This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft File: _ltNUIvcIUFbR1LuvESNSqrGNdk.mft (raw, json) Hash identifier: EfGFgwoHY0P5Yo67ER9laJMzyRn2RnG9U3HHi0VQfE8= Subject key identifier: 26:60:57:57:B6:7A:41:C9:80:E7:01:6D:48:80:8F:2E:15:BA:6C:FE Authority key identifier: FE:5B:4D:50:8B:DC:21:41:5B:47:52:EE:BC:44:8D:4A:AA:C6:35:D9 Certificate issuer: /CN=fe5b4d508bdc21415b4752eebc448d4aaac635d9 Certificate serial: 019AF49C58BB9B19BE48BD57A191D6935B9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ltNUIvcIUFbR1LuvESNSqrGNdk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft Manifest number: 01DF Signing time: Sat 06 Dec 2025 17:01:18 +0000 Manifest this update: Sat 06 Dec 2025 17:01:18 +0000 Manifest next update: Sun 07 Dec 2025 17:01:18 +0000 Files and hashes: 1: _ltNUIvcIUFbR1LuvESNSqrGNdk.crl (hash: DUVzW/UiDF3UTf4o32qXtDnYLOfxNcwr2qcEd/hTSwY=) 2: l_Z1ah4Z6CUki_cHx_5BaEWiOxE.roa (hash: fwZNajA2NrVuCxC49gzHtXDb0A0DV7JtszLe3wSG/eE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft rsync://rpki.ripe.net/repository/DEFAULT/_ltNUIvcIUFbR1LuvESNSqrGNdk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:9c:58:bb:9b:19:be:48:bd:57:a1:91:d6:93:5b:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe5b4d508bdc21415b4752eebc448d4aaac635d9 Validity Not Before: Dec 6 17:01:18 2025 GMT Not After : Dec 7 17:01:18 2025 GMT Subject: CN=26605757b67a41c980e7016d48808f2e15ba6cfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ae:5a:d5:1a:6c:88:8a:a0:4d:d9:eb:ee:ec: b5:7a:fd:d2:c1:9f:fd:bb:3e:03:e7:86:41:83:cb: 23:e7:8f:02:63:5f:c0:aa:77:8b:0d:5d:fa:54:ea: 64:8f:a3:f0:df:22:46:e0:fd:72:b7:0d:f0:1b:4f: b2:9d:78:9e:47:09:50:58:ee:9e:c2:1d:8d:4b:01: cc:6f:56:01:12:0b:ae:e0:54:49:ca:90:b2:0f:44: a4:0f:b8:b0:ff:93:2f:3b:64:4b:42:dc:c4:dc:48: 31:e6:af:e6:ce:6c:5d:ae:00:de:86:16:cd:de:20: 07:e2:02:2e:d5:5d:c4:d0:2d:e7:db:78:df:21:89: 1e:35:20:91:d7:c6:6b:4a:ae:5c:1d:9c:d6:6a:41: 0e:ae:37:d7:80:2a:b3:95:85:e3:2e:de:e6:b0:11: aa:4c:e6:4c:29:4b:62:54:3c:5b:37:92:ad:9b:6d: e2:d6:65:69:6b:bd:3a:66:83:79:3f:cc:aa:da:b5: 02:79:dc:83:fa:43:0e:b8:30:18:10:10:16:6c:35: 01:82:99:ea:a1:81:ee:2a:32:1b:15:ea:02:e0:f3: d3:c2:43:c1:8f:77:2b:7a:a7:e8:c4:f8:45:d1:75: 81:3f:ea:47:5a:43:b0:26:d7:f3:93:be:d1:10:22: 4c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:60:57:57:B6:7A:41:C9:80:E7:01:6D:48:80:8F:2E:15:BA:6C:FE X509v3 Authority Key Identifier: keyid:FE:5B:4D:50:8B:DC:21:41:5B:47:52:EE:BC:44:8D:4A:AA:C6:35:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ltNUIvcIUFbR1LuvESNSqrGNdk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:4b:48:87:a8:75:29:fd:aa:a2:97:57:4c:9e:0a:8b:1a:ac: f0:38:c1:e0:2b:0d:a9:d4:71:81:04:15:67:af:f6:a1:97:ac: bf:eb:63:89:26:93:d9:98:cd:fd:cb:38:80:80:cf:c3:9f:f2: 4e:c8:bf:8f:e1:08:84:69:28:60:49:22:4f:06:de:21:e8:e8: 37:a7:74:2a:af:a1:5d:ca:f1:a9:e6:d1:47:6d:74:bb:3c:90: 54:a6:39:3a:b6:81:54:97:dd:a4:56:30:a6:9d:a9:c8:6c:cf: f5:cb:44:97:69:87:e8:1c:02:60:bd:48:9b:49:b9:7b:a4:2e: 86:34:f7:20:aa:8c:53:3e:97:a4:0b:81:3a:ab:9c:64:80:fb: de:1e:21:e7:fe:ea:ef:ce:1e:a0:9d:5c:13:35:f6:ec:9a:92: 7c:55:02:91:60:a0:e7:42:84:e9:f2:48:2b:00:94:14:9e:ea: 84:0f:0b:81:51:ae:db:17:0a:28:12:1d:63:1d:47:bc:59:68: 5f:81:1a:10:8d:e0:01:20:35:4b:3d:e0:ed:31:1f:ff:36:c5: 77:7e:7e:98:b1:cd:1e:7b:7e:bc:44:85:75:a7:9d:47:34:42: 31:03:38:a8:f6:be:39:09:aa:97:36:aa:85:83:0f:84:c2:ce: 68:b5:7c:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0nFi7mxm+SL1XoZHWk1uaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlNWI0ZDUwOGJkYzIxNDE1YjQ3NTJlZWJjNDQ4ZDRhYWFj NjM1ZDkwHhcNMjUxMjA2MTcwMTE4WhcNMjUxMjA3MTcwMTE4WjAzMTEwLwYDVQQD EygyNjYwNTc1N2I2N2E0MWM5ODBlNzAxNmQ0ODgwOGYyZTE1YmE2Y2ZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAya5a1RpsiIqgTdnr7uy1ev3SwZ/9 uz4D54ZBg8sj548CY1/AqneLDV36VOpkj6Pw3yJG4P1ytw3wG0+ynXieRwlQWO6e wh2NSwHMb1YBEguu4FRJypCyD0SkD7iw/5MvO2RLQtzE3Egx5q/mzmxdrgDehhbN 3iAH4gIu1V3E0C3n23jfIYkeNSCR18ZrSq5cHZzWakEOrjfXgCqzlYXjLt7msBGq TOZMKUtiVDxbN5Ktm23i1mVpa706ZoN5P8yq2rUCedyD+kMOuDAYEBAWbDUBgpnq oYHuKjIbFeoC4PPTwkPBj3creqfoxPhF0XWBP+pHWkOwJtfzk77RECJMlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCZgV1e2ekHJgOcBbUiAjy4Vumz+MB8GA1UdIwQY MBaAFP5bTVCL3CFBW0dS7rxEjUqqxjXZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2x0TlVJdmNJVUZiUjFMdXZFU05TcXJHTmRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9jOWY3YWItM2ZhMC00NzFmLWJiOTUt MDBiNGZiYjM4NDlkLzEvX2x0TlVJdmNJVUZiUjFMdXZFU05TcXJHTmRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS9jOWY3YWItM2ZhMC00NzFmLWJiOTUtMDBiNGZiYjM4NDlk LzEvX2x0TlVJdmNJVUZiUjFMdXZFU05TcXJHTmRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKEtIh6h1 Kf2qopdXTJ4Kixqs8DjB4CsNqdRxgQQVZ6/2oZesv+tjiSaT2ZjN/cs4gIDPw5/y Tsi/j+EIhGkoYEkiTwbeIejoN6d0Kq+hXcrxqebRR210uzyQVKY5OraBVJfdpFYw pp2pyGzP9ctEl2mH6BwCYL1Im0m5e6QuhjT3IKqMUz6XpAuBOqucZID73h4h5/7q 784eoJ1cEzX27JqSfFUCkWCg50KE6fJIKwCUFJ7qhA8LgVGu2xcKKBIdYx1HvFlo X4EaEI3gASA1Sz3g7TEf/zbFd35+mLHNHnt+vESFdaedRzRCMQM4qPa+OQmqlzaq hYMPhMLOaLV8DQ== -----END CERTIFICATE-----Generated at Sat Dec 6 19:39:26 2025 by rpki-client