This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5954e7-3e0c-4c3a-92d0-49c89ce28882/1/QaHs1T08kyiV6pxQmSxxGHKO1rk.mft File: QaHs1T08kyiV6pxQmSxxGHKO1rk.mft (raw, json) Hash identifier: julXSJXdVhTcLKpGadz7jqRqiL1HDu2E3MCGn/mdgMQ= Subject key identifier: 0D:6B:1C:A9:0B:C5:F4:CE:9E:F8:6E:59:AD:97:CC:74:55:36:B8:77 Authority key identifier: 41:A1:EC:D5:3D:3C:93:28:95:EA:9C:50:99:2C:71:18:72:8E:D6:B9 Certificate issuer: /CN=41a1ecd53d3c932895ea9c50992c7118728ed6b9 Certificate serial: 019AF16412ADCF3C08DFB9259C8CE0BADA10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QaHs1T08kyiV6pxQmSxxGHKO1rk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/5954e7-3e0c-4c3a-92d0-49c89ce28882/1/QaHs1T08kyiV6pxQmSxxGHKO1rk.mft Manifest number: 0F Signing time: Sat 06 Dec 2025 02:00:58 +0000 Manifest this update: Sat 06 Dec 2025 02:00:58 +0000 Manifest next update: Sun 07 Dec 2025 02:00:58 +0000 Files and hashes: 1: Q4K0kYlvp3FTFyzEK2YLlGZGooA.roa (hash: qXM2UgIvJrR1VpY5u74Vrkmv8RUC4/qdzLxzxWzLlLU=) 2: QaHs1T08kyiV6pxQmSxxGHKO1rk.crl (hash: FG+dPsavq/UuSq83nH3YYbJKDrDE4RnUO4OQYNd92KI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/5954e7-3e0c-4c3a-92d0-49c89ce28882/1/QaHs1T08kyiV6pxQmSxxGHKO1rk.crl rsync://rpki.ripe.net/repository/DEFAULT/03/5954e7-3e0c-4c3a-92d0-49c89ce28882/1/QaHs1T08kyiV6pxQmSxxGHKO1rk.mft rsync://rpki.ripe.net/repository/DEFAULT/QaHs1T08kyiV6pxQmSxxGHKO1rk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:12:ad:cf:3c:08:df:b9:25:9c:8c:e0:ba:da:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41a1ecd53d3c932895ea9c50992c7118728ed6b9 Validity Not Before: Dec 6 02:00:58 2025 GMT Not After : Dec 7 02:00:58 2025 GMT Subject: CN=0d6b1ca90bc5f4ce9ef86e59ad97cc745536b877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:49:9e:a7:40:a4:96:65:6a:cc:4b:5d:3c:25: 6c:81:e0:b4:75:92:e3:b5:c9:34:fb:06:fc:97:a6: 69:1a:f7:1d:b9:2d:54:35:cc:a6:25:54:48:7b:f4: 1a:d4:f3:98:52:ff:50:ef:2d:1f:df:f6:22:d8:e5: e3:0f:0e:ac:59:a2:ec:78:70:a8:38:e6:87:0c:c5: fe:2a:13:eb:f4:ba:6e:36:7d:98:76:39:36:c4:77: 32:35:60:97:e7:67:be:2b:3a:1b:70:0f:0d:8a:df: e9:25:05:83:cf:66:1e:f1:f4:a1:22:1b:d7:ff:e7: e5:6d:5a:0a:1b:be:92:1c:34:5c:ef:10:b3:e9:ce: f5:3b:b5:2f:3b:4d:63:b4:cd:4c:29:d4:68:45:dc: 30:d3:91:95:c4:af:21:05:21:49:59:19:ba:b4:2f: 52:02:7f:ea:5a:2a:0b:1d:6e:d0:73:f6:0e:24:b9: 81:e3:60:5d:30:2d:4a:06:77:fa:9c:aa:db:54:5b: 27:92:c6:ca:59:ce:dd:08:0a:f5:8b:26:de:6a:45: 02:b8:50:38:92:c9:d8:9d:cb:52:67:f2:d8:a7:08: fe:94:6c:56:12:f8:74:0a:c3:6f:cf:7d:03:e9:7c: e0:a3:50:10:56:e9:80:96:9e:8f:7d:af:92:82:1c: bf:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:6B:1C:A9:0B:C5:F4:CE:9E:F8:6E:59:AD:97:CC:74:55:36:B8:77 X509v3 Authority Key Identifier: keyid:41:A1:EC:D5:3D:3C:93:28:95:EA:9C:50:99:2C:71:18:72:8E:D6:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QaHs1T08kyiV6pxQmSxxGHKO1rk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5954e7-3e0c-4c3a-92d0-49c89ce28882/1/QaHs1T08kyiV6pxQmSxxGHKO1rk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5954e7-3e0c-4c3a-92d0-49c89ce28882/1/QaHs1T08kyiV6pxQmSxxGHKO1rk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:6c:4a:ba:14:b4:08:95:58:a8:35:9e:19:0a:b3:78:64:36: f6:66:02:2e:6d:dd:ea:6e:e2:31:ab:d8:40:64:d8:cc:9e:3a: 57:a9:d9:f6:1c:ad:ea:55:11:b4:45:02:b3:0d:0c:b9:57:a5: 44:37:0a:9a:76:36:da:8a:4c:06:57:4f:f9:89:fd:93:0a:f8: d7:84:3e:cf:0b:33:38:05:44:9e:31:79:7d:27:7a:3c:d3:56: 0c:25:58:7c:cd:f6:a8:68:2b:7b:78:8b:20:54:8c:1e:d1:35: a8:0a:29:e3:73:e5:18:b9:24:23:7b:2e:b0:cb:a6:d4:7f:4a: af:b1:73:bd:f0:b3:ab:61:5d:2e:3d:d6:22:4e:b6:14:c1:52: a5:cc:1b:24:c4:bc:af:3a:62:34:06:21:5c:05:c3:78:77:5e: c1:de:88:83:3b:3c:8c:c4:d9:06:11:e8:16:6c:ab:4f:50:6d: 53:e5:88:12:0c:3b:c5:40:27:be:14:bd:d1:bc:51:f4:e6:6f: a6:4c:67:d1:ca:c5:02:7c:39:ca:c6:ff:7e:41:1e:6e:05:0c: 3b:79:01:66:e6:7a:3b:66:ef:34:58:c4:2c:64:56:95:44:2a: 58:98:be:77:c7:57:5a:6c:e3:75:74:3e:84:17:58:20:ef:81: b1:b5:12:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZBKtzzwI37klnIzgutoQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxYTFlY2Q1M2QzYzkzMjg5NWVhOWM1MDk5MmM3MTE4NzI4 ZWQ2YjkwHhcNMjUxMjA2MDIwMDU4WhcNMjUxMjA3MDIwMDU4WjAzMTEwLwYDVQQD EygwZDZiMWNhOTBiYzVmNGNlOWVmODZlNTlhZDk3Y2M3NDU1MzZiODc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUmep0CklmVqzEtdPCVsgeC0dZLj tck0+wb8l6ZpGvcduS1UNcymJVRIe/Qa1POYUv9Q7y0f3/Yi2OXjDw6sWaLseHCo OOaHDMX+KhPr9LpuNn2Ydjk2xHcyNWCX52e+KzobcA8Nit/pJQWDz2Ye8fShIhvX /+flbVoKG76SHDRc7xCz6c71O7UvO01jtM1MKdRoRdww05GVxK8hBSFJWRm6tC9S An/qWioLHW7Qc/YOJLmB42BdMC1KBnf6nKrbVFsnksbKWc7dCAr1iybeakUCuFA4 ksnYnctSZ/LYpwj+lGxWEvh0CsNvz30D6Xzgo1AQVumAlp6Pfa+Sghy/dwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA1rHKkLxfTOnvhuWa2XzHRVNrh3MB8GA1UdIwQY MBaAFEGh7NU9PJMoleqcUJkscRhyjta5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWFIczFUMDhreWlWNnB4UW1TeHhHSEtPMXJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy81OTU0ZTctM2UwYy00YzNhLTkyZDAt NDljODljZTI4ODgyLzEvUWFIczFUMDhreWlWNnB4UW1TeHhHSEtPMXJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy81OTU0ZTctM2UwYy00YzNhLTkyZDAtNDljODljZTI4ODgy LzEvUWFIczFUMDhreWlWNnB4UW1TeHhHSEtPMXJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhWxKuhS0 CJVYqDWeGQqzeGQ29mYCLm3d6m7iMavYQGTYzJ46V6nZ9hyt6lURtEUCsw0MuVel RDcKmnY22opMBldP+Yn9kwr414Q+zwszOAVEnjF5fSd6PNNWDCVYfM32qGgre3iL IFSMHtE1qAop43PlGLkkI3susMum1H9Kr7FzvfCzq2FdLj3WIk62FMFSpcwbJMS8 rzpiNAYhXAXDeHdewd6Igzs8jMTZBhHoFmyrT1BtU+WIEgw7xUAnvhS90bxR9OZv pkxn0crFAnw5ysb/fkEebgUMO3kBZuZ6O2bvNFjELGRWlUQqWJi+d8dXWmzjdXQ+ hBdYIO+BsbUS2w== -----END CERTIFICATE-----Generated at Sat Dec 6 07:41:57 2025 by rpki-client