This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft File: lHEhWA7QLt309eWofTfgF7Mt9xs.mft (raw, json) Hash identifier: 1RKGXzbzLoOjYBLn/Jdm5lYv8tEYl8dVt3rUapWbJSw= Subject key identifier: DD:A7:84:70:CA:E8:E8:6E:BD:75:EE:77:D6:F8:DE:20:C2:AC:B5:A2 Authority key identifier: 94:71:21:58:0E:D0:2E:DD:F4:F5:E5:A8:7D:37:E0:17:B3:2D:F7:1B Certificate issuer: /CN=947121580ed02eddf4f5e5a87d37e017b32df71b Certificate serial: 019AF50A8CC49B3AAC6364538D5D84DE1DA3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHEhWA7QLt309eWofTfgF7Mt9xs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 19:01:40 +0000 Manifest this update: Sat 06 Dec 2025 19:01:40 +0000 Manifest next update: Sun 07 Dec 2025 19:01:40 +0000 Files and hashes: 1: lHEhWA7QLt309eWofTfgF7Mt9xs.crl (hash: CkXnYBU0QAC04JBHXwVfiPEJBKLIMCZDizakNRLVwrg=) 2: qxUZWESkWfPvrh5nMLtmisJ-xm0.roa (hash: QiH9IyXND+kMiLoL1S1ImhCqyZcezaR+0IjNSX+Zg6I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft rsync://rpki.ripe.net/repository/DEFAULT/lHEhWA7QLt309eWofTfgF7Mt9xs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:8c:c4:9b:3a:ac:63:64:53:8d:5d:84:de:1d:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=947121580ed02eddf4f5e5a87d37e017b32df71b Validity Not Before: Dec 6 19:01:40 2025 GMT Not After : Dec 7 19:01:40 2025 GMT Subject: CN=dda78470cae8e86ebd75ee77d6f8de20c2acb5a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ae:71:53:23:29:f5:04:8f:fd:4c:01:78:c9: 25:1f:1e:f7:10:cd:f7:82:b3:4f:6f:36:af:a7:f9: 96:43:c7:5f:03:b1:ce:83:47:9a:86:c9:56:dd:f9: 93:e1:f3:f3:6c:5c:a2:ee:34:dc:46:4e:82:c8:bc: 12:20:53:48:59:01:c6:30:28:c4:fa:f7:be:06:8f: 87:97:f4:57:5a:04:b6:2f:e2:55:10:53:e2:06:ba: e5:8a:e3:b2:80:4d:1a:af:cf:c8:bc:5c:0f:2f:e0: 4b:9b:61:2d:7c:e8:77:3f:ac:28:8e:a9:63:74:41: f6:31:1a:08:16:1d:bc:3a:00:70:25:81:b0:da:36: 69:cb:ec:10:04:22:05:61:99:4d:7c:ee:cb:17:fc: 3c:c4:96:9c:f2:96:76:3d:00:13:99:7e:ae:b6:45: 8f:b2:35:b5:35:5c:16:a3:97:ab:02:71:c0:f6:bc: c2:84:5a:59:fc:0a:c8:62:fb:de:c8:31:f6:21:fb: 2c:09:04:ed:b0:70:66:df:ee:de:13:1b:55:5f:36: 9f:99:ae:df:26:90:4f:1f:6d:8c:f1:75:ec:6e:b2: d5:ed:49:6e:a7:48:c2:fc:31:2f:c2:a8:25:6a:d1: db:3f:3a:79:14:38:e8:70:93:3f:49:24:fe:b3:20: 9c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:A7:84:70:CA:E8:E8:6E:BD:75:EE:77:D6:F8:DE:20:C2:AC:B5:A2 X509v3 Authority Key Identifier: keyid:94:71:21:58:0E:D0:2E:DD:F4:F5:E5:A8:7D:37:E0:17:B3:2D:F7:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHEhWA7QLt309eWofTfgF7Mt9xs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:52:2f:19:08:e8:19:51:13:64:fc:e2:a2:4c:f1:fe:e4:0d: 05:60:ee:6d:c2:96:af:d2:a7:03:59:a1:02:a8:ad:06:7f:44: 7a:c4:b1:e9:d3:c0:da:54:f1:46:70:17:89:d0:16:f0:87:19: 22:a2:63:dd:8f:8a:29:44:fc:d0:c6:27:9f:ff:75:3e:ca:c6: 25:64:93:d8:8c:e2:4b:06:41:43:42:cb:d2:ab:5c:7f:b0:ba: 5b:7c:15:d8:dc:99:84:ed:e1:22:e4:a7:1d:a3:f9:35:b7:bc: fa:85:82:ed:49:5a:32:5c:4b:a4:ef:89:67:73:38:3d:b0:68: 93:04:e0:e6:7f:3e:3d:80:93:42:f2:52:fe:68:0d:f4:8e:f2: 2c:08:f0:61:97:f3:ed:91:45:61:89:73:ef:72:32:4e:06:ab: 14:47:18:6b:7a:eb:d6:5f:0e:c8:e0:d3:45:20:b4:ae:97:8c: 75:ba:43:26:4a:68:ab:fe:87:6a:22:b2:eb:81:96:61:78:f2: ce:ef:70:31:7b:60:20:37:4a:f7:6b:ea:75:a7:5e:6c:2b:f8: 12:1b:e9:20:cd:13:a9:27:3a:d2:82:62:fd:5c:92:35:5b:c2: 16:5a:42:8f:db:c9:56:26:56:a1:50:d5:42:a5:76:58:bf:6e: 21:36:65:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CozEmzqsY2RTjV2E3h2jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0NzEyMTU4MGVkMDJlZGRmNGY1ZTVhODdkMzdlMDE3YjMy ZGY3MWIwHhcNMjUxMjA2MTkwMTQwWhcNMjUxMjA3MTkwMTQwWjAzMTEwLwYDVQQD EyhkZGE3ODQ3MGNhZThlODZlYmQ3NWVlNzdkNmY4ZGUyMGMyYWNiNWEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnq5xUyMp9QSP/UwBeMklHx73EM33 grNPbzavp/mWQ8dfA7HOg0eahslW3fmT4fPzbFyi7jTcRk6CyLwSIFNIWQHGMCjE +ve+Bo+Hl/RXWgS2L+JVEFPiBrrliuOygE0ar8/IvFwPL+BLm2EtfOh3P6wojqlj dEH2MRoIFh28OgBwJYGw2jZpy+wQBCIFYZlNfO7LF/w8xJac8pZ2PQATmX6utkWP sjW1NVwWo5erAnHA9rzChFpZ/ArIYvveyDH2IfssCQTtsHBm3+7eExtVXzafma7f JpBPH22M8XXsbrLV7Ulup0jC/DEvwqglatHbPzp5FDjocJM/SST+syCcvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN2nhHDK6OhuvXXud9b43iDCrLWiMB8GA1UdIwQY MBaAFJRxIVgO0C7d9PXlqH034BezLfcbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEhFaFdBN1FMdDMwOWVXb2ZUZmdGN010OXhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS83OWM1YmItNjE5ZC00YmViLTg2NDkt YTJmNDI1NjAwZGIzLzEvbEhFaFdBN1FMdDMwOWVXb2ZUZmdGN010OXhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS83OWM1YmItNjE5ZC00YmViLTg2NDktYTJmNDI1NjAwZGIz LzEvbEhFaFdBN1FMdDMwOWVXb2ZUZmdGN010OXhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW1IvGQjo GVETZPziokzx/uQNBWDubcKWr9KnA1mhAqitBn9EesSx6dPA2lTxRnAXidAW8IcZ IqJj3Y+KKUT80MYnn/91PsrGJWST2IziSwZBQ0LL0qtcf7C6W3wV2NyZhO3hIuSn HaP5Nbe8+oWC7UlaMlxLpO+JZ3M4PbBokwTg5n8+PYCTQvJS/mgN9I7yLAjwYZfz 7ZFFYYlz73IyTgarFEcYa3rr1l8OyODTRSC0rpeMdbpDJkpoq/6HaiKy64GWYXjy zu9wMXtgIDdK92vqdadebCv4EhvpIM0TqSc60oJi/VySNVvCFlpCj9vJViZWoVDV QqV2WL9uITZlxQ== -----END CERTIFICATE-----Generated at Sat Dec 6 22:43:52 2025 by rpki-client