This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft File: lQSgmkWW2BV9pp3DNGxavOTOThM.mft (raw, json) Hash identifier: sKYmoiMV0Z6fi9vcNbITFxjnpK01Mlz0CFnyXknoOsY= Subject key identifier: 9A:4A:32:F0:F8:51:0E:BE:C9:40:80:FA:1B:35:F3:27:7A:F0:54:CC Authority key identifier: 95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13 Certificate issuer: /CN=9504a09a4596d8157da69dc3346c5abce4ce4e13 Certificate serial: 019B3344A426E960140A0E876F7541EDEF93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft Manifest number: 03E1 Signing time: Thu 18 Dec 2025 21:01:35 +0000 Manifest this update: Thu 18 Dec 2025 21:01:35 +0000 Manifest next update: Fri 19 Dec 2025 21:01:35 +0000 Files and hashes: 1: Pe2NALGIvmCuJSlPZ20SuZ-M9hg.roa (hash: OtaghSGRDvDf2NYLRv+GOjbFhhiw6EZBcNNwCgYOYjA=) 2: lQSgmkWW2BV9pp3DNGxavOTOThM.crl (hash: N46xTP4+yKtDyW4yRtpz9tVQwpQ6wzFv1X7wjZn2VUo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:44:a4:26:e9:60:14:0a:0e:87:6f:75:41:ed:ef:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9504a09a4596d8157da69dc3346c5abce4ce4e13 Validity Not Before: Dec 18 21:01:35 2025 GMT Not After : Dec 19 21:01:35 2025 GMT Subject: CN=9a4a32f0f8510ebec94080fa1b35f3277af054cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f7:29:d1:3a:00:4f:cc:9e:03:1f:58:49:c2: 9b:ea:8c:7e:eb:f9:f6:16:fc:a9:45:67:59:17:e0: 70:d0:6b:09:61:b8:55:d0:51:27:1b:82:58:76:d3: 3d:41:9b:15:14:6d:9a:e9:f3:78:29:11:1d:0f:30: 04:d0:3f:23:d2:61:14:15:92:ea:72:2f:8a:18:8a: 0d:90:4c:de:61:14:f8:99:d0:81:32:a8:de:53:ba: 7b:51:28:c0:30:1f:50:84:6e:7b:df:21:cb:b7:9a: e9:ac:bc:3c:f4:4f:4f:08:03:ca:4e:4a:a7:d5:f9: ed:a9:91:26:89:7d:5a:bb:7a:5b:27:8e:93:48:e7: d0:b5:2e:cc:76:7a:66:15:9e:50:25:98:bf:21:40: 85:9e:01:a2:75:ad:54:7c:8c:86:4a:b0:e6:93:73: eb:e8:a0:f5:46:f8:35:8f:c6:f7:43:c5:52:de:64: 84:80:88:1b:16:f7:a5:76:28:0b:13:8d:34:9c:b7: 74:64:1c:3c:57:b2:ef:73:d9:1c:b4:76:3c:58:9c: ca:be:d7:75:9d:9b:03:52:02:fd:fb:79:43:a4:0a: d5:23:82:03:76:7a:7c:8a:c2:e9:03:1a:39:7b:b4: 45:69:a6:16:41:a6:b3:d3:9d:3c:43:f6:25:e1:06: 9c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:4A:32:F0:F8:51:0E:BE:C9:40:80:FA:1B:35:F3:27:7A:F0:54:CC X509v3 Authority Key Identifier: keyid:95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:bf:12:da:0f:09:1d:51:8a:e3:a9:3f:37:e3:be:1f:f9:dd: fd:c7:cc:e2:31:ba:d6:6e:ee:7e:77:07:1d:0b:4e:a7:ff:0e: 02:38:f9:b5:1e:14:22:54:bd:4b:0b:ea:8d:fe:09:d3:69:86: 75:e2:fc:97:0a:d2:ed:2c:40:08:b8:37:4b:74:6e:a9:9f:b5: b1:ce:db:13:89:ef:4f:c2:4d:0b:02:c8:44:17:46:54:97:2b: e6:0b:ae:d7:b6:28:f5:dc:83:b8:fe:f9:95:89:e7:2e:ff:75: 86:0c:6c:71:7c:e6:23:6b:f3:12:94:e1:40:0a:20:a4:22:6a: 66:65:55:3b:e9:35:9e:57:0c:62:02:d7:aa:c9:d1:18:f2:35: d8:18:e2:35:7a:06:33:6a:00:6f:3c:1b:71:80:3f:08:e5:67: 8d:dc:80:12:f6:59:25:cb:a0:a8:ee:f9:0c:dd:68:fe:d0:31: f6:a6:c4:bb:bc:cd:3f:db:3f:3d:fa:f6:7b:d9:6f:fa:d2:5a: 32:88:3f:ba:00:28:12:4f:0d:ff:93:4f:b5:55:f4:67:2a:c6: af:3c:98:71:2b:ca:e0:a8:82:d7:71:c6:6f:d3:19:b5:94:83: e9:ee:f5:30:31:dd:ae:99:49:70:d8:81:8e:20:27:56:38:f1: d6:42:8d:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszRKQm6WAUCg6Hb3VB7e+TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1MDRhMDlhNDU5NmQ4MTU3ZGE2OWRjMzM0NmM1YWJjZTRj ZTRlMTMwHhcNMjUxMjE4MjEwMTM1WhcNMjUxMjE5MjEwMTM1WjAzMTEwLwYDVQQD Eyg5YTRhMzJmMGY4NTEwZWJlYzk0MDgwZmExYjM1ZjMyNzdhZjA1NGNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfcp0ToAT8yeAx9YScKb6ox+6/n2 FvypRWdZF+Bw0GsJYbhV0FEnG4JYdtM9QZsVFG2a6fN4KREdDzAE0D8j0mEUFZLq ci+KGIoNkEzeYRT4mdCBMqjeU7p7USjAMB9QhG573yHLt5rprLw89E9PCAPKTkqn 1fntqZEmiX1au3pbJ46TSOfQtS7MdnpmFZ5QJZi/IUCFngGida1UfIyGSrDmk3Pr 6KD1Rvg1j8b3Q8VS3mSEgIgbFveldigLE400nLd0ZBw8V7Lvc9kctHY8WJzKvtd1 nZsDUgL9+3lDpArVI4IDdnp8isLpAxo5e7RFaaYWQaaz0508Q/Yl4QacrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJpKMvD4UQ6+yUCA+hs18yd68FTMMB8GA1UdIwQY MBaAFJUEoJpFltgVfaadwzRsWrzkzk4TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFFTZ21rV1cyQlY5cHAzRE5HeGF2T1RPVGhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC85ZWFmNWMtOGM1NC00NWVkLWJmYzQt NjczYzM4ODkxNjFkLzEvbFFTZ21rV1cyQlY5cHAzRE5HeGF2T1RPVGhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC85ZWFmNWMtOGM1NC00NWVkLWJmYzQtNjczYzM4ODkxNjFk LzEvbFFTZ21rV1cyQlY5cHAzRE5HeGF2T1RPVGhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAr8S2g8J HVGK46k/N+O+H/nd/cfM4jG61m7ufncHHQtOp/8OAjj5tR4UIlS9Swvqjf4J02mG deL8lwrS7SxACLg3S3RuqZ+1sc7bE4nvT8JNCwLIRBdGVJcr5guu17Yo9dyDuP75 lYnnLv91hgxscXzmI2vzEpThQAogpCJqZmVVO+k1nlcMYgLXqsnRGPI12BjiNXoG M2oAbzwbcYA/COVnjdyAEvZZJcugqO75DN1o/tAx9qbEu7zNP9s/Pfr2e9lv+tJa Mog/ugAoEk8N/5NPtVX0ZyrGrzyYcSvK4KiC13HGb9MZtZSD6e71MDHdrplJcNiB jiAnVjjx1kKNig== -----END CERTIFICATE-----Generated at Thu Dec 18 22:34:41 2025 by rpki-client