This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft File: lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json) Hash identifier: xwsED4wxZuHeb3tQIsRcr7P1v0JZTvlcmd2yMHVUKdw= Subject key identifier: F4:C9:93:17:84:C5:71:F0:59:B0:70:CF:EE:AD:28:1B:3B:22:1E:0D Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58 Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458 Certificate serial: 019AF23F6F6F86EFF909774F6A6645AE394E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft Manifest number: 0EC1 Signing time: Sat 06 Dec 2025 06:00:34 +0000 Manifest this update: Sat 06 Dec 2025 06:00:34 +0000 Manifest next update: Sun 07 Dec 2025 06:00:34 +0000 Files and hashes: 1: kBsht6KNIVIdqBo-LjM3rdj9_48.roa (hash: yvy0FENQOdTgUPrF3X0q20Rd17JBcuTbTmhNZ8raWkU=) 2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: yG7g2I78H03lsNlU8lcOdMZ8YPcg/O/dXzgtlZSwnTE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:6f:6f:86:ef:f9:09:77:4f:6a:66:45:ae:39:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458 Validity Not Before: Dec 6 06:00:34 2025 GMT Not After : Dec 7 06:00:34 2025 GMT Subject: CN=f4c9931784c571f059b070cfeead281b3b221e0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1d:3a:08:48:7d:34:01:0e:b6:c0:df:a8:07: 84:32:ab:a0:ba:f9:5f:b8:6d:bb:9c:ac:2e:f4:82: 27:f2:06:36:a0:08:40:32:a3:a1:fa:e6:03:05:41: e8:ba:0a:6b:b0:0c:e8:fa:f8:45:ea:f8:29:04:86: 7b:52:1e:fb:b1:af:16:59:87:2d:9c:70:b2:f0:a5: aa:ae:1b:de:e3:b1:d0:fe:e8:ae:58:6f:20:fb:61: b3:57:05:f6:7c:22:ef:bd:a2:95:f8:2a:2d:7d:23: 76:78:94:84:e7:19:6f:5f:54:22:17:3a:dc:93:a0: 24:bc:56:42:b3:75:42:82:f1:04:70:eb:53:42:90: 59:0a:b5:af:8b:d6:bc:35:78:e4:7e:c1:be:60:e4: 5a:f2:80:3b:8d:a2:bd:32:d0:d2:0a:be:fd:71:2f: f4:ac:83:87:6f:3f:57:06:82:9a:4f:0f:32:ce:21: d3:f6:92:21:d1:24:01:bf:9a:ec:e7:e2:ff:f6:6c: d9:0e:5c:de:92:81:47:95:a7:d2:03:79:19:8a:29: 31:9f:15:d4:30:ea:82:94:ad:15:cd:76:4b:de:75: 68:a9:c8:e0:8b:22:1a:ac:1e:1a:b0:58:0b:0a:f1: 5f:e7:f0:96:69:5d:54:4f:f1:ed:14:23:5e:1a:2b: cd:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C9:93:17:84:C5:71:F0:59:B0:70:CF:EE:AD:28:1B:3B:22:1E:0D X509v3 Authority Key Identifier: keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:dc:85:21:af:d8:46:48:14:cb:46:a3:1c:db:41:51:3e:d4: 73:13:93:0b:ab:ad:3a:04:4a:e3:37:f3:c5:fe:31:03:7a:7b: 22:20:63:f4:79:3f:ed:ac:67:a5:63:89:93:e0:62:fc:23:52: 73:99:fb:c7:57:02:fe:b0:aa:ad:64:c5:3e:00:67:aa:89:01: 57:ea:b8:ab:5d:d9:69:52:d3:b2:af:25:4c:2e:d1:69:51:41: 5d:e0:50:75:69:c2:c9:40:fe:49:84:5a:7d:7a:fc:0c:2a:5d: 62:89:30:4b:24:7a:5e:4d:a2:47:75:c7:1f:e9:65:35:ae:b2: 91:37:2a:be:e6:d5:64:fc:c0:31:8d:25:64:08:cc:d9:37:65: a4:b9:c5:cd:f9:89:4e:86:2e:ec:ea:5c:c1:60:60:ac:f8:46: 1b:0a:7c:b4:22:50:d6:96:92:06:be:87:3b:21:6c:e9:11:dc: 76:06:c6:91:0c:48:ed:e9:39:2a:29:08:bb:9d:2d:11:d0:e0: 43:41:f1:34:25:da:51:ff:4a:ba:be:3c:a5:d4:ae:c5:e8:ea: 32:e0:91:20:a8:81:b8:c8:b6:f4:b9:c1:01:ae:65:5c:e7:55: 52:6d:c6:06:fd:04:86:a1:97:6e:5f:26:f3:b4:02:65:c3:0c: 65:14:57:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP29vhu/5CXdPamZFrjlOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2MGM2ZDc4N2U2YjVlYjY0MjQ4ZGQ5YTdhMTA2NWIxMDUz Zjc0NTgwHhcNMjUxMjA2MDYwMDM0WhcNMjUxMjA3MDYwMDM0WjAzMTEwLwYDVQQD EyhmNGM5OTMxNzg0YzU3MWYwNTliMDcwY2ZlZWFkMjgxYjNiMjIxZTBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuB06CEh9NAEOtsDfqAeEMquguvlf uG27nKwu9IIn8gY2oAhAMqOh+uYDBUHougprsAzo+vhF6vgpBIZ7Uh77sa8WWYct nHCy8KWqrhve47HQ/uiuWG8g+2GzVwX2fCLvvaKV+CotfSN2eJSE5xlvX1QiFzrc k6AkvFZCs3VCgvEEcOtTQpBZCrWvi9a8NXjkfsG+YORa8oA7jaK9MtDSCr79cS/0 rIOHbz9XBoKaTw8yziHT9pIh0SQBv5rs5+L/9mzZDlzekoFHlafSA3kZiikxnxXU MOqClK0VzXZL3nVoqcjgiyIarB4asFgLCvFf5/CWaV1UT/HtFCNeGivNAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPTJkxeExXHwWbBwz+6tKBs7Ih4NMB8GA1UdIwQY MBaAFJYMbXh+a162QkjdmnoQZbEFP3RYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGd4dGVINXJYclpDU04yYWVoQmxzUVVfZEZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8wNWFiMTYtMjIyOC00ODhlLWIxNTIt ZWIwOTIxODk1NzE0LzEvbGd4dGVINXJYclpDU04yYWVoQmxzUVVfZEZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC8wNWFiMTYtMjIyOC00ODhlLWIxNTItZWIwOTIxODk1NzE0 LzEvbGd4dGVINXJYclpDU04yYWVoQmxzUVVfZEZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVNyFIa/Y RkgUy0ajHNtBUT7UcxOTC6utOgRK4zfzxf4xA3p7IiBj9Hk/7axnpWOJk+Bi/CNS c5n7x1cC/rCqrWTFPgBnqokBV+q4q13ZaVLTsq8lTC7RaVFBXeBQdWnCyUD+SYRa fXr8DCpdYokwSyR6Xk2iR3XHH+llNa6ykTcqvubVZPzAMY0lZAjM2TdlpLnFzfmJ ToYu7OpcwWBgrPhGGwp8tCJQ1paSBr6HOyFs6RHcdgbGkQxI7ek5KikIu50tEdDg Q0HxNCXaUf9Kur48pdSuxejqMuCRIKiBuMi29LnBAa5lXOdVUm3GBv0EhqGXbl8m 87QCZcMMZRRXPw== -----END CERTIFICATE-----Generated at Sat Dec 6 12:26:35 2025 by rpki-client