This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft File: LrlwnvMbddaOIgiqvyosPD2Hb8E.mft (raw, json) Hash identifier: ZosuPavaO5tVmU3PFnejFqSGlCh8IWiveLxGN8vxMKI= Subject key identifier: 91:F8:78:56:E7:5C:28:60:1C:20:59:3A:D0:52:6F:6B:73:DE:B1:5E Authority key identifier: 2E:B9:70:9E:F3:1B:75:D6:8E:22:08:AA:BF:2A:2C:3C:3D:87:6F:C1 Certificate issuer: /CN=2eb9709ef31b75d68e2208aabf2a2c3c3d876fc1 Certificate serial: 019B61D443C3826BAB8F49A51CACEE25D492 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LrlwnvMbddaOIgiqvyosPD2Hb8E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft Manifest number: 1799 Signing time: Sat 27 Dec 2025 22:00:59 +0000 Manifest this update: Sat 27 Dec 2025 22:00:59 +0000 Manifest next update: Sun 28 Dec 2025 22:00:59 +0000 Files and hashes: 1: LrlwnvMbddaOIgiqvyosPD2Hb8E.crl (hash: A1vJtWqMz7OD2vo7en5nJZv7pqNz1pEgrhy9c9CQGUc=) 2: pb4QZ95Peoa-v89w9IfVF9OInYI.roa (hash: mVmSldgY3RuIKYBpTP9fbMVJ33NM7M6bAyGk/0LxYwU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.crl rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft rsync://rpki.ripe.net/repository/DEFAULT/LrlwnvMbddaOIgiqvyosPD2Hb8E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:61:d4:43:c3:82:6b:ab:8f:49:a5:1c:ac:ee:25:d4:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2eb9709ef31b75d68e2208aabf2a2c3c3d876fc1 Validity Not Before: Dec 27 22:00:59 2025 GMT Not After : Dec 28 22:00:59 2025 GMT Subject: CN=91f87856e75c28601c20593ad0526f6b73deb15e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f9:01:61:2e:b4:17:19:05:1b:0a:e3:41:28: 9c:9d:83:1e:38:14:8a:92:e9:24:48:af:b0:27:17: 6a:34:64:84:af:dc:0e:9b:a6:d7:c6:cf:48:6c:e7: 28:7e:c7:e9:64:12:52:05:4f:7f:b5:30:27:f2:16: de:28:c7:ee:b9:7b:58:99:3c:87:77:d5:dc:f6:0a: d1:ec:63:ff:67:85:06:a0:84:8c:93:e0:97:86:e6: c5:52:7b:04:9a:a8:4f:7e:11:e3:50:d4:98:12:14: 21:ab:1f:92:d7:c4:f0:bc:23:cb:a8:7e:c9:99:8f: 86:bf:fc:12:dd:b2:d8:2c:c1:e4:44:9e:00:ae:1a: 9d:11:8f:13:53:45:31:e3:1d:7e:09:66:5c:45:93: 98:bd:bb:2f:ec:ab:85:ba:27:4a:4a:99:0e:49:bd: ee:fb:09:05:28:39:8b:99:db:62:1e:2a:5b:6a:4b: 5c:fd:2b:88:8f:d5:d4:9d:11:25:58:23:52:fb:be: d0:07:a4:76:e6:54:bf:cf:10:e9:b7:f8:4a:91:9b: ba:b2:11:9e:7c:20:a5:31:11:03:0f:e0:64:d6:77: eb:b4:a9:6e:3e:99:49:b7:02:ef:e1:cc:0b:0f:ce: a0:c9:07:62:b3:55:50:54:fa:b3:ba:5b:da:46:dd: 27:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:F8:78:56:E7:5C:28:60:1C:20:59:3A:D0:52:6F:6B:73:DE:B1:5E X509v3 Authority Key Identifier: keyid:2E:B9:70:9E:F3:1B:75:D6:8E:22:08:AA:BF:2A:2C:3C:3D:87:6F:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LrlwnvMbddaOIgiqvyosPD2Hb8E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:0c:e7:d6:a0:17:72:b2:e6:9a:51:97:fd:8b:70:14:98:ec: 44:dc:75:31:07:f1:19:6f:ba:80:9f:52:7c:25:e5:c7:a0:b8: 6f:fa:db:07:97:52:22:eb:d0:b2:fb:19:63:9f:cf:92:83:58: b3:2d:f3:01:9e:6c:af:ca:6f:6e:21:ed:77:4f:d5:92:01:0b: 8e:1e:5a:be:11:ea:d4:41:71:f0:45:b5:4f:9e:54:48:c2:cd: 91:ce:36:eb:56:dd:15:70:64:38:af:07:b0:b3:72:89:f3:5c: ba:5d:6b:a4:1c:74:e5:cc:e3:0e:0b:6f:0b:9b:29:92:a1:1a: 50:c0:a2:2a:56:45:9a:da:e1:a1:90:01:2a:63:75:54:b7:df: 05:e9:0e:76:91:c6:73:7e:98:e1:2d:f6:cc:8c:50:cc:94:2b: aa:6d:fe:7d:fd:a0:6f:fc:d9:aa:1b:02:6a:9b:9c:7c:75:0e: 56:d0:8e:7f:78:da:00:66:8f:ac:86:e0:ca:75:60:a4:cc:d5: f4:df:2e:b6:9c:95:69:76:66:09:cc:6f:86:1d:1e:8a:d7:b6: f1:b4:5a:e8:27:51:be:0a:d6:02:59:cc:9c:df:98:36:db:eb: b5:79:11:17:ca:06:22:9f:b5:4d:f1:a4:51:40:79:9e:63:c0: fa:28:c2:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZth1EPDgmurj0mlHKzuJdSSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlYjk3MDllZjMxYjc1ZDY4ZTIyMDhhYWJmMmEyYzNjM2Q4 NzZmYzEwHhcNMjUxMjI3MjIwMDU5WhcNMjUxMjI4MjIwMDU5WjAzMTEwLwYDVQQD Eyg5MWY4Nzg1NmU3NWMyODYwMWMyMDU5M2FkMDUyNmY2YjczZGViMTVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPkBYS60FxkFGwrjQSicnYMeOBSK kukkSK+wJxdqNGSEr9wOm6bXxs9IbOcofsfpZBJSBU9/tTAn8hbeKMfuuXtYmTyH d9Xc9grR7GP/Z4UGoISMk+CXhubFUnsEmqhPfhHjUNSYEhQhqx+S18TwvCPLqH7J mY+Gv/wS3bLYLMHkRJ4ArhqdEY8TU0Ux4x1+CWZcRZOYvbsv7KuFuidKSpkOSb3u +wkFKDmLmdtiHipbaktc/SuIj9XUnRElWCNS+77QB6R25lS/zxDpt/hKkZu6shGe fCClMREDD+Bk1nfrtKluPplJtwLv4cwLD86gyQdis1VQVPqzulvaRt0nvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJH4eFbnXChgHCBZOtBSb2tz3rFeMB8GA1UdIwQY MBaAFC65cJ7zG3XWjiIIqr8qLDw9h2/BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTHJsd252TWJkZGFPSWdpcXZ5b3NQRDJIYjhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi84ZDNjM2ItNjA2OS00Y2QxLTg5YjEt Y2VjMzVjNDUzYzVlLzEvTHJsd252TWJkZGFPSWdpcXZ5b3NQRDJIYjhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi84ZDNjM2ItNjA2OS00Y2QxLTg5YjEtY2VjMzVjNDUzYzVl LzEvTHJsd252TWJkZGFPSWdpcXZ5b3NQRDJIYjhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAewzn1qAX crLmmlGX/YtwFJjsRNx1MQfxGW+6gJ9SfCXlx6C4b/rbB5dSIuvQsvsZY5/PkoNY sy3zAZ5sr8pvbiHtd0/VkgELjh5avhHq1EFx8EW1T55USMLNkc4261bdFXBkOK8H sLNyifNcul1rpBx05czjDgtvC5spkqEaUMCiKlZFmtrhoZABKmN1VLffBekOdpHG c36Y4S32zIxQzJQrqm3+ff2gb/zZqhsCapucfHUOVtCOf3jaAGaPrIbgynVgpMzV 9N8utpyVaXZmCcxvhh0eite28bRa6CdRvgrWAlnMnN+YNtvrtXkRF8oGIp+1TfGk UUB5nmPA+ijCng== -----END CERTIFICATE-----Generated at Sun Dec 28 03:16:21 2025 by rpki-client