This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft File: QVHWtEHT9XdiwDL4-tIXYIoi96E.mft (raw, json) Hash identifier: INpQZKG91TtOw6RtquY7yabvgzC2tsOEHwvAyRCgwxg= Subject key identifier: D8:77:E6:53:38:6B:86:59:A8:B6:D5:6B:22:8B:A0:AB:E3:00:B3:A5 Authority key identifier: 41:51:D6:B4:41:D3:F5:77:62:C0:32:F8:FA:D2:17:60:8A:22:F7:A1 Certificate issuer: /CN=4151d6b441d3f57762c032f8fad217608a22f7a1 Certificate serial: 019AF1D1B3B6CC1154B33530401B4807B611 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 04:00:43 +0000 Manifest this update: Sat 06 Dec 2025 04:00:43 +0000 Manifest next update: Sun 07 Dec 2025 04:00:43 +0000 Files and hashes: 1: QVHWtEHT9XdiwDL4-tIXYIoi96E.crl (hash: SgUXb1QbBbdBJObkTV4JmoLRWTWMvOFFb5Vwm97b9Sw=) 2: rnhdD5-8bSiFYqITT19uX_gBm3Q.roa (hash: yOuOYWqODTjCSSjzwtgNJuIQsfARCoasQhMpsxakuPc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.crl rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:b3:b6:cc:11:54:b3:35:30:40:1b:48:07:b6:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4151d6b441d3f57762c032f8fad217608a22f7a1 Validity Not Before: Dec 6 04:00:43 2025 GMT Not After : Dec 7 04:00:43 2025 GMT Subject: CN=d877e653386b8659a8b6d56b228ba0abe300b3a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:33:96:4a:bd:29:68:4d:71:ed:40:97:c7:a2: d5:9b:d2:91:0b:57:96:10:38:b3:55:b2:5f:7d:fe: 64:0c:b6:34:4f:81:cb:04:a2:d7:a0:d3:12:f7:87: 9a:0c:0e:87:5b:55:60:06:85:56:7b:89:63:40:c4: 30:fe:1e:22:2f:39:43:53:98:e4:6b:b2:60:3c:9d: fc:f2:19:1c:d3:88:11:21:a2:85:02:d2:d4:ad:8b: 57:f5:60:69:b6:ae:38:c6:cd:11:ae:e0:3f:3e:d1: e3:73:33:07:2c:87:8e:f8:bc:ba:c4:a6:16:f2:f4: 5e:56:ab:90:51:da:b8:b1:49:a7:a9:91:99:20:97: 24:c7:ab:c8:d0:fd:9a:cd:cd:fb:23:19:04:0f:1c: 73:84:38:a4:40:84:9a:cd:e4:a2:72:1a:ad:e5:d2: 63:00:8a:6a:b9:d9:d1:59:a2:f2:eb:02:17:ed:15: a9:66:7f:63:94:de:99:ac:95:ba:6b:b7:de:d7:a6: 47:7c:a7:64:a9:47:be:42:78:87:76:4f:52:bc:97: 04:f6:d9:01:b1:f6:ef:ff:1b:61:b7:12:43:b7:d6: 8c:e2:ce:58:08:3b:29:95:df:b1:80:82:e9:29:46: f8:1c:35:86:d5:d5:98:c6:ca:99:18:be:55:53:86: f8:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:77:E6:53:38:6B:86:59:A8:B6:D5:6B:22:8B:A0:AB:E3:00:B3:A5 X509v3 Authority Key Identifier: keyid:41:51:D6:B4:41:D3:F5:77:62:C0:32:F8:FA:D2:17:60:8A:22:F7:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:b1:f4:57:c2:2f:1d:2c:63:0e:42:b2:f6:e0:51:b4:97:db: aa:54:57:80:22:c2:b3:23:13:f4:76:85:fa:2d:76:10:db:9d: aa:41:2d:30:a7:75:f8:3b:e1:17:ba:7c:85:fe:b9:4b:8e:9f: af:83:46:b6:29:68:cf:ae:36:6f:4f:a9:ce:e5:b3:d4:02:59: 71:70:52:1d:81:da:4f:cd:8a:af:07:34:a3:65:47:ea:dd:81: 99:f2:e5:ab:30:79:56:59:e6:7f:93:66:41:c1:6f:44:5b:71: 5e:87:8e:3d:40:6c:17:cd:e7:e4:5a:46:3f:01:c7:f4:cb:fd: 03:05:bc:ba:83:b0:34:14:30:a4:b2:35:be:1b:ce:10:bc:f5: 73:99:d0:23:dd:3e:6c:c6:43:54:e3:7e:57:0f:95:1b:c2:3b: 6c:d7:ba:5f:f3:b1:7d:2e:90:b9:18:11:b4:56:16:6d:3b:28: c4:ef:c3:c3:8d:71:aa:fc:a6:87:ac:e0:32:75:59:f3:62:d7: 0f:b7:5c:f8:57:9b:ba:00:6a:bc:a2:5f:06:2a:d4:c1:bc:a1: 9e:fb:f0:31:8d:a9:17:b0:fc:2c:de:12:33:be:93:42:56:b6: 2b:df:cf:aa:68:07:6f:e8:e5:a5:75:9f:1c:1c:73:c8:36:2b: b8:5d:ec:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0bO2zBFUszUwQBtIB7YRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxNTFkNmI0NDFkM2Y1Nzc2MmMwMzJmOGZhZDIxNzYwOGEy MmY3YTEwHhcNMjUxMjA2MDQwMDQzWhcNMjUxMjA3MDQwMDQzWjAzMTEwLwYDVQQD EyhkODc3ZTY1MzM4NmI4NjU5YThiNmQ1NmIyMjhiYTBhYmUzMDBiM2E1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlzOWSr0paE1x7UCXx6LVm9KRC1eW EDizVbJfff5kDLY0T4HLBKLXoNMS94eaDA6HW1VgBoVWe4ljQMQw/h4iLzlDU5jk a7JgPJ388hkc04gRIaKFAtLUrYtX9WBptq44xs0RruA/PtHjczMHLIeO+Ly6xKYW 8vReVquQUdq4sUmnqZGZIJckx6vI0P2azc37IxkEDxxzhDikQISazeSichqt5dJj AIpqudnRWaLy6wIX7RWpZn9jlN6ZrJW6a7fe16ZHfKdkqUe+QniHdk9SvJcE9tkB sfbv/xthtxJDt9aM4s5YCDspld+xgILpKUb4HDWG1dWYxsqZGL5VU4b4MQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNh35lM4a4ZZqLbVayKLoKvjALOlMB8GA1UdIwQY MBaAFEFR1rRB0/V3YsAy+PrSF2CKIvehMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVZIV3RFSFQ5WGRpd0RMNC10SVhZSW9pOTZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9jZGRiNjMtOTMwOC00M2M5LTk0NzMt ZWFlNDE4MTU4YTUyLzEvUVZIV3RFSFQ5WGRpd0RMNC10SVhZSW9pOTZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9jZGRiNjMtOTMwOC00M2M5LTk0NzMtZWFlNDE4MTU4YTUy LzEvUVZIV3RFSFQ5WGRpd0RMNC10SVhZSW9pOTZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXrH0V8Iv HSxjDkKy9uBRtJfbqlRXgCLCsyMT9HaF+i12ENudqkEtMKd1+DvhF7p8hf65S46f r4NGtiloz642b0+pzuWz1AJZcXBSHYHaT82Krwc0o2VH6t2BmfLlqzB5Vlnmf5Nm QcFvRFtxXoeOPUBsF83n5FpGPwHH9Mv9AwW8uoOwNBQwpLI1vhvOELz1c5nQI90+ bMZDVON+Vw+VG8I7bNe6X/OxfS6QuRgRtFYWbTsoxO/Dw41xqvymh6zgMnVZ82LX D7dc+FebugBqvKJfBirUwbyhnvvwMY2pF7D8LN4SM76TQla2K9/PqmgHb+jlpXWf HBxzyDYruF3shA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:58:27 2025 by rpki-client