This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft File: sqvUconMbNnByAJ0KiztUMY0vTs.mft (raw, json) Hash identifier: pXJfbSBLJVErkydSYPcoNIjl+h8Uxth8gL6EVG9IN3M= Subject key identifier: 5E:A4:9A:5D:AB:3A:EA:43:30:28:DE:36:0E:C8:28:8C:66:74:81:E5 Authority key identifier: B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B Certificate issuer: /CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b Certificate serial: 019AF208FB1B445844C15F6563C140D69C7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft Manifest number: 0935 Signing time: Sat 06 Dec 2025 05:01:06 +0000 Manifest this update: Sat 06 Dec 2025 05:01:06 +0000 Manifest next update: Sun 07 Dec 2025 05:01:06 +0000 Files and hashes: 1: sqvUconMbNnByAJ0KiztUMY0vTs.crl (hash: 9mOtMMKa4hjTEVwvdvwoRX/q9Hwrm5k4u9Avo2JdLOk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:fb:1b:44:58:44:c1:5f:65:63:c1:40:d6:9c:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b Validity Not Before: Dec 6 05:01:06 2025 GMT Not After : Dec 7 05:01:06 2025 GMT Subject: CN=5ea49a5dab3aea433028de360ec8288c667481e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:11:bd:f4:e5:9a:f3:f7:87:7e:43:25:28:f8: 9e:9c:05:29:25:75:01:60:24:ab:0d:e8:1e:55:11: de:b4:cb:4e:a7:a5:e4:3c:c0:50:8e:86:29:6d:f5: 49:b4:b6:64:53:6b:65:69:fa:8d:d0:75:10:ac:4d: 3f:4c:cf:d3:9a:73:28:b8:c9:5f:67:cc:8c:15:f7: 40:ca:b0:4b:ed:84:13:fa:7f:de:8b:94:74:33:9b: f0:75:45:f5:2c:cc:95:f0:ab:77:9e:b7:60:bd:0f: f2:d9:b9:2f:4c:f5:51:a0:2f:37:a9:00:27:f5:e9: e7:c1:7b:99:99:b1:bb:dd:29:03:ac:56:b0:01:a8: c6:31:62:c6:8e:12:46:00:7f:16:e8:97:6c:97:2c: 09:c2:2f:43:27:59:e8:d0:58:bd:2b:1b:a9:74:dc: c6:80:a0:dd:2d:39:2f:a4:16:ea:2b:97:f1:29:e3: f5:8e:67:bd:95:fc:1e:cd:6e:8f:2c:c2:c5:a7:cd: 90:d3:5e:ac:58:7c:33:04:4a:f8:48:d1:14:da:56: ef:6b:f4:78:5a:b1:56:29:ad:1f:89:0d:ee:0c:6f: 01:57:01:68:0d:fe:c3:73:d1:57:6d:9a:62:9e:48: 54:6d:06:26:f9:02:a1:ce:1b:bb:be:72:28:6f:e1: b2:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:A4:9A:5D:AB:3A:EA:43:30:28:DE:36:0E:C8:28:8C:66:74:81:E5 X509v3 Authority Key Identifier: keyid:B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:87:30:fe:7d:22:16:12:d3:04:34:b8:6d:e2:27:77:c6:7b: c4:e9:60:93:61:90:a0:8a:04:18:c6:d7:d9:b7:b0:fe:a5:3f: 65:b4:65:03:66:18:17:13:4a:dd:ab:ac:bc:af:e3:2c:eb:60: 8b:6f:4a:f9:6e:bc:de:90:e8:37:9d:22:36:e7:53:84:9d:01: 8c:76:af:b9:46:d8:13:d2:c4:e2:4e:b4:fb:d0:16:19:b4:8b: 33:45:c8:4c:99:ae:51:f7:46:c3:3d:a7:2f:2b:00:0e:c6:1a: 99:dc:44:75:ff:a7:70:3d:17:93:e0:91:1b:10:d0:af:09:10: d9:40:06:0c:15:9c:49:c4:42:d5:c2:70:68:47:53:72:a0:82: 2f:21:f0:59:89:65:a1:f2:b9:14:f6:a4:4a:e8:17:be:2a:26: e4:bd:bd:15:15:0d:38:8a:30:79:16:df:72:76:53:4b:44:8b: 91:5b:07:d9:5b:b7:2c:13:9e:1c:a0:64:a8:cb:fc:2a:25:64: a2:ff:86:a4:02:d7:62:1a:b9:1d:49:8b:d4:0b:9b:aa:72:12: 5a:c8:28:25:1a:46:e4:13:42:63:ca:92:14:e4:99:f2:e1:27: 07:39:ee:61:e2:a9:75:6a:2d:20:be:bb:74:41:29:62:de:98: 07:1f:cd:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCPsbRFhEwV9lY8FA1px/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyYWJkNDcyODljYzZjZDljMWM4MDI3NDJhMmNlZDUwYzYz NGJkM2IwHhcNMjUxMjA2MDUwMTA2WhcNMjUxMjA3MDUwMTA2WjAzMTEwLwYDVQQD Eyg1ZWE0OWE1ZGFiM2FlYTQzMzAyOGRlMzYwZWM4Mjg4YzY2NzQ4MWU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7BG99OWa8/eHfkMlKPienAUpJXUB YCSrDegeVRHetMtOp6XkPMBQjoYpbfVJtLZkU2tlafqN0HUQrE0/TM/TmnMouMlf Z8yMFfdAyrBL7YQT+n/ei5R0M5vwdUX1LMyV8Kt3nrdgvQ/y2bkvTPVRoC83qQAn 9ennwXuZmbG73SkDrFawAajGMWLGjhJGAH8W6JdslywJwi9DJ1no0Fi9KxupdNzG gKDdLTkvpBbqK5fxKeP1jme9lfwezW6PLMLFp82Q016sWHwzBEr4SNEU2lbva/R4 WrFWKa0fiQ3uDG8BVwFoDf7Dc9FXbZpinkhUbQYm+QKhzhu7vnIob+GyuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF6kml2rOupDMCjeNg7IKIxmdIHlMB8GA1UdIwQY MBaAFLKr1HKJzGzZwcgCdCos7VDGNL07MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3F2VWNvbk1iTm5CeUFKMEtpenRVTVkwdlRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS80YmY0YzUtMDJhYy00MzQ2LWFmYmMt ZTg3OWE2MDI3OTA3LzEvc3F2VWNvbk1iTm5CeUFKMEtpenRVTVkwdlRzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS80YmY0YzUtMDJhYy00MzQ2LWFmYmMtZTg3OWE2MDI3OTA3 LzEvc3F2VWNvbk1iTm5CeUFKMEtpenRVTVkwdlRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF4cw/n0i FhLTBDS4beInd8Z7xOlgk2GQoIoEGMbX2bew/qU/ZbRlA2YYFxNK3ausvK/jLOtg i29K+W683pDoN50iNudThJ0BjHavuUbYE9LE4k60+9AWGbSLM0XITJmuUfdGwz2n LysADsYamdxEdf+ncD0Xk+CRGxDQrwkQ2UAGDBWcScRC1cJwaEdTcqCCLyHwWYll ofK5FPakSugXviom5L29FRUNOIoweRbfcnZTS0SLkVsH2Vu3LBOeHKBkqMv8KiVk ov+GpALXYhq5HUmL1AubqnISWsgoJRpG5BNCY8qSFOSZ8uEnBznuYeKpdWotIL67 dEEpYt6YBx/NWA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:31:57 2025 by rpki-client