This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft File: LokBk3Q73yTdIsPtbyizAxouyAY.mft (raw, json) Hash identifier: ERP4lWE8dsjwjPUw+cn/ZcXaPnFnxrEP5FqaMx/Jz5E= Subject key identifier: 81:BF:E4:B3:A5:EA:D7:17:46:13:59:B6:0F:26:A2:78:0C:9D:19:FD Authority key identifier: 2E:89:01:93:74:3B:DF:24:DD:22:C3:ED:6F:28:B3:03:1A:2E:C8:06 Certificate issuer: /CN=2e890193743bdf24dd22c3ed6f28b3031a2ec806 Certificate serial: 019B3BD97C9628A495C3910FD16CC0674982 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft Manifest number: 1315 Signing time: Sat 20 Dec 2025 13:01:07 +0000 Manifest this update: Sat 20 Dec 2025 13:01:07 +0000 Manifest next update: Sun 21 Dec 2025 13:01:07 +0000 Files and hashes: 1: 6EZjDJryRoANWPhlSHpMG7n7IU8.roa (hash: 9isLxzfXlIyOPcXFup6Ou1baZV3mC8KRz9wBcZ1Igfs=) 2: LokBk3Q73yTdIsPtbyizAxouyAY.crl (hash: DGo8cc58rutc55H0sIneOVM3DujNZKCpPeobmiFnug4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 13:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:d9:7c:96:28:a4:95:c3:91:0f:d1:6c:c0:67:49:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e890193743bdf24dd22c3ed6f28b3031a2ec806 Validity Not Before: Dec 20 13:01:07 2025 GMT Not After : Dec 21 13:01:07 2025 GMT Subject: CN=81bfe4b3a5ead717461359b60f26a2780c9d19fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:88:35:a9:f2:ee:6a:f7:d9:82:d4:7e:34:05: ba:cd:62:85:a4:67:69:c2:e4:4d:db:9f:3b:77:bb: 17:ef:08:1c:52:e4:d8:3b:3b:a9:6f:41:7f:2f:e5: b5:8e:28:06:f6:3d:bb:44:da:58:42:c8:ff:3c:19: 79:32:45:83:da:68:ae:09:03:e6:57:5c:ff:b2:02: a9:c9:c0:ab:89:3e:8b:0c:e6:a3:08:8c:2b:eb:c0: bd:69:de:41:aa:06:69:a6:fd:ed:8f:23:88:8f:be: 28:d1:69:5e:8d:aa:79:f9:34:6e:5b:ce:f5:3f:61: dc:f1:ee:61:14:9f:6e:0e:53:3e:c2:90:5e:5c:ff: 8c:8b:15:9b:97:14:f3:75:2e:68:54:82:e1:d0:7f: 56:2d:88:8e:fa:ad:7a:87:cf:b4:59:ee:f9:d8:9b: d2:f3:b3:b6:e6:2d:89:81:07:90:ab:4d:cc:9d:7c: 0e:25:79:98:79:ce:e9:aa:06:83:c8:71:03:34:c0: 9c:90:ea:05:4f:82:99:48:ce:dc:3e:4e:1a:0c:78: 1c:9f:53:0d:c9:a9:10:49:2e:00:3f:96:81:d6:63: 43:0c:6c:10:c0:1a:84:0a:d9:2a:da:fc:83:97:5b: 82:c9:15:0d:bf:3f:d5:c3:eb:9e:84:84:31:f5:de: c2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:BF:E4:B3:A5:EA:D7:17:46:13:59:B6:0F:26:A2:78:0C:9D:19:FD X509v3 Authority Key Identifier: keyid:2E:89:01:93:74:3B:DF:24:DD:22:C3:ED:6F:28:B3:03:1A:2E:C8:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:77:75:d9:7b:62:b1:d4:51:e4:59:0c:c6:7b:86:fb:53:01: 94:bb:69:de:64:45:e5:f8:9d:9b:b7:6d:e7:90:10:bf:94:7b: 19:3e:6b:bf:a7:04:67:68:6b:43:51:b3:bb:73:40:54:35:35: 3f:fd:79:0e:49:31:9a:fb:d6:ff:16:01:0b:88:f9:36:82:1a: c2:9c:15:32:00:65:5d:d7:89:ce:4f:78:c0:d4:2e:7b:b0:25: fd:b9:03:e0:4b:d9:5a:ee:59:3b:c8:a5:e3:89:27:95:f3:08: 87:a6:a2:60:21:05:d7:bc:6f:71:db:48:a0:8d:01:75:cd:ff: 3c:58:ab:51:49:ea:39:8f:8d:ef:39:70:ce:40:77:ed:e8:ea: dd:5d:6e:2d:17:30:1f:5c:80:76:ec:96:8a:03:36:2b:e5:3c: 20:74:41:20:e2:ab:c7:0d:6f:65:7e:74:7f:b7:d7:cf:4b:f8: d5:dc:73:de:59:6d:be:85:6a:18:c8:5b:a2:de:43:b8:cd:ff: 82:02:98:6f:5d:ac:63:f0:37:4f:ec:7c:2c:b6:3b:b4:b6:e4: be:5a:1d:69:ae:76:e6:7e:0b:35:04:f8:b2:6f:84:54:d8:e7: 22:8a:a7:93:1b:82:93:85:b6:61:26:79:93:f8:06:7f:a3:66: f5:71:52:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs72XyWKKSVw5EP0WzAZ0mCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlODkwMTkzNzQzYmRmMjRkZDIyYzNlZDZmMjhiMzAzMWEy ZWM4MDYwHhcNMjUxMjIwMTMwMTA3WhcNMjUxMjIxMTMwMTA3WjAzMTEwLwYDVQQD Eyg4MWJmZTRiM2E1ZWFkNzE3NDYxMzU5YjYwZjI2YTI3ODBjOWQxOWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzYg1qfLuavfZgtR+NAW6zWKFpGdp wuRN2587d7sX7wgcUuTYOzupb0F/L+W1jigG9j27RNpYQsj/PBl5MkWD2miuCQPm V1z/sgKpycCriT6LDOajCIwr68C9ad5BqgZppv3tjyOIj74o0Wlejap5+TRuW871 P2Hc8e5hFJ9uDlM+wpBeXP+MixWblxTzdS5oVILh0H9WLYiO+q16h8+0We752JvS 87O25i2JgQeQq03MnXwOJXmYec7pqgaDyHEDNMCckOoFT4KZSM7cPk4aDHgcn1MN yakQSS4AP5aB1mNDDGwQwBqECtkq2vyDl1uCyRUNvz/Vw+uehIQx9d7C2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIG/5LOl6tcXRhNZtg8mongMnRn9MB8GA1UdIwQY MBaAFC6JAZN0O98k3SLD7W8oswMaLsgGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTG9rQmszUTczeVRkSXNQdGJ5aXpBeG91eUFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy84YzI3YWEtYjUwMC00Yzk2LTg0ZWMt ZjhiZTQ5NTI1MmIwLzEvTG9rQmszUTczeVRkSXNQdGJ5aXpBeG91eUFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy84YzI3YWEtYjUwMC00Yzk2LTg0ZWMtZjhiZTQ5NTI1MmIw LzEvTG9rQmszUTczeVRkSXNQdGJ5aXpBeG91eUFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd3d12Xti sdRR5FkMxnuG+1MBlLtp3mRF5fidm7dt55AQv5R7GT5rv6cEZ2hrQ1Gzu3NAVDU1 P/15DkkxmvvW/xYBC4j5NoIawpwVMgBlXdeJzk94wNQue7Al/bkD4EvZWu5ZO8il 44knlfMIh6aiYCEF17xvcdtIoI0Bdc3/PFirUUnqOY+N7zlwzkB37ejq3V1uLRcw H1yAduyWigM2K+U8IHRBIOKrxw1vZX50f7fXz0v41dxz3lltvoVqGMhbot5DuM3/ ggKYb12sY/A3T+x8LLY7tLbkvlodaa525n4LNQT4sm+EVNjnIoqnkxuCk4W2YSZ5 k/gGf6Nm9XFSxw== -----END CERTIFICATE-----Generated at Sat Dec 20 20:48:23 2025 by rpki-client