This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft File: q3rQAuSQheSApRIaeaJvztr_oZs.mft (raw, json) Hash identifier: iTQqktsnUtv5x5XdAyApoNdYnrzMGisuyvyf0k+NV8U= Subject key identifier: 1A:7B:7C:73:3D:05:15:3F:10:2A:A0:42:12:10:6D:A3:04:61:B0:AB Authority key identifier: AB:7A:D0:02:E4:90:85:E4:80:A5:12:1A:79:A2:6F:CE:DA:FF:A1:9B Certificate issuer: /CN=ab7ad002e49085e480a5121a79a26fcedaffa19b Certificate serial: 019AF31C2A4C30311D45050CEEC08636455E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q3rQAuSQheSApRIaeaJvztr_oZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft Manifest number: 145E Signing time: Sat 06 Dec 2025 10:01:40 +0000 Manifest this update: Sat 06 Dec 2025 10:01:40 +0000 Manifest next update: Sun 07 Dec 2025 10:01:40 +0000 Files and hashes: 1: q3rQAuSQheSApRIaeaJvztr_oZs.crl (hash: 5NbBKuDs+uTYPJJ2yQZAGTTRhRNh1NFtfUw0YM/2gw8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.crl rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft rsync://rpki.ripe.net/repository/DEFAULT/q3rQAuSQheSApRIaeaJvztr_oZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:2a:4c:30:31:1d:45:05:0c:ee:c0:86:36:45:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab7ad002e49085e480a5121a79a26fcedaffa19b Validity Not Before: Dec 6 10:01:40 2025 GMT Not After : Dec 7 10:01:40 2025 GMT Subject: CN=1a7b7c733d05153f102aa04212106da30461b0ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3f:d6:67:16:d5:c7:8c:7b:6d:43:0f:d7:90: 5d:46:07:d7:a1:5e:26:57:d9:70:cd:f6:22:6f:51: 22:1d:55:74:5f:9a:62:a6:7e:27:a6:ce:19:49:3d: f1:79:b1:ae:69:18:e9:3b:b7:cf:6a:f3:31:32:a4: 45:76:0f:2e:d4:6f:53:72:36:c1:66:98:60:8b:4d: 24:ac:60:18:e8:20:db:63:2e:84:fb:b2:b1:ad:45: 21:12:c9:aa:3a:e8:0c:55:e5:81:c9:e9:cf:6d:0e: 4b:66:17:bc:44:1c:f4:c3:de:f5:18:09:bf:38:e9: c6:b6:ff:5e:ed:20:cf:5d:f4:c7:4b:55:be:1c:ec: 33:a1:70:ec:1a:a3:b0:ce:ff:ac:a7:5b:2e:ac:8b: 38:aa:83:f2:d3:e0:57:de:66:26:94:39:b5:92:2d: 7a:ee:0e:42:68:5d:c6:c3:80:23:71:d1:95:8f:a1: 7c:cf:d5:38:99:ed:3b:ea:8c:47:fa:6a:07:07:7b: 58:5d:9e:a7:ad:89:2a:79:e7:f3:a0:c6:0f:c1:ba: e9:57:53:e0:db:63:4d:48:ee:1e:22:e9:07:08:a4: 1e:7a:89:51:c5:11:70:87:1d:b8:14:84:6c:87:c8: 63:7b:67:74:dd:8c:6e:44:a0:dc:61:8e:3a:b9:cd: 5a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:7B:7C:73:3D:05:15:3F:10:2A:A0:42:12:10:6D:A3:04:61:B0:AB X509v3 Authority Key Identifier: keyid:AB:7A:D0:02:E4:90:85:E4:80:A5:12:1A:79:A2:6F:CE:DA:FF:A1:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q3rQAuSQheSApRIaeaJvztr_oZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:d5:bd:94:57:08:d9:33:fa:06:d6:81:13:01:77:57:9b:c0: be:2f:72:51:8b:88:b9:91:3d:f4:b6:2b:50:8a:dc:d1:c6:e5: aa:9e:c3:50:58:43:80:07:a4:a6:ed:4f:85:4e:8f:27:2e:c0: 43:e3:b1:74:52:af:61:41:84:4f:09:b6:c0:ca:99:a3:3c:3d: eb:5d:a9:99:74:3c:31:7d:09:d9:15:7c:ee:b2:e1:58:4c:f2: fe:76:96:ad:2d:30:b3:2d:fb:2e:07:8d:41:5c:72:f3:91:20: 92:30:51:06:05:ae:e8:95:3c:91:8e:61:71:1b:56:10:ba:7f: 66:bd:b3:8e:78:b1:d0:22:06:6f:75:8c:d6:d4:0b:46:35:8b: c3:d5:ef:28:68:2f:09:70:6f:b4:0a:31:cb:c7:d1:40:aa:ec: 76:83:cf:4c:6a:9b:21:a3:55:ff:e7:72:af:8a:67:cc:f1:fa: 34:72:84:1c:22:0d:79:b3:40:26:56:d0:4f:dc:76:d0:34:71: ef:0a:4e:d0:74:51:56:2a:0d:24:3d:a5:d9:2c:c5:f4:48:d2: 17:c9:36:d9:76:ed:12:84:ed:a3:15:29:25:e7:7b:10:88:73: 1f:e1:21:2f:bc:a6:c9:38:29:d2:13:5f:84:de:a6:93:ec:50: df:73:9e:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHCpMMDEdRQUM7sCGNkVeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiN2FkMDAyZTQ5MDg1ZTQ4MGE1MTIxYTc5YTI2ZmNlZGFm ZmExOWIwHhcNMjUxMjA2MTAwMTQwWhcNMjUxMjA3MTAwMTQwWjAzMTEwLwYDVQQD EygxYTdiN2M3MzNkMDUxNTNmMTAyYWEwNDIxMjEwNmRhMzA0NjFiMGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxj/WZxbVx4x7bUMP15BdRgfXoV4m V9lwzfYib1EiHVV0X5pipn4nps4ZST3xebGuaRjpO7fPavMxMqRFdg8u1G9TcjbB Zphgi00krGAY6CDbYy6E+7KxrUUhEsmqOugMVeWByenPbQ5LZhe8RBz0w971GAm/ OOnGtv9e7SDPXfTHS1W+HOwzoXDsGqOwzv+sp1surIs4qoPy0+BX3mYmlDm1ki16 7g5CaF3Gw4AjcdGVj6F8z9U4me076oxH+moHB3tYXZ6nrYkqeefzoMYPwbrpV1Pg 22NNSO4eIukHCKQeeolRxRFwhx24FIRsh8hje2d03YxuRKDcYY46uc1amQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBp7fHM9BRU/ECqgQhIQbaMEYbCrMB8GA1UdIwQY MBaAFKt60ALkkIXkgKUSGnmib87a/6GbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTNyUUF1U1FoZVNBcFJJYWVhSnZ6dHJfb1pzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yNGZiYjYtODZiYy00NmNiLTg4ZTUt YjU4NzNiYThmZTQ3LzEvcTNyUUF1U1FoZVNBcFJJYWVhSnZ6dHJfb1pzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8yNGZiYjYtODZiYy00NmNiLTg4ZTUtYjU4NzNiYThmZTQ3 LzEvcTNyUUF1U1FoZVNBcFJJYWVhSnZ6dHJfb1pzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC9W9lFcI 2TP6BtaBEwF3V5vAvi9yUYuIuZE99LYrUIrc0cblqp7DUFhDgAekpu1PhU6PJy7A Q+OxdFKvYUGETwm2wMqZozw9612pmXQ8MX0J2RV87rLhWEzy/naWrS0wsy37LgeN QVxy85EgkjBRBgWu6JU8kY5hcRtWELp/Zr2zjnix0CIGb3WM1tQLRjWLw9XvKGgv CXBvtAoxy8fRQKrsdoPPTGqbIaNV/+dyr4pnzPH6NHKEHCINebNAJlbQT9x20DRx 7wpO0HRRVioNJD2l2SzF9EjSF8k22XbtEoTtoxUpJed7EIhzH+EhL7ymyTgp0hNf hN6mk+xQ33Oe7A== -----END CERTIFICATE-----Generated at Sat Dec 6 16:26:01 2025 by rpki-client