This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft File: LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft (raw, json) Hash identifier: uLw1Fa77zUSfDiTOHVgr+NubvJITYn5fMPqAJxgjQhw= Subject key identifier: 45:18:67:4A:20:35:09:E7:D6:D0:DD:95:3A:04:60:25:93:15:51:62 Authority key identifier: 2C:98:22:00:8D:9C:C7:01:2D:60:30:42:9B:28:D8:58:DB:BA:CA:43 Certificate issuer: /CN=2c9822008d9cc7012d6030429b28d858dbbaca43 Certificate serial: 019B51BC57F2AF6E19D3642DA1C589EC7778 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LJgiAI2cxwEtYDBCmyjYWNu6ykM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft Manifest number: 0EF3 Signing time: Wed 24 Dec 2025 19:00:56 +0000 Manifest this update: Wed 24 Dec 2025 19:00:56 +0000 Manifest next update: Thu 25 Dec 2025 19:00:56 +0000 Files and hashes: 1: LJgiAI2cxwEtYDBCmyjYWNu6ykM.crl (hash: hvwA0+z/MEMS6tMQaxgA/ohsVpdnsop7T1kP+IhBdxg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft rsync://rpki.ripe.net/repository/DEFAULT/LJgiAI2cxwEtYDBCmyjYWNu6ykM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 14:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:bc:57:f2:af:6e:19:d3:64:2d:a1:c5:89:ec:77:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2c9822008d9cc7012d6030429b28d858dbbaca43 Validity Not Before: Dec 24 19:00:56 2025 GMT Not After : Dec 25 19:00:56 2025 GMT Subject: CN=4518674a203509e7d6d0dd953a04602593155162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:05:59:9e:44:f9:57:f7:0f:04:2e:28:ce:61: 69:0c:0f:5a:9d:f0:52:f2:b7:f3:3a:20:36:c3:36: 3c:aa:c8:07:4b:b1:52:c7:b5:7b:c5:fa:e0:f4:22: c9:58:f4:63:56:e8:46:27:0e:67:b7:c4:90:66:98: 46:4f:75:df:a3:7e:2f:10:6e:2d:5b:a1:5e:f6:42: 48:e2:70:6b:68:4f:f9:99:0d:96:2a:d2:27:8f:eb: 15:73:33:90:d0:12:d6:f6:ba:05:aa:27:1e:b7:7c: 7f:a1:d0:fa:a2:61:68:1d:ed:bb:f5:c2:47:69:09: c4:05:19:94:9a:41:37:85:a6:fa:31:c3:32:57:28: c9:2a:fa:bd:c5:c0:e9:47:8b:36:21:2c:d5:b3:ef: 60:24:5d:c3:16:24:42:08:01:a6:d7:f7:ca:ee:73: 01:6d:3b:7c:6a:f2:61:d6:65:da:6d:84:5d:bd:eb: 81:f5:6a:93:00:65:dc:36:ba:f8:9b:40:15:ab:bf: 98:b0:24:38:13:57:f9:f4:56:ca:39:96:bd:3d:8b: 58:e8:c2:5a:07:f0:14:54:95:80:84:ca:cf:1f:a4: 8e:9c:d3:fc:69:c6:dc:d0:15:ad:0f:08:b5:77:56: 57:d0:5f:0b:69:fa:32:03:84:9c:6c:c2:df:6e:71: e3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:18:67:4A:20:35:09:E7:D6:D0:DD:95:3A:04:60:25:93:15:51:62 X509v3 Authority Key Identifier: keyid:2C:98:22:00:8D:9C:C7:01:2D:60:30:42:9B:28:D8:58:DB:BA:CA:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJgiAI2cxwEtYDBCmyjYWNu6ykM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:f5:f2:26:46:3b:54:90:20:7c:2a:4f:65:5c:29:07:9d:df: 0b:3f:00:47:cf:b9:37:88:98:0f:e8:c8:1d:1e:f6:eb:69:43: 1d:9a:a4:8a:aa:c5:f9:d5:e1:53:b4:33:01:10:07:72:d2:8d: 20:e1:57:a7:5c:71:c4:cb:19:a1:f6:07:ce:64:0f:97:93:ea: 26:23:61:f2:79:67:28:ca:ee:4c:ae:ba:80:b5:ca:5e:31:2f: 91:16:82:a2:aa:44:64:b9:ac:66:e0:42:a0:7a:b3:81:14:12: 8a:bb:54:f0:bc:07:93:6a:f4:30:28:af:11:bf:65:57:5a:e2: 1d:89:bd:85:71:03:35:cd:67:76:ce:2d:fc:8a:a4:80:f6:93: 1c:4d:bb:29:83:ae:e0:49:57:6e:40:38:dd:7a:90:32:50:de: 2e:f7:59:8e:ca:65:66:42:00:4c:cd:b5:a4:f9:c8:25:c7:57: 46:7c:9e:06:eb:3d:cb:37:20:b9:9b:83:5d:0d:0e:d8:6d:ad: 8c:67:c0:fc:e7:b5:b5:b9:cc:8c:5f:89:1d:aa:6f:b1:42:19: 67:ea:65:2e:6d:ec:31:48:04:b2:d5:66:a7:10:05:58:42:d9: 0c:82:d5:c5:bf:2e:0a:2a:34:9c:1a:73:23:18:80:54:50:fc: b8:31:df:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtRvFfyr24Z02QtocWJ7Hd4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjOTgyMjAwOGQ5Y2M3MDEyZDYwMzA0MjliMjhkODU4ZGJi YWNhNDMwHhcNMjUxMjI0MTkwMDU2WhcNMjUxMjI1MTkwMDU2WjAzMTEwLwYDVQQD Eyg0NTE4Njc0YTIwMzUwOWU3ZDZkMGRkOTUzYTA0NjAyNTkzMTU1MTYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgVZnkT5V/cPBC4ozmFpDA9anfBS 8rfzOiA2wzY8qsgHS7FSx7V7xfrg9CLJWPRjVuhGJw5nt8SQZphGT3Xfo34vEG4t W6Fe9kJI4nBraE/5mQ2WKtInj+sVczOQ0BLW9roFqicet3x/odD6omFoHe279cJH aQnEBRmUmkE3hab6McMyVyjJKvq9xcDpR4s2ISzVs+9gJF3DFiRCCAGm1/fK7nMB bTt8avJh1mXabYRdveuB9WqTAGXcNrr4m0AVq7+YsCQ4E1f59FbKOZa9PYtY6MJa B/AUVJWAhMrPH6SOnNP8acbc0BWtDwi1d1ZX0F8LafoyA4ScbMLfbnHjOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEUYZ0ogNQnn1tDdlToEYCWTFVFiMB8GA1UdIwQY MBaAFCyYIgCNnMcBLWAwQpso2FjbuspDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTEpnaUFJMmN4d0V0WURCQ215allXTnU2eWtNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi81MGFjMTItZmQ5My00OTM5LWEyZWYt NDFjYTJkM2FhZTcxLzEvTEpnaUFJMmN4d0V0WURCQ215allXTnU2eWtNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi81MGFjMTItZmQ5My00OTM5LWEyZWYtNDFjYTJkM2FhZTcx LzEvTEpnaUFJMmN4d0V0WURCQ215allXTnU2eWtNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEfXyJkY7 VJAgfCpPZVwpB53fCz8AR8+5N4iYD+jIHR7262lDHZqkiqrF+dXhU7QzARAHctKN IOFXp1xxxMsZofYHzmQPl5PqJiNh8nlnKMruTK66gLXKXjEvkRaCoqpEZLmsZuBC oHqzgRQSirtU8LwHk2r0MCivEb9lV1riHYm9hXEDNc1nds4t/IqkgPaTHE27KYOu 4ElXbkA43XqQMlDeLvdZjsplZkIATM21pPnIJcdXRnyeBus9yzcguZuDXQ0O2G2t jGfA/Oe1tbnMjF+JHapvsUIZZ+plLm3sMUgEstVmpxAFWELZDILVxb8uCio0nBpz IxiAVFD8uDHfxw== -----END CERTIFICATE-----Generated at Wed Dec 24 19:59:35 2025 by rpki-client