This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft File: bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft (raw, json) Hash identifier: n2dtJsGY48bz8Ag8oUrK1qdl8A72XAyikKqoftYltVc= Subject key identifier: 19:10:C5:3C:6D:BE:4D:6C:5C:AA:78:45:A5:1B:81:9F:38:4F:63:41 Authority key identifier: 6E:AF:16:DC:C5:50:CF:81:EC:F0:F8:19:52:17:9A:04:81:30:87:7A Certificate issuer: /CN=6eaf16dcc550cf81ecf0f81952179a048130877a Certificate serial: 019AF19B70DF716FA664E6CBBFC991D6BEA7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft Manifest number: 0B26 Signing time: Sat 06 Dec 2025 03:01:27 +0000 Manifest this update: Sat 06 Dec 2025 03:01:27 +0000 Manifest next update: Sun 07 Dec 2025 03:01:27 +0000 Files and hashes: 1: bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl (hash: hBfzHJUrD0D+oUwItX4jWavf1ri1gOrShHdqv12cor0=) 2: zFZRDLYL0fz0Tr9KOTbvt5Gi2T8.roa (hash: RoOpJgCK2e2T8+E3U8CF6Ztsr6QUn+lDcl3mIBxfJ0Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:70:df:71:6f:a6:64:e6:cb:bf:c9:91:d6:be:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6eaf16dcc550cf81ecf0f81952179a048130877a Validity Not Before: Dec 6 03:01:27 2025 GMT Not After : Dec 7 03:01:27 2025 GMT Subject: CN=1910c53c6dbe4d6c5caa7845a51b819f384f6341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a7:60:15:a1:9c:f1:66:17:48:49:84:e9:28: 66:59:b9:68:d4:4c:b3:70:06:07:0e:78:28:be:e8: f6:1c:cb:66:ae:d8:44:a6:cf:28:57:c8:3f:00:de: 52:81:7c:e9:a6:f0:3a:65:95:6b:d8:66:60:8f:19: e7:79:12:85:90:21:ab:c2:89:b8:08:6d:0b:f1:15: ff:b2:be:f8:9c:53:8b:a4:8f:c9:e5:78:77:14:0d: 92:05:6f:4f:e7:58:f3:88:00:36:4c:c2:b3:96:78: e4:0c:21:e6:92:38:7e:de:d0:fa:e5:68:a1:01:e4: 31:6d:3a:9e:bc:55:7a:21:7a:ec:e1:8b:52:36:db: ac:ef:4f:3b:b4:24:30:13:1d:08:cb:62:3c:10:69: 56:7d:e3:c8:25:e1:1c:14:1d:ac:b4:a3:b6:c3:1d: 23:52:92:fb:57:90:30:d4:59:8f:f9:c1:17:36:e1: 94:67:b0:21:aa:35:66:41:f9:47:21:02:b3:96:59: 49:47:1c:30:9d:7a:a8:25:16:2e:a7:d9:2a:00:34: 98:9e:79:a8:22:8e:1e:b2:81:fa:cd:b2:3e:23:dd: a3:3f:12:d1:d1:37:18:30:3e:ff:9a:ce:83:b0:c3: d2:be:c7:2a:4a:e2:77:6a:67:53:91:7c:29:d4:21: 65:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:10:C5:3C:6D:BE:4D:6C:5C:AA:78:45:A5:1B:81:9F:38:4F:63:41 X509v3 Authority Key Identifier: keyid:6E:AF:16:DC:C5:50:CF:81:EC:F0:F8:19:52:17:9A:04:81:30:87:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:76:4a:b7:b0:22:c1:3c:41:f7:c7:8a:c5:8a:19:bb:18:eb: 82:a4:fc:6a:d2:2d:be:5e:a2:78:f8:ca:20:e8:cf:7e:44:0c: 9f:61:d7:51:8a:49:2e:ea:5c:0f:4a:63:75:49:be:92:61:68: 5b:78:e7:1c:5d:30:28:88:6c:da:8c:67:ae:8c:a0:cb:e1:26: e2:ae:a1:95:16:51:a3:cf:ca:6d:6e:2c:7b:c0:a4:ee:06:1f: 2e:9c:8c:14:76:b0:18:bd:a0:ba:e4:b4:a8:8b:01:c6:3f:6f: 3d:d1:2f:36:6b:68:0d:f1:5c:5b:bc:b5:f3:85:40:35:b4:4d: b5:ea:c3:8a:d4:68:ba:95:09:9a:1c:09:a9:4c:11:4c:af:f9: 2b:a1:70:52:ee:8e:24:89:7f:75:18:4f:b0:08:82:41:82:e0: 95:71:8f:36:f3:cb:52:94:b0:1b:dd:66:b5:42:ed:9c:4a:0d: b3:7f:32:29:3b:e6:3a:c5:eb:a9:80:9b:db:c9:20:24:85:85: 8a:c3:68:f1:2d:c2:f7:78:08:51:1b:22:fe:cf:d5:aa:f4:4f: 72:0a:06:b2:28:09:0b:89:e6:06:3d:11:32:a5:0b:e7:e2:22: 71:10:a0:34:4c:c1:7d:16:fd:6e:38:29:70:db:6e:0d:e5:5b: c6:9f:82:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm3DfcW+mZObLv8mR1r6nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlYWYxNmRjYzU1MGNmODFlY2YwZjgxOTUyMTc5YTA0ODEz MDg3N2EwHhcNMjUxMjA2MDMwMTI3WhcNMjUxMjA3MDMwMTI3WjAzMTEwLwYDVQQD EygxOTEwYzUzYzZkYmU0ZDZjNWNhYTc4NDVhNTFiODE5ZjM4NGY2MzQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnKdgFaGc8WYXSEmE6ShmWblo1Eyz cAYHDngovuj2HMtmrthEps8oV8g/AN5SgXzppvA6ZZVr2GZgjxnneRKFkCGrwom4 CG0L8RX/sr74nFOLpI/J5Xh3FA2SBW9P51jziAA2TMKzlnjkDCHmkjh+3tD65Wih AeQxbTqevFV6IXrs4YtSNtus7087tCQwEx0Iy2I8EGlWfePIJeEcFB2stKO2wx0j UpL7V5Aw1FmP+cEXNuGUZ7AhqjVmQflHIQKzlllJRxwwnXqoJRYup9kqADSYnnmo Io4esoH6zbI+I92jPxLR0TcYMD7/ms6DsMPSvscqSuJ3amdTkXwp1CFlnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBkQxTxtvk1sXKp4RaUbgZ84T2NBMB8GA1UdIwQY MBaAFG6vFtzFUM+B7PD4GVIXmgSBMId6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnE4VzNNVlF6NEhzOFBnWlVoZWFCSUV3aDNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8wNjBlMWUtMzI4YS00ODE4LWJmZDEt NGZhMzQ4MWE0N2UxLzEvYnE4VzNNVlF6NEhzOFBnWlVoZWFCSUV3aDNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS8wNjBlMWUtMzI4YS00ODE4LWJmZDEtNGZhMzQ4MWE0N2Ux LzEvYnE4VzNNVlF6NEhzOFBnWlVoZWFCSUV3aDNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF3ZKt7Ai wTxB98eKxYoZuxjrgqT8atItvl6iePjKIOjPfkQMn2HXUYpJLupcD0pjdUm+kmFo W3jnHF0wKIhs2oxnroygy+Em4q6hlRZRo8/KbW4se8Ck7gYfLpyMFHawGL2guuS0 qIsBxj9vPdEvNmtoDfFcW7y184VANbRNterDitRoupUJmhwJqUwRTK/5K6FwUu6O JIl/dRhPsAiCQYLglXGPNvPLUpSwG91mtULtnEoNs38yKTvmOsXrqYCb28kgJIWF isNo8S3C93gIURsi/s/VqvRPcgoGsigJC4nmBj0RMqUL5+IicRCgNEzBfRb9bjgp cNtuDeVbxp+CrA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:55:41 2025 by rpki-client