This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft File: QukMnRAJsywZRbb45liUg8XqR0M.mft (raw, json) Hash identifier: 9q9QONOJYuX3Qtg7KitJMpif9HoR4lIxt19Sly7xtks= Subject key identifier: 03:E0:08:EC:31:BF:AB:29:3D:CC:C9:84:D4:BB:AF:29:E3:FE:A4:27 Authority key identifier: 42:E9:0C:9D:10:09:B3:2C:19:45:B6:F8:E6:58:94:83:C5:EA:47:43 Certificate issuer: /CN=42e90c9d1009b32c1945b6f8e6589483c5ea4743 Certificate serial: 019AF389A93A06A8F86FC34F059158820C68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft Manifest number: 0B4A Signing time: Sat 06 Dec 2025 12:01:16 +0000 Manifest this update: Sat 06 Dec 2025 12:01:16 +0000 Manifest next update: Sun 07 Dec 2025 12:01:16 +0000 Files and hashes: 1: QukMnRAJsywZRbb45liUg8XqR0M.crl (hash: 7nRU6DxBT2vUctmR9xxv6TciUyEF+kCBSAAdCEgCcWw=) 2: vdgwFbYVt8R1VSJ8o61nh0Nw_GA.roa (hash: 76jfpsJ1QF75Cjby0A7bmnFhoDcXagSAAfe9ZF5jiZQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.crl rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:a9:3a:06:a8:f8:6f:c3:4f:05:91:58:82:0c:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42e90c9d1009b32c1945b6f8e6589483c5ea4743 Validity Not Before: Dec 6 12:01:16 2025 GMT Not After : Dec 7 12:01:16 2025 GMT Subject: CN=03e008ec31bfab293dccc984d4bbaf29e3fea427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:79:e9:26:ea:54:10:1e:29:c5:62:21:c1:b6: bc:b6:74:f8:94:03:bd:de:37:49:bc:25:ef:e3:56: 6c:66:6e:a4:04:a5:24:c5:fc:40:45:76:29:37:14: 98:fb:25:63:73:05:e9:04:05:68:a7:4d:96:f6:0d: 75:be:68:2a:e6:d7:05:97:a4:46:9d:cb:d1:1c:1d: 75:f1:8e:7d:bc:7b:04:c9:cf:bf:69:4e:37:24:b8: e0:92:67:17:59:25:fd:ee:31:6d:65:81:2c:d9:42: 5c:fb:cf:5c:de:5b:75:eb:19:cb:f7:6d:d8:40:0a: ef:ca:75:8b:a0:3c:ca:95:f5:f8:27:78:f8:cf:6b: a1:7d:04:e6:1c:ed:80:10:bd:d2:56:ff:ba:88:f9: f9:31:36:f3:39:6d:c1:3d:e5:be:09:82:fd:da:69: f4:6d:ed:5b:5f:cb:e2:e0:9a:e6:59:54:54:5b:4e: 47:71:de:93:ec:e0:da:01:6c:01:8b:74:3e:aa:6c: 92:46:47:a8:28:1d:97:3d:bc:33:9e:ba:06:fe:34: dd:3c:d6:44:10:c4:69:7a:5f:70:ba:ee:3c:e7:1d: f6:be:76:16:0b:65:75:6e:b6:59:48:58:e3:11:aa: 97:47:09:a0:d6:2e:24:e5:76:30:70:50:cb:c6:95: dc:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E0:08:EC:31:BF:AB:29:3D:CC:C9:84:D4:BB:AF:29:E3:FE:A4:27 X509v3 Authority Key Identifier: keyid:42:E9:0C:9D:10:09:B3:2C:19:45:B6:F8:E6:58:94:83:C5:EA:47:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:77:65:ef:78:b5:b7:4a:59:71:ea:85:8d:c0:0b:9a:88:9e: 6b:8a:2d:8d:c6:a1:60:c6:15:6e:8a:64:b0:1f:77:f2:5b:4c: 0c:d9:9d:a9:2d:a0:91:c9:ba:d8:be:bb:77:51:14:cb:c7:0d: 4c:9f:c7:5f:98:a9:c9:b9:33:26:84:38:21:f0:a5:97:8f:1b: 30:c4:a2:c9:e7:28:f3:31:19:53:85:d1:c0:79:ca:09:6c:ef: 9e:17:34:a3:ea:e0:77:ce:02:3d:3d:f6:ce:34:ae:6b:85:14: 32:b5:64:b9:03:56:e7:3f:33:9e:b1:59:f0:53:84:3e:bb:54: e7:a2:ee:c2:a3:be:96:f3:1d:df:bd:58:6f:e8:a5:78:9d:8e: 7f:fb:93:ce:b4:21:37:62:ac:f6:d9:57:7d:47:02:65:10:d8: 7a:c4:b2:73:5d:14:75:24:4a:26:c7:01:2e:db:fc:b1:27:a8: 75:aa:e9:44:e4:46:60:d5:9f:c0:e4:a7:2e:1f:92:12:70:7c: dd:77:30:48:30:4b:67:53:df:7c:19:15:db:4c:d6:9f:3e:7a: 4c:25:3a:43:d0:01:61:06:2a:13:28:41:1f:f6:ff:cf:a8:8e: bc:06:a1:a1:e9:f8:c8:bb:6b:8a:4d:ae:a3:19:23:3e:50:4d: 86:75:d2:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziak6Bqj4b8NPBZFYggxoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyZTkwYzlkMTAwOWIzMmMxOTQ1YjZmOGU2NTg5NDgzYzVl YTQ3NDMwHhcNMjUxMjA2MTIwMTE2WhcNMjUxMjA3MTIwMTE2WjAzMTEwLwYDVQQD EygwM2UwMDhlYzMxYmZhYjI5M2RjY2M5ODRkNGJiYWYyOWUzZmVhNDI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsnnpJupUEB4pxWIhwba8tnT4lAO9 3jdJvCXv41ZsZm6kBKUkxfxARXYpNxSY+yVjcwXpBAVop02W9g11vmgq5tcFl6RG ncvRHB118Y59vHsEyc+/aU43JLjgkmcXWSX97jFtZYEs2UJc+89c3lt16xnL923Y QArvynWLoDzKlfX4J3j4z2uhfQTmHO2AEL3SVv+6iPn5MTbzOW3BPeW+CYL92mn0 be1bX8vi4JrmWVRUW05Hcd6T7ODaAWwBi3Q+qmySRkeoKB2XPbwznroG/jTdPNZE EMRpel9wuu485x32vnYWC2V1brZZSFjjEaqXRwmg1i4k5XYwcFDLxpXcowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAPgCOwxv6spPczJhNS7rynj/qQnMB8GA1UdIwQY MBaAFELpDJ0QCbMsGUW2+OZYlIPF6kdDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXVrTW5SQUpzeXdaUmJiNDVsaVVnOFhxUjBNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC85NTVhNDAtOWQ5NC00ZjgyLTg4ZTUt NjljNjI5ODQxNWY4LzEvUXVrTW5SQUpzeXdaUmJiNDVsaVVnOFhxUjBNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC85NTVhNDAtOWQ5NC00ZjgyLTg4ZTUtNjljNjI5ODQxNWY4 LzEvUXVrTW5SQUpzeXdaUmJiNDVsaVVnOFhxUjBNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOndl73i1 t0pZceqFjcALmoiea4otjcahYMYVbopksB938ltMDNmdqS2gkcm62L67d1EUy8cN TJ/HX5ipybkzJoQ4IfCll48bMMSiyeco8zEZU4XRwHnKCWzvnhc0o+rgd84CPT32 zjSua4UUMrVkuQNW5z8znrFZ8FOEPrtU56LuwqO+lvMd371Yb+ileJ2Of/uTzrQh N2Ks9tlXfUcCZRDYesSyc10UdSRKJscBLtv8sSeodarpRORGYNWfwOSnLh+SEnB8 3XcwSDBLZ1PffBkV20zWnz56TCU6Q9ABYQYqEyhBH/b/z6iOvAahoen4yLtrik2u oxkjPlBNhnXS+A== -----END CERTIFICATE-----Generated at Sat Dec 6 15:40:16 2025 by rpki-client