This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.mft File: L97GcLeAw7-UAe8cEVodh_6PfHo.mft (raw, json) Hash identifier: dUji5zw8AVm/SmxqUKNTily56AXj4uEKTjF3fhsY5+Q= Subject key identifier: 4C:38:D7:AE:7E:DA:18:3F:AA:2E:41:6C:53:B2:5E:0A:91:9F:B4:8D Authority key identifier: 2F:DE:C6:70:B7:80:C3:BF:94:01:EF:1C:11:5A:1D:87:FE:8F:7C:7A Certificate issuer: /CN=2fdec670b780c3bf9401ef1c115a1d87fe8f7c7a Certificate serial: 019AF19B44ED875457207D2D179985BDA3BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L97GcLeAw7-UAe8cEVodh_6PfHo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.mft Manifest number: 0E41 Signing time: Sat 06 Dec 2025 03:01:15 +0000 Manifest this update: Sat 06 Dec 2025 03:01:15 +0000 Manifest next update: Sun 07 Dec 2025 03:01:15 +0000 Files and hashes: 1: L97GcLeAw7-UAe8cEVodh_6PfHo.crl (hash: dqaP0rPnGbFRn6C5XT/HW9LCyCSEW7K1dzDVo6Xxuok=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.crl rsync://rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.mft rsync://rpki.ripe.net/repository/DEFAULT/L97GcLeAw7-UAe8cEVodh_6PfHo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:44:ed:87:54:57:20:7d:2d:17:99:85:bd:a3:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2fdec670b780c3bf9401ef1c115a1d87fe8f7c7a Validity Not Before: Dec 6 03:01:15 2025 GMT Not After : Dec 7 03:01:15 2025 GMT Subject: CN=4c38d7ae7eda183faa2e416c53b25e0a919fb48d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7e:7f:52:92:0f:96:df:86:89:bc:ed:99:68: 02:c4:df:aa:f4:98:b9:e6:4a:f1:d8:9f:99:a8:20: f9:63:27:0b:67:48:cf:c6:f3:c6:47:11:da:e9:f9: 7f:1a:44:fc:af:b8:44:b0:80:f1:89:57:1b:dc:59: da:90:f5:ef:69:e0:bd:2c:57:db:ab:04:d1:f8:7f: b8:5e:05:d7:fd:af:b2:ce:99:08:64:01:7d:89:6a: da:c9:2c:81:50:c8:e7:89:80:0e:6b:05:84:52:50: 1a:b1:d2:74:47:e4:58:fc:92:86:46:34:af:a6:c8: 29:05:6c:79:ec:44:5f:fd:45:57:5a:1d:ba:41:d1: 07:41:73:f0:68:81:1c:1b:3c:16:13:da:4e:e1:0c: e5:ac:86:41:33:80:1e:6c:cd:f0:ff:fc:a1:76:82: 21:30:29:86:25:65:0a:c2:17:e3:32:4a:37:6f:a1: e6:48:bc:2d:1a:09:de:82:20:1c:61:08:bb:95:f1: 14:31:a7:85:90:30:52:52:95:aa:21:21:1d:3a:78: 0e:70:8a:3e:54:91:05:df:a2:8c:af:70:1a:ad:76: 11:89:b6:22:d5:9f:78:84:28:5b:c2:61:61:9f:29: 0e:48:9e:1f:37:05:bb:9b:d0:1e:a8:99:a3:a5:93: a5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:38:D7:AE:7E:DA:18:3F:AA:2E:41:6C:53:B2:5E:0A:91:9F:B4:8D X509v3 Authority Key Identifier: keyid:2F:DE:C6:70:B7:80:C3:BF:94:01:EF:1C:11:5A:1D:87:FE:8F:7C:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L97GcLeAw7-UAe8cEVodh_6PfHo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:6b:7f:a9:f6:12:83:da:e1:f1:c4:ef:74:9c:ff:24:a5:61: 04:7f:50:8b:42:97:c9:91:20:85:96:3f:db:5e:95:1b:f1:19: fb:e7:0f:a4:b0:b8:2c:fd:43:c9:4f:da:9c:c9:72:b0:08:66: 00:20:62:a4:a1:67:53:89:27:b3:0a:a4:4e:3c:a0:de:29:63: 95:c5:f9:5e:67:bd:1a:34:5d:d7:4d:37:5a:ff:e6:be:9e:f4: 37:a0:d8:c3:25:6e:1c:ab:d5:95:60:25:db:19:47:3a:f3:85: a7:aa:2d:80:ae:73:af:7e:ac:c2:ca:dc:d9:19:b4:2d:40:69: a0:d4:22:b3:e3:1d:80:60:dd:fd:a1:5a:14:ec:cd:8c:f7:78: a2:06:37:e9:23:be:f4:92:36:aa:b0:0c:fc:ba:30:b7:9e:6a: 6a:37:80:e9:c8:01:89:8b:51:33:ea:0f:d8:65:ef:d8:42:39: 11:16:fe:70:87:ab:dd:74:4f:5c:36:eb:cf:31:08:b0:19:9b: c9:4b:bc:03:e5:ec:a1:c1:8f:b1:b8:9e:53:d3:41:02:02:04: 35:40:ba:48:6b:6d:36:2f:70:f8:97:90:20:72:c0:a6:4e:44: d4:a0:04:4c:9e:1a:7c:d5:8e:43:fe:fb:8c:ac:6f:f1:18:89: d3:14:7c:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm0Tth1RXIH0tF5mFvaO+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmZGVjNjcwYjc4MGMzYmY5NDAxZWYxYzExNWExZDg3ZmU4 ZjdjN2EwHhcNMjUxMjA2MDMwMTE1WhcNMjUxMjA3MDMwMTE1WjAzMTEwLwYDVQQD Eyg0YzM4ZDdhZTdlZGExODNmYWEyZTQxNmM1M2IyNWUwYTkxOWZiNDhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0X5/UpIPlt+GibztmWgCxN+q9Ji5 5krx2J+ZqCD5YycLZ0jPxvPGRxHa6fl/GkT8r7hEsIDxiVcb3FnakPXvaeC9LFfb qwTR+H+4XgXX/a+yzpkIZAF9iWraySyBUMjniYAOawWEUlAasdJ0R+RY/JKGRjSv psgpBWx57ERf/UVXWh26QdEHQXPwaIEcGzwWE9pO4QzlrIZBM4AebM3w//yhdoIh MCmGJWUKwhfjMko3b6HmSLwtGgnegiAcYQi7lfEUMaeFkDBSUpWqISEdOngOcIo+ VJEF36KMr3AarXYRibYi1Z94hChbwmFhnykOSJ4fNwW7m9AeqJmjpZOlsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEw4165+2hg/qi5BbFOyXgqRn7SNMB8GA1UdIwQY MBaAFC/exnC3gMO/lAHvHBFaHYf+j3x6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDk3R2NMZUF3Ny1VQWU4Y0VWb2RoXzZQZkhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni80ZTE5YzUtMDA4Mi00ODQ0LWI2YmQt YWIxZDhlOTg0NGFmLzEvTDk3R2NMZUF3Ny1VQWU4Y0VWb2RoXzZQZkhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni80ZTE5YzUtMDA4Mi00ODQ0LWI2YmQtYWIxZDhlOTg0NGFm LzEvTDk3R2NMZUF3Ny1VQWU4Y0VWb2RoXzZQZkhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVGt/qfYS g9rh8cTvdJz/JKVhBH9Qi0KXyZEghZY/216VG/EZ++cPpLC4LP1DyU/anMlysAhm ACBipKFnU4knswqkTjyg3iljlcX5Xme9GjRd1003Wv/mvp70N6DYwyVuHKvVlWAl 2xlHOvOFp6otgK5zr36swsrc2Rm0LUBpoNQis+MdgGDd/aFaFOzNjPd4ogY36SO+ 9JI2qrAM/Lowt55qajeA6cgBiYtRM+oP2GXv2EI5ERb+cIer3XRPXDbrzzEIsBmb yUu8A+XsocGPsbieU9NBAgIENUC6SGttNi9w+JeQIHLApk5E1KAETJ4afNWOQ/77 jKxv8RiJ0xR8tQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:24:29 2025 by rpki-client