This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json) Hash identifier: 4gA7Y1vyYI0XfhAR+8zYasqauKGiicRb1VgjU/YnC7U= Subject key identifier: A7:A3:BB:BB:14:99:6C:DD:CE:8B:D6:58:97:C3:B6:F0:F3:62:DD:6E Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00 Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000 Certificate serial: 019AF27729389C24A9EA13FDE98C6BD0A682 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft Manifest number: 1772 Signing time: Sat 06 Dec 2025 07:01:26 +0000 Manifest this update: Sat 06 Dec 2025 07:01:26 +0000 Manifest next update: Sun 07 Dec 2025 07:01:26 +0000 Files and hashes: 1: 96CoHDqUFKRWLMKpuPNky2AThV0.roa (hash: 2dbkXGtx2Y2iGJ3uWXJRyOKWK4j+bBsW6iNp6F1vwRk=) 2: Zv6rhEtfx_jSCXc_S8UyXA0vo2U.roa (hash: upx9rJYDv3PHx1B1uURg+ybXETCTfjV8bsr8SvgJ3XM=) 3: biGYeNx8PlSGKHRmVucthKOSlnY.roa (hash: YxlSQax5Hky2oIIKAGXfmWIsjyjpaMRbBxvVdrI+BSI=) 4: g1Zk3nIRea2SYaHqoN92Ss1LCL8.roa (hash: aHQejC3hHy18rRg2jbGxWbnzx0KaJtZTncqKQ8jXn3M=) 5: kZbYAR7_VQFdZ98vhS7MW7IOa5g.roa (hash: veptVlnHGE2k0mSrEVT7abLTAqTrUJe6t8F1/LuZDvo=) 6: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: A/tw7apgsupY8beYmeEyl1B2wi01SFtC5a0XM1E37Xs=) 7: mmvuqSKrxCIOK5dTOpgllxAuYB8.roa (hash: cXrhSBrwqA5XppxSkBQnZWJRKIyKnPJRdZjf9M/iItg=) 8: rZuO-15UbHThyJRmeryxRpgLk2M.roa (hash: /ED0vNPFUaV7PRvXzqX2jHZ983s8HtxjtsJuRuMtCvI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:29:38:9c:24:a9:ea:13:fd:e9:8c:6b:d0:a6:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000 Validity Not Before: Dec 6 07:01:26 2025 GMT Not After : Dec 7 07:01:26 2025 GMT Subject: CN=a7a3bbbb14996cddce8bd65897c3b6f0f362dd6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:71:74:d3:27:b5:53:58:62:09:a1:99:8d:0f: a7:a2:c5:c4:8d:a1:7e:57:a2:ad:bc:f8:63:94:0c: 27:86:5f:e6:ab:de:02:98:06:ce:f5:88:f4:5c:4e: 3f:b5:a7:b1:65:67:4d:f8:f5:c6:82:71:9f:21:7b: 20:3d:47:34:24:8a:49:1d:cc:f5:a3:2d:67:87:5e: 8d:fa:72:7c:b9:d6:c6:63:69:0f:73:1e:8e:a9:3a: 37:df:d2:85:15:8e:00:bf:81:83:3e:f3:5a:03:a4: 59:db:29:fe:c1:8f:2e:c5:50:22:3e:ec:9d:84:fa: 3f:bb:21:96:3d:90:64:55:03:20:1c:2c:86:79:b5: d6:c3:b0:41:12:52:ae:b4:55:0e:d3:52:e9:27:64: 92:75:ac:f2:36:66:e6:96:9f:17:72:5f:bc:38:1f: a1:1a:0d:ce:14:32:95:1e:6b:19:4a:b7:3d:b8:ae: 0d:bd:4e:cf:9a:c4:d0:ff:14:cc:d3:4b:14:a5:c0: f4:f0:87:f6:49:2d:a5:18:6c:03:58:9c:f3:32:22: 2c:11:ea:4a:cb:fb:d1:1a:16:14:0f:25:35:0c:be: f6:af:b6:1b:51:1a:da:3a:0a:82:e7:6a:f0:c6:dd: 19:e0:81:8d:ff:ba:6c:29:62:ca:92:9b:cd:05:75: e8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:A3:BB:BB:14:99:6C:DD:CE:8B:D6:58:97:C3:B6:F0:F3:62:DD:6E X509v3 Authority Key Identifier: keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e6:02:88:79:6a:17:0d:7e:0f:12:7a:a1:6c:4b:0a:2c:21:07: 14:1f:33:82:d9:c3:6f:af:7f:ea:f3:76:7a:cc:65:27:e4:79: fd:cc:6f:94:4e:e6:8d:14:df:4b:03:d2:99:4e:69:05:01:92: 93:5f:34:18:bb:ab:39:0e:e3:7e:1f:d1:1f:60:86:8f:f2:c2: a8:b4:56:50:d8:22:f4:50:0e:df:49:8a:55:7c:c7:21:a1:76: 45:d9:1e:c6:34:c7:48:d0:97:21:4c:8b:c8:da:e0:7c:2e:6d: d5:5d:0e:c3:66:16:e6:03:24:75:a2:ee:8d:07:18:61:44:4c: 16:0b:e6:e7:af:bc:c5:74:90:99:4d:b4:ad:90:53:c1:bb:43: 34:da:64:64:9f:3c:ec:8f:84:7f:52:92:eb:57:90:0a:88:04: 01:72:ad:d0:51:26:74:73:0d:b6:36:25:f3:21:92:3a:97:31: 7f:43:17:6f:9a:b5:b9:0b:bc:f3:69:8c:43:8e:1e:fc:19:7a: 88:7f:86:ab:19:b0:78:3e:b1:b9:b3:7a:d2:07:5d:4c:4e:fa: 7d:bc:45:2b:ee:32:63:9b:d7:b4:6a:bf:3d:f1:62:57:70:bd: 3f:75:d8:da:3c:a9:6e:71:b4:a1:a2:22:5f:3a:02:ff:10:6e: d1:48:04:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydyk4nCSp6hP96Yxr0KaCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0MGExMGEyNTY3MjhmMTFhNGJiYWFkYzMyMDRiN2YwYTM1 YTUwMDAwHhcNMjUxMjA2MDcwMTI2WhcNMjUxMjA3MDcwMTI2WjAzMTEwLwYDVQQD EyhhN2EzYmJiYjE0OTk2Y2RkY2U4YmQ2NTg5N2MzYjZmMGYzNjJkZDZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhHF00ye1U1hiCaGZjQ+nosXEjaF+ V6KtvPhjlAwnhl/mq94CmAbO9Yj0XE4/taexZWdN+PXGgnGfIXsgPUc0JIpJHcz1 oy1nh16N+nJ8udbGY2kPcx6OqTo339KFFY4Av4GDPvNaA6RZ2yn+wY8uxVAiPuyd hPo/uyGWPZBkVQMgHCyGebXWw7BBElKutFUO01LpJ2SSdazyNmbmlp8Xcl+8OB+h Gg3OFDKVHmsZSrc9uK4NvU7PmsTQ/xTM00sUpcD08If2SS2lGGwDWJzzMiIsEepK y/vRGhYUDyU1DL72r7YbURraOgqC52rwxt0Z4IGN/7psKWLKkpvNBXXoJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKeju7sUmWzdzovWWJfDtvDzYt1uMB8GA1UdIwQY MBaAFJQKEKJWco8RpLuq3DIEt/CjWlAAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYt ZGNlNmQ2OTA5MjQ3LzEvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYtZGNlNmQ2OTA5MjQ3 LzEvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA5gKIeWoX DX4PEnqhbEsKLCEHFB8zgtnDb69/6vN2esxlJ+R5/cxvlE7mjRTfSwPSmU5pBQGS k180GLurOQ7jfh/RH2CGj/LCqLRWUNgi9FAO30mKVXzHIaF2RdkexjTHSNCXIUyL yNrgfC5t1V0Ow2YW5gMkdaLujQcYYURMFgvm56+8xXSQmU20rZBTwbtDNNpkZJ88 7I+Ef1KS61eQCogEAXKt0FEmdHMNtjYl8yGSOpcxf0MXb5q1uQu882mMQ44e/Bl6 iH+GqxmweD6xubN60gddTE76fbxFK+4yY5vXtGq/PfFiV3C9P3XY2jypbnG0oaIi XzoC/xBu0UgEug== -----END CERTIFICATE-----Generated at Sat Dec 6 15:32:20 2025 by rpki-client