This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft File: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft (raw, json) Hash identifier: Nqix8nkSQcxeQAW42dHwdrMCTni4S2/diDR6Swa4/2w= Subject key identifier: A7:C6:F8:E0:96:19:B0:9E:C6:FB:CE:AD:F7:A8:DD:25:41:F6:19:09 Authority key identifier: 95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0 Certificate issuer: /CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0 Certificate serial: 019AF0BF1DCFE26FEFAFCFFED18BA4FBE585 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft Manifest number: 084A Signing time: Fri 05 Dec 2025 23:00:48 +0000 Manifest this update: Fri 05 Dec 2025 23:00:48 +0000 Manifest next update: Sat 06 Dec 2025 23:00:48 +0000 Files and hashes: 1: cCGgeXQG7w7JJ0VVtoCaqK0Nuk0.roa (hash: OWS86sPN3Xs5u+J3GeHiIwJ0UACEogG9zbUxH/qhnWU=) 2: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl (hash: jcalwSIXA8UATaXy+A4c0QjYjLxqK2t0eXFXPn3ofPQ=) 3: x4XI86xuT3wsfzGO7m_2JB-s4p4.roa (hash: Dt7gE1TI/UXgmAj9V+d2Jv58edUR433oJyH6DVwQHcw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:1d:cf:e2:6f:ef:af:cf:fe:d1:8b:a4:fb:e5:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0 Validity Not Before: Dec 5 23:00:48 2025 GMT Not After : Dec 6 23:00:48 2025 GMT Subject: CN=a7c6f8e09619b09ec6fbceadf7a8dd2541f61909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:07:e7:c8:e9:c6:f1:6b:d4:f5:f2:76:d1:31: 5f:9f:24:26:f0:07:cf:7c:bc:c5:ff:46:c0:1b:14: 72:b0:bd:09:3b:e0:a2:6e:c1:f4:4f:cf:95:41:47: cb:da:07:57:83:5c:92:9e:60:53:b5:ff:f1:c9:b4: ce:44:97:9d:00:49:c0:3d:6d:63:3f:00:2f:50:eb: 6a:5a:5b:6b:db:09:34:a0:ba:c9:75:17:a1:31:a9: 64:65:cc:ab:48:4e:f2:4d:18:b7:33:21:e6:28:8a: 11:60:0a:20:4e:db:24:4c:87:8a:6b:75:ed:51:00: 30:d1:51:ae:b3:11:89:ce:9d:1a:5d:92:02:e7:0a: ac:d2:c4:ba:b4:00:6c:f6:87:79:71:ab:4e:ae:4d: f4:09:b0:1b:58:54:8d:42:f1:63:7c:75:b7:34:1a: 5d:15:d9:2b:16:cc:cc:34:e6:42:32:5b:41:49:5d: f0:1a:ae:9f:59:cf:7f:9b:10:28:ca:72:af:8c:cd: a8:80:ff:e9:3d:f1:77:d3:2a:5a:69:ed:02:31:80: 0a:ae:19:9a:e2:78:5c:a7:65:3e:e7:63:aa:e4:5b: b9:89:d1:e2:5f:d1:4f:f9:8a:6b:30:6d:52:02:5f: 0e:56:d8:be:a1:8b:cb:94:00:4b:73:55:e7:4b:ad: 06:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:C6:F8:E0:96:19:B0:9E:C6:FB:CE:AD:F7:A8:DD:25:41:F6:19:09 X509v3 Authority Key Identifier: keyid:95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:fd:60:2f:f6:29:8b:ab:1c:55:3b:91:43:2f:c7:e0:00:04: ad:7b:d3:b6:e7:c8:b4:be:42:d7:69:a9:60:9f:8d:b7:83:1f: 70:7f:6a:c5:aa:ce:1c:74:72:3c:63:b4:1f:fc:7b:dd:58:bb: 8b:fe:0b:99:c0:3b:b8:84:1a:f9:f7:29:1e:20:ac:f4:7a:01: 90:3a:75:91:e8:0e:b2:cf:46:34:cb:91:19:94:d3:c6:81:21: 43:4d:c8:94:aa:c0:e8:cc:e3:37:f0:f1:e6:4e:9c:c3:c7:57: 3b:bb:75:5f:cd:21:b8:66:31:3d:b6:c5:38:30:a0:67:a4:2d: a0:f2:ba:67:85:dc:08:ca:58:9c:90:a2:ed:99:6b:d9:31:67: b6:43:8e:ca:cb:07:ad:43:28:48:25:9a:11:5a:75:fd:72:c5: 1b:05:be:2f:b3:26:28:28:b4:57:ce:a0:06:71:f9:4b:b5:86: 2e:ca:15:ab:c1:92:ad:13:33:2e:6c:b5:b3:19:d4:86:15:a5: 91:7b:02:af:31:30:da:28:55:a1:9d:8f:bb:3e:ac:9e:29:50: 24:70:e9:4a:79:c5:21:fd:10:93:4e:09:15:b1:d8:11:f6:64: 30:af:a3:88:5f:76:8a:8e:73:b5:84:db:25:5a:90:20:f5:1c: 6b:7b:35:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwvx3P4m/vr8/+0Yuk++WFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1MTRkZjlmZGMzYTBiMTI4YzIwZWU4YzA2NjI4YzQzYzk1 OGJiZjAwHhcNMjUxMjA1MjMwMDQ4WhcNMjUxMjA2MjMwMDQ4WjAzMTEwLwYDVQQD EyhhN2M2ZjhlMDk2MTliMDllYzZmYmNlYWRmN2E4ZGQyNTQxZjYxOTA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQfnyOnG8WvU9fJ20TFfnyQm8AfP fLzF/0bAGxRysL0JO+CibsH0T8+VQUfL2gdXg1ySnmBTtf/xybTORJedAEnAPW1j PwAvUOtqWltr2wk0oLrJdRehMalkZcyrSE7yTRi3MyHmKIoRYAogTtskTIeKa3Xt UQAw0VGusxGJzp0aXZIC5wqs0sS6tABs9od5catOrk30CbAbWFSNQvFjfHW3NBpd FdkrFszMNOZCMltBSV3wGq6fWc9/mxAoynKvjM2ogP/pPfF30ypaae0CMYAKrhma 4nhcp2U+52Oq5Fu5idHiX9FP+YprMG1SAl8OVti+oYvLlABLc1XnS60GwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKfG+OCWGbCexvvOrfeo3SVB9hkJMB8GA1UdIwQY MBaAFJUU35/cOgsSjCDujAZijEPJWLvwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFJUZm45dzZDeEtNSU82TUJtS01ROGxZdV9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi85N2ZiMGQtZDc3Zi00NDY3LTg2Mjct ZTIyMmJmODUyOWI4LzEvbFJUZm45dzZDeEtNSU82TUJtS01ROGxZdV9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi85N2ZiMGQtZDc3Zi00NDY3LTg2MjctZTIyMmJmODUyOWI4 LzEvbFJUZm45dzZDeEtNSU82TUJtS01ROGxZdV9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV/1gL/Yp i6scVTuRQy/H4AAErXvTtufItL5C12mpYJ+Nt4MfcH9qxarOHHRyPGO0H/x73Vi7 i/4LmcA7uIQa+fcpHiCs9HoBkDp1kegOss9GNMuRGZTTxoEhQ03IlKrA6MzjN/Dx 5k6cw8dXO7t1X80huGYxPbbFODCgZ6QtoPK6Z4XcCMpYnJCi7Zlr2TFntkOOyssH rUMoSCWaEVp1/XLFGwW+L7MmKCi0V86gBnH5S7WGLsoVq8GSrRMzLmy1sxnUhhWl kXsCrzEw2ihVoZ2Puz6snilQJHDpSnnFIf0Qk04JFbHYEfZkMK+jiF92io5ztYTb JVqQIPUca3s11g== -----END CERTIFICATE-----Generated at Sat Dec 6 08:09:27 2025 by rpki-client