This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft File: QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft (raw, json) Hash identifier: mXIZhVbbAWyXFou8vgBGCol76qV/WppbNCqjxMEksC0= Subject key identifier: 23:53:EE:A5:86:04:0F:1B:67:B4:00:DA:51:B8:CA:56:08:64:D5:E3 Authority key identifier: 42:13:B5:47:19:66:C2:56:10:D9:5A:5A:2F:A5:CC:06:FC:93:FF:57 Certificate issuer: /CN=4213b5471966c25610d95a5a2fa5cc06fc93ff57 Certificate serial: 019AF1D269B2D6A14A355A4522332F568B9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft Manifest number: 0685 Signing time: Sat 06 Dec 2025 04:01:29 +0000 Manifest this update: Sat 06 Dec 2025 04:01:29 +0000 Manifest next update: Sun 07 Dec 2025 04:01:29 +0000 Files and hashes: 1: QhO1RxlmwlYQ2VpaL6XMBvyT_1c.crl (hash: otpVx7dW/mw04EVPrTPgkXSkgP9UDNUxL9VP9jjFre0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft rsync://rpki.ripe.net/repository/DEFAULT/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:69:b2:d6:a1:4a:35:5a:45:22:33:2f:56:8b:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4213b5471966c25610d95a5a2fa5cc06fc93ff57 Validity Not Before: Dec 6 04:01:29 2025 GMT Not After : Dec 7 04:01:29 2025 GMT Subject: CN=2353eea586040f1b67b400da51b8ca560864d5e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3a:f3:de:b9:15:86:88:41:59:f2:a8:38:13: a9:6e:6a:14:12:8a:a1:26:ad:23:7c:40:3d:8f:4d: 85:af:8a:86:3d:fd:e5:2f:af:45:b5:70:1d:9e:db: af:1d:eb:e1:a7:2a:12:ef:bc:47:35:ee:90:57:da: fc:92:4e:65:d2:26:7f:ed:71:e3:27:14:be:8f:d7: a4:e0:16:3f:dc:da:b3:b0:30:34:55:2f:c4:e8:ab: 91:47:66:ca:ab:6e:7a:f7:18:43:7f:f5:f1:4e:ed: 39:d3:8a:36:ea:36:c2:a4:ba:23:e8:81:0c:db:66: 29:c3:7c:69:4a:7c:dd:a5:69:46:ef:46:89:1d:d0: c8:b4:b1:d2:29:e5:42:ae:db:b1:3f:47:52:44:c8: e6:54:3c:9e:be:f0:13:14:99:17:ba:b1:57:01:3e: 08:83:5a:69:5a:ad:f0:d4:8f:2f:1d:b2:75:57:97: 27:db:50:e5:90:0d:c9:dc:d4:a9:8d:34:9e:78:3c: 83:b5:1b:e9:1b:8b:13:d5:46:5b:9c:5a:00:6b:e9: df:84:d5:32:a4:94:49:37:80:9b:ee:c9:c5:f5:00: e0:9d:e8:28:83:bb:35:12:b6:a8:8a:5b:e4:15:00: 0c:ed:d0:cf:8c:d6:db:5b:05:4b:10:37:82:a2:a6: 2d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:53:EE:A5:86:04:0F:1B:67:B4:00:DA:51:B8:CA:56:08:64:D5:E3 X509v3 Authority Key Identifier: keyid:42:13:B5:47:19:66:C2:56:10:D9:5A:5A:2F:A5:CC:06:FC:93:FF:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:e9:d4:b2:ac:46:4b:d8:b2:d6:c3:e3:b4:98:dc:5b:ea:e2: d1:2b:96:24:08:0a:9b:3d:97:68:36:92:e3:c6:57:68:c5:82: 76:fe:e6:f1:25:d8:fd:50:dc:74:30:06:66:0d:5d:34:b7:d8: 15:25:74:94:67:41:92:c8:99:19:8b:d9:8a:ce:44:54:cb:04: 63:83:dc:45:e9:73:8d:eb:8a:cb:0c:9a:03:1e:98:8e:6c:5c: 3c:18:f5:bf:a6:5e:81:10:3a:a1:bb:9b:e6:2a:71:a5:1b:61: 81:1e:59:34:7e:11:3a:bd:de:21:e6:8c:fd:58:b2:d0:86:04: 37:c9:a0:c2:41:17:79:56:7f:d1:ad:5a:84:13:05:5f:55:de: 17:4c:e6:3c:62:02:8a:6f:36:e3:0e:64:57:c3:14:11:60:95: 15:ee:7a:fd:5e:61:3a:b0:4e:88:5c:6a:fb:66:bf:0f:f9:8b: 67:1b:78:7d:9d:5f:a6:b7:6d:f6:fb:fe:96:96:25:d6:1f:c7: 2e:a9:79:da:04:7b:ff:c5:d4:3d:79:ec:92:1e:3a:cc:9d:60: ee:f3:d2:bd:59:e1:bb:38:9b:83:14:08:42:b6:b6:f5:50:76: 95:d3:09:f2:fe:e9:34:af:34:6f:61:35:74:44:6e:11:fb:0a: 6b:c4:a9:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0mmy1qFKNVpFIjMvVoudMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyMTNiNTQ3MTk2NmMyNTYxMGQ5NWE1YTJmYTVjYzA2ZmM5 M2ZmNTcwHhcNMjUxMjA2MDQwMTI5WhcNMjUxMjA3MDQwMTI5WjAzMTEwLwYDVQQD EygyMzUzZWVhNTg2MDQwZjFiNjdiNDAwZGE1MWI4Y2E1NjA4NjRkNWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzDrz3rkVhohBWfKoOBOpbmoUEoqh Jq0jfEA9j02Fr4qGPf3lL69FtXAdntuvHevhpyoS77xHNe6QV9r8kk5l0iZ/7XHj JxS+j9ek4BY/3NqzsDA0VS/E6KuRR2bKq2569xhDf/XxTu0504o26jbCpLoj6IEM 22Ypw3xpSnzdpWlG70aJHdDItLHSKeVCrtuxP0dSRMjmVDyevvATFJkXurFXAT4I g1ppWq3w1I8vHbJ1V5cn21DlkA3J3NSpjTSeeDyDtRvpG4sT1UZbnFoAa+nfhNUy pJRJN4Cb7snF9QDgnegog7s1EraoilvkFQAM7dDPjNbbWwVLEDeCoqYtEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCNT7qWGBA8bZ7QA2lG4ylYIZNXjMB8GA1UdIwQY MBaAFEITtUcZZsJWENlaWi+lzAb8k/9XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWhPMVJ4bG13bFlRMlZwYUw2WE1CdnlUXzFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8wMDA0ODUtNzIxZi00ZDk3LWEwZjIt NWJkYjJjNjAxMDJkLzEvUWhPMVJ4bG13bFlRMlZwYUw2WE1CdnlUXzFjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy8wMDA0ODUtNzIxZi00ZDk3LWEwZjItNWJkYjJjNjAxMDJk LzEvUWhPMVJ4bG13bFlRMlZwYUw2WE1CdnlUXzFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmenUsqxG S9iy1sPjtJjcW+ri0SuWJAgKmz2XaDaS48ZXaMWCdv7m8SXY/VDcdDAGZg1dNLfY FSV0lGdBksiZGYvZis5EVMsEY4PcRelzjeuKywyaAx6YjmxcPBj1v6ZegRA6obub 5ipxpRthgR5ZNH4ROr3eIeaM/Viy0IYEN8mgwkEXeVZ/0a1ahBMFX1XeF0zmPGIC im824w5kV8MUEWCVFe56/V5hOrBOiFxq+2a/D/mLZxt4fZ1fprdt9vv+lpYl1h/H Lql52gR7/8XUPXnskh46zJ1g7vPSvVnhuzibgxQIQra29VB2ldMJ8v7pNK80b2E1 dERuEfsKa8SphQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:33:15 2025 by rpki-client