This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft File: lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft (raw, json) Hash identifier: A+5E6aY3X1yTomDMqewa/bQnLdhNBv3l2qpZO+EKpo4= Subject key identifier: 57:EF:12:48:7D:47:67:AD:6B:D1:FB:59:49:E4:F3:2E:27:C1:1A:CD Authority key identifier: 94:DB:4B:1E:9E:D6:8B:B5:C3:32:28:AE:30:E9:CD:D2:52:B3:2F:B8 Certificate issuer: /CN=94db4b1e9ed68bb5c33228ae30e9cdd252b32fb8 Certificate serial: 019B627979EA8AAF8EF77641F6175C0D24E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft Manifest number: 179C Signing time: Sun 28 Dec 2025 01:01:26 +0000 Manifest this update: Sun 28 Dec 2025 01:01:26 +0000 Manifest next update: Mon 29 Dec 2025 01:01:26 +0000 Files and hashes: 1: lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl (hash: i0AlXQVdIIBgOCmV91/Ts0pNZ2IjFUMim21lhz/KfFU=) 2: q0ApgfDR6MUFo5SmPdczTTS0Xsc.roa (hash: scfCeq11ilCac8clsFq/zmbEUDIqGanHD8OiJk8YEiI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:62:79:79:ea:8a:af:8e:f7:76:41:f6:17:5c:0d:24:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94db4b1e9ed68bb5c33228ae30e9cdd252b32fb8 Validity Not Before: Dec 28 01:01:26 2025 GMT Not After : Dec 29 01:01:26 2025 GMT Subject: CN=57ef12487d4767ad6bd1fb5949e4f32e27c11acd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:51:6b:93:d3:70:48:b7:99:21:ef:1c:00:4c: 70:cd:57:f6:6d:00:03:88:6a:31:73:76:4b:5b:83: a4:54:8c:5f:c7:71:05:ca:86:0b:0d:8b:8b:ee:b4: 35:17:86:02:cb:da:b0:6e:30:e3:ce:57:d3:97:65: 4b:92:4d:9b:51:2e:ab:ef:f9:77:11:62:9b:7a:3c: d9:c2:7d:ac:a1:33:48:2a:82:cb:2c:22:92:be:b0: b5:2e:ea:49:d6:41:9a:d6:92:4c:f6:24:be:43:e3: cf:0b:61:dd:28:21:8c:ca:f2:34:5d:1b:b5:a1:f4: ed:8d:c1:b8:31:ac:eb:4b:e8:85:13:62:3e:07:00: 09:d2:77:5e:09:9b:34:ae:f3:2d:0c:8c:b4:47:eb: 0b:06:38:51:53:69:50:31:ff:66:95:ea:d1:88:06: 64:92:de:fe:f3:a7:9e:aa:82:2d:c0:67:8a:b3:ad: 9b:83:70:97:b1:52:0b:36:48:09:37:e8:44:5a:6d: 9c:6d:9d:be:e5:7b:2e:d4:fb:c8:59:96:63:ad:af: 6d:b0:7e:47:40:d3:74:e3:e3:85:a0:43:2d:46:de: 94:60:86:aa:0e:54:7b:f1:9c:86:df:8d:c3:6f:3e: 45:aa:b9:e8:ad:e0:2a:13:62:3a:0c:83:08:19:03: 1e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:EF:12:48:7D:47:67:AD:6B:D1:FB:59:49:E4:F3:2E:27:C1:1A:CD X509v3 Authority Key Identifier: keyid:94:DB:4B:1E:9E:D6:8B:B5:C3:32:28:AE:30:E9:CD:D2:52:B3:2F:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:02:ae:ce:ad:43:ff:cf:e6:a5:4f:c9:7a:b9:36:fa:69:f4: c0:4e:ce:71:49:c0:9a:6f:eb:3b:4a:0e:70:d6:6c:33:04:99: b4:7c:55:32:fa:e9:7d:89:6d:3f:9c:c0:df:4e:9b:79:71:e9: e2:d9:83:3e:5d:cd:dd:16:82:83:95:06:c0:74:28:8f:38:f2: c1:0a:9d:e1:6a:17:3f:dd:d5:ef:1f:dd:a6:b8:bc:51:75:a9: 06:fe:7b:a9:06:ca:3e:15:6c:35:49:06:ab:e7:da:37:f3:ba: 90:bf:8a:de:1e:28:d4:fb:a2:35:6f:93:2b:6f:de:29:de:59: 47:8a:31:5e:2c:d1:f2:58:a0:f7:7d:bc:c2:2f:a2:dd:f0:ea: 57:61:d6:cf:70:fa:1e:c6:f7:d3:c4:6d:2d:b4:62:cf:b9:7a: 90:ad:83:ce:9f:5b:b5:f6:80:f6:21:16:ac:35:bc:b5:0a:bd: 92:df:df:87:34:09:76:0d:7c:86:c4:75:68:ec:97:b5:10:94: 99:62:98:94:c1:7d:ce:58:e1:97:ac:6e:da:57:8b:3f:e3:c0: bc:df:3c:69:1b:c7:89:f7:9b:46:53:da:6d:7d:d1:08:c2:f0: e0:ad:ad:e3:f4:2f:ee:0e:cd:cf:f1:d4:b7:0b:37:b8:20:3f: 75:24:51:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtieXnqiq+O93ZB9hdcDSTiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0ZGI0YjFlOWVkNjhiYjVjMzMyMjhhZTMwZTljZGQyNTJi MzJmYjgwHhcNMjUxMjI4MDEwMTI2WhcNMjUxMjI5MDEwMTI2WjAzMTEwLwYDVQQD Eyg1N2VmMTI0ODdkNDc2N2FkNmJkMWZiNTk0OWU0ZjMyZTI3YzExYWNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVFrk9NwSLeZIe8cAExwzVf2bQAD iGoxc3ZLW4OkVIxfx3EFyoYLDYuL7rQ1F4YCy9qwbjDjzlfTl2VLkk2bUS6r7/l3 EWKbejzZwn2soTNIKoLLLCKSvrC1LupJ1kGa1pJM9iS+Q+PPC2HdKCGMyvI0XRu1 ofTtjcG4MazrS+iFE2I+BwAJ0ndeCZs0rvMtDIy0R+sLBjhRU2lQMf9mlerRiAZk kt7+86eeqoItwGeKs62bg3CXsVILNkgJN+hEWm2cbZ2+5Xsu1PvIWZZjra9tsH5H QNN04+OFoEMtRt6UYIaqDlR78ZyG343Dbz5FqrnoreAqE2I6DIMIGQMerwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFfvEkh9R2eta9H7WUnk8y4nwRrNMB8GA1UdIwQY MBaAFJTbSx6e1ou1wzIorjDpzdJSsy+4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbE50TEhwN1dpN1hETWlpdU1Pbk4wbEt6TDdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8yMGY4MDUtZGY2My00NjMxLTk5YmQt YTI1NjE3NzczOWM2LzEvbE50TEhwN1dpN1hETWlpdU1Pbk4wbEt6TDdnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC8yMGY4MDUtZGY2My00NjMxLTk5YmQtYTI1NjE3NzczOWM2 LzEvbE50TEhwN1dpN1hETWlpdU1Pbk4wbEt6TDdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfwKuzq1D /8/mpU/Jerk2+mn0wE7OcUnAmm/rO0oOcNZsMwSZtHxVMvrpfYltP5zA306beXHp 4tmDPl3N3RaCg5UGwHQojzjywQqd4WoXP93V7x/dpri8UXWpBv57qQbKPhVsNUkG q+faN/O6kL+K3h4o1PuiNW+TK2/eKd5ZR4oxXizR8lig9328wi+i3fDqV2HWz3D6 Hsb308RtLbRiz7l6kK2Dzp9btfaA9iEWrDW8tQq9kt/fhzQJdg18hsR1aOyXtRCU mWKYlMF9zljhl6xu2leLP+PAvN88aRvHifebRlPabX3RCMLw4K2t4/Qv7g7Nz/HU tws3uCA/dSRRgw== -----END CERTIFICATE-----Generated at Sun Dec 28 09:08:36 2025 by rpki-client