This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/4a6a09-3853-454b-ae09-ffa7514fad2e/1/QZTZ3em51VD_NJfkNoP2iA1AMyM.mft File: QZTZ3em51VD_NJfkNoP2iA1AMyM.mft (raw, json) Hash identifier: zUmXUwt3y62z93vquruknkKoOQYXoZCPZsRJunRsF9w= Subject key identifier: C6:9B:FB:1D:48:26:8E:C3:4D:2E:9E:6A:00:5E:49:E0:98:9F:7F:D4 Authority key identifier: 41:94:D9:DD:E9:B9:D5:50:FF:34:97:E4:36:83:F6:88:0D:40:33:23 Certificate issuer: /CN=4194d9dde9b9d550ff3497e43683f6880d403323 Certificate serial: 019AF19B73C5455B812152AB3A455CEE2ECF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QZTZ3em51VD_NJfkNoP2iA1AMyM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/4a6a09-3853-454b-ae09-ffa7514fad2e/1/QZTZ3em51VD_NJfkNoP2iA1AMyM.mft Manifest number: 0E Signing time: Sat 06 Dec 2025 03:01:27 +0000 Manifest this update: Sat 06 Dec 2025 03:01:27 +0000 Manifest next update: Sun 07 Dec 2025 03:01:27 +0000 Files and hashes: 1: QZTZ3em51VD_NJfkNoP2iA1AMyM.crl (hash: g4Xc1v3BwzyGl0I4YLN3D2vhVWK3RLPw2bezszvBAkM=) 2: lVpBRIi3PbL0pxFTOHIPsen8YRw.roa (hash: Ck8BBcqupqvNYzNl6UXJrtFbj/DxuvN1NlgRMuprHBc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/4a6a09-3853-454b-ae09-ffa7514fad2e/1/QZTZ3em51VD_NJfkNoP2iA1AMyM.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/4a6a09-3853-454b-ae09-ffa7514fad2e/1/QZTZ3em51VD_NJfkNoP2iA1AMyM.mft rsync://rpki.ripe.net/repository/DEFAULT/QZTZ3em51VD_NJfkNoP2iA1AMyM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:73:c5:45:5b:81:21:52:ab:3a:45:5c:ee:2e:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4194d9dde9b9d550ff3497e43683f6880d403323 Validity Not Before: Dec 6 03:01:27 2025 GMT Not After : Dec 7 03:01:27 2025 GMT Subject: CN=c69bfb1d48268ec34d2e9e6a005e49e0989f7fd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2a:55:71:68:8b:8a:e3:0a:3e:fa:dc:55:e5: c9:a2:b4:44:52:de:ea:7b:5e:be:c8:c6:1d:20:a0: 26:73:6d:10:67:13:40:ee:1b:de:44:1c:15:13:ec: ea:01:54:f4:d3:18:2c:9d:da:0c:c4:0e:74:70:28: 30:fa:4a:88:7e:74:97:73:4d:1b:2f:d0:50:82:54: 27:de:85:9f:84:b0:fd:f9:2f:6b:a2:a0:ea:bf:36: f2:05:66:64:16:c5:f5:32:e7:e1:81:80:cb:27:05: 6c:b5:78:22:33:6c:16:5e:f6:12:83:79:0c:88:fc: db:01:24:f5:63:2d:9f:d1:ea:81:16:07:51:f3:f4: b8:67:70:bc:c0:2f:1f:b8:b7:58:4f:b9:c9:5f:a3: 8c:19:83:36:09:1b:11:8e:64:0e:81:74:71:3c:f3: 82:a3:47:83:4f:e9:c7:ba:e9:f6:cc:97:cb:00:1e: a9:20:60:78:48:05:79:65:f2:ef:0e:38:50:1a:4c: a2:5b:f0:c0:98:f5:e7:29:51:d9:a0:d8:72:ce:00: b8:ab:b9:1d:95:8b:cc:46:ec:65:30:7c:5e:7d:ad: 17:93:05:cc:cf:b3:d4:15:08:0b:4f:22:ca:31:4a: f2:3a:0b:1c:cc:a8:21:e9:c2:b6:9b:c1:0c:b8:bc: 8b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:9B:FB:1D:48:26:8E:C3:4D:2E:9E:6A:00:5E:49:E0:98:9F:7F:D4 X509v3 Authority Key Identifier: keyid:41:94:D9:DD:E9:B9:D5:50:FF:34:97:E4:36:83:F6:88:0D:40:33:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QZTZ3em51VD_NJfkNoP2iA1AMyM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/4a6a09-3853-454b-ae09-ffa7514fad2e/1/QZTZ3em51VD_NJfkNoP2iA1AMyM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/4a6a09-3853-454b-ae09-ffa7514fad2e/1/QZTZ3em51VD_NJfkNoP2iA1AMyM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:7e:c3:d1:18:5d:9a:a2:2b:37:48:a7:e0:0b:f1:30:1b:41: a0:5e:f5:b9:a7:97:8b:6b:ea:bc:ac:fd:52:1c:8c:f5:bf:18: b2:62:a4:1d:10:48:10:29:b2:83:89:2d:ca:f0:17:c2:1f:ae: 04:90:9c:2f:b3:02:a2:ee:a5:22:44:87:72:1d:70:73:a0:69: a6:56:fe:ca:c0:8c:eb:5a:f3:ae:6e:f6:17:92:36:ce:ee:5b: 85:3c:c6:58:0a:06:e7:51:4b:22:99:0e:2e:a9:d6:2d:38:f3: 1c:04:a1:62:81:ab:c9:c2:e9:d8:31:89:31:fa:c8:a1:0e:45: da:01:65:0b:d6:b4:99:36:01:b8:7b:5d:28:8e:82:67:fb:85: 0f:21:a7:d5:d3:9a:57:cd:db:4d:ba:e4:6f:94:14:cb:d8:9d: ec:8a:13:1b:83:31:15:30:3b:89:e2:22:f8:c4:e0:15:07:19: ba:dd:59:b7:5d:6e:5d:df:dc:91:6d:73:5a:18:5f:54:00:ae: c6:55:2b:45:85:7c:a9:0c:e0:fe:36:f7:7e:e9:b0:ee:f1:bf: 4f:05:fd:07:ff:e3:7c:bb:ce:c9:b9:11:9b:9d:75:6a:33:8e: 7b:6b:37:f0:cb:23:a7:f2:67:ed:99:6c:5c:05:cc:f4:58:22: e1:c1:a6:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm3PFRVuBIVKrOkVc7i7PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxOTRkOWRkZTliOWQ1NTBmZjM0OTdlNDM2ODNmNjg4MGQ0 MDMzMjMwHhcNMjUxMjA2MDMwMTI3WhcNMjUxMjA3MDMwMTI3WjAzMTEwLwYDVQQD EyhjNjliZmIxZDQ4MjY4ZWMzNGQyZTllNmEwMDVlNDllMDk4OWY3ZmQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1CpVcWiLiuMKPvrcVeXJorREUt7q e16+yMYdIKAmc20QZxNA7hveRBwVE+zqAVT00xgsndoMxA50cCgw+kqIfnSXc00b L9BQglQn3oWfhLD9+S9roqDqvzbyBWZkFsX1MufhgYDLJwVstXgiM2wWXvYSg3kM iPzbAST1Yy2f0eqBFgdR8/S4Z3C8wC8fuLdYT7nJX6OMGYM2CRsRjmQOgXRxPPOC o0eDT+nHuun2zJfLAB6pIGB4SAV5ZfLvDjhQGkyiW/DAmPXnKVHZoNhyzgC4q7kd lYvMRuxlMHxefa0XkwXMz7PUFQgLTyLKMUryOgsczKgh6cK2m8EMuLyLNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMab+x1IJo7DTS6eagBeSeCYn3/UMB8GA1UdIwQY MBaAFEGU2d3pudVQ/zSX5DaD9ogNQDMjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVpUWjNlbTUxVkRfTkpma05vUDJpQTFBTXlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC80YTZhMDktMzg1My00NTRiLWFlMDkt ZmZhNzUxNGZhZDJlLzEvUVpUWjNlbTUxVkRfTkpma05vUDJpQTFBTXlNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC80YTZhMDktMzg1My00NTRiLWFlMDktZmZhNzUxNGZhZDJl LzEvUVpUWjNlbTUxVkRfTkpma05vUDJpQTFBTXlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZH7D0Rhd mqIrN0in4AvxMBtBoF71uaeXi2vqvKz9UhyM9b8YsmKkHRBIECmyg4ktyvAXwh+u BJCcL7MCou6lIkSHch1wc6Bpplb+ysCM61rzrm72F5I2zu5bhTzGWAoG51FLIpkO LqnWLTjzHAShYoGrycLp2DGJMfrIoQ5F2gFlC9a0mTYBuHtdKI6CZ/uFDyGn1dOa V83bTbrkb5QUy9id7IoTG4MxFTA7ieIi+MTgFQcZut1Zt11uXd/ckW1zWhhfVACu xlUrRYV8qQzg/jb3fumw7vG/TwX9B//jfLvOybkRm511ajOOe2s38Msjp/Jn7Zls XAXM9Fgi4cGmPg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:41:38 2025 by rpki-client