This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json) Hash identifier: e70XXBhoUR+GtNq6oPmBdVrtQvJxPWIFYEulxoerI5o= Subject key identifier: F9:7F:1E:80:D7:26:87:40:F0:D7:D0:EA:71:20:12:BC:05:09:EC:AB Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a Certificate serial: 019B3C7E308CC533826345D3AF3BABE076FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft Manifest number: 1788 Signing time: Sat 20 Dec 2025 16:01:01 +0000 Manifest this update: Sat 20 Dec 2025 16:01:01 +0000 Manifest next update: Sun 21 Dec 2025 16:01:01 +0000 Files and hashes: 1: kL5tCodlPmsKcG8VmzS3vTT-EpU.roa (hash: rTcyxkJLmIdGub6lXVfezUyk6BdEW9e85j13e1XiRBA=) 2: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: YOKlOdno2nR+359FbnrUgKTKtkeVrMsahoowOzqxpGs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:7e:30:8c:c5:33:82:63:45:d3:af:3b:ab:e0:76:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a Validity Not Before: Dec 20 16:01:01 2025 GMT Not After : Dec 21 16:01:01 2025 GMT Subject: CN=f97f1e80d7268740f0d7d0ea712012bc0509ecab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4d:64:c8:2b:97:d4:bd:11:e3:8e:75:4b:cc: 25:03:38:f4:e7:a2:e6:19:1f:d5:dd:f0:56:09:a0: 8a:4c:b2:de:89:63:d9:d6:c7:76:46:d4:c4:3e:06: 6b:66:b8:6a:f0:a1:2d:59:ce:d2:3b:0a:e6:30:52: fc:12:27:34:6c:a7:cd:01:8c:18:65:94:94:ff:81: 04:69:2f:2a:9e:30:d9:6b:d7:13:2a:99:79:2f:8e: 88:b1:80:cf:c2:c7:41:64:11:15:72:91:ab:77:55: 43:0d:34:0e:95:a6:c2:06:8f:c5:bf:bc:cf:b8:a1: 67:6b:ea:95:d8:f8:5f:dd:39:3f:ae:d5:d5:19:f6: 4a:12:1a:88:b8:e8:5f:4a:1c:b2:52:81:e5:b2:ab: f5:6b:f6:35:46:23:bb:1c:b0:7c:9b:e6:c5:9a:cb: 6a:57:41:d2:bd:3f:a7:93:55:40:db:18:b2:64:ca: 60:b7:68:28:ff:6e:21:6a:d4:c9:5a:5d:e8:53:89: 88:18:56:70:a8:74:3e:cc:d5:7e:19:94:79:ec:c1: c1:11:06:1f:5e:dc:99:07:37:72:fd:97:8d:e1:f6: 3f:63:fb:44:1e:72:84:1f:ed:af:4c:6d:9e:3b:1f: 51:76:71:5e:e7:58:eb:96:5c:43:fa:45:92:31:5f: 34:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:7F:1E:80:D7:26:87:40:F0:D7:D0:EA:71:20:12:BC:05:09:EC:AB X509v3 Authority Key Identifier: keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:52:a4:e4:82:5f:87:e9:7f:63:93:b6:7f:4a:b0:f8:4e:01: 48:88:41:62:97:a9:44:d2:35:65:73:b3:ce:c5:4f:23:29:38: 8f:5a:c3:14:ce:4c:35:1d:7d:40:d6:05:07:84:03:32:4f:c4: 6e:d8:7f:52:5a:f6:37:44:5e:70:61:87:10:0b:e9:29:f1:cd: 0f:46:99:d3:ab:ee:7a:99:a8:aa:8a:2a:d3:2e:f5:5c:8e:7f: 0c:dc:9c:97:6e:48:71:2d:67:c3:6a:91:b2:9a:31:02:d8:a9: cf:d5:9e:73:02:39:05:a3:27:38:b4:45:d1:58:c5:43:3d:a0: 75:4a:25:fd:61:75:0b:03:c9:99:27:82:e3:81:97:dd:9d:cd: 92:f3:3e:76:8a:84:48:9b:04:5f:be:d3:30:2c:25:16:99:09: bb:dd:35:6b:e4:7b:b4:e7:10:e2:53:f0:91:fa:8a:e0:89:92: 34:32:ff:5d:43:d2:8c:28:d3:3b:31:37:bc:91:1b:b8:03:f7: c0:5e:21:1b:3e:d3:ab:53:70:e4:c8:9b:72:4a:9f:cc:89:a5: cc:a2:b9:5a:02:2c:e8:c5:ad:f5:ed:47:03:75:23:b0:5f:3c: 75:fe:64:d8:c9:5d:36:7c:41:07:16:83:b1:bb:b6:01:75:0d: cc:2c:44:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8fjCMxTOCY0XTrzur4Hb9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0Yzg2YzliMzVkNzgyMTE2YjJjZDg1ODNhMjdjZWI0MDNi OGY2MWEwHhcNMjUxMjIwMTYwMTAxWhcNMjUxMjIxMTYwMTAxWjAzMTEwLwYDVQQD EyhmOTdmMWU4MGQ3MjY4NzQwZjBkN2QwZWE3MTIwMTJiYzA1MDllY2FiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyE1kyCuX1L0R4451S8wlAzj056Lm GR/V3fBWCaCKTLLeiWPZ1sd2RtTEPgZrZrhq8KEtWc7SOwrmMFL8Eic0bKfNAYwY ZZSU/4EEaS8qnjDZa9cTKpl5L46IsYDPwsdBZBEVcpGrd1VDDTQOlabCBo/Fv7zP uKFna+qV2Phf3Tk/rtXVGfZKEhqIuOhfShyyUoHlsqv1a/Y1RiO7HLB8m+bFmstq V0HSvT+nk1VA2xiyZMpgt2go/24hatTJWl3oU4mIGFZwqHQ+zNV+GZR57MHBEQYf XtyZBzdy/ZeN4fY/Y/tEHnKEH+2vTG2eOx9RdnFe51jrllxD+kWSMV80SwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPl/HoDXJodA8NfQ6nEgErwFCeyrMB8GA1UdIwQY MBaAFJTIbJs114IRayzYWDonzrQDuPYaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMt MzViMGM5NjUyNGZhLzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMtMzViMGM5NjUyNGZh LzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACVKk5IJf h+l/Y5O2f0qw+E4BSIhBYpepRNI1ZXOzzsVPIyk4j1rDFM5MNR19QNYFB4QDMk/E bth/Ulr2N0RecGGHEAvpKfHND0aZ06vuepmoqooq0y71XI5/DNycl25IcS1nw2qR spoxAtipz9WecwI5BaMnOLRF0VjFQz2gdUol/WF1CwPJmSeC44GX3Z3NkvM+doqE SJsEX77TMCwlFpkJu901a+R7tOcQ4lPwkfqK4ImSNDL/XUPSjCjTOzE3vJEbuAP3 wF4hGz7Tq1Nw5MibckqfzImlzKK5WgIs6MWt9e1HA3UjsF88df5k2MldNnxBBxaD sbu2AXUNzCxEMg== -----END CERTIFICATE-----Generated at Sat Dec 20 18:47:21 2025 by rpki-client