This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft File: lUoq7ghhdLAScvrnea1DHrCSrrc.mft (raw, json) Hash identifier: VYj+LuF9EpNpgKSTwnWmUErXEF2Tsn5wpidP0zy3peU= Subject key identifier: 4C:F3:62:F6:02:A6:4A:18:36:8A:DB:E0:8C:95:F6:F8:C1:08:D3:33 Authority key identifier: 95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7 Certificate issuer: /CN=954a2aee086174b01272fae779ad431eb092aeb7 Certificate serial: 019AF49C14E497812EC3FCE8B97F538F0FCC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft Manifest number: 176E Signing time: Sat 06 Dec 2025 17:01:00 +0000 Manifest this update: Sat 06 Dec 2025 17:01:00 +0000 Manifest next update: Sun 07 Dec 2025 17:01:00 +0000 Files and hashes: 1: H3J9vQn6K2WpcdcY5HgOFWtNqro.roa (hash: xKCbCFvdaEaZUoBRTwlz8wWkQD7E1NB3Xk+GOW8NOkg=) 2: LOAmRNgz3AR78bC-CKjKBqCJY3M.roa (hash: xld+cbw2oRdP1v3iddUMoK+GuqeXMoAOXkKfJjjcrk8=) 3: SHnk_yFs5TSkbtqQ5cCS3qWVobY.roa (hash: Ajdz5jpsdOUtu+sq17fM1dWOMUvOtdvwwcm7jylQXUs=) 4: gi5eF85DS2YJELAZM_ySYFsKV08.roa (hash: MIgOllfsmrhmY3owqBnBM3hgcAd1OAro3szJ6UxB+Hk=) 5: lUoq7ghhdLAScvrnea1DHrCSrrc.crl (hash: cYcRCVdMI/sMvql/IMHct0zbCkm/Lp3nzpGpQhy6M9Q=) 6: pczhsUKGHELIQkg7tKT9igyRi-A.roa (hash: Y7SOjOUl6Opwe6kgzkQEfHKGoUu9pf1pYRSzuMhv1S4=) 7: zQSqcApOIlR6_yHJBYuZ2ciPt3Q.roa (hash: 5DPAi2kks5u9Bus3Asxn5EjHBrdWHv0pv/j5caKoCFM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 17:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:9c:14:e4:97:81:2e:c3:fc:e8:b9:7f:53:8f:0f:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=954a2aee086174b01272fae779ad431eb092aeb7 Validity Not Before: Dec 6 17:01:00 2025 GMT Not After : Dec 7 17:01:00 2025 GMT Subject: CN=4cf362f602a64a18368adbe08c95f6f8c108d333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:35:51:99:6f:bd:0e:aa:ca:26:9c:b7:60:b3: fb:50:32:11:35:64:74:f9:c3:6b:f4:88:b0:71:b6: cf:fd:ac:22:7e:26:62:fd:e3:c2:46:b5:dd:bb:62: 1d:49:f9:a4:c8:c0:97:e3:ca:50:02:e5:92:ee:ac: 0c:c5:f6:4a:37:85:7a:39:18:0b:71:81:12:da:05: b2:fc:30:c5:87:98:f4:c0:e2:c9:4a:08:0a:b0:5e: 2a:b5:2a:92:dd:6d:ca:54:3c:0b:d1:00:3c:77:b6: 66:02:64:0f:a1:23:85:f8:bc:91:c3:e7:86:bc:2c: 89:94:67:68:d7:31:b6:bf:24:6c:ec:0e:bb:58:c3: 18:70:a6:50:5b:ec:f9:60:a5:a8:b8:ef:00:43:d2: 51:6d:ee:cb:4b:b6:8c:4b:08:c7:d7:c7:0e:1b:ec: 89:00:15:8f:a1:0e:b9:d8:e4:6f:43:ae:37:3b:e9: a9:e3:c3:6d:dc:13:43:e5:be:55:3d:c1:ea:6c:bc: 95:47:7b:5a:e0:6a:2e:e0:37:0e:c8:2c:f1:82:f0: 7b:ce:8c:52:a6:6e:9e:db:01:cf:f2:79:e7:d5:94: 7e:39:dd:a2:0f:d2:75:cd:9c:62:5f:5d:ba:d9:9e: 7f:e9:b4:5c:d6:88:70:06:45:3f:14:ce:91:33:40: 38:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:F3:62:F6:02:A6:4A:18:36:8A:DB:E0:8C:95:F6:F8:C1:08:D3:33 X509v3 Authority Key Identifier: keyid:95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:c4:e3:22:04:d1:33:a2:68:1a:96:07:31:64:14:2a:90:ea: d9:6c:4f:46:50:cc:f6:89:ee:9a:59:0a:1c:e8:d8:c1:a1:a6: c6:c7:3d:52:65:e2:53:9f:82:2f:c8:7d:dc:18:da:b2:dc:5e: 86:bf:eb:8c:bf:fe:a2:d7:46:40:12:f2:86:da:38:52:ca:ef: e7:5a:d5:7b:7f:72:db:e9:72:ef:ce:ac:01:ea:68:4e:46:09: 83:d6:9f:8f:e8:6e:11:1d:f4:09:ba:99:4b:47:14:59:2e:2a: bf:f6:52:a7:94:7c:f1:03:75:16:c8:09:fb:92:40:20:8f:4f: b6:18:7d:89:e7:7b:17:a6:11:69:f2:c3:12:41:2e:1f:fd:d4: b0:99:5e:93:4c:74:e0:d0:48:03:40:11:6f:a1:2f:3d:11:25: 0f:32:0f:05:c3:46:a8:c1:03:59:8c:be:83:30:7f:06:9c:91: ef:d6:53:27:4b:9e:c9:32:f1:8e:bf:41:8d:42:b2:e8:a5:e3: 6f:18:a7:0d:49:af:b0:15:7e:48:7a:61:69:93:26:72:7a:06: c3:4b:d5:8c:4c:24:cf:76:37:b3:8d:a2:12:69:49:ee:6e:1b: 6b:56:61:7e:76:3c:ba:93:7d:24:5b:d6:eb:87:15:73:e3:47: 03:7e:8b:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0nBTkl4Euw/zouX9Tjw/MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1NGEyYWVlMDg2MTc0YjAxMjcyZmFlNzc5YWQ0MzFlYjA5 MmFlYjcwHhcNMjUxMjA2MTcwMTAwWhcNMjUxMjA3MTcwMTAwWjAzMTEwLwYDVQQD Eyg0Y2YzNjJmNjAyYTY0YTE4MzY4YWRiZTA4Yzk1ZjZmOGMxMDhkMzMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjDVRmW+9DqrKJpy3YLP7UDIRNWR0 +cNr9IiwcbbP/awifiZi/ePCRrXdu2IdSfmkyMCX48pQAuWS7qwMxfZKN4V6ORgL cYES2gWy/DDFh5j0wOLJSggKsF4qtSqS3W3KVDwL0QA8d7ZmAmQPoSOF+LyRw+eG vCyJlGdo1zG2vyRs7A67WMMYcKZQW+z5YKWouO8AQ9JRbe7LS7aMSwjH18cOG+yJ ABWPoQ652ORvQ643O+mp48Nt3BND5b5VPcHqbLyVR3ta4Gou4DcOyCzxgvB7zoxS pm6e2wHP8nnn1ZR+Od2iD9J1zZxiX1262Z5/6bRc1ohwBkU/FM6RM0A4WQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEzzYvYCpkoYNorb4IyV9vjBCNMzMB8GA1UdIwQY MBaAFJVKKu4IYXSwEnL653mtQx6wkq63MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFVvcTdnaGhkTEFTY3ZybmVhMURIckNTcnJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8yMzUzOTYtMGU0Mi00Mzc3LTg1NWEt NDU2NWYwNGY4ZDg1LzEvbFVvcTdnaGhkTEFTY3ZybmVhMURIckNTcnJjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS8yMzUzOTYtMGU0Mi00Mzc3LTg1NWEtNDU2NWYwNGY4ZDg1 LzEvbFVvcTdnaGhkTEFTY3ZybmVhMURIckNTcnJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANcTjIgTR M6JoGpYHMWQUKpDq2WxPRlDM9onumlkKHOjYwaGmxsc9UmXiU5+CL8h93Bjastxe hr/rjL/+otdGQBLyhto4Usrv51rVe39y2+ly786sAepoTkYJg9afj+huER30CbqZ S0cUWS4qv/ZSp5R88QN1FsgJ+5JAII9Pthh9ied7F6YRafLDEkEuH/3UsJlek0x0 4NBIA0ARb6EvPRElDzIPBcNGqMEDWYy+gzB/BpyR79ZTJ0ueyTLxjr9BjUKy6KXj bxinDUmvsBV+SHphaZMmcnoGw0vVjEwkz3Y3s42iEmlJ7m4ba1ZhfnY8upN9JFvW 64cVc+NHA36Lyg== -----END CERTIFICATE-----Generated at Sun Dec 7 03:22:05 2025 by rpki-client