This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft File: lRibFY2NYBG6X5YlLTAmanDT4GY.mft (raw, json) Hash identifier: CIv5oofWrPGtxJ4iHfflBkbZX+M53xg/nagu9qMQfzA= Subject key identifier: 45:76:73:B7:32:CE:1F:D5:D2:9C:23:08:07:81:80:01:04:2F:EF:4E Authority key identifier: 95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66 Certificate issuer: /CN=95189b158d8d6011ba5f96252d30266a70d3e066 Certificate serial: 019AF19AAF03E84019B0B22E6B8B4DDE8FAE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 03:00:37 +0000 Manifest this update: Sat 06 Dec 2025 03:00:37 +0000 Manifest next update: Sun 07 Dec 2025 03:00:37 +0000 Files and hashes: 1: alfL1bRTQjOY-E2KjHP8N4Ulue0.roa (hash: ybSj2AdhAA+9tbRInXwXzkVBfMf3WHllqssGw6/wFUI=) 2: lRibFY2NYBG6X5YlLTAmanDT4GY.crl (hash: JrUPcTXsOzgmvRPMBG9Id+qq+w9+nMFa5XvB7Wyltks=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:af:03:e8:40:19:b0:b2:2e:6b:8b:4d:de:8f:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95189b158d8d6011ba5f96252d30266a70d3e066 Validity Not Before: Dec 6 03:00:37 2025 GMT Not After : Dec 7 03:00:37 2025 GMT Subject: CN=457673b732ce1fd5d29c230807818001042fef4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:84:b9:3e:de:2e:4f:65:e7:59:7a:d7:46:5a: d1:02:26:b5:eb:0e:f9:e9:96:70:3a:36:cd:3f:7e: f9:a5:5f:f2:14:2c:8c:de:4f:42:1a:cb:6b:21:9d: 2c:50:dd:20:70:84:06:2c:b8:8f:8f:47:3a:f5:a2: cd:7f:8a:93:38:6b:48:2b:eb:f9:1d:c0:b3:64:81: 5b:b1:fd:6f:04:f8:52:e6:d7:85:1b:f0:26:3a:2d: be:71:50:3c:e7:17:45:a7:6b:74:fe:33:0d:54:f5: c4:66:c2:16:c5:47:bd:0a:dc:a5:71:dc:51:40:e9: ca:1f:5c:eb:50:f1:b4:70:33:d8:c3:f7:75:bc:68: ff:ef:44:4b:5d:d2:94:3d:2a:79:04:66:55:00:2e: 6d:31:0d:50:1a:4a:ca:5f:61:27:9f:23:db:9f:5e: 6c:4c:2e:5b:a6:34:49:d2:8a:9c:4c:d5:99:5f:cc: b3:7a:ed:2b:6f:d7:10:23:29:00:93:d3:3a:09:6d: 83:f9:a7:c0:f2:63:53:59:30:fe:ae:39:90:5e:e9: ce:04:db:14:08:04:23:ee:29:ac:41:6e:83:a1:2b: bd:a2:17:b9:4e:1d:85:89:1c:2e:fb:f0:42:1d:d3: 2a:7c:47:91:70:75:6d:cd:9b:9a:6e:d1:e7:79:05: e9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:76:73:B7:32:CE:1F:D5:D2:9C:23:08:07:81:80:01:04:2F:EF:4E X509v3 Authority Key Identifier: keyid:95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:f3:98:55:8f:c7:46:df:52:5b:1e:85:00:b8:bd:61:37:f3: e3:2e:9a:23:78:7d:a8:90:86:b5:12:9a:a6:e3:d5:3e:f1:fd: a4:bb:f8:01:5a:4a:f5:ab:59:e7:3c:6c:40:3c:f1:c6:45:f9: 55:01:5c:ad:cc:d4:b3:4a:53:44:01:95:8a:6b:11:83:35:00: 19:e9:ed:2e:5c:7b:2d:d7:13:c8:17:ea:72:17:00:6a:af:47: 98:73:a8:cb:64:0a:7f:be:17:ec:e9:4c:d5:92:02:cf:b7:d9: d9:87:61:22:ad:79:6c:8d:29:41:68:f7:a3:80:97:84:85:96: c0:e2:8f:e7:6f:0b:27:b7:3e:f1:b2:75:7d:18:56:87:33:11: 8b:52:c8:32:97:cc:11:57:32:07:71:ba:10:56:04:da:62:77: 2e:c8:5b:8d:54:77:e6:eb:ab:16:8f:2c:32:0a:82:7f:9d:eb: 7e:72:25:6e:b1:06:3a:2a:5d:df:b3:9e:5c:1e:d6:83:b2:f3: 0e:e1:ec:eb:a2:35:5f:7a:36:1b:c5:b6:1f:7b:1e:1e:4b:66: 51:55:61:e9:86:2e:56:7b:04:d2:1e:14:51:ec:81:b4:10:1e: ed:a6:44:de:b1:de:95:18:0e:56:5f:1e:a3:83:69:45:73:8f: 6b:7f:f6:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmq8D6EAZsLIua4tN3o+uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1MTg5YjE1OGQ4ZDYwMTFiYTVmOTYyNTJkMzAyNjZhNzBk M2UwNjYwHhcNMjUxMjA2MDMwMDM3WhcNMjUxMjA3MDMwMDM3WjAzMTEwLwYDVQQD Eyg0NTc2NzNiNzMyY2UxZmQ1ZDI5YzIzMDgwNzgxODAwMTA0MmZlZjRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4S5Pt4uT2XnWXrXRlrRAia16w75 6ZZwOjbNP375pV/yFCyM3k9CGstrIZ0sUN0gcIQGLLiPj0c69aLNf4qTOGtIK+v5 HcCzZIFbsf1vBPhS5teFG/AmOi2+cVA85xdFp2t0/jMNVPXEZsIWxUe9CtylcdxR QOnKH1zrUPG0cDPYw/d1vGj/70RLXdKUPSp5BGZVAC5tMQ1QGkrKX2EnnyPbn15s TC5bpjRJ0oqcTNWZX8yzeu0rb9cQIykAk9M6CW2D+afA8mNTWTD+rjmQXunOBNsU CAQj7imsQW6DoSu9ohe5Th2FiRwu+/BCHdMqfEeRcHVtzZuabtHneQXp8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEV2c7cyzh/V0pwjCAeBgAEEL+9OMB8GA1UdIwQY MBaAFJUYmxWNjWARul+WJS0wJmpw0+BmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9kMjdhZDAtNTVjMi00OTA0LWE4YzUt YWNlMTgwZmY5YjE5LzEvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9kMjdhZDAtNTVjMi00OTA0LWE4YzUtYWNlMTgwZmY5YjE5 LzEvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPfOYVY/H Rt9SWx6FALi9YTfz4y6aI3h9qJCGtRKapuPVPvH9pLv4AVpK9atZ5zxsQDzxxkX5 VQFcrczUs0pTRAGVimsRgzUAGentLlx7LdcTyBfqchcAaq9HmHOoy2QKf74X7OlM 1ZICz7fZ2YdhIq15bI0pQWj3o4CXhIWWwOKP528LJ7c+8bJ1fRhWhzMRi1LIMpfM EVcyB3G6EFYE2mJ3LshbjVR35uurFo8sMgqCf53rfnIlbrEGOipd37OeXB7Wg7Lz DuHs66I1X3o2G8W2H3seHktmUVVh6YYuVnsE0h4UUeyBtBAe7aZE3rHelRgOVl8e o4NpRXOPa3/2PQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:07:56 2025 by rpki-client