKhsXwfKjbPrSWePY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:f6:99:6a:f8:a5:68:57:89:9e:3b:b3:9b:91:9f:b6:73:61: 0f:ab:3d:c6:8a:31:70:82:49:72:11:70:ee:10:95:96:80:e2: 71:1d:45:53:52:52:8a:0e:62:53:e5:0e:84:bd:97:7c:7e:e2: 41:2e:3f:8f:58:55:91:ea:eb:6c:62:0a:e4:ed:1e:49:51:86: 76:a0:a4:b1:5c:0b:26:73:be:65:7c:c1:4e:fc:c1:ba:f0:f2: d4:08:dd:d0:d7:7d:43:77:54:d7:f2:ce:68:a7:85:51:c5:13: 9b:42:d4:ad:ca:a4:53:86:d6:9d:29:f7:2d:87:e6:e5:2c:c3: dc:c4:2f:40:c2:ad:3a:9e:ae:fc:60:c6:d7:71:d0:03:12:b9: 1f:ee:30:70:6e:50:a7:30:7a:c3:80:72:b1:ce:f6:32:2e:96: 99:74:57:d2:b1:14:02:18:37:e8:02:5a:f0:d3:45:a8:49:52: 69:3a:07:4f:51:84:29:c8:6a:b9:50:ec:64:b3:e5:d5:97:8c: 7a:c1:b6:4b:8b:5e:b1:11:a9:f8:47:c5:e0:97:a6:55:4e:5d: 13:08:3a:1a:ab:53:08:02:79:91:f4:74:f7:1e:41:40:61:de: 7a:01:f0:25:ec:17:92:d6:a2:00:f7:d3:ed:28:36:25:07:ec: 6f:1b:a8:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrweqr9TGzcCK7CpnoQkg9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1NzZkYmI3Njk5NWI0OTUwYTg2YzVmMDdjYThkYjNlYjQ5 Njc4ZjYwHhcNMjUxMjE3MTAwMTI3WhcNMjUxMjE4MTAwMTI3WjAzMTEwLwYDVQQD Eyg4Y2RmZDJlMzhkODE3MTFhMTUxOGUyYTk4NjM0NmEzNGEyMTc2MTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3+tJfrcuDeyGcnWFv51ng3nAxqxF KyGrR/yisZHuK6ezthTU/F66ZwTtNSrUb1dclChkTB6IFQexlyx3MP+P90IpQ2ja zUKi1Q40a3fSIdMqSqMCOe89c/POQzWfhDWX3wyYcnyiGGuHY2AaqOWfnF/VP99o tu5AeuC28j7OOdU9861s1GVRLXf5XVpDBomVTIweAnaFXEu+nkH9a2X3+Dh54/JR zum1hlK+6Byz+TsKulUN7WmJ8m6IkqLaBoTQa0QPq63gkNm2I8upnA1NAh4Lja3E R+CXGjhZwq/VjCrYFob2bQkdgEjWFmQ1RfjUfJ1QcfaeYobgpAeWIyJVjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIzf0uONgXEaFRjiqYY0ajSiF2GCMB8GA1UdIwQY MBaAFJV227dplbSVCobF8Hyo2z60lnj2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFhiYnQybVZ0SlVLaHNYd2ZLamJQclNXZVBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8wOTI2M2MtYTVjYy00NGQ2LTkxYzQt NjE4MDJkOWM5MzQ0LzEvbFhiYnQybVZ0SlVLaHNYd2ZLamJQclNXZVBZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC8wOTI2M2MtYTVjYy00NGQ2LTkxYzQtNjE4MDJkOWM5MzQ0 LzEvbFhiYnQybVZ0SlVLaHNYd2ZLamJQclNXZVBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADPaZavil aFeJnjuzm5GftnNhD6s9xooxcIJJchFw7hCVloDicR1FU1JSig5iU+UOhL2XfH7i QS4/j1hVkerrbGIK5O0eSVGGdqCksVwLJnO+ZXzBTvzBuvDy1Ajd0Nd9Q3dU1/LO aKeFUcUTm0LUrcqkU4bWnSn3LYfm5SzD3MQvQMKtOp6u/GDG13HQAxK5H+4wcG5Q pzB6w4Bysc72Mi6WmXRX0rEUAhg36AJa8NNFqElSaToHT1GEKchquVDsZLPl1ZeM esG2S4tesRGp+EfF4JemVU5dEwg6GqtTCAJ5kfR09x5BQGHeegHwJewXktaiAPfT 7Sg2JQfsbxuoQQ== -----END CERTIFICATE-----Generated at Wed Dec 17 17:47:31 2025 by rpki-client