This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft File: lhzPqdAsvwWWDjovkHmFnM1urW0.mft (raw, json) Hash identifier: ZWoFTi2Y36Zx2wo6ETIl/vg17NpNh1g09hhaztCDfeM= Subject key identifier: F0:14:6F:2A:4B:59:12:0B:40:02:91:14:AA:DF:68:01:CC:73:EF:2E Authority key identifier: 96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D Certificate issuer: /CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d Certificate serial: 019AF1D18BB7BB8CF4B5FED33814013ECEDE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 04:00:32 +0000 Manifest this update: Sat 06 Dec 2025 04:00:32 +0000 Manifest next update: Sun 07 Dec 2025 04:00:32 +0000 Files and hashes: 1: lhzPqdAsvwWWDjovkHmFnM1urW0.crl (hash: 86qc/rEjMdDftDjnO+pMrBHRwLVorSRqsK7cXHvYK/s=) 2: qTElxIuYhBq2Kr2moM3xQmQlUEA.roa (hash: 6HA56HJcMMODNW40FbLFvKXa1rIMDv54m0DX5YcNqN0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:8b:b7:bb:8c:f4:b5:fe:d3:38:14:01:3e:ce:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d Validity Not Before: Dec 6 04:00:32 2025 GMT Not After : Dec 7 04:00:32 2025 GMT Subject: CN=f0146f2a4b59120b40029114aadf6801cc73ef2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bf:3d:35:d6:a2:e3:f4:56:9f:1d:4b:f9:64: 4c:0c:6c:4d:55:81:49:2c:4f:5b:8f:42:3c:65:2f: 41:cc:a5:a8:dd:7f:3b:a0:94:de:33:cb:2f:f8:e3: ec:00:43:00:9f:fc:d1:a2:b7:b8:7a:19:ce:dd:d9: 21:57:16:5c:f9:c8:e7:4b:fa:77:6a:a8:24:28:25: 76:48:c3:27:fd:5e:06:50:6f:e7:af:42:17:11:3c: 85:72:4b:09:03:31:d5:ff:a8:c1:f7:d5:4c:f8:f8: c5:a3:b8:38:cd:59:2e:5e:c7:01:55:6c:81:df:5f: d8:6a:5f:cb:aa:d4:bb:a1:10:84:52:8f:fc:f7:f3: 43:44:78:fd:3f:27:22:4a:c5:fe:79:0e:4e:d5:7d: 23:42:6c:1c:4a:12:b3:51:93:7a:86:f0:31:26:0f: b3:4d:a3:91:cd:1f:d1:ef:6e:fe:8c:27:95:fb:39: fd:9f:72:70:77:58:c3:17:93:d8:ac:49:a8:2f:9c: 6f:b1:b3:58:68:1d:1f:77:66:e0:2b:e8:d9:3a:1b: 7c:94:f0:cb:af:fd:93:5a:22:4d:7a:d2:47:b7:70: 60:ae:c9:6f:bd:fa:4f:80:44:42:9f:36:2b:76:7b: 9f:cb:2a:2c:3b:3b:be:75:a0:90:78:ea:98:04:a0: 32:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:14:6F:2A:4B:59:12:0B:40:02:91:14:AA:DF:68:01:CC:73:EF:2E X509v3 Authority Key Identifier: keyid:96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:2f:29:4f:54:9c:61:38:4c:82:2e:04:fd:8c:38:23:b9:88: 46:9a:af:9d:f7:11:5d:ee:42:5f:0a:e3:bb:30:b4:35:c9:a6: 6f:74:7a:c1:77:fa:14:f3:c4:c4:00:5a:80:a4:8a:a3:ac:4d: 81:be:79:0e:01:f9:5b:f4:69:22:dc:88:07:e2:1e:42:c0:91: 2d:09:4d:6a:5f:d1:62:84:a3:76:d1:3c:0a:8e:e1:ce:77:3f: 43:68:52:68:04:8f:c0:71:2a:00:86:cb:d1:55:6a:c3:7f:68: a3:b8:6f:a4:a4:0c:9d:b7:4f:ce:fe:00:7d:b8:e1:47:5d:d4: c1:6c:4e:14:b9:e9:f2:e6:df:29:83:a5:a5:b5:5b:dc:c8:fa: e2:d2:e9:d7:4b:94:1b:e9:cf:22:74:a4:4a:6c:6f:21:f2:69: f3:77:af:ba:6e:d1:5a:e2:1b:0f:ab:de:c2:17:4b:76:39:4a: ba:01:83:eb:2e:3a:1a:c8:62:d7:66:e3:52:19:22:c1:97:a7: 05:92:66:32:55:af:30:f2:db:0a:f2:08:47:4f:4e:cb:5f:68: 45:6d:92:47:57:fd:aa:aa:14:90:e8:df:e6:b9:75:cf:4e:ee: 16:a1:38:d9:66:3f:03:83:cf:bd:f1:41:0f:d9:5c:e8:30:c3: 2a:b0:33:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0Yu3u4z0tf7TOBQBPs7eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2MWNjZmE5ZDAyY2JmMDU5NjBlM2EyZjkwNzk4NTljY2Q2 ZWFkNmQwHhcNMjUxMjA2MDQwMDMyWhcNMjUxMjA3MDQwMDMyWjAzMTEwLwYDVQQD EyhmMDE0NmYyYTRiNTkxMjBiNDAwMjkxMTRhYWRmNjgwMWNjNzNlZjJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArL89Ndai4/RWnx1L+WRMDGxNVYFJ LE9bj0I8ZS9BzKWo3X87oJTeM8sv+OPsAEMAn/zRore4ehnO3dkhVxZc+cjnS/p3 aqgkKCV2SMMn/V4GUG/nr0IXETyFcksJAzHV/6jB99VM+PjFo7g4zVkuXscBVWyB 31/Yal/LqtS7oRCEUo/89/NDRHj9PyciSsX+eQ5O1X0jQmwcShKzUZN6hvAxJg+z TaORzR/R727+jCeV+zn9n3Jwd1jDF5PYrEmoL5xvsbNYaB0fd2bgK+jZOht8lPDL r/2TWiJNetJHt3BgrslvvfpPgERCnzYrdnufyyosOzu+daCQeOqYBKAyLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPAUbypLWRILQAKRFKrfaAHMc+8uMB8GA1UdIwQY MBaAFJYcz6nQLL8Flg46L5B5hZzNbq1tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGh6UHFkQXN2d1dXRGpvdmtIbUZuTTF1clcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi81NTU3ZmMtNzY1My00MGE5LTk5YzMt N2VhOTkwNWMzZmJkLzEvbGh6UHFkQXN2d1dXRGpvdmtIbUZuTTF1clcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi81NTU3ZmMtNzY1My00MGE5LTk5YzMtN2VhOTkwNWMzZmJk LzEvbGh6UHFkQXN2d1dXRGpvdmtIbUZuTTF1clcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACy8pT1Sc YThMgi4E/Yw4I7mIRpqvnfcRXe5CXwrjuzC0Ncmmb3R6wXf6FPPExABagKSKo6xN gb55DgH5W/RpItyIB+IeQsCRLQlNal/RYoSjdtE8Co7hznc/Q2hSaASPwHEqAIbL 0VVqw39oo7hvpKQMnbdPzv4AfbjhR13UwWxOFLnp8ubfKYOlpbVb3Mj64tLp10uU G+nPInSkSmxvIfJp83evum7RWuIbD6vewhdLdjlKugGD6y46Gshi12bjUhkiwZen BZJmMlWvMPLbCvIIR09Oy19oRW2SR1f9qqoUkOjf5rl1z07uFqE42WY/A4PPvfFB D9lc6DDDKrAz2g== -----END CERTIFICATE-----Generated at Sat Dec 6 09:05:01 2025 by rpki-client