This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft File: QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft (raw, json) Hash identifier: Uz7v9RbsepzfD4Gjj5Cbo/cQcvgylVdfz9QbzKJqw/I= Subject key identifier: 9D:10:BC:60:9D:35:82:CC:01:5F:1B:AC:34:BA:E1:70:A6:8B:93:37 Authority key identifier: 42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7 Certificate issuer: /CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7 Certificate serial: 019AF2ADA0C62DDF9E7C38017AC98E95241E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 08:00:56 +0000 Manifest this update: Sat 06 Dec 2025 08:00:56 +0000 Manifest next update: Sun 07 Dec 2025 08:00:56 +0000 Files and hashes: 1: QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl (hash: R7yIFWsIITSLWDUfDrtF3qJLNEb3qtqXYqPwq4UxVuo=) 2: rjvci4lVGCr57ADE7C3M4Mib4mk.roa (hash: yRKI8JSBUthmJegOInkpPYFyfDjZ1t7SRsTNJhUbFjo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:a0:c6:2d:df:9e:7c:38:01:7a:c9:8e:95:24:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7 Validity Not Before: Dec 6 08:00:56 2025 GMT Not After : Dec 7 08:00:56 2025 GMT Subject: CN=9d10bc609d3582cc015f1bac34bae170a68b9337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b8:26:71:50:dc:21:6d:ed:90:30:6e:c5:29: af:7c:42:79:ae:95:9c:46:04:bf:e8:be:ef:8d:12: 24:5f:1a:ad:65:9f:a5:21:6d:a7:1e:8d:7d:aa:38: a2:f1:5b:1e:15:6a:90:42:d4:e8:5d:c5:d0:34:c0: 67:0e:3f:f1:d8:79:1a:5e:99:f5:5f:96:f0:19:56: f5:b8:d9:30:8f:bb:de:ad:bf:fc:3d:44:04:f1:81: 51:c4:70:32:66:74:76:be:bd:03:5f:09:74:35:f6: fc:a0:d9:29:3c:d2:d8:52:13:b8:22:11:d8:91:a9: 90:68:89:2f:98:86:41:6f:00:8f:81:5f:09:ea:8f: a5:2e:98:10:ac:ef:83:14:42:d5:29:d7:38:9f:49: 10:46:97:b1:94:0a:62:63:c4:bd:53:4c:a1:99:3b: 49:d1:64:2a:51:f2:b0:ca:75:96:15:0f:a4:28:ac: 92:51:d0:97:83:3d:6c:4d:29:59:8b:39:62:41:d8: 98:02:d7:ed:46:49:4e:85:5f:74:9e:94:1b:fd:d8: 1b:1f:8b:85:bd:fa:08:60:1f:d0:37:c5:8b:b9:bc: 68:c1:78:23:eb:21:d6:56:ee:65:c7:cb:62:25:d1: 33:d9:30:69:6f:66:d4:d1:da:04:a1:1d:a7:5f:65: 38:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:10:BC:60:9D:35:82:CC:01:5F:1B:AC:34:BA:E1:70:A6:8B:93:37 X509v3 Authority Key Identifier: keyid:42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:b8:72:ff:66:a4:ed:93:46:4e:24:19:e9:d4:9c:bc:8d:d4: d2:2c:db:10:7c:f2:d1:4b:c6:43:0f:b3:84:a9:1b:88:38:7b: f1:32:08:f0:99:89:3f:18:f4:d1:cf:d6:57:17:5d:7e:fd:03: 4d:09:7d:a5:bf:f4:c0:a4:e8:16:aa:a9:42:76:2b:d3:3e:09: a3:b8:da:04:4c:fe:94:61:d6:54:52:94:7a:d1:c4:ee:a1:72: 6b:e3:67:91:9d:63:fb:6f:47:c9:5c:8a:32:f5:36:03:37:de: 99:74:6b:77:fb:d7:cb:1b:1a:84:8a:f8:91:0c:b9:3e:1c:69: 41:92:04:c5:60:98:8c:64:43:0c:77:ee:f6:24:37:03:9a:3e: 38:38:47:8c:cb:54:d5:b4:0f:64:df:14:95:a8:9e:04:83:f3: 9a:3d:c4:10:e5:3a:89:db:92:8d:89:0a:47:13:0f:a7:e0:fc: 77:cf:c5:be:cf:fd:d9:96:ac:88:e5:d6:ba:98:e8:fd:23:a9: f8:ae:bf:73:77:46:25:c9:f7:41:0f:48:3d:d4:2d:f4:4b:c8: c2:7b:49:45:10:82:ee:84:0f:db:cf:82:f6:b8:82:3a:39:f2: 78:7c:05:bd:df:77:dc:c1:a9:bb:2e:41:ce:3d:18:d8:a6:a3: 1e:cf:94:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryraDGLd+efDgBesmOlSQeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyMWI0Y2Q0MGJhZTQ3ZDQ4ZjUxYzljY2NjNjA3Y2NlNTdj ZTAwZjcwHhcNMjUxMjA2MDgwMDU2WhcNMjUxMjA3MDgwMDU2WjAzMTEwLwYDVQQD Eyg5ZDEwYmM2MDlkMzU4MmNjMDE1ZjFiYWMzNGJhZTE3MGE2OGI5MzM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmLgmcVDcIW3tkDBuxSmvfEJ5rpWc RgS/6L7vjRIkXxqtZZ+lIW2nHo19qjii8VseFWqQQtToXcXQNMBnDj/x2HkaXpn1 X5bwGVb1uNkwj7verb/8PUQE8YFRxHAyZnR2vr0DXwl0Nfb8oNkpPNLYUhO4IhHY kamQaIkvmIZBbwCPgV8J6o+lLpgQrO+DFELVKdc4n0kQRpexlApiY8S9U0yhmTtJ 0WQqUfKwynWWFQ+kKKySUdCXgz1sTSlZizliQdiYAtftRklOhV90npQb/dgbH4uF vfoIYB/QN8WLubxowXgj6yHWVu5lx8tiJdEz2TBpb2bU0doEoR2nX2U4ZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ0QvGCdNYLMAV8brDS64XCmi5M3MB8GA1UdIwQY MBaAFEIbTNQLrkfUj1HJzMxgfM5XzgD3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWh0TTFBdXVSOVNQVWNuTXpHQjh6bGZPQVBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi84NTEzY2QtYWFjNy00NjZkLWEwMzEt ODRjY2YzNDIwMjg2LzEvUWh0TTFBdXVSOVNQVWNuTXpHQjh6bGZPQVBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi84NTEzY2QtYWFjNy00NjZkLWEwMzEtODRjY2YzNDIwMjg2 LzEvUWh0TTFBdXVSOVNQVWNuTXpHQjh6bGZPQVBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPbhy/2ak 7ZNGTiQZ6dScvI3U0izbEHzy0UvGQw+zhKkbiDh78TII8JmJPxj00c/WVxddfv0D TQl9pb/0wKToFqqpQnYr0z4Jo7jaBEz+lGHWVFKUetHE7qFya+NnkZ1j+29HyVyK MvU2AzfemXRrd/vXyxsahIr4kQy5PhxpQZIExWCYjGRDDHfu9iQ3A5o+ODhHjMtU 1bQPZN8UlaieBIPzmj3EEOU6iduSjYkKRxMPp+D8d8/Fvs/92ZasiOXWupjo/SOp +K6/c3dGJcn3QQ9IPdQt9EvIwntJRRCC7oQP28+C9riCOjnyeHwFvd933MGpuy5B zj0Y2KajHs+UeA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:18:23 2025 by rpki-client