This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft File: lpztpb83kB_p5E9ztb-CtoezRXI.mft (raw, json) Hash identifier: Df0liTuX8rNmTRTSwm/VTwk71xnFoRk+umoZ/xQ9lVQ= Subject key identifier: D5:A4:C9:38:02:AB:F4:3C:D9:FB:0B:77:53:32:79:34:96:A1:B5:BB Authority key identifier: 96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72 Certificate issuer: /CN=969ceda5bf37901fe9e44f73b5bf82b687b34572 Certificate serial: 019B5298AC7ED84825B2BA51653C4C263215 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft Manifest number: 0C38 Signing time: Wed 24 Dec 2025 23:01:35 +0000 Manifest this update: Wed 24 Dec 2025 23:01:35 +0000 Manifest next update: Thu 25 Dec 2025 23:01:35 +0000 Files and hashes: 1: BlSKEWV8a0Pu0DQWSBEZ8E6j6Ig.roa (hash: E+fl2IDftOEsy56bvfa1HOBzyBMqnDbK6GEdF9F9KeI=) 2: amBacDdU6Mjk1rJegCvOmhPZCuI.roa (hash: QFuN87Ca0aIv1BOf1cf5zbuSpQPxJlnZXFNDEW5Ik9U=) 3: lpztpb83kB_p5E9ztb-CtoezRXI.crl (hash: LfiykMdNZ0KN5paxEsqG8T1rgDFtHN23Lebdf/Q4c7o=) 4: oQUx3CaetTGOoOfH7R_GIuQC9ZM.roa (hash: QXtVeIAnBIaJbBWzjL0HKxzProdKFi/c2re+3CNcveM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 23:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:52:98:ac:7e:d8:48:25:b2:ba:51:65:3c:4c:26:32:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=969ceda5bf37901fe9e44f73b5bf82b687b34572 Validity Not Before: Dec 24 23:01:35 2025 GMT Not After : Dec 25 23:01:35 2025 GMT Subject: CN=d5a4c93802abf43cd9fb0b775332793496a1b5bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:a5:0c:47:82:f0:67:fb:90:78:7a:3b:bc:70: ad:3d:a4:65:34:4b:8a:77:ae:26:33:db:f4:14:ac: a7:45:34:5a:8b:28:92:03:d8:e8:65:92:e2:80:f7: 4f:d5:01:be:29:eb:35:08:97:77:28:f3:70:21:c1: bd:b2:07:c1:a4:89:97:bf:c6:5a:25:9f:8e:69:89: c7:b0:aa:6d:f2:e4:c5:f8:56:05:86:27:89:04:da: ac:28:be:7e:b6:27:a7:0a:4c:17:13:1a:5f:d9:44: 96:d2:82:72:9d:ac:01:91:70:a3:1d:cd:dd:25:93: 9e:d9:80:a8:43:91:c0:c2:da:23:d9:53:75:f9:35: b2:ec:b4:ac:75:ef:cc:11:3f:2a:45:6b:6d:2e:c3: 25:7a:20:56:d9:b9:eb:01:86:42:79:b7:bb:10:66: fb:10:d6:42:6e:e7:0b:dd:7c:11:30:12:11:6e:bc: 64:de:22:5e:f9:2d:19:ac:38:31:25:7d:15:67:93: dd:c9:bf:f4:82:2b:eb:06:d8:37:a5:5f:b9:65:8b: 9d:98:52:b0:fc:54:98:77:73:95:26:11:fd:8f:47: cd:9b:94:25:30:5d:05:c0:bf:8b:95:d3:17:39:38: 78:22:c3:9f:ad:c9:2b:65:b2:43:f4:fb:7b:e5:bb: d0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:A4:C9:38:02:AB:F4:3C:D9:FB:0B:77:53:32:79:34:96:A1:B5:BB X509v3 Authority Key Identifier: keyid:96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:08:53:b2:96:12:7c:d7:8c:42:5f:3f:a1:f8:05:2f:32:2f: 76:ea:f6:63:0d:92:ca:43:17:7b:5c:2c:9d:75:96:fa:ac:45: 00:78:72:84:d0:11:22:84:c5:20:e5:74:8f:d8:be:ec:94:ba: 94:6e:22:a3:f8:c7:fe:a0:cd:18:16:82:d7:04:ad:c2:b7:9e: e8:1b:97:bc:e8:af:ee:06:00:eb:ad:03:c1:06:94:0c:77:44: 32:47:24:88:a8:a6:a9:ae:d0:76:d3:9c:33:7d:dd:22:bb:0c: a2:74:54:7d:1c:07:e8:bb:91:73:3d:23:7c:49:59:2b:a6:17: 50:80:8c:9c:13:25:6a:8e:50:49:d2:f2:2a:13:7d:32:f1:a7: c8:6e:66:1b:6f:a5:11:0d:82:8f:82:22:d7:70:f1:27:ae:1d: 28:cb:23:d5:25:cd:38:87:8f:e0:dc:6f:fb:77:8b:f9:b6:54: eb:0f:49:f4:d3:5b:97:77:99:e0:0a:7e:a1:1f:d3:34:a8:63: 88:7f:78:e1:f2:8a:3d:62:48:ef:74:e6:44:10:3d:06:e5:bf: ec:05:73:bb:4f:9a:59:84:14:41:aa:eb:30:bc:75:2b:e0:49: e5:7d:85:81:94:53:34:80:03:b2:e6:d5:23:93:11:a0:ed:e7: 7d:c8:e6:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtSmKx+2EglsrpRZTxMJjIVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2OWNlZGE1YmYzNzkwMWZlOWU0NGY3M2I1YmY4MmI2ODdi MzQ1NzIwHhcNMjUxMjI0MjMwMTM1WhcNMjUxMjI1MjMwMTM1WjAzMTEwLwYDVQQD EyhkNWE0YzkzODAyYWJmNDNjZDlmYjBiNzc1MzMyNzkzNDk2YTFiNWJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiaUMR4LwZ/uQeHo7vHCtPaRlNEuK d64mM9v0FKynRTRaiyiSA9joZZLigPdP1QG+Kes1CJd3KPNwIcG9sgfBpImXv8Za JZ+OaYnHsKpt8uTF+FYFhieJBNqsKL5+tienCkwXExpf2USW0oJynawBkXCjHc3d JZOe2YCoQ5HAwtoj2VN1+TWy7LSsde/MET8qRWttLsMleiBW2bnrAYZCebe7EGb7 ENZCbucL3XwRMBIRbrxk3iJe+S0ZrDgxJX0VZ5Pdyb/0givrBtg3pV+5ZYudmFKw /FSYd3OVJhH9j0fNm5QlMF0FwL+LldMXOTh4IsOfrckrZbJD9Pt75bvQwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNWkyTgCq/Q82fsLd1MyeTSWobW7MB8GA1UdIwQY MBaAFJac7aW/N5Af6eRPc7W/graHs0VyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbHB6dHBiODNrQl9wNUU5enRiLUN0b2V6UlhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS81Y2ZmZDItYjU2OC00ZDU1LWExMjQt MjFmYzlhZmM4YWMxLzEvbHB6dHBiODNrQl9wNUU5enRiLUN0b2V6UlhJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS81Y2ZmZDItYjU2OC00ZDU1LWExMjQtMjFmYzlhZmM4YWMx LzEvbHB6dHBiODNrQl9wNUU5enRiLUN0b2V6UlhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZQhTspYS fNeMQl8/ofgFLzIvdur2Yw2SykMXe1wsnXWW+qxFAHhyhNARIoTFIOV0j9i+7JS6 lG4io/jH/qDNGBaC1wStwree6BuXvOiv7gYA660DwQaUDHdEMkckiKimqa7QdtOc M33dIrsMonRUfRwH6LuRcz0jfElZK6YXUICMnBMlao5QSdLyKhN9MvGnyG5mG2+l EQ2Cj4Ii13DxJ64dKMsj1SXNOIeP4Nxv+3eL+bZU6w9J9NNbl3eZ4Ap+oR/TNKhj iH944fKKPWJI73TmRBA9BuW/7AVzu0+aWYQUQarrMLx1K+BJ5X2FgZRTNIADsubV I5MRoO3nfcjmRQ== -----END CERTIFICATE-----Generated at Thu Dec 25 06:24:53 2025 by rpki-client