This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft File: lUoq7ghhdLAScvrnea1DHrCSrrc.mft (raw, json) Hash identifier: mSUlvh2uefu1R/SqWsv6kRUrL/ZfbZyRAtS+BpiG/JI= Subject key identifier: A9:54:55:B3:25:1F:5F:87:35:44:E4:DA:67:6A:7E:54:D2:BE:E0:B6 Authority key identifier: 95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7 Certificate issuer: /CN=954a2aee086174b01272fae779ad431eb092aeb7 Certificate serial: 019AF68A836782CC53DF5BFF3D575F0EF481 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft Manifest number: 176F Signing time: Sun 07 Dec 2025 02:01:04 +0000 Manifest this update: Sun 07 Dec 2025 02:01:04 +0000 Manifest next update: Mon 08 Dec 2025 02:01:04 +0000 Files and hashes: 1: H3J9vQn6K2WpcdcY5HgOFWtNqro.roa (hash: xKCbCFvdaEaZUoBRTwlz8wWkQD7E1NB3Xk+GOW8NOkg=) 2: LOAmRNgz3AR78bC-CKjKBqCJY3M.roa (hash: xld+cbw2oRdP1v3iddUMoK+GuqeXMoAOXkKfJjjcrk8=) 3: SHnk_yFs5TSkbtqQ5cCS3qWVobY.roa (hash: Ajdz5jpsdOUtu+sq17fM1dWOMUvOtdvwwcm7jylQXUs=) 4: gi5eF85DS2YJELAZM_ySYFsKV08.roa (hash: MIgOllfsmrhmY3owqBnBM3hgcAd1OAro3szJ6UxB+Hk=) 5: lUoq7ghhdLAScvrnea1DHrCSrrc.crl (hash: Wp2FTeIF/HnoxTrG8/z5XBgv0NIdR/KGI2CSewJ5eb4=) 6: pczhsUKGHELIQkg7tKT9igyRi-A.roa (hash: Y7SOjOUl6Opwe6kgzkQEfHKGoUu9pf1pYRSzuMhv1S4=) 7: zQSqcApOIlR6_yHJBYuZ2ciPt3Q.roa (hash: 5DPAi2kks5u9Bus3Asxn5EjHBrdWHv0pv/j5caKoCFM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:8a:83:67:82:cc:53:df:5b:ff:3d:57:5f:0e:f4:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=954a2aee086174b01272fae779ad431eb092aeb7 Validity Not Before: Dec 7 02:01:04 2025 GMT Not After : Dec 8 02:01:04 2025 GMT Subject: CN=a95455b3251f5f873544e4da676a7e54d2bee0b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:d9:6c:71:a5:f9:64:d1:6a:4d:a1:1c:b1:32: 57:9e:bc:9f:87:fa:2a:57:99:6c:35:6c:b3:5b:a0: cf:a7:4f:54:9e:11:c9:67:9e:80:d2:8f:b5:6e:73: 1c:d1:5f:ea:21:bd:f7:68:4c:3a:0e:d0:f9:29:0f: de:0e:7a:88:f3:67:0b:21:08:b0:5c:ac:fc:79:c1: db:83:ec:d2:e6:78:4b:e5:0e:8e:08:c2:c3:83:98: 87:16:0e:9a:97:2b:f4:6c:27:36:41:00:d5:fc:7f: 4d:62:79:e1:7e:c2:06:0d:74:c1:4a:07:b3:d8:b0: 23:5e:17:57:2e:9a:fc:d1:0c:50:ea:13:7a:d5:00: d2:7f:48:38:a7:55:59:c9:d7:12:ba:c9:70:9b:aa: df:8c:ae:7b:64:36:9c:e5:48:a9:d3:06:87:61:45: 85:cc:4e:21:ea:96:00:9d:9f:e3:c7:7a:fe:06:87: 79:5d:fd:66:0c:c2:a1:88:f3:44:d6:d8:30:bb:12: 9e:e5:cb:db:03:bd:58:04:ed:7b:c4:47:ff:85:7b: 0b:bd:e4:ca:6a:c3:57:2d:86:aa:aa:1c:17:e6:d2: 96:86:e6:48:ef:67:75:f4:14:e2:1d:f1:3a:5b:e7: cc:94:2d:0f:3b:4d:f8:09:b7:81:29:77:43:56:46: c0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:54:55:B3:25:1F:5F:87:35:44:E4:DA:67:6A:7E:54:D2:BE:E0:B6 X509v3 Authority Key Identifier: keyid:95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b7:ee:cb:92:32:81:bd:29:9f:88:85:e4:83:cf:9f:13:3d:37: df:39:b3:87:73:33:59:3e:22:92:33:dc:99:f5:d1:f6:bc:5d: 7d:02:f0:82:bd:bd:2d:bf:74:eb:39:74:66:ca:f1:4c:af:0b: 24:08:3a:7d:54:f1:2c:24:e0:33:a7:19:57:70:57:4a:d6:26: 0c:ab:03:97:e1:64:91:d9:c2:78:9d:4c:ff:ab:f5:a4:71:19: 84:d1:05:82:a4:36:3d:19:54:6e:64:ae:2c:9a:fa:a9:03:a6: 93:a5:05:c5:36:67:51:43:5c:a3:af:52:1f:9b:22:0d:0b:db: e3:98:b2:fc:2e:08:90:90:a1:97:d6:22:9d:b8:15:19:bf:4f: 07:89:39:aa:fb:b3:f8:cb:aa:f8:ea:2e:6e:92:b4:fc:41:1c: bc:e2:13:9f:f8:02:7d:f6:7b:0a:e0:27:1f:46:7a:a0:1b:bc: 1f:d7:9a:c3:a5:c6:8f:f7:d5:67:af:28:d8:6b:16:03:0a:9f: a9:a3:99:de:f2:ab:21:b1:b1:24:02:c7:ae:f0:69:c3:3d:59: ec:c7:05:e9:27:e0:b3:8c:e6:c7:64:21:a3:5d:e5:18:43:01: 4e:4d:10:7a:07:cf:3d:3c:f6:1b:61:cc:5d:a3:f6:92:ef:c6: 36:35:f8:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2ioNngsxT31v/PVdfDvSBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1NGEyYWVlMDg2MTc0YjAxMjcyZmFlNzc5YWQ0MzFlYjA5 MmFlYjcwHhcNMjUxMjA3MDIwMTA0WhcNMjUxMjA4MDIwMTA0WjAzMTEwLwYDVQQD EyhhOTU0NTViMzI1MWY1Zjg3MzU0NGU0ZGE2NzZhN2U1NGQyYmVlMGI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAntlscaX5ZNFqTaEcsTJXnryfh/oq V5lsNWyzW6DPp09UnhHJZ56A0o+1bnMc0V/qIb33aEw6DtD5KQ/eDnqI82cLIQiw XKz8ecHbg+zS5nhL5Q6OCMLDg5iHFg6alyv0bCc2QQDV/H9NYnnhfsIGDXTBSgez 2LAjXhdXLpr80QxQ6hN61QDSf0g4p1VZydcSuslwm6rfjK57ZDac5Uip0waHYUWF zE4h6pYAnZ/jx3r+Bod5Xf1mDMKhiPNE1tgwuxKe5cvbA71YBO17xEf/hXsLveTK asNXLYaqqhwX5tKWhuZI72d19BTiHfE6W+fMlC0PO034CbeBKXdDVkbAwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKlUVbMlH1+HNUTk2mdqflTSvuC2MB8GA1UdIwQY MBaAFJVKKu4IYXSwEnL653mtQx6wkq63MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFVvcTdnaGhkTEFTY3ZybmVhMURIckNTcnJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8yMzUzOTYtMGU0Mi00Mzc3LTg1NWEt NDU2NWYwNGY4ZDg1LzEvbFVvcTdnaGhkTEFTY3ZybmVhMURIckNTcnJjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS8yMzUzOTYtMGU0Mi00Mzc3LTg1NWEtNDU2NWYwNGY4ZDg1 LzEvbFVvcTdnaGhkTEFTY3ZybmVhMURIckNTcnJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt+7LkjKB vSmfiIXkg8+fEz033zmzh3MzWT4ikjPcmfXR9rxdfQLwgr29Lb906zl0ZsrxTK8L JAg6fVTxLCTgM6cZV3BXStYmDKsDl+FkkdnCeJ1M/6v1pHEZhNEFgqQ2PRlUbmSu LJr6qQOmk6UFxTZnUUNco69SH5siDQvb45iy/C4IkJChl9YinbgVGb9PB4k5qvuz +Muq+OoubpK0/EEcvOITn/gCffZ7CuAnH0Z6oBu8H9eaw6XGj/fVZ68o2GsWAwqf qaOZ3vKrIbGxJALHrvBpwz1Z7McF6Sfgs4zmx2Qho13lGEMBTk0QegfPPTz2G2HM XaP2ku/GNjX4zw== -----END CERTIFICATE-----Generated at Sun Dec 7 05:36:13 2025 by rpki-client