This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft File: lKpBiudwvajvBRax0cYzpn6R84s.mft (raw, json) Hash identifier: HtT00Di7bBk4TWX6VSwv2kcWJ8oiaYPTPZm7s9auAAE= Subject key identifier: F7:38:BE:B7:52:90:49:82:7C:51:19:C0:16:C3:B8:07:43:AE:B8:ED Authority key identifier: 94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B Certificate issuer: /CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b Certificate serial: 019B32D673598466C27652A812E77DFA2AC6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft Manifest number: 114B Signing time: Thu 18 Dec 2025 19:01:13 +0000 Manifest this update: Thu 18 Dec 2025 19:01:13 +0000 Manifest next update: Fri 19 Dec 2025 19:01:13 +0000 Files and hashes: 1: JDbsNRiv_WMTlViBQXQ3g59gK5M.roa (hash: 5BHapuXzcbpJhpfOa/evo44J0f0F6BTnvXfMcpPhdEU=) 2: lKpBiudwvajvBRax0cYzpn6R84s.crl (hash: 7SVHjMalPdzYEl6fwPX4RbGfFS9h7ZYeJtO5lchPj7U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d6:73:59:84:66:c2:76:52:a8:12:e7:7d:fa:2a:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b Validity Not Before: Dec 18 19:01:13 2025 GMT Not After : Dec 19 19:01:13 2025 GMT Subject: CN=f738beb7529049827c5119c016c3b80743aeb8ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8a:d8:20:f4:3b:52:69:b9:3a:01:3a:97:be: 42:27:5c:d0:46:7f:62:dd:3a:54:79:74:b4:72:e4: 5e:9a:d3:ea:7c:d6:77:ec:8b:0c:14:1f:a1:41:02: 16:59:09:33:2d:1d:4d:86:91:22:49:cc:44:5f:aa: 0a:58:1b:a4:ff:9e:7d:2e:c9:37:8e:39:0e:07:40: da:15:3b:0c:ea:a7:2f:94:40:5e:c5:db:4c:5a:cd: 7c:32:7b:72:93:ad:59:da:ac:0d:3a:95:2e:e4:b5: b6:4f:0d:19:00:10:20:94:c1:50:be:31:0a:bc:e4: 96:b4:3b:fb:a0:00:21:15:28:c7:7d:3a:d0:e1:a7: 68:4a:ae:15:7b:72:36:a9:d3:6a:30:04:11:78:79: 8c:c0:3e:d5:1d:4c:35:ae:b9:16:a9:b1:f6:33:18: 76:bf:e6:78:84:ea:ba:bf:d2:36:7b:10:77:b7:32: e2:51:a0:e0:d6:07:0f:f8:de:9e:33:e2:31:4c:5d: 1c:d4:7d:a6:97:10:f2:18:1d:01:5e:7d:b4:99:11: 99:11:80:5c:6f:74:4b:70:ce:8f:25:a8:a0:46:22: f7:77:ba:bc:09:5c:a6:7b:41:db:f0:ca:9f:13:72: c5:a8:48:17:53:75:c4:10:07:b3:16:76:97:a1:e9: d9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:38:BE:B7:52:90:49:82:7C:51:19:C0:16:C3:B8:07:43:AE:B8:ED X509v3 Authority Key Identifier: keyid:94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:94:34:92:35:47:c0:c4:88:54:9d:32:f7:d3:05:e2:5d:16: 82:1f:25:9c:cf:04:70:47:2d:20:52:15:d1:48:99:b2:b2:86: 08:29:f3:39:e1:ff:8a:d6:f2:54:93:55:9c:4b:e8:19:d2:e1: d4:e9:15:28:b3:a1:ae:80:2c:d2:64:65:c0:a1:95:9a:1b:1b: 40:b4:1b:b0:a3:51:87:b4:4f:bb:56:f4:b5:8e:93:1b:1d:27: b9:dc:d9:96:0d:4b:00:ed:08:c8:c6:44:5a:63:f4:da:9f:91: 09:63:42:cf:23:92:6d:c8:82:b7:b9:2f:ec:00:cb:68:f1:07: 36:6a:4a:b2:24:70:c1:76:82:bd:46:f9:3a:75:2c:cf:3c:3f: 23:ea:5d:92:78:dc:14:40:af:23:17:ad:78:3b:25:63:c2:ed: 5a:41:e4:fa:be:c3:f3:e5:83:cf:3f:00:7d:94:6a:af:50:a7: 69:4e:c7:95:25:9e:80:65:73:af:64:54:a1:ac:4b:70:0f:89: 6a:7a:ce:d0:22:f3:ca:70:a8:7a:39:9c:03:2c:a7:11:2a:dd: 18:93:a6:f7:59:ca:30:da:8e:6b:0b:dd:bc:4c:a0:27:cc:dd: 76:ac:8d:34:74:1c:4e:c9:81:50:f2:5e:82:27:d9:9b:03:4b: 82:d6:e2:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy1nNZhGbCdlKoEud9+irGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0YWE0MThhZTc3MGJkYThlZjA1MTZiMWQxYzYzM2E2N2U5 MWYzOGIwHhcNMjUxMjE4MTkwMTEzWhcNMjUxMjE5MTkwMTEzWjAzMTEwLwYDVQQD EyhmNzM4YmViNzUyOTA0OTgyN2M1MTE5YzAxNmMzYjgwNzQzYWViOGVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0YrYIPQ7Umm5OgE6l75CJ1zQRn9i 3TpUeXS0cuRemtPqfNZ37IsMFB+hQQIWWQkzLR1NhpEiScxEX6oKWBuk/559Lsk3 jjkOB0DaFTsM6qcvlEBexdtMWs18Mntyk61Z2qwNOpUu5LW2Tw0ZABAglMFQvjEK vOSWtDv7oAAhFSjHfTrQ4adoSq4Ve3I2qdNqMAQReHmMwD7VHUw1rrkWqbH2Mxh2 v+Z4hOq6v9I2exB3tzLiUaDg1gcP+N6eM+IxTF0c1H2mlxDyGB0BXn20mRGZEYBc b3RLcM6PJaigRiL3d7q8CVyme0Hb8MqfE3LFqEgXU3XEEAezFnaXoenZ7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPc4vrdSkEmCfFEZwBbDuAdDrrjtMB8GA1UdIwQY MBaAFJSqQYrncL2o7wUWsdHGM6Z+kfOLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEtwQml1ZHd2YWp2QlJheDBjWXpwbjZSODRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8wOWUyZjctZTY1MC00ZjM4LWE3NDUt YzM5NjIwMGZlMGJmLzEvbEtwQml1ZHd2YWp2QlJheDBjWXpwbjZSODRzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy8wOWUyZjctZTY1MC00ZjM4LWE3NDUtYzM5NjIwMGZlMGJm LzEvbEtwQml1ZHd2YWp2QlJheDBjWXpwbjZSODRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ5Q0kjVH wMSIVJ0y99MF4l0Wgh8lnM8EcEctIFIV0UiZsrKGCCnzOeH/itbyVJNVnEvoGdLh 1OkVKLOhroAs0mRlwKGVmhsbQLQbsKNRh7RPu1b0tY6TGx0nudzZlg1LAO0IyMZE WmP02p+RCWNCzyOSbciCt7kv7ADLaPEHNmpKsiRwwXaCvUb5OnUszzw/I+pdknjc FECvIxeteDslY8LtWkHk+r7D8+WDzz8AfZRqr1CnaU7HlSWegGVzr2RUoaxLcA+J anrO0CLzynCoejmcAyynESrdGJOm91nKMNqOawvdvEygJ8zddqyNNHQcTsmBUPJe gifZmwNLgtbijA== -----END CERTIFICATE-----Generated at Fri Dec 19 00:14:23 2025 by rpki-client