This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft File: lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft (raw, json) Hash identifier: qz84Np/HUQ13PWFMJhe//5EahBjKyw44/cvQ8O0dXtc= Subject key identifier: B5:80:AD:F4:0E:8E:07:56:21:8F:E8:AF:B8:B0:82:17:51:44:C8:DD Authority key identifier: 95:46:46:5C:A5:B8:6C:25:A0:2E:52:EC:BF:04:C4:CF:BC:07:65:4D Certificate issuer: /CN=9546465ca5b86c25a02e52ecbf04c4cfbc07654d Certificate serial: 019AF2772E2902720675B0C9C9C1F613D534 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUZGXKW4bCWgLlLsvwTEz7wHZU0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft Manifest number: 05AC Signing time: Sat 06 Dec 2025 07:01:28 +0000 Manifest this update: Sat 06 Dec 2025 07:01:28 +0000 Manifest next update: Sun 07 Dec 2025 07:01:28 +0000 Files and hashes: 1: NWUftztBrG96_y2EzypECwRaWiE.roa (hash: iB3abFntFNLTwV5YoQUMjYIpTV58Rd0ggjc38BexLcc=) 2: lUZGXKW4bCWgLlLsvwTEz7wHZU0.crl (hash: 15X4eUrBHWADVJ4+UjKCA5E34hU+/NhqLFJ7uZ/jtJU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft rsync://rpki.ripe.net/repository/DEFAULT/lUZGXKW4bCWgLlLsvwTEz7wHZU0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:2e:29:02:72:06:75:b0:c9:c9:c1:f6:13:d5:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9546465ca5b86c25a02e52ecbf04c4cfbc07654d Validity Not Before: Dec 6 07:01:28 2025 GMT Not After : Dec 7 07:01:28 2025 GMT Subject: CN=b580adf40e8e0756218fe8afb8b082175144c8dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:3d:4e:76:41:e3:ac:e6:1e:27:05:4c:78:83: 38:71:e1:72:6c:f3:d7:92:da:d1:9a:16:39:55:2f: a0:60:71:be:a9:c0:91:02:c7:09:cf:7e:eb:ac:52: a0:f2:87:fb:1f:f2:53:ed:86:5b:c9:b0:6e:47:cf: e1:64:56:e7:99:c2:41:b1:be:87:5f:ee:bc:80:85: 42:a7:ec:d0:9e:43:aa:fb:cc:17:7e:d6:fc:3a:ba: 48:85:22:78:38:23:41:43:ac:2e:35:7c:ac:0a:3b: 50:bd:8a:99:45:56:a9:c0:ca:04:2a:73:84:eb:e3: 37:98:ce:db:28:98:29:61:f5:86:0d:15:32:34:12: 97:69:c0:5e:47:43:49:ca:c1:f1:45:d5:f3:86:91: 8e:90:f6:4c:79:36:1c:a0:30:58:95:55:70:ec:12: d7:60:37:67:5e:76:14:03:2c:12:36:70:95:be:28: fc:e6:47:e7:15:76:59:5b:84:41:34:0a:fd:b1:8e: af:5f:0f:8b:72:fc:a7:57:46:69:7e:41:c6:b6:3f: 8a:a9:26:b5:3b:67:0a:f0:84:4d:e7:7b:e6:55:ea: d5:3f:26:fd:e7:ab:b5:a5:fc:f4:fc:f6:5e:0e:c7: a6:6c:6f:1e:b3:a0:5b:5e:86:46:1f:2f:7a:c7:8e: f9:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:80:AD:F4:0E:8E:07:56:21:8F:E8:AF:B8:B0:82:17:51:44:C8:DD X509v3 Authority Key Identifier: keyid:95:46:46:5C:A5:B8:6C:25:A0:2E:52:EC:BF:04:C4:CF:BC:07:65:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUZGXKW4bCWgLlLsvwTEz7wHZU0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:ae:10:98:d8:ff:51:24:0d:ff:bd:eb:d5:46:54:1d:39:89: fc:c9:76:94:6f:2e:b7:d2:6b:9c:70:9e:33:33:ff:ee:64:cf: 76:02:f4:28:41:22:a9:c2:90:ed:de:99:1f:17:4d:e4:5d:c6: 6c:d9:83:e9:dc:ea:03:16:3f:d1:3b:e6:05:76:0b:5e:43:74: db:9b:23:e7:bf:95:8b:13:4f:7a:56:be:64:a9:e0:96:fc:f6: 7d:6c:aa:a6:42:6e:84:1b:93:07:ff:f3:76:6d:62:d9:83:4f: fa:7d:ae:28:47:25:1f:39:09:a4:64:d8:d9:8c:4c:e3:b9:0d: 97:cf:64:d1:6a:92:ea:ed:82:81:f4:a8:29:11:bb:38:4b:49: 42:c9:49:89:7c:1d:a7:cc:99:49:dd:03:cf:63:74:6d:1a:b1: d2:f0:89:2d:33:0b:fb:de:89:75:66:fa:1a:9b:c9:9f:97:b3: 19:19:9e:4d:a8:6d:6a:3c:17:af:45:85:af:4b:13:a2:a0:fe: 48:3a:69:68:ca:f1:cd:1a:c6:cc:0a:bf:9f:a3:a8:f6:44:bd: 75:9f:6c:62:84:e0:b1:7a:57:e0:f7:85:c1:b3:cd:f8:4c:a7: 39:c3:22:df:58:8b:b6:d4:5b:89:11:6f:55:32:02:77:7c:0d: 28:24:ff:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydy4pAnIGdbDJycH2E9U0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1NDY0NjVjYTViODZjMjVhMDJlNTJlY2JmMDRjNGNmYmMw NzY1NGQwHhcNMjUxMjA2MDcwMTI4WhcNMjUxMjA3MDcwMTI4WjAzMTEwLwYDVQQD EyhiNTgwYWRmNDBlOGUwNzU2MjE4ZmU4YWZiOGIwODIxNzUxNDRjOGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3z1OdkHjrOYeJwVMeIM4ceFybPPX ktrRmhY5VS+gYHG+qcCRAscJz37rrFKg8of7H/JT7YZbybBuR8/hZFbnmcJBsb6H X+68gIVCp+zQnkOq+8wXftb8OrpIhSJ4OCNBQ6wuNXysCjtQvYqZRVapwMoEKnOE 6+M3mM7bKJgpYfWGDRUyNBKXacBeR0NJysHxRdXzhpGOkPZMeTYcoDBYlVVw7BLX YDdnXnYUAywSNnCVvij85kfnFXZZW4RBNAr9sY6vXw+LcvynV0ZpfkHGtj+KqSa1 O2cK8IRN53vmVerVPyb956u1pfz0/PZeDsembG8es6BbXoZGHy96x475UQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLWArfQOjgdWIY/or7iwghdRRMjdMB8GA1UdIwQY MBaAFJVGRlyluGwloC5S7L8ExM+8B2VNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFVaR1hLVzRiQ1dnTGxMc3Z3VEV6N3dIWlUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9jNDhiNGMtMDIyMS00NjQ2LWJiNzIt MDVjZjlkYjQzMGIzLzEvbFVaR1hLVzRiQ1dnTGxMc3Z3VEV6N3dIWlUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS9jNDhiNGMtMDIyMS00NjQ2LWJiNzItMDVjZjlkYjQzMGIz LzEvbFVaR1hLVzRiQ1dnTGxMc3Z3VEV6N3dIWlUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQq4QmNj/ USQN/73r1UZUHTmJ/Ml2lG8ut9JrnHCeMzP/7mTPdgL0KEEiqcKQ7d6ZHxdN5F3G bNmD6dzqAxY/0TvmBXYLXkN025sj57+VixNPela+ZKnglvz2fWyqpkJuhBuTB//z dm1i2YNP+n2uKEclHzkJpGTY2YxM47kNl89k0WqS6u2CgfSoKRG7OEtJQslJiXwd p8yZSd0Dz2N0bRqx0vCJLTML+96JdWb6GpvJn5ezGRmeTahtajwXr0WFr0sToqD+ SDppaMrxzRrGzAq/n6Oo9kS9dZ9sYoTgsXpX4PeFwbPN+EynOcMi31iLttRbiRFv VTICd3wNKCT/0Q== -----END CERTIFICATE-----Generated at Sat Dec 6 13:49:21 2025 by rpki-client