This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/34fd08-ce76-4bc3-87c0-36d4d7f07c8a/1/qYI63d9sNfBbfByuB5BL_58vass.mft File: qYI63d9sNfBbfByuB5BL_58vass.mft (raw, json) Hash identifier: V2D3Zoabguu0H4GZ9GLO5eRIviI1P4w0nB51j70Ms38= Subject key identifier: FC:58:17:9B:27:AD:0A:9C:1B:44:C3:BA:00:89:6A:26:16:60:0B:D8 Authority key identifier: A9:82:3A:DD:DF:6C:35:F0:5B:7C:1C:AE:07:90:4B:FF:9F:2F:6A:CB Certificate issuer: /CN=a9823adddf6c35f05b7c1cae07904bff9f2f6acb Certificate serial: 019AF19B94C73DC53E2B028307A22C7EB392 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qYI63d9sNfBbfByuB5BL_58vass.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/34fd08-ce76-4bc3-87c0-36d4d7f07c8a/1/qYI63d9sNfBbfByuB5BL_58vass.mft Manifest number: 0BD7 Signing time: Sat 06 Dec 2025 03:01:36 +0000 Manifest this update: Sat 06 Dec 2025 03:01:36 +0000 Manifest next update: Sun 07 Dec 2025 03:01:36 +0000 Files and hashes: 1: qYI63d9sNfBbfByuB5BL_58vass.crl (hash: OL5/gZCpRVzPbAM5V7BvneRfxKdJ7ZkobGIjeU0JXkw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/34fd08-ce76-4bc3-87c0-36d4d7f07c8a/1/qYI63d9sNfBbfByuB5BL_58vass.crl rsync://rpki.ripe.net/repository/DEFAULT/21/34fd08-ce76-4bc3-87c0-36d4d7f07c8a/1/qYI63d9sNfBbfByuB5BL_58vass.mft rsync://rpki.ripe.net/repository/DEFAULT/qYI63d9sNfBbfByuB5BL_58vass.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:94:c7:3d:c5:3e:2b:02:83:07:a2:2c:7e:b3:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a9823adddf6c35f05b7c1cae07904bff9f2f6acb Validity Not Before: Dec 6 03:01:36 2025 GMT Not After : Dec 7 03:01:36 2025 GMT Subject: CN=fc58179b27ad0a9c1b44c3ba00896a2616600bd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:55:12:4b:42:f3:37:ad:d3:39:a6:40:87:71: 57:c3:c8:d3:2f:e9:8b:01:2f:f4:a4:75:ad:6f:88: 42:d3:ce:fd:c9:a9:2f:84:59:54:b7:d7:32:4f:0f: 4a:61:62:4f:fc:9d:3d:8a:f4:43:ea:d6:fd:b5:50: 7c:ce:ce:59:dd:fc:07:5a:6a:23:24:77:25:b6:d9: 06:03:75:e6:df:09:05:d4:19:d2:b9:c1:2a:0d:3f: a0:12:1a:ee:b4:82:36:c0:32:10:7f:d2:f4:27:31: d2:99:79:ed:ac:6a:39:e8:9b:94:07:fb:b0:83:ce: b8:e5:12:09:96:e6:ea:78:83:a8:1e:8a:9a:20:10: 69:f1:06:e4:49:d1:24:cc:a6:ec:ed:ea:e3:30:c9: 34:f1:57:a5:f6:20:d9:4b:19:d6:78:08:aa:8d:2f: 80:b0:68:eb:2c:dc:f2:e6:23:bb:7b:8a:3c:84:5b: a9:d4:e1:89:86:65:ec:12:e4:85:4c:da:c5:a0:7d: cc:af:de:3d:6a:04:3b:f6:66:ea:ec:cc:37:24:ac: 87:49:79:ca:60:e6:a4:5d:c8:4c:9a:65:65:e9:a8: 16:99:57:dd:09:a2:fe:54:6d:96:96:95:72:20:de: 58:79:e0:5a:af:ed:6a:1c:fe:34:cf:36:02:db:4a: f6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:58:17:9B:27:AD:0A:9C:1B:44:C3:BA:00:89:6A:26:16:60:0B:D8 X509v3 Authority Key Identifier: keyid:A9:82:3A:DD:DF:6C:35:F0:5B:7C:1C:AE:07:90:4B:FF:9F:2F:6A:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qYI63d9sNfBbfByuB5BL_58vass.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/34fd08-ce76-4bc3-87c0-36d4d7f07c8a/1/qYI63d9sNfBbfByuB5BL_58vass.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/34fd08-ce76-4bc3-87c0-36d4d7f07c8a/1/qYI63d9sNfBbfByuB5BL_58vass.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:07:8f:dc:a7:cd:f5:b1:3a:0a:05:fc:3e:8a:9c:32:d9:bb: eb:4d:6d:fc:88:a2:0b:d7:08:ff:1c:56:89:95:38:a9:98:ae: 4e:88:6b:3b:be:84:1b:c0:ec:2c:ab:2e:8f:61:2a:3d:5d:ef: 55:01:5b:c7:a9:91:36:de:6c:bc:ae:b1:17:72:67:c6:79:dc: 9c:8c:f6:04:59:09:27:3a:4d:cd:b8:e8:a6:33:b4:c2:47:a4: c1:ef:38:db:83:e0:0e:4d:01:11:3e:bc:6a:73:ba:1a:9b:4f: fa:ad:7f:89:69:be:10:44:e1:a7:2a:e7:cc:28:c4:e5:bd:c9: 06:cb:f8:e7:68:13:13:ad:d3:26:be:5b:0a:06:5d:27:21:a2: 75:e6:e2:46:da:41:32:2e:4c:83:e8:68:9b:ce:11:7b:2e:95: c1:f9:f3:a8:a0:c6:b6:23:8b:0f:44:23:bd:f4:51:ae:d8:00: fc:bd:3e:64:7a:18:d1:1f:ba:e2:3f:b1:b8:42:3b:a9:31:0c: f7:9a:ba:81:a5:a3:39:36:da:d6:6c:dd:51:13:3b:40:b1:34: ad:6e:dd:bf:93:25:d8:98:82:b9:d0:9c:ac:63:ad:e2:a6:db: 4c:6e:d9:e4:45:42:16:a0:02:e1:4e:3d:69:44:a9:f0:09:3a: 12:c6:dc:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm5THPcU+KwKDB6IsfrOSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5ODIzYWRkZGY2YzM1ZjA1YjdjMWNhZTA3OTA0YmZmOWYy ZjZhY2IwHhcNMjUxMjA2MDMwMTM2WhcNMjUxMjA3MDMwMTM2WjAzMTEwLwYDVQQD EyhmYzU4MTc5YjI3YWQwYTljMWI0NGMzYmEwMDg5NmEyNjE2NjAwYmQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3FUSS0LzN63TOaZAh3FXw8jTL+mL AS/0pHWtb4hC0879yakvhFlUt9cyTw9KYWJP/J09ivRD6tb9tVB8zs5Z3fwHWmoj JHclttkGA3Xm3wkF1BnSucEqDT+gEhrutII2wDIQf9L0JzHSmXntrGo56JuUB/uw g8645RIJlubqeIOoHoqaIBBp8QbkSdEkzKbs7erjMMk08Vel9iDZSxnWeAiqjS+A sGjrLNzy5iO7e4o8hFup1OGJhmXsEuSFTNrFoH3Mr949agQ79mbq7Mw3JKyHSXnK YOakXchMmmVl6agWmVfdCaL+VG2WlpVyIN5YeeBar+1qHP40zzYC20r2twIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPxYF5snrQqcG0TDugCJaiYWYAvYMB8GA1UdIwQY MBaAFKmCOt3fbDXwW3wcrgeQS/+fL2rLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVlJNjNkOXNOZkJiZkJ5dUI1QkxfNTh2YXNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8zNGZkMDgtY2U3Ni00YmMzLTg3YzAt MzZkNGQ3ZjA3YzhhLzEvcVlJNjNkOXNOZkJiZkJ5dUI1QkxfNTh2YXNzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS8zNGZkMDgtY2U3Ni00YmMzLTg3YzAtMzZkNGQ3ZjA3Yzhh LzEvcVlJNjNkOXNOZkJiZkJ5dUI1QkxfNTh2YXNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjQeP3KfN 9bE6CgX8PoqcMtm7601t/IiiC9cI/xxWiZU4qZiuTohrO76EG8DsLKsuj2EqPV3v VQFbx6mRNt5svK6xF3JnxnncnIz2BFkJJzpNzbjopjO0wkekwe8424PgDk0BET68 anO6GptP+q1/iWm+EEThpyrnzCjE5b3JBsv452gTE63TJr5bCgZdJyGidebiRtpB Mi5Mg+hom84Rey6VwfnzqKDGtiOLD0QjvfRRrtgA/L0+ZHoY0R+64j+xuEI7qTEM 95q6gaWjOTba1mzdURM7QLE0rW7dv5Ml2JiCudCcrGOt4qbbTG7Z5EVCFqAC4U49 aUSp8Ak6EsbcHA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:58:20 2025 by rpki-client