This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft File: 4QnieMeGIlTIh1XkcXOYpVKkkEA.mft (raw, json) Hash identifier: eBCKgcdMzODAkLQBhEnGzWw8he6elm3sHiNaEiw+hNE= Subject key identifier: F4:81:AE:2C:C2:DA:7C:6C:73:03:AC:1C:CA:A7:80:F8:5C:B8:EF:1B Authority key identifier: E1:09:E2:78:C7:86:22:54:C8:87:55:E4:71:73:98:A5:52:A4:90:40 Certificate issuer: /CN=e109e278c7862254c88755e4717398a552a49040 Certificate serial: 019AF5AE5DCF38AC80A13AD6E097549409FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft Manifest number: 0503 Signing time: Sat 06 Dec 2025 22:00:36 +0000 Manifest this update: Sat 06 Dec 2025 22:00:36 +0000 Manifest next update: Sun 07 Dec 2025 22:00:36 +0000 Files and hashes: 1: 4QnieMeGIlTIh1XkcXOYpVKkkEA.crl (hash: UuwLes5VgxTgdsyz1Rnz6thBJ8C8+drRLCJE7LmVmPc=) 2: 8a9J3an90z8mWS8TkwqA1Af6V60.roa (hash: Sfg4OixpuznuGw9qd09AY2Lx61QBeTwn9kYrisQDEss=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:ae:5d:cf:38:ac:80:a1:3a:d6:e0:97:54:94:09:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e109e278c7862254c88755e4717398a552a49040 Validity Not Before: Dec 6 22:00:36 2025 GMT Not After : Dec 7 22:00:36 2025 GMT Subject: CN=f481ae2cc2da7c6c7303ac1ccaa780f85cb8ef1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:70:22:42:0f:88:a2:47:ee:ee:a7:4b:f4:f6: 7d:42:28:ef:72:b1:f5:fe:f5:fe:62:3c:07:af:c2: 5b:f8:15:d8:63:5c:95:bc:53:8d:e3:fc:66:e0:52: 88:ed:49:d3:1d:c5:b7:98:a7:8c:1c:9b:ef:ea:fe: da:04:b4:53:0d:eb:ed:6a:00:92:08:f1:1d:c8:55: 17:66:ec:7a:d0:13:b8:ff:5f:40:f9:4e:53:79:78: 6c:93:64:76:b4:4d:73:94:4b:b3:f2:94:1e:c4:10: ea:3f:4e:82:5d:cb:e2:f3:86:16:ca:01:e2:f3:39: 38:b8:eb:65:5f:f2:f1:b0:fe:ac:66:0f:da:4f:9e: 1f:1d:b4:63:31:d2:81:6a:a1:a7:24:21:32:51:a3: 57:e4:cb:04:2d:fa:7d:3f:d3:68:4d:fc:3e:ad:40: 93:3f:bb:57:2d:54:77:a6:db:4b:39:83:da:73:db: ad:9e:92:6e:53:45:cd:d0:b4:b7:93:2a:9b:d9:d5: 40:33:8c:f3:8d:cf:54:fb:56:c8:90:9c:38:80:8d: b6:35:1c:fb:98:25:65:25:f9:04:5d:09:f2:32:f7: 63:54:60:33:30:9c:25:5a:d8:34:7d:96:f1:ca:3c: 3a:79:dd:0e:9c:41:f0:b4:f2:04:51:39:21:9e:75: 1f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:81:AE:2C:C2:DA:7C:6C:73:03:AC:1C:CA:A7:80:F8:5C:B8:EF:1B X509v3 Authority Key Identifier: keyid:E1:09:E2:78:C7:86:22:54:C8:87:55:E4:71:73:98:A5:52:A4:90:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:77:dc:ff:db:6e:9e:9a:bf:79:18:c8:45:32:91:65:1f:6b: 4f:74:b4:49:be:00:a4:97:88:19:fd:fe:66:22:36:2a:88:d3: a0:3a:ea:f1:40:07:e8:f9:95:90:99:59:bb:97:ed:43:d1:b6: e5:98:3e:6f:5a:37:68:cb:68:24:b4:fe:34:cc:b0:8b:b8:c3: d7:b2:46:61:a7:97:99:a5:ad:16:15:ec:55:dd:98:18:ca:41: fd:4c:bd:82:fa:6b:61:73:23:1d:81:05:3b:d3:03:dd:60:86: f9:d2:9e:a2:3d:9e:64:46:bd:15:a8:08:0d:14:5e:ce:31:b4: c4:73:c4:46:1f:36:c3:08:90:5f:1b:fd:61:fc:8d:22:89:77: 65:6a:d2:ab:3e:c1:b3:a1:c8:ed:1b:a7:1e:20:a5:3b:79:83: 49:29:ff:ee:f4:74:a1:6c:72:9d:e3:df:8b:48:6a:60:2e:62: b0:62:c5:f7:ac:1d:92:ae:88:74:69:2a:ed:8d:0e:c0:dd:9f: b3:44:61:6f:4a:34:b9:98:01:69:4c:eb:12:38:f7:61:bf:79: e4:b1:b0:d7:3f:9f:4a:17:e1:01:67:6f:2e:c7:21:04:5f:39: 32:01:01:03:42:46:7a:a3:49:ba:3a:14:85:f5:e4:d3:ba:1e: a5:e0:f5:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1rl3POKyAoTrW4JdUlAn7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxMDllMjc4Yzc4NjIyNTRjODg3NTVlNDcxNzM5OGE1NTJh NDkwNDAwHhcNMjUxMjA2MjIwMDM2WhcNMjUxMjA3MjIwMDM2WjAzMTEwLwYDVQQD EyhmNDgxYWUyY2MyZGE3YzZjNzMwM2FjMWNjYWE3ODBmODVjYjhlZjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlXAiQg+Iokfu7qdL9PZ9QijvcrH1 /vX+YjwHr8Jb+BXYY1yVvFON4/xm4FKI7UnTHcW3mKeMHJvv6v7aBLRTDevtagCS CPEdyFUXZux60BO4/19A+U5TeXhsk2R2tE1zlEuz8pQexBDqP06CXcvi84YWygHi 8zk4uOtlX/LxsP6sZg/aT54fHbRjMdKBaqGnJCEyUaNX5MsELfp9P9NoTfw+rUCT P7tXLVR3pttLOYPac9utnpJuU0XN0LS3kyqb2dVAM4zzjc9U+1bIkJw4gI22NRz7 mCVlJfkEXQnyMvdjVGAzMJwlWtg0fZbxyjw6ed0OnEHwtPIEUTkhnnUfswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPSBrizC2nxscwOsHMqngPhcuO8bMB8GA1UdIwQY MBaAFOEJ4njHhiJUyIdV5HFzmKVSpJBAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNFFuaWVNZUdJbFRJaDFYa2NYT1lwVktra0VBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lMDcyZDctODdjMC00YjczLTlhNGQt MmYwM2UzMmJkMjFhLzEvNFFuaWVNZUdJbFRJaDFYa2NYT1lwVktra0VBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9lMDcyZDctODdjMC00YjczLTlhNGQtMmYwM2UzMmJkMjFh LzEvNFFuaWVNZUdJbFRJaDFYa2NYT1lwVktra0VBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkHfc/9tu npq/eRjIRTKRZR9rT3S0Sb4ApJeIGf3+ZiI2KojToDrq8UAH6PmVkJlZu5ftQ9G2 5Zg+b1o3aMtoJLT+NMywi7jD17JGYaeXmaWtFhXsVd2YGMpB/Uy9gvprYXMjHYEF O9MD3WCG+dKeoj2eZEa9FagIDRRezjG0xHPERh82wwiQXxv9YfyNIol3ZWrSqz7B s6HI7RunHiClO3mDSSn/7vR0oWxynePfi0hqYC5isGLF96wdkq6IdGkq7Y0OwN2f s0Rhb0o0uZgBaUzrEjj3Yb955LGw1z+fShfhAWdvLschBF85MgEBA0JGeqNJujoU hfXk07oepeD1Kw== -----END CERTIFICATE-----Generated at Sun Dec 7 05:18:04 2025 by rpki-client