This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft File: q53IX5TKZH3g22TXTTE5lHzESbo.mft (raw, json) Hash identifier: 1mNMf4pnduwsZkMw8b2FjjQIz3UTCJwVMps5QiY+2bg= Subject key identifier: 00:34:86:10:06:58:A3:74:CB:07:B1:4A:6F:C8:CD:DB:86:67:27:43 Authority key identifier: AB:9D:C8:5F:94:CA:64:7D:E0:DB:64:D7:4D:31:39:94:7C:C4:49:BA Certificate issuer: /CN=ab9dc85f94ca647de0db64d74d3139947cc449ba Certificate serial: 019AF19B02E58F89C149FC558648E31DD107 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft Manifest number: 144E Signing time: Sat 06 Dec 2025 03:00:59 +0000 Manifest this update: Sat 06 Dec 2025 03:00:59 +0000 Manifest next update: Sun 07 Dec 2025 03:00:59 +0000 Files and hashes: 1: 3U4MivbAgZFFTzpri9v9qzr-9Dg.roa (hash: OpxoqQJPTPV/7nPesTeS09o0jfmFmQcqEJLqODzVTIM=) 2: q53IX5TKZH3g22TXTTE5lHzESbo.crl (hash: Iuv0i8nCaWJoxRx4nhQpu4JIJJvLjfSM98idmLZI2fo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.crl rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:02:e5:8f:89:c1:49:fc:55:86:48:e3:1d:d1:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab9dc85f94ca647de0db64d74d3139947cc449ba Validity Not Before: Dec 6 03:00:59 2025 GMT Not After : Dec 7 03:00:59 2025 GMT Subject: CN=003486100658a374cb07b14a6fc8cddb86672743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a7:f3:1f:a4:4c:42:bd:4f:7e:69:19:c5:36: fd:21:1d:4d:75:fc:b6:a1:83:32:5e:1d:4d:22:81: 15:eb:59:24:eb:60:48:40:1b:99:f7:bb:e8:f5:6d: 80:b6:9f:c9:f4:e2:04:ec:30:36:ed:b7:49:60:2d: 27:18:9b:6d:f1:a8:e0:53:a2:58:68:71:d6:0a:6b: a9:4b:09:77:9e:28:5b:b6:45:d0:f2:79:7f:7a:f1: 62:88:c2:66:57:0a:f9:d8:a9:22:de:1b:91:ed:e6: 0b:46:98:f7:ff:fd:9a:12:21:ac:e9:89:ab:b0:de: d8:a6:74:a3:be:1f:14:3f:23:d5:5b:cf:9e:f7:12: ae:2a:22:89:2a:f4:bb:14:3b:b7:15:67:a3:07:0d: f6:fe:96:5d:c1:4a:ec:59:2e:a3:31:d7:e1:1a:da: 59:e6:dd:d4:e3:8c:a3:46:52:81:64:40:d2:a7:70: c1:a4:6c:cf:f7:71:2f:ae:97:d7:c9:c7:11:d9:32: 79:2c:70:2b:21:29:aa:ec:5a:bd:55:17:01:a5:41: bc:7d:7c:ac:0f:fc:cc:10:56:b5:a6:c1:e9:b4:e3: 7a:a6:ac:a4:40:e8:c3:24:0c:d5:dd:7c:86:64:aa: f2:41:d0:f4:1d:ee:16:b9:09:83:ae:c1:e7:76:18: 2e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:34:86:10:06:58:A3:74:CB:07:B1:4A:6F:C8:CD:DB:86:67:27:43 X509v3 Authority Key Identifier: keyid:AB:9D:C8:5F:94:CA:64:7D:E0:DB:64:D7:4D:31:39:94:7C:C4:49:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:c6:28:52:32:e2:9a:13:75:53:56:71:fb:54:6a:d6:74:af: de:0e:08:40:2e:ce:fe:cc:2c:c1:6b:fb:85:97:ab:7f:dc:8d: 19:5e:25:bf:16:ce:e5:41:0e:17:3c:2f:3a:26:3d:93:39:a0: 8e:b9:fe:e1:52:5c:3f:21:9b:e0:0b:66:60:88:39:6e:ae:66: d4:9e:8c:2c:58:14:35:96:56:7c:79:e4:84:62:85:8f:d1:c1: c4:a2:7c:51:3c:6e:28:fd:3a:b0:ca:be:4e:4a:c7:56:2b:fd: 28:46:0e:3d:51:db:62:1b:59:12:0a:3b:96:79:30:fe:0b:70: 1d:84:cf:1f:e0:06:3d:25:20:d1:c7:ee:03:9c:dd:2e:29:1c: 7f:1f:b4:b8:cf:96:7a:76:1e:aa:67:59:42:29:ce:3c:04:64: a9:ee:46:bb:e5:6e:ac:bb:da:c4:59:18:63:8b:a6:3f:32:e8: e2:56:62:55:0c:03:dc:46:fd:2f:66:15:c4:0a:7a:67:64:53: dd:af:7c:b8:3d:dd:8b:4b:5b:16:24:d4:3d:91:d6:19:79:29: 94:1f:71:16:a1:52:94:0d:fb:98:10:24:1c:df:bc:a2:b2:8b: 70:b4:06:c1:e9:e2:d5:3a:7d:45:9c:2e:32:27:b5:cd:d7:26: f0:df:f6:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmwLlj4nBSfxVhkjjHdEHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiOWRjODVmOTRjYTY0N2RlMGRiNjRkNzRkMzEzOTk0N2Nj NDQ5YmEwHhcNMjUxMjA2MDMwMDU5WhcNMjUxMjA3MDMwMDU5WjAzMTEwLwYDVQQD EygwMDM0ODYxMDA2NThhMzc0Y2IwN2IxNGE2ZmM4Y2RkYjg2NjcyNzQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4KfzH6RMQr1PfmkZxTb9IR1Ndfy2 oYMyXh1NIoEV61kk62BIQBuZ97vo9W2Atp/J9OIE7DA27bdJYC0nGJtt8ajgU6JY aHHWCmupSwl3nihbtkXQ8nl/evFiiMJmVwr52Kki3huR7eYLRpj3//2aEiGs6Ymr sN7YpnSjvh8UPyPVW8+e9xKuKiKJKvS7FDu3FWejBw32/pZdwUrsWS6jMdfhGtpZ 5t3U44yjRlKBZEDSp3DBpGzP93EvrpfXyccR2TJ5LHArISmq7Fq9VRcBpUG8fXys D/zMEFa1psHptON6pqykQOjDJAzV3XyGZKryQdD0He4WuQmDrsHndhgu5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAA0hhAGWKN0ywexSm/IzduGZydDMB8GA1UdIwQY MBaAFKudyF+UymR94Ntk100xOZR8xEm6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTUzSVg1VEtaSDNnMjJUWFRURTVsSHpFU2JvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy85YzgzYTUtM2E5YS00NzE1LTliMTYt NDA0NjMyNDk3MGFmLzEvcTUzSVg1VEtaSDNnMjJUWFRURTVsSHpFU2JvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy85YzgzYTUtM2E5YS00NzE1LTliMTYtNDA0NjMyNDk3MGFm LzEvcTUzSVg1VEtaSDNnMjJUWFRURTVsSHpFU2JvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAksYoUjLi mhN1U1Zx+1Rq1nSv3g4IQC7O/swswWv7hZerf9yNGV4lvxbO5UEOFzwvOiY9kzmg jrn+4VJcPyGb4AtmYIg5bq5m1J6MLFgUNZZWfHnkhGKFj9HBxKJ8UTxuKP06sMq+ TkrHViv9KEYOPVHbYhtZEgo7lnkw/gtwHYTPH+AGPSUg0cfuA5zdLikcfx+0uM+W enYeqmdZQinOPARkqe5Gu+VurLvaxFkYY4umPzLo4lZiVQwD3Eb9L2YVxAp6Z2RT 3a98uD3di0tbFiTUPZHWGXkplB9xFqFSlA37mBAkHN+8orKLcLQGweni1Tp9RZwu Mie1zdcm8N/22Q== -----END CERTIFICATE-----Generated at Sat Dec 6 13:33:47 2025 by rpki-client