This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.mft File: li68oqtiGOHxrgaHwxREVP1dmWs.mft (raw, json) Hash identifier: i1+gnfHU3j3m2vjRMf1jvZfWcQCXcPyg0nV8UYyZHvQ= Subject key identifier: D3:8E:4A:A3:6F:5A:29:39:A0:DF:1C:01:12:8E:D0:AF:66:FF:6C:F8 Authority key identifier: 96:2E:BC:A2:AB:62:18:E1:F1:AE:06:87:C3:14:44:54:FD:5D:99:6B Certificate issuer: /CN=962ebca2ab6218e1f1ae0687c3144454fd5d996b Certificate serial: 019AF12E7DAA71688C8375FE1E7B55ACE057 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/li68oqtiGOHxrgaHwxREVP1dmWs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.mft Manifest number: 16F2 Signing time: Sat 06 Dec 2025 01:02:27 +0000 Manifest this update: Sat 06 Dec 2025 01:02:27 +0000 Manifest next update: Sun 07 Dec 2025 01:02:27 +0000 Files and hashes: 1: li68oqtiGOHxrgaHwxREVP1dmWs.crl (hash: FEldaMaLIAEmWDBCG0Q1hpMDoWIJEnmpF0nl+eS4hq8=) 2: o2GAlRjqrWRT3XBGB9RwTDs_Ew0.roa (hash: HIy6rjCdEt9bpDveV9D2228Lv0B3K1QWnfoHF9Amb5w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.mft rsync://rpki.ripe.net/repository/DEFAULT/li68oqtiGOHxrgaHwxREVP1dmWs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:7d:aa:71:68:8c:83:75:fe:1e:7b:55:ac:e0:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=962ebca2ab6218e1f1ae0687c3144454fd5d996b Validity Not Before: Dec 6 01:02:27 2025 GMT Not After : Dec 7 01:02:27 2025 GMT Subject: CN=d38e4aa36f5a2939a0df1c01128ed0af66ff6cf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:88:0f:62:af:19:fd:89:50:e8:0d:28:8f:0a: d5:7a:50:d9:ad:2f:39:d7:83:f3:cf:ed:54:50:4b: 11:3a:d4:ff:cc:0d:af:3b:0b:83:c0:16:2b:e4:94: d2:c7:c6:56:13:22:28:eb:47:d6:e7:8a:2a:3b:cf: c0:e0:21:dd:a4:c4:f4:cf:60:79:45:2f:32:ec:78: 20:17:31:08:50:d9:fd:bb:18:06:9c:ec:7c:c1:a6: b5:64:49:69:7c:2d:05:6e:a4:00:ea:47:33:33:15: 4f:e5:47:4a:50:15:ae:54:d2:ff:d0:cd:eb:ff:15: a2:c4:98:d6:96:e8:06:32:9b:4e:8f:38:1e:66:bf: aa:c6:a1:4d:f6:e7:e2:20:94:bd:4f:81:be:68:db: e1:f2:86:9d:cb:78:50:b2:ad:aa:ef:11:25:e9:b2: 54:57:e6:0e:8d:27:dc:22:1d:50:71:be:ec:61:72: 15:ae:2c:2c:ca:42:32:a7:0b:4d:a5:c4:ec:0c:20: 19:79:0c:03:5d:cb:52:9d:03:75:ff:8a:74:31:d1: 45:fc:f1:a5:02:8c:0e:39:9c:3f:71:c5:d6:03:a4: 7b:e2:83:9b:5c:be:08:cd:b6:6c:f1:a9:3a:bb:e5: 4b:2f:47:ae:be:d7:2b:6d:d8:64:a9:b7:58:70:01: 09:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:8E:4A:A3:6F:5A:29:39:A0:DF:1C:01:12:8E:D0:AF:66:FF:6C:F8 X509v3 Authority Key Identifier: keyid:96:2E:BC:A2:AB:62:18:E1:F1:AE:06:87:C3:14:44:54:FD:5D:99:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/li68oqtiGOHxrgaHwxREVP1dmWs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:e8:fb:d4:c9:c0:cc:7e:80:12:ad:16:21:e9:13:04:93:7d: f2:41:45:5d:93:a7:3d:3b:71:0f:dd:86:c7:c0:c8:60:2b:33: 92:c0:eb:78:23:9e:b8:14:b3:c4:b9:c5:39:85:48:66:a6:c7: 7d:7b:5a:16:ef:a1:7c:df:5d:74:7d:78:77:90:48:94:31:83: cb:93:8e:86:6e:9c:8e:b9:b6:f4:c3:db:ec:0c:1c:43:fc:23: 9e:47:6b:12:15:e0:1b:93:dd:95:06:63:8c:46:98:bc:6b:e9: f7:56:8e:7c:b0:0a:aa:dd:6f:5e:a2:0e:b7:aa:85:5b:e3:cc: 0a:7b:dc:47:df:54:5e:bc:9e:76:59:b9:c8:dd:59:66:82:fc: 3f:80:5f:0f:a6:39:86:b0:6f:ae:b3:f7:39:fa:e0:24:be:6b: f6:8f:8f:70:a7:f2:a7:7c:dd:1c:9b:c6:bb:9d:d8:18:39:d2: 31:f1:4b:53:1c:8f:4b:cc:0b:1c:c6:3c:7c:52:d6:fa:0e:b9: 1f:f4:9e:c7:3a:66:a0:66:d6:74:f5:4a:17:12:75:61:7a:ec: 73:5d:49:d9:4a:c1:bc:43:2a:9c:6f:b9:7b:a4:8c:2e:52:db: 00:fe:53:1e:ea:a2:d4:4e:d8:79:f5:eb:50:9a:01:06:69:95: 35:c4:2f:fe -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLn2qcWiMg3X+HntVrOBXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2MmViY2EyYWI2MjE4ZTFmMWFlMDY4N2MzMTQ0NDU0ZmQ1 ZDk5NmIwHhcNMjUxMjA2MDEwMjI3WhcNMjUxMjA3MDEwMjI3WjAzMTEwLwYDVQQD EyhkMzhlNGFhMzZmNWEyOTM5YTBkZjFjMDExMjhlZDBhZjY2ZmY2Y2Y4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3IgPYq8Z/YlQ6A0ojwrVelDZrS85 14Pzz+1UUEsROtT/zA2vOwuDwBYr5JTSx8ZWEyIo60fW54oqO8/A4CHdpMT0z2B5 RS8y7HggFzEIUNn9uxgGnOx8waa1ZElpfC0FbqQA6kczMxVP5UdKUBWuVNL/0M3r /xWixJjWlugGMptOjzgeZr+qxqFN9ufiIJS9T4G+aNvh8oady3hQsq2q7xEl6bJU V+YOjSfcIh1Qcb7sYXIVriwsykIypwtNpcTsDCAZeQwDXctSnQN1/4p0MdFF/PGl AowOOZw/ccXWA6R74oObXL4IzbZs8ak6u+VLL0euvtcrbdhkqbdYcAEJEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNOOSqNvWik5oN8cARKO0K9m/2z4MB8GA1UdIwQY MBaAFJYuvKKrYhjh8a4Gh8MURFT9XZlrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGk2OG9xdGlHT0h4cmdhSHd4UkVWUDFkbVdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy81NjBhYzYtMTk0Zi00YjFiLWI1YWMt ZmQ4N2I3MzM1OTU1LzEvbGk2OG9xdGlHT0h4cmdhSHd4UkVWUDFkbVdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy81NjBhYzYtMTk0Zi00YjFiLWI1YWMtZmQ4N2I3MzM1OTU1 LzEvbGk2OG9xdGlHT0h4cmdhSHd4UkVWUDFkbVdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMOj71MnA zH6AEq0WIekTBJN98kFFXZOnPTtxD92Gx8DIYCszksDreCOeuBSzxLnFOYVIZqbH fXtaFu+hfN9ddH14d5BIlDGDy5OOhm6cjrm29MPb7AwcQ/wjnkdrEhXgG5PdlQZj jEaYvGvp91aOfLAKqt1vXqIOt6qFW+PMCnvcR99UXryedlm5yN1ZZoL8P4BfD6Y5 hrBvrrP3OfrgJL5r9o+PcKfyp3zdHJvGu53YGDnSMfFLUxyPS8wLHMY8fFLW+g65 H/SexzpmoGbWdPVKFxJ1YXrsc11J2UrBvEMqnG+5e6SMLlLbAP5THuqi1E7YefXr UJoBBmmVNcQv/g== -----END CERTIFICATE-----Generated at Sat Dec 6 08:33:38 2025 by rpki-client