This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.mft File: Lokc9xG_fhxC4ILWoviaBL7rldE.mft (raw, json) Hash identifier: TmjT2qtUZxXnPQqYRncUWQMssnMbXnwWnikeY5oCYe8= Subject key identifier: 98:B4:BC:E1:83:29:69:6A:E6:2B:91:91:E8:EF:C5:E9:FC:D9:B4:6D Authority key identifier: 2E:89:1C:F7:11:BF:7E:1C:42:E0:82:D6:A2:F8:9A:04:BE:EB:95:D1 Certificate issuer: /CN=2e891cf711bf7e1c42e082d6a2f89a04beeb95d1 Certificate serial: 019AF578642BE6D24450826DD461833353F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lokc9xG_fhxC4ILWoviaBL7rldE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.mft Manifest number: 0367 Signing time: Sat 06 Dec 2025 21:01:39 +0000 Manifest this update: Sat 06 Dec 2025 21:01:39 +0000 Manifest next update: Sun 07 Dec 2025 21:01:39 +0000 Files and hashes: 1: Lokc9xG_fhxC4ILWoviaBL7rldE.crl (hash: K6yFWt7dMYXT9xg03diFupg1q1m48NhhCD9jjndJbII=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.crl rsync://rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.mft rsync://rpki.ripe.net/repository/DEFAULT/Lokc9xG_fhxC4ILWoviaBL7rldE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:78:64:2b:e6:d2:44:50:82:6d:d4:61:83:33:53:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e891cf711bf7e1c42e082d6a2f89a04beeb95d1 Validity Not Before: Dec 6 21:01:39 2025 GMT Not After : Dec 7 21:01:39 2025 GMT Subject: CN=98b4bce18329696ae62b9191e8efc5e9fcd9b46d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:20:7b:3e:f0:03:33:9b:50:93:fb:a8:22:cf: c8:8b:1c:36:e2:27:f2:eb:30:2e:35:e5:8f:cc:7f: bb:d8:96:ab:df:21:63:ae:5c:12:1a:41:9b:65:96: e8:1d:fc:73:0c:73:e5:f7:44:7c:f3:4b:a7:66:73: 9c:40:dd:63:ff:54:5d:b6:ca:5c:8f:66:94:72:c4: 19:5d:f2:c5:13:d5:56:ae:8c:08:f2:43:2d:a4:5c: 02:a9:a1:2e:4e:33:94:08:0f:78:d9:d7:c0:dc:ca: e4:19:8c:9e:81:7b:a2:71:1e:43:5f:26:c8:6a:4c: 1a:e3:cf:6c:68:a2:99:76:06:29:4a:19:2d:51:df: 76:cd:06:6a:20:98:c8:16:c1:b4:88:de:4e:47:0d: ca:cc:31:a0:7f:4a:0c:0f:80:09:f3:8e:16:78:ba: 2c:50:5e:d4:f2:57:d8:ce:b9:51:cf:6d:0e:17:7c: 6e:3e:3e:1f:30:d1:75:53:9f:33:55:6c:c9:55:35: 42:7a:38:c1:7e:fa:3a:76:25:80:9a:c9:f7:ae:92: 54:8b:25:d3:11:16:82:c0:2f:07:b6:4f:1c:84:81: 71:d8:39:1d:64:8a:eb:c9:2b:fe:80:b4:f0:58:c6: 28:d6:63:4f:7f:7f:13:e0:bf:98:b0:87:d4:4d:a9: 07:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:B4:BC:E1:83:29:69:6A:E6:2B:91:91:E8:EF:C5:E9:FC:D9:B4:6D X509v3 Authority Key Identifier: keyid:2E:89:1C:F7:11:BF:7E:1C:42:E0:82:D6:A2:F8:9A:04:BE:EB:95:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lokc9xG_fhxC4ILWoviaBL7rldE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ca:a6:4f:50:a0:70:f0:c0:58:34:02:79:8d:9c:4f:a1:c4: e5:26:8c:ea:e2:bc:ff:22:95:58:88:f7:b0:ae:f4:eb:b3:b6: 21:4b:5f:20:14:8b:3e:ba:f1:19:7e:9d:aa:62:3f:0f:52:af: 84:59:78:81:83:98:07:f8:db:c1:c1:4d:04:e5:ff:ae:1a:ae: 29:81:4c:a5:a5:a9:0b:8a:89:b8:bd:1b:db:33:f8:97:28:c1: 6a:0c:8e:9f:ec:dc:02:d6:55:d4:94:5a:64:dc:24:bf:6f:ff: 2e:86:46:67:05:4d:41:f2:50:8f:09:29:cd:8c:6a:70:e8:a2: 48:52:b6:18:b9:6e:38:78:ff:05:3f:03:af:4a:b5:2b:6a:e0: e3:87:05:07:e5:18:53:e0:e5:9a:b7:c2:2b:a5:e9:27:43:f7: 02:5c:49:de:0e:46:8e:8f:c4:11:5f:06:de:a4:f2:a0:7d:d4: f7:f0:b9:c9:01:59:39:0e:cd:db:ce:00:43:43:27:ea:2a:31: 90:57:2e:7e:f3:99:56:4b:25:b4:37:ff:ce:d3:75:8d:bc:e0: 9a:da:e2:47:6a:06:49:31:e4:72:9e:ca:71:e2:a3:19:24:86: 74:b4:60:12:21:91:99:43:c3:5a:cc:30:dd:7d:cd:b8:84:b9: ea:e6:b9:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1eGQr5tJEUIJt1GGDM1PxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlODkxY2Y3MTFiZjdlMWM0MmUwODJkNmEyZjg5YTA0YmVl Yjk1ZDEwHhcNMjUxMjA2MjEwMTM5WhcNMjUxMjA3MjEwMTM5WjAzMTEwLwYDVQQD Eyg5OGI0YmNlMTgzMjk2OTZhZTYyYjkxOTFlOGVmYzVlOWZjZDliNDZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxSB7PvADM5tQk/uoIs/Iixw24ify 6zAuNeWPzH+72Jar3yFjrlwSGkGbZZboHfxzDHPl90R880unZnOcQN1j/1Rdtspc j2aUcsQZXfLFE9VWrowI8kMtpFwCqaEuTjOUCA942dfA3MrkGYyegXuicR5DXybI akwa489saKKZdgYpShktUd92zQZqIJjIFsG0iN5ORw3KzDGgf0oMD4AJ844WeLos UF7U8lfYzrlRz20OF3xuPj4fMNF1U58zVWzJVTVCejjBfvo6diWAmsn3rpJUiyXT ERaCwC8Htk8chIFx2DkdZIrrySv+gLTwWMYo1mNPf38T4L+YsIfUTakHDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJi0vOGDKWlq5iuRkejvxen82bRtMB8GA1UdIwQY MBaAFC6JHPcRv34cQuCC1qL4mgS+65XRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTG9rYzl4R19maHhDNElMV292aWFCTDdybGRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS81MGI1NTAtZjg1ZS00ODliLTg0NzMt ZTAzNjUzODFiYjg1LzEvTG9rYzl4R19maHhDNElMV292aWFCTDdybGRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS81MGI1NTAtZjg1ZS00ODliLTg0NzMtZTAzNjUzODFiYjg1 LzEvTG9rYzl4R19maHhDNElMV292aWFCTDdybGRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfcqmT1Cg cPDAWDQCeY2cT6HE5SaM6uK8/yKVWIj3sK7067O2IUtfIBSLPrrxGX6dqmI/D1Kv hFl4gYOYB/jbwcFNBOX/rhquKYFMpaWpC4qJuL0b2zP4lyjBagyOn+zcAtZV1JRa ZNwkv2//LoZGZwVNQfJQjwkpzYxqcOiiSFK2GLluOHj/BT8Dr0q1K2rg44cFB+UY U+DlmrfCK6XpJ0P3AlxJ3g5Gjo/EEV8G3qTyoH3U9/C5yQFZOQ7N284AQ0Mn6iox kFcufvOZVksltDf/ztN1jbzgmtriR2oGSTHkcp7KceKjGSSGdLRgEiGRmUPDWsww 3X3NuIS56ua5iw== -----END CERTIFICATE-----Generated at Sun Dec 7 03:08:29 2025 by rpki-client