This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft File: QeODxYB-mzL1dtCluO53RMrPtxc.mft (raw, json) Hash identifier: sJCPUdk8lkn+7dM9JdBrYSIdob+YIMaCwEmv7pHKPNk= Subject key identifier: 34:D9:E1:1B:F3:54:0B:5C:9F:3C:89:90:85:29:0F:94:91:75:25:09 Authority key identifier: 41:E3:83:C5:80:7E:9B:32:F5:76:D0:A5:B8:EE:77:44:CA:CF:B7:17 Certificate issuer: /CN=41e383c5807e9b32f576d0a5b8ee7744cacfb717 Certificate serial: 019B3344B3E044223879DD0E8255DBB89AD9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QeODxYB-mzL1dtCluO53RMrPtxc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft Manifest number: 0652 Signing time: Thu 18 Dec 2025 21:01:39 +0000 Manifest this update: Thu 18 Dec 2025 21:01:39 +0000 Manifest next update: Fri 19 Dec 2025 21:01:39 +0000 Files and hashes: 1: 03enaQCGw_eqXqIAwZyG-7zrfRA.roa (hash: YhNG/6VofCuK7pQjtVrVurKsTSoyBGAKru+JjLAKpoo=) 2: DUyUlX3xTZHlVnLSKpECvt4NkYU.roa (hash: ZP6huwEf1pdyFLtyz+3lIcMnm1rz3bsZAcR3RQdU+KU=) 3: QeODxYB-mzL1dtCluO53RMrPtxc.crl (hash: us+v2Z66+MNEMQnAvrAr93UB3/G6UCX4tIXAKVc7Xx4=) 4: bB3G3EZqBAqArfU6X5zzc1opBME.roa (hash: gPeixOKastqxOj7HlHBp8UwchVAjS4fsBzFCexJl5H8=) 5: lKGyjDcky_IoNZN6qvlaMVTqM58.roa (hash: IiBQAy+zcf79xQNY8RIQMsijGISjsQrLjaoVvIJA9t4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.crl rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft rsync://rpki.ripe.net/repository/DEFAULT/QeODxYB-mzL1dtCluO53RMrPtxc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 21:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:44:b3:e0:44:22:38:79:dd:0e:82:55:db:b8:9a:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41e383c5807e9b32f576d0a5b8ee7744cacfb717 Validity Not Before: Dec 18 21:01:39 2025 GMT Not After : Dec 19 21:01:39 2025 GMT Subject: CN=34d9e11bf3540b5c9f3c899085290f9491752509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:77:18:c5:c4:86:93:27:f2:0d:40:7c:8f:39: 06:d5:fb:c8:b3:1c:f8:46:53:5f:99:ff:0b:5f:2b: 9e:f7:c1:5b:8c:21:64:79:3b:99:04:8a:95:72:0e: a3:ce:e4:70:bf:f8:fe:0d:bb:69:83:32:45:52:a9: ba:5e:dc:5f:f7:6e:d9:84:0e:cc:73:87:34:66:d8: 02:65:0d:16:5e:f3:a4:e5:ce:7a:7f:86:b0:99:f4: 58:27:da:10:40:95:8a:5c:9a:21:fe:5b:96:4b:77: 3e:9d:83:d0:e0:5c:93:e3:19:d8:94:06:e5:cd:d6: 9d:fe:c9:3e:c0:d3:f4:16:64:27:95:f2:f7:f5:ba: 3a:d2:85:e4:fc:c1:97:5f:35:9c:52:22:97:1f:d6: 0f:32:69:09:7f:8b:c4:cb:9d:0c:e6:8a:c8:e9:8c: 47:df:89:14:49:d7:32:b2:74:cd:bc:d6:0c:bb:d9: 74:6b:10:54:8a:ef:29:94:b2:9c:90:00:6f:73:49: d6:c9:8a:af:97:7d:17:bb:7d:20:37:cf:74:e0:ea: e5:5c:8e:84:d6:54:d6:05:6e:73:40:61:0a:49:bb: 39:3b:a1:ca:d5:2c:58:95:1d:6e:7c:8d:e7:a2:f4: 74:80:8d:26:b7:e1:3a:94:d0:12:34:5c:56:d1:a6: e7:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:D9:E1:1B:F3:54:0B:5C:9F:3C:89:90:85:29:0F:94:91:75:25:09 X509v3 Authority Key Identifier: keyid:41:E3:83:C5:80:7E:9B:32:F5:76:D0:A5:B8:EE:77:44:CA:CF:B7:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QeODxYB-mzL1dtCluO53RMrPtxc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:79:0d:e4:ba:cc:9f:64:11:12:5a:f2:f8:95:7d:66:94:10: e5:c9:d2:9f:e0:3d:2b:a5:d4:b0:26:2b:9f:9b:17:23:bf:6a: 23:20:3d:7a:f2:47:f8:65:50:ea:2c:8d:20:9b:9d:63:a5:52: 7a:f4:ff:3f:bf:63:78:29:18:06:44:4d:86:bd:c7:a7:3e:c8: e7:e5:13:80:4c:be:92:42:39:e5:ae:97:8e:28:9e:37:a5:ac: 30:03:c4:da:48:63:ff:3e:46:25:9b:c7:7f:29:26:11:d6:99: 57:ff:1b:34:5d:71:09:7b:34:ff:ea:3b:46:56:9e:aa:f8:72: 98:12:ce:a7:49:1b:4e:90:8d:93:33:04:ba:43:8f:da:e5:17: 06:bd:47:69:fa:fd:46:7c:3d:18:3a:47:87:fb:93:b8:61:c0: fd:4c:c8:6d:cc:b6:02:c0:ee:3f:4d:b1:cc:12:4b:fb:3d:7a: f3:4d:ee:4f:b1:d3:4c:8c:79:35:65:2f:80:8f:88:c5:92:6a: 43:72:b6:d0:92:99:31:b9:c5:68:8a:47:b0:55:52:22:be:56: 24:4d:9e:c9:12:e7:3e:c7:04:fa:01:5d:a1:47:dc:e7:03:8c: fe:81:85:9b:dd:66:da:a2:18:89:86:94:ce:e7:e0:5a:8c:1b: 09:e5:ac:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszRLPgRCI4ed0OglXbuJrZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxZTM4M2M1ODA3ZTliMzJmNTc2ZDBhNWI4ZWU3NzQ0Y2Fj ZmI3MTcwHhcNMjUxMjE4MjEwMTM5WhcNMjUxMjE5MjEwMTM5WjAzMTEwLwYDVQQD EygzNGQ5ZTExYmYzNTQwYjVjOWYzYzg5OTA4NTI5MGY5NDkxNzUyNTA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHcYxcSGkyfyDUB8jzkG1fvIsxz4 RlNfmf8LXyue98FbjCFkeTuZBIqVcg6jzuRwv/j+DbtpgzJFUqm6Xtxf927ZhA7M c4c0ZtgCZQ0WXvOk5c56f4awmfRYJ9oQQJWKXJoh/luWS3c+nYPQ4FyT4xnYlAbl zdad/sk+wNP0FmQnlfL39bo60oXk/MGXXzWcUiKXH9YPMmkJf4vEy50M5orI6YxH 34kUSdcysnTNvNYMu9l0axBUiu8plLKckABvc0nWyYqvl30Xu30gN8904OrlXI6E 1lTWBW5zQGEKSbs5O6HK1SxYlR1ufI3novR0gI0mt+E6lNASNFxW0abntQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDTZ4RvzVAtcnzyJkIUpD5SRdSUJMB8GA1UdIwQY MBaAFEHjg8WAfpsy9XbQpbjud0TKz7cXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWVPRHhZQi1tekwxZHRDbHVPNTNSTXJQdHhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9hZWE0NjUtYmE0NS00OWFjLTljNjgt N2I0MWZhYmM2ZjY3LzEvUWVPRHhZQi1tekwxZHRDbHVPNTNSTXJQdHhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC9hZWE0NjUtYmE0NS00OWFjLTljNjgtN2I0MWZhYmM2ZjY3 LzEvUWVPRHhZQi1tekwxZHRDbHVPNTNSTXJQdHhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqXkN5LrM n2QRElry+JV9ZpQQ5cnSn+A9K6XUsCYrn5sXI79qIyA9evJH+GVQ6iyNIJudY6VS evT/P79jeCkYBkRNhr3Hpz7I5+UTgEy+kkI55a6XjiieN6WsMAPE2khj/z5GJZvH fykmEdaZV/8bNF1xCXs0/+o7RlaeqvhymBLOp0kbTpCNkzMEukOP2uUXBr1Hafr9 Rnw9GDpHh/uTuGHA/UzIbcy2AsDuP02xzBJL+z16803uT7HTTIx5NWUvgI+IxZJq Q3K20JKZMbnFaIpHsFVSIr5WJE2eyRLnPscE+gFdoUfc5wOM/oGFm91m2qIYiYaU zufgWowbCeWsWA== -----END CERTIFICATE-----Generated at Fri Dec 19 05:44:50 2025 by rpki-client