This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft File: Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft (raw, json) Hash identifier: 6/JiJxdOKdB6Ye5Cb8TW9eajB6zGS23ZFkGyuygLzx0= Subject key identifier: 68:F5:34:B1:3E:68:EB:29:2A:76:08:C9:47:5E:B5:E2:9E:D8:60:66 Authority key identifier: 43:9A:C3:88:78:12:7C:EC:DC:4C:83:EA:69:EE:E1:F4:E1:18:BC:FF Certificate issuer: /CN=439ac38878127cecdc4c83ea69eee1f4e118bcff Certificate serial: 019AF65409460BE4266071E852D0F9D2ABBC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft Manifest number: 0BF0 Signing time: Sun 07 Dec 2025 01:01:33 +0000 Manifest this update: Sun 07 Dec 2025 01:01:33 +0000 Manifest next update: Mon 08 Dec 2025 01:01:33 +0000 Files and hashes: 1: Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl (hash: 26KObLa9+seV0N8MfADi9RG58pbMb5ryDAd3sOB46Zc=) 2: rqFwpW6hygA3WlEvpR2r2eLIqwU.roa (hash: hJKMm6stZaqD+/5F5Zq5RhHhs3I7m3K3YzZ93XXb5tw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:54:09:46:0b:e4:26:60:71:e8:52:d0:f9:d2:ab:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=439ac38878127cecdc4c83ea69eee1f4e118bcff Validity Not Before: Dec 7 01:01:33 2025 GMT Not After : Dec 8 01:01:33 2025 GMT Subject: CN=68f534b13e68eb292a7608c9475eb5e29ed86066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:11:27:b2:80:f6:28:81:2c:f1:73:29:6c:f2: 1d:90:06:5c:f0:2a:0c:1b:fc:91:d0:b2:4a:85:7e: 8f:68:3e:ec:44:65:5e:16:42:dc:d3:20:5f:bc:57: 5e:2b:9d:9b:83:cc:40:c7:08:29:3d:4d:da:1d:14: 5b:62:46:64:11:e9:bc:a8:9e:2a:00:06:52:de:06: dc:64:96:28:06:9a:59:bf:f6:85:38:11:60:8b:80: b2:9c:bf:40:09:ef:66:0b:79:92:95:35:62:9c:87: bd:8e:41:d4:08:6b:98:e0:0c:59:cc:60:8d:de:a3: 32:b9:34:0f:04:16:24:5b:90:0b:6c:2e:c6:0d:88: 83:cd:54:31:e0:95:56:80:16:9b:61:8d:5c:7d:6b: 8b:d0:e6:74:51:5f:99:db:9b:a2:79:14:db:1e:44: 04:14:42:ed:a2:6a:4c:a3:ca:14:f8:64:f8:7e:10: 40:6f:b1:e8:95:26:53:1e:d2:5e:d8:ab:d4:aa:28: 5e:b8:0c:90:b9:0f:d6:d8:20:2a:e5:95:9e:10:16: ce:8c:f2:15:f7:bb:74:86:99:da:71:f4:64:e3:4e: 0c:72:6a:65:59:fd:3a:51:e8:51:14:c9:03:cc:e3: 6f:cf:96:f9:57:93:96:f5:6a:09:82:f1:1e:3a:e3: 07:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F5:34:B1:3E:68:EB:29:2A:76:08:C9:47:5E:B5:E2:9E:D8:60:66 X509v3 Authority Key Identifier: keyid:43:9A:C3:88:78:12:7C:EC:DC:4C:83:EA:69:EE:E1:F4:E1:18:BC:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:0f:b6:c2:2d:6d:1d:95:84:22:5a:8e:be:d1:17:18:7b:c3: b0:83:b4:ec:e2:08:5c:0b:0d:b1:f8:a0:1d:18:40:78:e0:0a: 7c:5b:de:79:83:1a:0a:5e:f9:c3:18:05:42:3b:58:44:64:27: 0c:1a:e4:cf:cd:02:50:a2:d7:ee:f8:f1:5b:6f:6f:04:8a:78: 87:97:67:12:57:e0:4b:e2:fb:4e:c1:33:e7:e0:45:31:82:d4: 4d:81:50:ce:fd:40:0f:21:c9:83:09:9b:d1:8d:5a:c1:1e:a5: eb:a3:17:a4:56:ac:40:76:4c:d4:f2:c3:66:f2:5b:9e:3e:85: 30:44:60:6d:dd:f2:69:95:50:7c:28:d5:51:d9:24:ab:c6:fa: 7b:cd:d8:e8:24:c0:72:b7:46:f7:68:0a:4c:52:3f:a1:1b:32: 91:02:d5:4a:ab:1f:2f:67:3c:a8:85:bd:35:13:3b:a4:60:bd: 7d:1f:0d:86:08:3b:09:e0:a3:f0:57:43:9a:19:68:75:d6:d6: 7d:5a:e4:ee:d3:e7:42:d5:68:08:dd:03:e6:78:34:20:de:45: 3f:e4:68:f0:33:ef:80:72:76:f3:3f:67:84:a9:f0:4d:e8:07: 97:52:05:83:e9:18:4e:ee:d0:5c:88:be:b1:12:ca:18:ea:6a: 8c:90:28:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2VAlGC+QmYHHoUtD50qu8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzOWFjMzg4NzgxMjdjZWNkYzRjODNlYTY5ZWVlMWY0ZTEx OGJjZmYwHhcNMjUxMjA3MDEwMTMzWhcNMjUxMjA4MDEwMTMzWjAzMTEwLwYDVQQD Eyg2OGY1MzRiMTNlNjhlYjI5MmE3NjA4Yzk0NzVlYjVlMjllZDg2MDY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjxEnsoD2KIEs8XMpbPIdkAZc8CoM G/yR0LJKhX6PaD7sRGVeFkLc0yBfvFdeK52bg8xAxwgpPU3aHRRbYkZkEem8qJ4q AAZS3gbcZJYoBppZv/aFOBFgi4CynL9ACe9mC3mSlTVinIe9jkHUCGuY4AxZzGCN 3qMyuTQPBBYkW5ALbC7GDYiDzVQx4JVWgBabYY1cfWuL0OZ0UV+Z25uieRTbHkQE FELtompMo8oU+GT4fhBAb7HolSZTHtJe2KvUqiheuAyQuQ/W2CAq5ZWeEBbOjPIV 97t0hpnacfRk404McmplWf06UehRFMkDzONvz5b5V5OW9WoJgvEeOuMHRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGj1NLE+aOspKnYIyUdeteKe2GBmMB8GA1UdIwQY MBaAFEOaw4h4Enzs3EyD6mnu4fThGLz/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTVyRGlIZ1NmT3pjVElQcWFlN2g5T0VZdlA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yNjYwOWYtMjcwMC00OTQ5LThkYmUt YmFlMWY3N2JhNzU4LzEvUTVyRGlIZ1NmT3pjVElQcWFlN2g5T0VZdlA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy8yNjYwOWYtMjcwMC00OTQ5LThkYmUtYmFlMWY3N2JhNzU4 LzEvUTVyRGlIZ1NmT3pjVElQcWFlN2g5T0VZdlA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGA+2wi1t HZWEIlqOvtEXGHvDsIO07OIIXAsNsfigHRhAeOAKfFveeYMaCl75wxgFQjtYRGQn DBrkz80CUKLX7vjxW29vBIp4h5dnElfgS+L7TsEz5+BFMYLUTYFQzv1ADyHJgwmb 0Y1awR6l66MXpFasQHZM1PLDZvJbnj6FMERgbd3yaZVQfCjVUdkkq8b6e83Y6CTA crdG92gKTFI/oRsykQLVSqsfL2c8qIW9NRM7pGC9fR8Nhgg7CeCj8FdDmhloddbW fVrk7tPnQtVoCN0D5ng0IN5FP+Ro8DPvgHJ28z9nhKnwTegHl1IFg+kYTu7QXIi+ sRLKGOpqjJAokA== -----END CERTIFICATE-----Generated at Sun Dec 7 03:20:10 2025 by rpki-client