This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/4ef629-12e2-4d99-9b4a-336623afe898/1/lM53iNLj_vf8ANXOEz19bcAPhik.mft File: lM53iNLj_vf8ANXOEz19bcAPhik.mft (raw, json) Hash identifier: 28khMKjkTqvGWtbPuZVU+0aFR2+RE0nPb7Zjt8yZpYk= Subject key identifier: 2D:0D:0B:52:B6:0C:7E:1E:2D:16:10:AA:41:6A:EA:43:BD:4B:C7:2B Authority key identifier: 94:CE:77:88:D2:E3:FE:F7:FC:00:D5:CE:13:3D:7D:6D:C0:0F:86:29 Certificate issuer: /CN=94ce7788d2e3fef7fc00d5ce133d7d6dc00f8629 Certificate serial: 019AF19B5923787A4C759B971410235F9ACD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lM53iNLj_vf8ANXOEz19bcAPhik.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/4ef629-12e2-4d99-9b4a-336623afe898/1/lM53iNLj_vf8ANXOEz19bcAPhik.mft Manifest number: 0ED7 Signing time: Sat 06 Dec 2025 03:01:21 +0000 Manifest this update: Sat 06 Dec 2025 03:01:21 +0000 Manifest next update: Sun 07 Dec 2025 03:01:21 +0000 Files and hashes: 1: lM53iNLj_vf8ANXOEz19bcAPhik.crl (hash: uKNfe+xOkXCutqN4a2NwvqEM/qCQ4oq0CvH4T/VFNhw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/4ef629-12e2-4d99-9b4a-336623afe898/1/lM53iNLj_vf8ANXOEz19bcAPhik.crl rsync://rpki.ripe.net/repository/DEFAULT/96/4ef629-12e2-4d99-9b4a-336623afe898/1/lM53iNLj_vf8ANXOEz19bcAPhik.mft rsync://rpki.ripe.net/repository/DEFAULT/lM53iNLj_vf8ANXOEz19bcAPhik.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:59:23:78:7a:4c:75:9b:97:14:10:23:5f:9a:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94ce7788d2e3fef7fc00d5ce133d7d6dc00f8629 Validity Not Before: Dec 6 03:01:21 2025 GMT Not After : Dec 7 03:01:21 2025 GMT Subject: CN=2d0d0b52b60c7e1e2d1610aa416aea43bd4bc72b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:6d:95:fc:f0:d0:af:b0:ae:cc:59:80:19:95: f3:b3:eb:72:bd:13:72:16:e3:fb:b2:58:ec:49:45: 41:9a:33:4e:60:2c:c0:6e:d5:0e:8e:37:0f:c2:7d: 04:eb:7e:f7:d2:6b:04:a5:04:ff:a3:76:94:f8:30: e0:e2:d2:e7:95:1e:b1:cc:3a:f4:3d:92:95:b9:81: 4e:33:01:56:01:77:19:e7:bf:d2:bf:a3:ea:49:65: 4d:b8:a8:04:76:c6:48:84:37:82:ce:0a:ea:bc:3a: c0:5e:52:40:74:33:6b:c5:d6:d5:df:f1:b0:51:dd: 67:e7:33:e5:c4:4e:64:35:d9:17:73:10:35:54:af: ed:89:55:ad:19:80:e2:93:63:f7:b6:3a:01:ef:de: 9b:71:28:f3:bf:cb:c4:cd:6e:5d:3f:4a:8a:0f:50: 32:5b:4c:25:d6:83:0b:4a:65:c3:82:09:c2:80:b0: 39:82:a9:23:c9:df:53:75:32:ab:36:cd:69:2d:ae: 33:ec:b4:37:5d:1c:c8:43:a0:a6:cf:37:20:b8:d2: 6c:6c:5e:fe:94:70:2e:70:a9:d1:2b:26:ca:b5:03: 8a:5c:52:4e:77:51:6e:ee:d5:41:07:11:c8:bd:8e: 1c:1d:1d:ca:ba:67:3f:c4:47:f7:8c:30:4a:30:ba: 1d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:0D:0B:52:B6:0C:7E:1E:2D:16:10:AA:41:6A:EA:43:BD:4B:C7:2B X509v3 Authority Key Identifier: keyid:94:CE:77:88:D2:E3:FE:F7:FC:00:D5:CE:13:3D:7D:6D:C0:0F:86:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lM53iNLj_vf8ANXOEz19bcAPhik.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/4ef629-12e2-4d99-9b4a-336623afe898/1/lM53iNLj_vf8ANXOEz19bcAPhik.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/96/4ef629-12e2-4d99-9b4a-336623afe898/1/lM53iNLj_vf8ANXOEz19bcAPhik.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:01:6f:bc:bb:a1:d9:5e:18:77:83:7a:f3:22:95:82:58:9a: 55:49:a1:85:45:46:0f:49:ff:33:ae:ae:e3:af:31:f9:20:35: 2d:b9:a6:49:e9:11:35:53:5e:42:af:cd:92:f9:29:3d:7d:69: 20:70:80:4b:6f:ae:bd:40:87:ce:c1:99:c8:bf:2d:5f:08:63: 1b:70:5b:03:ee:7d:d0:5a:e7:9c:b0:82:f3:92:e2:36:a3:4a: ad:37:c2:fa:75:cb:7c:2c:d6:32:95:d0:24:57:da:e2:1c:ee: a2:b7:ae:7b:f7:56:b3:c9:81:f7:fd:2c:95:b5:12:a5:d1:d4: d0:85:03:4d:8f:69:76:29:93:e7:08:86:e6:99:07:aa:cd:90: 27:d5:8e:72:20:cf:e5:da:bf:41:37:4a:5e:7a:22:c4:d0:41: b5:12:68:d7:e2:21:41:75:63:0c:14:3b:51:b6:6b:e0:2f:f9: 93:5c:5c:2e:d2:e9:6a:0f:2e:95:49:5e:61:3e:a5:a6:7f:17: 3a:19:a8:f1:3e:a1:01:8e:26:b3:da:e4:69:c4:a6:a2:7a:5d: 37:1f:bf:97:71:4f:a3:92:55:99:30:73:c8:5b:47:7a:77:75: 4e:e4:37:ef:3e:b5:61:ca:1e:b8:ff:25:50:f4:0b:4c:5c:23: 8d:47:0a:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm1kjeHpMdZuXFBAjX5rNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0Y2U3Nzg4ZDJlM2ZlZjdmYzAwZDVjZTEzM2Q3ZDZkYzAw Zjg2MjkwHhcNMjUxMjA2MDMwMTIxWhcNMjUxMjA3MDMwMTIxWjAzMTEwLwYDVQQD EygyZDBkMGI1MmI2MGM3ZTFlMmQxNjEwYWE0MTZhZWE0M2JkNGJjNzJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjm2V/PDQr7CuzFmAGZXzs+tyvRNy FuP7sljsSUVBmjNOYCzAbtUOjjcPwn0E63730msEpQT/o3aU+DDg4tLnlR6xzDr0 PZKVuYFOMwFWAXcZ57/Sv6PqSWVNuKgEdsZIhDeCzgrqvDrAXlJAdDNrxdbV3/Gw Ud1n5zPlxE5kNdkXcxA1VK/tiVWtGYDik2P3tjoB796bcSjzv8vEzW5dP0qKD1Ay W0wl1oMLSmXDggnCgLA5gqkjyd9TdTKrNs1pLa4z7LQ3XRzIQ6CmzzcguNJsbF7+ lHAucKnRKybKtQOKXFJOd1Fu7tVBBxHIvY4cHR3Kumc/xEf3jDBKMLodsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC0NC1K2DH4eLRYQqkFq6kO9S8crMB8GA1UdIwQY MBaAFJTOd4jS4/73/ADVzhM9fW3AD4YpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbE01M2lOTGpfdmY4QU5YT0V6MTliY0FQaGlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ni80ZWY2MjktMTJlMi00ZDk5LTliNGEt MzM2NjIzYWZlODk4LzEvbE01M2lOTGpfdmY4QU5YT0V6MTliY0FQaGlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ni80ZWY2MjktMTJlMi00ZDk5LTliNGEtMzM2NjIzYWZlODk4 LzEvbE01M2lOTGpfdmY4QU5YT0V6MTliY0FQaGlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABQFvvLuh 2V4Yd4N68yKVgliaVUmhhUVGD0n/M66u468x+SA1LbmmSekRNVNeQq/NkvkpPX1p IHCAS2+uvUCHzsGZyL8tXwhjG3BbA+590FrnnLCC85LiNqNKrTfC+nXLfCzWMpXQ JFfa4hzuoreue/dWs8mB9/0slbUSpdHU0IUDTY9pdimT5wiG5pkHqs2QJ9WOciDP 5dq/QTdKXnoixNBBtRJo1+IhQXVjDBQ7UbZr4C/5k1xcLtLpag8ulUleYT6lpn8X Ohmo8T6hAY4ms9rkacSmonpdNx+/l3FPo5JVmTBzyFtHend1TuQ37z61YcoeuP8l UPQLTFwjjUcKJQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:08:49 2025 by rpki-client