This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7bd8f3-4753-42cd-8ff3-6333186589a9/1/lg5oyDibCdw0VGSkAK8nZWjn-Wo.mft File: lg5oyDibCdw0VGSkAK8nZWjn-Wo.mft (raw, json) Hash identifier: EvM9nPhcpMb8YFsur3kBPDMVV2E9Dmy5VrrH41lEYtA= Subject key identifier: 51:94:BE:89:AE:F3:C5:8A:BE:AE:C6:4D:52:C2:16:A3:42:36:FE:AA Authority key identifier: 96:0E:68:C8:38:9B:09:DC:34:54:64:A4:00:AF:27:65:68:E7:F9:6A Certificate issuer: /CN=960e68c8389b09dc345464a400af276568e7f96a Certificate serial: 019BAF14011DA9FC1CDAA8191E88DA6E2203 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lg5oyDibCdw0VGSkAK8nZWjn-Wo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7bd8f3-4753-42cd-8ff3-6333186589a9/1/lg5oyDibCdw0VGSkAK8nZWjn-Wo.mft Manifest number: 1045 Signing time: Sun 11 Jan 2026 22:01:22 +0000 Manifest this update: Sun 11 Jan 2026 22:01:22 +0000 Manifest next update: Mon 12 Jan 2026 22:01:22 +0000 Files and hashes: 1: lg5oyDibCdw0VGSkAK8nZWjn-Wo.crl (hash: s38tJr2kt3xWet2iFSnOpEmYLKUklnpxFtBu0HpnvaA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/7bd8f3-4753-42cd-8ff3-6333186589a9/1/lg5oyDibCdw0VGSkAK8nZWjn-Wo.crl rsync://rpki.ripe.net/repository/DEFAULT/33/7bd8f3-4753-42cd-8ff3-6333186589a9/1/lg5oyDibCdw0VGSkAK8nZWjn-Wo.mft rsync://rpki.ripe.net/repository/DEFAULT/lg5oyDibCdw0VGSkAK8nZWjn-Wo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:af:14:01:1d:a9:fc:1c:da:a8:19:1e:88:da:6e:22:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=960e68c8389b09dc345464a400af276568e7f96a Validity Not Before: Jan 11 22:01:22 2026 GMT Not After : Jan 12 22:01:22 2026 GMT Subject: CN=5194be89aef3c58abeaec64d52c216a34236feaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ab:16:e5:e0:40:c7:bf:c9:72:22:6a:6b:77: bd:6d:f8:24:38:6f:94:15:17:79:d4:2e:5a:aa:3c: cd:bb:11:95:30:0e:de:f8:41:2c:af:b5:95:e0:d6: b8:d6:df:d1:2f:e8:31:5e:c2:5f:44:cb:21:31:d1: 22:25:fc:80:f8:1b:22:91:26:13:5d:dc:7a:8a:e4: 55:87:f2:dc:6e:83:85:5b:c6:66:55:69:6e:fe:f7: 62:49:04:b6:c6:e6:0e:a4:7c:c8:32:de:7a:a6:a6: e1:30:cc:fd:c4:4f:3f:75:aa:1a:f8:1d:0d:ad:b1: 16:6c:6c:b8:b3:c5:a7:ab:3a:09:b8:3e:4b:94:4a: 0d:7b:df:3f:58:1c:de:cd:a1:18:0e:31:44:45:d0: d7:31:c0:ed:0f:f4:21:b0:e4:6d:27:45:1f:cc:7b: 62:e9:a1:bb:60:74:b2:aa:30:6e:a8:7e:d4:a8:ff: 76:d5:89:a4:29:2d:b1:ff:ec:ca:35:3b:7a:a1:cb: e7:fa:83:8c:1b:c6:f8:fd:48:55:44:ed:9b:16:21: 4d:70:d5:b7:d5:9a:ca:50:3f:08:e8:70:d8:b1:5f: eb:89:02:40:50:e0:e5:5d:bf:d1:50:c1:70:0e:5e: 67:ae:7e:61:f3:72:d2:59:9c:9d:b1:1b:14:8b:f2: b0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:94:BE:89:AE:F3:C5:8A:BE:AE:C6:4D:52:C2:16:A3:42:36:FE:AA X509v3 Authority Key Identifier: keyid:96:0E:68:C8:38:9B:09:DC:34:54:64:A4:00:AF:27:65:68:E7:F9:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lg5oyDibCdw0VGSkAK8nZWjn-Wo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7bd8f3-4753-42cd-8ff3-6333186589a9/1/lg5oyDibCdw0VGSkAK8nZWjn-Wo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7bd8f3-4753-42cd-8ff3-6333186589a9/1/lg5oyDibCdw0VGSkAK8nZWjn-Wo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption be:b6:b9:59:e3:e4:bb:44:6b:30:57:cf:01:69:d7:73:de:fe: a5:03:08:23:65:5a:cc:7f:6f:5b:13:98:1b:1d:14:38:a8:74: 53:3a:07:61:77:39:24:41:10:2b:1e:d2:ed:c5:54:1b:1c:53: 88:cc:7b:d4:e2:54:f9:ac:a6:e0:95:75:b5:83:db:35:54:47: f7:71:2c:9c:cc:a8:43:78:aa:de:56:35:1c:8e:09:44:35:c9: 7c:49:cd:c1:7e:27:f3:54:88:bb:24:9d:9f:8b:a4:d6:1d:c5: ba:70:d5:89:e6:4e:9c:9f:1e:ca:4a:c1:5a:59:7f:35:ef:88: 2b:c9:68:50:b9:64:ef:17:f6:70:7d:44:41:2a:40:94:d6:d6: be:dc:79:8c:e1:80:0a:7a:8e:48:f8:13:94:ba:58:f2:54:7b: 0a:26:23:2a:44:42:5b:be:e2:c2:f0:7a:9c:fb:7d:27:bd:ff: 4c:f6:fc:85:49:7a:4e:7d:35:a1:0e:81:31:96:03:21:c9:06: 6b:fb:bc:01:59:9e:ad:11:dd:93:83:3a:c7:98:7f:8f:d2:66: 63:9b:d3:90:55:20:9b:4e:73:80:55:e8:0d:40:d0:77:97:74: af:b6:c2:62:38:15:51:14:8a:e2:7b:06:0f:6e:12:ab:fc:7a: e7:c1:31:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuvFAEdqfwc2qgZHojabiIDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2MGU2OGM4Mzg5YjA5ZGMzNDU0NjRhNDAwYWYyNzY1Njhl N2Y5NmEwHhcNMjYwMTExMjIwMTIyWhcNMjYwMTEyMjIwMTIyWjAzMTEwLwYDVQQD Eyg1MTk0YmU4OWFlZjNjNThhYmVhZWM2NGQ1MmMyMTZhMzQyMzZmZWFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKsW5eBAx7/JciJqa3e9bfgkOG+U FRd51C5aqjzNuxGVMA7e+EEsr7WV4Na41t/RL+gxXsJfRMshMdEiJfyA+BsikSYT Xdx6iuRVh/LcboOFW8ZmVWlu/vdiSQS2xuYOpHzIMt56pqbhMMz9xE8/daoa+B0N rbEWbGy4s8WnqzoJuD5LlEoNe98/WBzezaEYDjFERdDXMcDtD/QhsORtJ0UfzHti 6aG7YHSyqjBuqH7UqP921YmkKS2x/+zKNTt6ocvn+oOMG8b4/UhVRO2bFiFNcNW3 1ZrKUD8I6HDYsV/riQJAUODlXb/RUMFwDl5nrn5h83LSWZydsRsUi/Kw0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFGUvomu88WKvq7GTVLCFqNCNv6qMB8GA1UdIwQY MBaAFJYOaMg4mwncNFRkpACvJ2Vo5/lqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGc1b3lEaWJDZHcwVkdTa0FLOG5aV2puLVdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy83YmQ4ZjMtNDc1My00MmNkLThmZjMt NjMzMzE4NjU4OWE5LzEvbGc1b3lEaWJDZHcwVkdTa0FLOG5aV2puLVdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy83YmQ4ZjMtNDc1My00MmNkLThmZjMtNjMzMzE4NjU4OWE5 LzEvbGc1b3lEaWJDZHcwVkdTa0FLOG5aV2puLVdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvra5WePk u0RrMFfPAWnXc97+pQMII2VazH9vWxOYGx0UOKh0UzoHYXc5JEEQKx7S7cVUGxxT iMx71OJU+aym4JV1tYPbNVRH93EsnMyoQ3iq3lY1HI4JRDXJfEnNwX4n81SIuySd n4uk1h3FunDVieZOnJ8eykrBWll/Ne+IK8loULlk7xf2cH1EQSpAlNbWvtx5jOGA CnqOSPgTlLpY8lR7CiYjKkRCW77iwvB6nPt9J73/TPb8hUl6Tn01oQ6BMZYDIckG a/u8AVmerRHdk4M6x5h/j9JmY5vTkFUgm05zgFXoDUDQd5d0r7bCYjgVURSK4nsG D24Sq/x658ExNw== -----END CERTIFICATE-----Generated at Mon Jan 12 01:28:09 2026 by rpki-client