This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft File: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft (raw, json) Hash identifier: RG0GqsDwVzUZGllsJgrtwiiAEhSw0LnrPoSbnvNBK5c= Subject key identifier: 0A:41:D4:08:5C:7A:52:7F:FB:8F:40:E9:CD:39:DB:4A:8C:51:86:8D Authority key identifier: 94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6 Certificate issuer: /CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6 Certificate serial: 019B68E91CF766B90C13C5A2729C3984189C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft Manifest number: 1439 Signing time: Mon 29 Dec 2025 07:01:06 +0000 Manifest this update: Mon 29 Dec 2025 07:01:06 +0000 Manifest next update: Tue 30 Dec 2025 07:01:06 +0000 Files and hashes: 1: GkmNRez_B8q96uaVOleqThEPoEs.roa (hash: aNQGHPeLClAe2Gmzc0jqm+MRXJ2xuLHjsljQiK1K4qw=) 2: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl (hash: qjOqdxug8jE11tuSpgbx4dVdCVnF7ui28/tqUw6tG+I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 07:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:68:e9:1c:f7:66:b9:0c:13:c5:a2:72:9c:39:84:18:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6 Validity Not Before: Dec 29 07:01:06 2025 GMT Not After : Dec 30 07:01:06 2025 GMT Subject: CN=0a41d4085c7a527ffb8f40e9cd39db4a8c51868d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b4:ce:96:96:27:a5:8e:cf:1a:2e:25:de:19: 8f:dc:c1:c9:85:13:55:c7:98:c7:24:2f:5e:83:e7: 0a:c3:41:21:1a:dd:81:31:c9:b6:0d:66:e8:52:8d: 9d:aa:78:f2:4e:fe:08:e2:21:8f:29:50:86:bc:bc: 71:54:21:f7:5c:0a:86:d0:24:ad:d0:40:23:25:ff: bc:16:be:93:5f:eb:a9:4d:e4:7e:90:c4:10:70:e6: f9:2b:1f:82:20:8a:94:af:27:fd:ee:3a:7c:df:3e: a7:fc:6f:a2:47:93:94:e3:57:07:3d:51:8b:ce:23: b4:3c:cd:7a:13:be:b3:66:1e:44:ca:1c:3c:5d:64: 7d:0a:b4:f2:54:dd:98:0f:3f:3a:99:c1:2a:68:64: 61:b9:8c:31:c8:c6:fc:6f:e5:50:85:21:e4:8c:d1: 39:a2:89:d6:ef:b6:18:b3:34:42:f2:97:1c:8d:09: 72:14:cd:8a:f9:b3:81:94:ee:5f:f3:d6:7b:42:38: d9:80:89:a5:28:3b:32:76:8f:60:ee:96:2c:64:53: 58:14:01:93:16:5c:da:f8:bd:fe:bf:96:2a:a0:84: 92:45:fb:24:39:f3:8e:5e:03:92:5b:c2:ab:7d:78: c5:b3:fa:d8:1a:f9:dc:97:52:e0:db:60:94:77:70: 1d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:41:D4:08:5C:7A:52:7F:FB:8F:40:E9:CD:39:DB:4A:8C:51:86:8D X509v3 Authority Key Identifier: keyid:94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:d7:8a:6d:68:77:9e:a9:1f:97:28:d9:0d:91:4c:4b:7e:64: d4:61:42:1e:a7:ee:42:14:89:32:de:27:73:d3:8d:a3:6a:dd: 00:5c:41:07:0a:1a:6e:50:9e:59:d4:69:e4:e9:da:18:b0:49: a7:a6:0f:b8:13:18:2d:ce:24:61:7a:47:b4:18:bd:82:71:4a: 49:93:3f:a7:72:92:3c:ba:89:ca:1e:86:68:c9:c1:5d:bb:27: ef:07:e4:f9:9c:69:94:1a:cf:a5:cf:13:1f:02:a7:68:57:64: 5e:8b:54:f0:b0:19:24:39:ad:05:78:86:ac:63:5e:5a:7c:f1: ee:2c:d5:85:a6:19:a3:68:bd:ac:6f:7e:1a:cb:6b:b8:68:78: 10:ee:18:bd:72:24:05:6f:77:40:52:12:78:3a:e0:d0:c7:70: fb:a7:7b:64:27:5f:84:a7:44:50:58:78:19:08:3c:52:ab:8a: 0d:41:83:a8:a9:30:48:dd:fa:04:1f:b1:29:17:0a:9a:02:b7: 02:e3:06:67:21:0f:bd:2a:80:38:3c:8e:b5:ac:58:ef:87:c8: 09:b9:0a:b2:5c:34:fd:d7:7c:c5:f6:f1:2d:6b:97:a3:4f:ab: a3:8e:c4:2e:c3:d1:c1:23:40:26:5a:8f:98:ee:26:93:0c:e7: 00:ad:98:fe -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZto6Rz3ZrkME8Wicpw5hBicMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0ZmE2YzQyOTkzMjFkYzVmYzkxZmM3OTYzYWE1MTQ4N2U0 YWY1ZTYwHhcNMjUxMjI5MDcwMTA2WhcNMjUxMjMwMDcwMTA2WjAzMTEwLwYDVQQD EygwYTQxZDQwODVjN2E1MjdmZmI4ZjQwZTljZDM5ZGI0YThjNTE4NjhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzrTOlpYnpY7PGi4l3hmP3MHJhRNV x5jHJC9eg+cKw0EhGt2BMcm2DWboUo2dqnjyTv4I4iGPKVCGvLxxVCH3XAqG0CSt 0EAjJf+8Fr6TX+upTeR+kMQQcOb5Kx+CIIqUryf97jp83z6n/G+iR5OU41cHPVGL ziO0PM16E76zZh5Eyhw8XWR9CrTyVN2YDz86mcEqaGRhuYwxyMb8b+VQhSHkjNE5 oonW77YYszRC8pccjQlyFM2K+bOBlO5f89Z7QjjZgImlKDsydo9g7pYsZFNYFAGT Flza+L3+v5YqoISSRfskOfOOXgOSW8KrfXjFs/rYGvncl1Lg22CUd3AdUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFApB1AhcelJ/+49A6c0520qMUYaNMB8GA1UdIwQY MBaAFJT6bEKZMh3F/JH8eWOqUUh+SvXmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFBwc1Fwa3lIY1g4a2Z4NVk2cFJTSDVLOWVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC80M2QyNTUtMjg0YS00NjhmLThiNmUt ZmIxZTlkYjBjMzg4LzEvbFBwc1Fwa3lIY1g4a2Z4NVk2cFJTSDVLOWVZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC80M2QyNTUtMjg0YS00NjhmLThiNmUtZmIxZTlkYjBjMzg4 LzEvbFBwc1Fwa3lIY1g4a2Z4NVk2cFJTSDVLOWVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAedeKbWh3 nqkflyjZDZFMS35k1GFCHqfuQhSJMt4nc9ONo2rdAFxBBwoablCeWdRp5OnaGLBJ p6YPuBMYLc4kYXpHtBi9gnFKSZM/p3KSPLqJyh6GaMnBXbsn7wfk+ZxplBrPpc8T HwKnaFdkXotU8LAZJDmtBXiGrGNeWnzx7izVhaYZo2i9rG9+GstruGh4EO4YvXIk BW93QFISeDrg0Mdw+6d7ZCdfhKdEUFh4GQg8UquKDUGDqKkwSN36BB+xKRcKmgK3 AuMGZyEPvSqAODyOtaxY74fICbkKslw0/dd8xfbxLWuXo0+ro47ELsPRwSNAJlqP mO4mkwznAK2Y/g== -----END CERTIFICATE-----Generated at Mon Dec 29 14:58:07 2025 by rpki-client