This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft File: qltHHQugidnp9GwpExlnT6yBKNA.mft (raw, json) Hash identifier: Cfoo75eAmtoSasAHWLakhj42f7Q85y7RK3PmtoQ9YCc= Subject key identifier: F8:33:BC:02:20:09:4F:79:29:7A:E8:D9:24:F1:2C:33:DC:50:15:00 Authority key identifier: AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0 Certificate issuer: /CN=aa5b471d0ba089d9e9f46c291319674fac8128d0 Certificate serial: 019AF12D85691B2BF796912974B8842C8E41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft Manifest number: 0DB3 Signing time: Sat 06 Dec 2025 01:01:23 +0000 Manifest this update: Sat 06 Dec 2025 01:01:23 +0000 Manifest next update: Sun 07 Dec 2025 01:01:23 +0000 Files and hashes: 1: 2K6387yyM5gxakFjGUcn1KUMQ58.roa (hash: KwEJI06hkpRX+nj9eXMKKI3vC9xa4ElKQ9FhYTbVyds=) 2: VNd90Fl0tWahsmhhQvhoAAT8f5U.roa (hash: U+zi8hpH0S9lksZLxaBLhZX/Hg0tdOzYwVmTSHbyaHY=) 3: qltHHQugidnp9GwpExlnT6yBKNA.crl (hash: 7lG6MkL8xLoC3m0Ga/HeF8JE4HurUsBaCJIt3HI22iU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:85:69:1b:2b:f7:96:91:29:74:b8:84:2c:8e:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa5b471d0ba089d9e9f46c291319674fac8128d0 Validity Not Before: Dec 6 01:01:23 2025 GMT Not After : Dec 7 01:01:23 2025 GMT Subject: CN=f833bc0220094f79297ae8d924f12c33dc501500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:15:c1:3f:bd:3e:0e:9a:b0:6c:8e:dd:06:7e: 31:7c:91:5a:5c:7f:7c:e5:39:2e:44:fa:d6:04:6d: ad:41:57:1d:37:38:a0:c0:22:77:83:51:c3:18:99: ee:0c:13:e9:41:09:34:b4:a1:d1:3f:09:2d:ae:b9: 9b:2d:56:cc:be:f3:89:97:4a:13:10:4d:34:2f:2a: 09:aa:ab:35:71:73:13:de:db:8d:a4:b3:63:19:94: a3:c2:91:8b:43:2b:4b:42:fb:52:c1:72:88:b5:cd: 5c:51:98:63:5e:40:f5:20:51:3c:6c:69:d5:04:7b: 34:bd:8c:81:d0:6b:75:f6:a6:95:97:61:81:cc:6c: 1f:0f:6b:67:45:41:b1:d3:f0:03:60:1e:e0:a1:c8: b6:55:9f:eb:ff:e8:8f:53:47:0c:f4:68:99:c1:60: b3:85:65:24:be:c6:19:aa:8e:3a:8e:bd:75:9f:99: ce:ce:e0:55:f7:eb:a4:6d:ad:eb:51:67:14:ba:e5: 6d:57:39:ac:1b:d6:06:a6:c5:a5:b1:5b:ee:1a:92: dc:4e:a3:bb:23:00:82:22:64:5c:90:94:cd:99:46: c9:bd:2f:d7:d8:f9:02:73:00:f0:a2:ad:21:24:88: 97:b4:38:40:2e:e0:8e:99:c0:5d:5d:df:30:3d:fd: 04:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:33:BC:02:20:09:4F:79:29:7A:E8:D9:24:F1:2C:33:DC:50:15:00 X509v3 Authority Key Identifier: keyid:AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:74:22:d8:b7:1d:27:c7:78:89:26:59:32:96:74:a9:b6:00: 32:53:95:3c:13:a2:9e:d7:61:1f:65:9f:f9:79:e2:ea:ef:ba: e6:9b:da:46:c5:6c:58:54:48:9f:45:bd:f8:a0:fa:27:4a:2f: 06:55:9e:2b:30:a4:33:f3:1d:a1:b5:98:64:f8:6c:5d:b8:94: 1c:1b:9e:5d:ae:6f:9d:b4:ea:39:72:ab:90:31:57:4f:c5:1e: ac:1a:6b:dc:7f:b1:3e:cd:9d:6e:d0:64:4e:77:80:e0:56:c6: c0:fd:78:2c:e7:65:e5:af:e2:77:78:d6:b8:6c:f9:dd:bf:9e: 4b:92:8a:8e:d6:8a:97:d1:91:86:30:1b:db:fd:0a:ec:b5:3a: 42:4a:ca:39:81:d5:07:97:cc:61:9c:0b:87:7e:ee:34:13:5c: ec:d7:d9:6b:13:bf:dc:60:39:68:77:27:bc:60:34:56:a2:b6: 0a:f6:73:97:c4:99:cf:47:75:1f:a7:bb:63:66:4f:76:82:98: 2f:e1:56:e5:36:09:2e:e7:cb:f4:5c:5c:a9:c6:bb:84:ad:30: b6:d3:db:94:9b:19:40:24:26:09:5f:be:f7:47:af:6d:03:e5: 96:fa:d2:94:76:ea:1f:97:19:cb:da:37:42:ee:6a:3d:bb:2f: 72:73:fa:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLYVpGyv3lpEpdLiELI5BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNWI0NzFkMGJhMDg5ZDllOWY0NmMyOTEzMTk2NzRmYWM4 MTI4ZDAwHhcNMjUxMjA2MDEwMTIzWhcNMjUxMjA3MDEwMTIzWjAzMTEwLwYDVQQD EyhmODMzYmMwMjIwMDk0Zjc5Mjk3YWU4ZDkyNGYxMmMzM2RjNTAxNTAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxXBP70+DpqwbI7dBn4xfJFaXH98 5TkuRPrWBG2tQVcdNzigwCJ3g1HDGJnuDBPpQQk0tKHRPwktrrmbLVbMvvOJl0oT EE00LyoJqqs1cXMT3tuNpLNjGZSjwpGLQytLQvtSwXKItc1cUZhjXkD1IFE8bGnV BHs0vYyB0Gt19qaVl2GBzGwfD2tnRUGx0/ADYB7goci2VZ/r/+iPU0cM9GiZwWCz hWUkvsYZqo46jr11n5nOzuBV9+ukba3rUWcUuuVtVzmsG9YGpsWlsVvuGpLcTqO7 IwCCImRckJTNmUbJvS/X2PkCcwDwoq0hJIiXtDhALuCOmcBdXd8wPf0EDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPgzvAIgCU95KXro2STxLDPcUBUAMB8GA1UdIwQY MBaAFKpbRx0LoInZ6fRsKRMZZ0+sgSjQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWx0SEhRdWdpZG5wOUd3cEV4bG5UNnlCS05BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS80YmUwMjctODhlOS00N2UzLWJiODgt NmYyZTI1MjliZTgyLzEvcWx0SEhRdWdpZG5wOUd3cEV4bG5UNnlCS05BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS80YmUwMjctODhlOS00N2UzLWJiODgtNmYyZTI1MjliZTgy LzEvcWx0SEhRdWdpZG5wOUd3cEV4bG5UNnlCS05BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGnQi2Lcd J8d4iSZZMpZ0qbYAMlOVPBOintdhH2Wf+Xni6u+65pvaRsVsWFRIn0W9+KD6J0ov BlWeKzCkM/MdobWYZPhsXbiUHBueXa5vnbTqOXKrkDFXT8UerBpr3H+xPs2dbtBk TneA4FbGwP14LOdl5a/id3jWuGz53b+eS5KKjtaKl9GRhjAb2/0K7LU6QkrKOYHV B5fMYZwLh37uNBNc7NfZaxO/3GA5aHcnvGA0VqK2CvZzl8SZz0d1H6e7Y2ZPdoKY L+FW5TYJLufL9Fxcqca7hK0wttPblJsZQCQmCV++90evbQPllvrSlHbqH5cZy9o3 Qu5qPbsvcnP6gg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:39:01 2025 by rpki-client