This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft File: lUoq7ghhdLAScvrnea1DHrCSrrc.mft (raw, json) Hash identifier: 6S3O56eZM7kZ5p4zgSISKCkI+QGuPqHq/O375T3rx50= Subject key identifier: F1:84:01:CC:07:0D:98:CD:E6:BF:B9:05:8A:58:99:CA:5B:41:6E:F4 Authority key identifier: 95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7 Certificate issuer: /CN=954a2aee086174b01272fae779ad431eb092aeb7 Certificate serial: 019B41DB23985DE3BE2ED41829D136D48B00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft Manifest number: 1796 Signing time: Sun 21 Dec 2025 17:00:38 +0000 Manifest this update: Sun 21 Dec 2025 17:00:38 +0000 Manifest next update: Mon 22 Dec 2025 17:00:38 +0000 Files and hashes: 1: H3J9vQn6K2WpcdcY5HgOFWtNqro.roa (hash: xKCbCFvdaEaZUoBRTwlz8wWkQD7E1NB3Xk+GOW8NOkg=) 2: LOAmRNgz3AR78bC-CKjKBqCJY3M.roa (hash: xld+cbw2oRdP1v3iddUMoK+GuqeXMoAOXkKfJjjcrk8=) 3: SHnk_yFs5TSkbtqQ5cCS3qWVobY.roa (hash: Ajdz5jpsdOUtu+sq17fM1dWOMUvOtdvwwcm7jylQXUs=) 4: gi5eF85DS2YJELAZM_ySYFsKV08.roa (hash: MIgOllfsmrhmY3owqBnBM3hgcAd1OAro3szJ6UxB+Hk=) 5: lUoq7ghhdLAScvrnea1DHrCSrrc.crl (hash: Kyg6EAfvZLx3P7f+G1WBbcHaXLawdb9kEWcBdN09hnE=) 6: pczhsUKGHELIQkg7tKT9igyRi-A.roa (hash: Y7SOjOUl6Opwe6kgzkQEfHKGoUu9pf1pYRSzuMhv1S4=) 7: zQSqcApOIlR6_yHJBYuZ2ciPt3Q.roa (hash: 5DPAi2kks5u9Bus3Asxn5EjHBrdWHv0pv/j5caKoCFM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:db:23:98:5d:e3:be:2e:d4:18:29:d1:36:d4:8b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=954a2aee086174b01272fae779ad431eb092aeb7 Validity Not Before: Dec 21 17:00:38 2025 GMT Not After : Dec 22 17:00:38 2025 GMT Subject: CN=f18401cc070d98cde6bfb9058a5899ca5b416ef4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d8:84:46:81:80:52:cd:3f:00:b9:7f:ff:5a: 03:86:2a:d2:3b:1c:4e:08:aa:2f:22:ac:fc:19:ea: 37:df:e3:b4:86:57:0c:b3:a1:b2:0b:99:8e:57:78: 74:c0:0c:08:b7:c9:c2:0e:23:a3:49:1f:d6:e7:ab: 59:04:6e:ea:6d:0b:7b:4f:22:00:cf:db:e1:ae:ba: 0f:95:21:18:04:89:f2:df:e5:c1:7c:13:b6:27:e8: 63:7d:a5:81:28:51:cd:dc:56:03:95:93:c9:78:f3: 4f:6a:4e:c3:35:fb:a3:63:ba:80:1f:90:42:63:89: f2:ef:1e:95:1c:5d:45:7c:62:48:21:31:8c:1c:6e: e3:27:3f:26:ea:6b:dc:9b:ba:c6:97:f4:e0:1e:74: 12:60:18:f4:25:b5:39:25:ed:55:a4:f8:ef:5b:7b: 8c:47:d7:9a:25:e5:33:d2:fc:73:cb:de:03:4d:ab: c2:57:6a:0d:b9:37:26:f9:41:f9:48:35:40:bd:58: 7d:43:28:c2:0a:7f:05:36:70:76:15:99:dd:2b:68: 70:49:4e:a4:3a:78:e6:b5:5d:1f:db:7e:2d:23:40: 1c:c3:c1:b0:22:d4:ca:b2:d0:e3:09:33:a4:04:1d: dd:c7:39:65:76:d8:23:2f:9e:f5:f2:88:37:5d:92: ab:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:84:01:CC:07:0D:98:CD:E6:BF:B9:05:8A:58:99:CA:5B:41:6E:F4 X509v3 Authority Key Identifier: keyid:95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:16:f6:8c:8d:14:ac:18:cc:41:ee:01:cf:01:fa:18:0e:0a: 3d:0b:fc:45:f4:5f:20:a9:c8:a5:56:2e:3a:01:d1:77:63:82: 39:03:7d:a8:90:ed:81:55:fd:10:14:b3:00:01:b6:4c:5c:98: 91:73:e2:0f:fb:f5:98:43:e5:5d:e0:ec:56:1f:ce:1d:ea:0a: 94:ef:1c:4a:3a:45:13:b8:51:b9:90:fc:8e:71:b8:51:93:ff: 47:6a:51:64:b3:f9:d2:76:85:3d:93:95:a8:b0:de:df:b4:ef: 69:0d:07:cf:c2:ac:d1:4a:15:90:37:38:c6:8c:b2:a8:6c:9c: 10:da:1e:8e:0e:14:6f:3d:8a:8b:5c:f8:4e:f6:35:90:2e:69: f2:b6:2b:8f:58:d8:0d:9e:d4:94:42:a5:c3:21:d8:b6:89:a2: 3b:9a:65:ee:7c:8a:4b:75:87:67:99:a2:5b:d1:08:0b:5e:2a: 24:c8:f7:ea:5c:4a:53:9b:66:34:c0:43:e4:75:50:1f:7d:59: f1:55:5d:e0:0b:66:3f:f8:2e:5b:9b:01:69:d8:1f:33:6f:fb: 6c:8e:fb:a4:d5:95:20:50:15:44:8e:c8:15:c1:7d:9a:de:3b: 5d:d2:44:4f:6b:64:2d:23:9c:f0:48:93:c6:cc:f6:17:47:b7: 38:08:68:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtB2yOYXeO+LtQYKdE21IsAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1NGEyYWVlMDg2MTc0YjAxMjcyZmFlNzc5YWQ0MzFlYjA5 MmFlYjcwHhcNMjUxMjIxMTcwMDM4WhcNMjUxMjIyMTcwMDM4WjAzMTEwLwYDVQQD EyhmMTg0MDFjYzA3MGQ5OGNkZTZiZmI5MDU4YTU4OTljYTViNDE2ZWY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzNiERoGAUs0/ALl//1oDhirSOxxO CKovIqz8Geo33+O0hlcMs6GyC5mOV3h0wAwIt8nCDiOjSR/W56tZBG7qbQt7TyIA z9vhrroPlSEYBIny3+XBfBO2J+hjfaWBKFHN3FYDlZPJePNPak7DNfujY7qAH5BC Y4ny7x6VHF1FfGJIITGMHG7jJz8m6mvcm7rGl/TgHnQSYBj0JbU5Je1VpPjvW3uM R9eaJeUz0vxzy94DTavCV2oNuTcm+UH5SDVAvVh9QyjCCn8FNnB2FZndK2hwSU6k OnjmtV0f234tI0Acw8GwItTKstDjCTOkBB3dxzlldtgjL5718og3XZKr1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPGEAcwHDZjN5r+5BYpYmcpbQW70MB8GA1UdIwQY MBaAFJVKKu4IYXSwEnL653mtQx6wkq63MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFVvcTdnaGhkTEFTY3ZybmVhMURIckNTcnJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8yMzUzOTYtMGU0Mi00Mzc3LTg1NWEt NDU2NWYwNGY4ZDg1LzEvbFVvcTdnaGhkTEFTY3ZybmVhMURIckNTcnJjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS8yMzUzOTYtMGU0Mi00Mzc3LTg1NWEtNDU2NWYwNGY4ZDg1 LzEvbFVvcTdnaGhkTEFTY3ZybmVhMURIckNTcnJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnxb2jI0U rBjMQe4BzwH6GA4KPQv8RfRfIKnIpVYuOgHRd2OCOQN9qJDtgVX9EBSzAAG2TFyY kXPiD/v1mEPlXeDsVh/OHeoKlO8cSjpFE7hRuZD8jnG4UZP/R2pRZLP50naFPZOV qLDe37TvaQ0Hz8Ks0UoVkDc4xoyyqGycENoejg4Ubz2Ki1z4TvY1kC5p8rYrj1jY DZ7UlEKlwyHYtomiO5pl7nyKS3WHZ5miW9EIC14qJMj36lxKU5tmNMBD5HVQH31Z 8VVd4AtmP/guW5sBadgfM2/7bI77pNWVIFAVRI7IFcF9mt47XdJET2tkLSOc8EiT xsz2F0e3OAhoSg== -----END CERTIFICATE-----Generated at Sun Dec 21 19:21:22 2025 by rpki-client