This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft File: _lNCbiNhumZdjyW9PPrvwg69pIg.mft (raw, json) Hash identifier: TJjcB1MXhj+s7jCPm7tyBa+dFUSNDc+d1l3mZ7FcaGY= Subject key identifier: FB:4D:94:25:6A:EE:03:13:04:E3:6C:7C:29:34:5A:E3:CF:10:04:FB Authority key identifier: FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88 Certificate issuer: /CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488 Certificate serial: 019B3C0FEEEE5D3A925805A7C7A4EE5F2951 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft Manifest number: 149A Signing time: Sat 20 Dec 2025 14:00:35 +0000 Manifest this update: Sat 20 Dec 2025 14:00:35 +0000 Manifest next update: Sun 21 Dec 2025 14:00:35 +0000 Files and hashes: 1: _lNCbiNhumZdjyW9PPrvwg69pIg.crl (hash: IpcAFl68rMs5pBJDe6GNc54YSUj22ntyHs+A3O+/a+4=) 2: haHKJrHUqbm5DebtyDYhDiGIt7A.roa (hash: Cz3j+Dv+gBqpFYF7WEnyvYZy+IRYW0vriwmXpF2DtvM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:0f:ee:ee:5d:3a:92:58:05:a7:c7:a4:ee:5f:29:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488 Validity Not Before: Dec 20 14:00:35 2025 GMT Not After : Dec 21 14:00:35 2025 GMT Subject: CN=fb4d94256aee031304e36c7c29345ae3cf1004fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8e:38:46:3e:c2:f8:38:c4:a1:66:50:f0:d3: 2d:5d:c0:a0:b9:8b:26:74:ed:32:0f:53:d1:0d:60: d3:e1:fb:59:6d:d3:af:8a:c5:09:7e:62:ce:ab:1c: 33:e6:4f:3d:e6:63:4e:ad:a6:b2:dd:f5:da:28:b0: e7:e4:47:2c:3c:0b:72:9b:15:3d:cf:0e:c2:a7:45: 59:2c:5c:58:c3:e4:3f:81:41:99:c6:57:c9:67:2f: 99:95:15:57:0d:1b:08:9d:85:0d:66:be:8b:82:db: f9:ac:ec:57:80:ee:f2:82:f5:75:03:48:26:14:8b: 48:21:bc:d4:d0:c5:40:60:af:aa:32:73:60:8d:d5: 39:bf:b9:3a:70:2e:d7:f9:10:61:65:5b:53:eb:b6: be:23:b4:18:a4:d0:2f:e9:5a:93:6c:25:a6:40:26: 51:5c:cd:44:12:d7:07:4f:ad:92:41:64:3a:a4:46: a1:40:ff:e4:b5:5c:0c:5c:85:55:b7:22:ec:19:8a: 85:6c:9e:40:2c:67:72:8d:e5:f3:16:42:01:92:58: 82:6b:ef:50:e9:91:dc:3e:78:5e:46:6e:bf:25:d9: 01:a3:22:f3:bf:76:e7:09:ce:8d:52:4c:df:c9:45: 4c:64:f1:77:6f:06:95:6e:fb:21:69:0b:18:6a:c8: a8:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:4D:94:25:6A:EE:03:13:04:E3:6C:7C:29:34:5A:E3:CF:10:04:FB X509v3 Authority Key Identifier: keyid:FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:76:76:9a:6f:32:5c:1c:1d:1e:12:9c:c8:5b:fc:d6:f8:9d: b7:05:9d:a5:56:8d:ce:ab:47:ac:d6:48:93:97:4a:b1:9f:f5: ea:42:25:6e:e5:e1:a9:2c:fb:7d:f9:4b:c9:32:0a:8b:e3:74: a9:0d:07:81:80:5a:0b:86:53:9d:36:c9:15:f8:d2:aa:88:eb: 2f:1e:90:e9:99:ad:58:61:16:06:a2:1a:9e:39:be:41:b8:a2: a6:74:fa:17:45:60:95:8c:34:61:e1:17:c8:37:4e:8c:a5:03: 0c:5e:67:77:2d:5e:3d:c2:2a:f7:a1:56:62:61:26:05:58:f6: b1:6e:00:ba:54:7e:8a:58:23:27:71:4c:02:b8:ab:aa:5e:fe: bb:10:9a:ac:87:f0:cd:94:06:9a:bb:71:25:db:54:40:82:df: 8a:32:7d:45:6f:87:2a:e3:6e:64:bb:29:de:5b:f6:cb:d6:60: d0:75:2a:d9:a8:21:fd:80:66:55:48:37:27:b1:c2:a9:a7:cc: e8:f1:b5:39:7f:24:88:bd:ed:4f:6e:f2:07:35:45:ce:4c:1e: bc:06:33:e3:b5:34:84:dc:6d:7e:2d:47:22:0e:3c:9c:c6:dc: c4:61:bc:79:54:cd:09:a8:af:38:41:c7:21:30:bd:2c:66:54: 57:76:05:d7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8D+7uXTqSWAWnx6TuXylRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlNTM0MjZlMjM2MWJhNjY1ZDhmMjViZDNjZmFlZmMyMGVi ZGE0ODgwHhcNMjUxMjIwMTQwMDM1WhcNMjUxMjIxMTQwMDM1WjAzMTEwLwYDVQQD EyhmYjRkOTQyNTZhZWUwMzEzMDRlMzZjN2MyOTM0NWFlM2NmMTAwNGZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoo44Rj7C+DjEoWZQ8NMtXcCguYsm dO0yD1PRDWDT4ftZbdOvisUJfmLOqxwz5k895mNOraay3fXaKLDn5EcsPAtymxU9 zw7Cp0VZLFxYw+Q/gUGZxlfJZy+ZlRVXDRsInYUNZr6Lgtv5rOxXgO7ygvV1A0gm FItIIbzU0MVAYK+qMnNgjdU5v7k6cC7X+RBhZVtT67a+I7QYpNAv6VqTbCWmQCZR XM1EEtcHT62SQWQ6pEahQP/ktVwMXIVVtyLsGYqFbJ5ALGdyjeXzFkIBkliCa+9Q 6ZHcPnheRm6/JdkBoyLzv3bnCc6NUkzfyUVMZPF3bwaVbvshaQsYasioxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPtNlCVq7gMTBONsfCk0WuPPEAT7MB8GA1UdIwQY MBaAFP5TQm4jYbpmXY8lvTz678IOvaSIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2xOQ2JpTmh1bVpkanlXOVBQcnZ3ZzY5cElnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi83MDgzYjgtMTU4Zi00MGQyLTkxY2Mt OTc3NWE1ZDY2MDRjLzEvX2xOQ2JpTmh1bVpkanlXOVBQcnZ3ZzY5cElnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi83MDgzYjgtMTU4Zi00MGQyLTkxY2MtOTc3NWE1ZDY2MDRj LzEvX2xOQ2JpTmh1bVpkanlXOVBQcnZ3ZzY5cElnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAnZ2mm8y XBwdHhKcyFv81vidtwWdpVaNzqtHrNZIk5dKsZ/16kIlbuXhqSz7fflLyTIKi+N0 qQ0HgYBaC4ZTnTbJFfjSqojrLx6Q6ZmtWGEWBqIanjm+QbiipnT6F0VglYw0YeEX yDdOjKUDDF5ndy1ePcIq96FWYmEmBVj2sW4AulR+ilgjJ3FMArirql7+uxCarIfw zZQGmrtxJdtUQILfijJ9RW+HKuNuZLsp3lv2y9Zg0HUq2agh/YBmVUg3J7HCqafM 6PG1OX8kiL3tT27yBzVFzkwevAYz47U0hNxtfi1HIg48nMbcxGG8eVTNCaivOEHH ITC9LGZUV3YF1w== -----END CERTIFICATE-----Generated at Sat Dec 20 17:07:21 2025 by rpki-client