This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/qfCQLHsw_sPg3PXyO_7fUBgjQps.mft File: qfCQLHsw_sPg3PXyO_7fUBgjQps.mft (raw, json) Hash identifier: LevPRR6oB1vrEH/U5c6uTTfOiI7TXiCDdOn2pdFx/0I= Subject key identifier: 5D:55:DF:74:24:2C:E9:D3:D7:09:09:B6:B4:39:E9:C7:55:24:7C:DC Authority key identifier: A9:F0:90:2C:7B:30:FE:C3:E0:DC:F5:F2:3B:FE:DF:50:18:23:42:9B Certificate issuer: /CN=a9f0902c7b30fec3e0dcf5f23bfedf501823429b Certificate serial: 019AF1D1E19EF831D843D79DB79CD7EF2022 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qfCQLHsw_sPg3PXyO_7fUBgjQps.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/qfCQLHsw_sPg3PXyO_7fUBgjQps.mft Manifest number: 05F0 Signing time: Sat 06 Dec 2025 04:00:55 +0000 Manifest this update: Sat 06 Dec 2025 04:00:55 +0000 Manifest next update: Sun 07 Dec 2025 04:00:55 +0000 Files and hashes: 1: qfCQLHsw_sPg3PXyO_7fUBgjQps.crl (hash: qu1Gm8LfNi5cZ8xzZ5/IV6rZ0Q5AL78nK7FD/5Uw+4I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/qfCQLHsw_sPg3PXyO_7fUBgjQps.crl rsync://rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/qfCQLHsw_sPg3PXyO_7fUBgjQps.mft rsync://rpki.ripe.net/repository/DEFAULT/qfCQLHsw_sPg3PXyO_7fUBgjQps.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:e1:9e:f8:31:d8:43:d7:9d:b7:9c:d7:ef:20:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a9f0902c7b30fec3e0dcf5f23bfedf501823429b Validity Not Before: Dec 6 04:00:55 2025 GMT Not After : Dec 7 04:00:55 2025 GMT Subject: CN=5d55df74242ce9d3d70909b6b439e9c755247cdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2e:e6:6c:16:2c:40:0d:ee:31:5b:d0:4f:17: c2:d9:bf:35:20:15:78:be:13:62:78:e7:17:3d:f4: 84:96:ec:4c:5a:0b:d4:84:13:df:3a:4b:ca:16:bf: 52:47:78:67:09:a5:04:7d:3a:53:e4:86:64:25:04: 0a:2b:46:17:d8:0a:9a:e3:e4:e4:2c:a7:7e:70:ca: 65:83:0c:07:79:e9:63:b8:30:5c:bd:0e:3d:f4:c3: 17:b8:4f:31:d0:28:c9:8f:76:52:ab:fe:60:bb:5d: 6c:8b:dd:69:75:f7:db:49:ab:f5:ed:29:3f:02:4f: f0:b8:d8:45:00:99:27:a8:6d:1f:3f:b6:75:ce:50: 8c:70:9f:43:32:2c:9b:f6:77:4f:35:82:58:59:50: 1d:df:c9:ef:04:3d:15:f3:1c:f7:b4:82:18:98:3c: 46:a1:db:68:50:8a:80:3a:ad:3d:2f:43:33:7b:40: a7:a6:5f:50:16:63:46:37:b0:97:e3:6f:eb:a4:2b: bb:fd:7f:21:10:c5:b5:4a:a7:d0:f0:26:a9:28:6a: 37:e3:c3:32:b9:61:c6:d0:07:df:f8:64:7d:2e:c6: 0a:da:c4:c4:29:8d:7e:2e:97:8d:95:f3:fb:27:f8: 2b:bd:fe:9c:d1:01:0b:6c:b7:60:14:88:00:ce:01: 1b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:55:DF:74:24:2C:E9:D3:D7:09:09:B6:B4:39:E9:C7:55:24:7C:DC X509v3 Authority Key Identifier: keyid:A9:F0:90:2C:7B:30:FE:C3:E0:DC:F5:F2:3B:FE:DF:50:18:23:42:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qfCQLHsw_sPg3PXyO_7fUBgjQps.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/qfCQLHsw_sPg3PXyO_7fUBgjQps.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/qfCQLHsw_sPg3PXyO_7fUBgjQps.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:7a:bf:79:79:1f:c4:82:ee:6b:df:2d:72:f1:9a:ed:a1:18: 08:b6:cb:f1:d5:d2:9b:89:d7:a5:49:55:d2:2e:88:a7:27:66: 98:bf:83:31:2f:47:a3:4b:2f:22:48:cb:94:31:12:07:d8:94: ac:9d:70:b8:a9:fb:b1:ed:d8:ab:84:9e:e1:88:92:32:8f:3b: 33:23:8d:42:1d:34:52:9e:cb:fe:e2:14:25:7e:a1:9a:a7:ff: e5:9f:09:86:ea:4c:cf:63:6b:d0:a7:56:92:09:d1:94:cf:de: 6e:24:33:09:c7:d0:5c:14:ff:8c:30:33:98:81:7f:9b:09:8a: 40:98:40:81:f3:a5:f9:19:39:ea:7b:32:c3:9b:76:61:2f:ca: 5d:c7:70:5b:74:52:8f:63:9d:4c:70:0f:58:51:eb:dc:70:38: c3:5e:f0:44:b6:1c:d5:a9:b5:2d:51:7c:cb:a0:0a:39:9d:ca: 36:f5:96:7f:c0:2a:83:1f:89:5e:4d:1f:02:8b:f8:bd:7f:a9: d8:f2:22:89:e8:e8:9b:57:86:32:03:c4:34:48:29:57:2c:40: 04:dc:73:60:94:bf:e5:e3:a9:c2:80:b8:d4:e9:b3:ec:97:44: 15:8a:47:5f:17:c6:99:cb:e9:f3:63:8b:98:cd:07:f2:be:87: 63:1c:96:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0eGe+DHYQ9edt5zX7yAiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5ZjA5MDJjN2IzMGZlYzNlMGRjZjVmMjNiZmVkZjUwMTgy MzQyOWIwHhcNMjUxMjA2MDQwMDU1WhcNMjUxMjA3MDQwMDU1WjAzMTEwLwYDVQQD Eyg1ZDU1ZGY3NDI0MmNlOWQzZDcwOTA5YjZiNDM5ZTljNzU1MjQ3Y2RjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyi7mbBYsQA3uMVvQTxfC2b81IBV4 vhNieOcXPfSEluxMWgvUhBPfOkvKFr9SR3hnCaUEfTpT5IZkJQQKK0YX2Aqa4+Tk LKd+cMplgwwHeeljuDBcvQ499MMXuE8x0CjJj3ZSq/5gu11si91pdffbSav17Sk/ Ak/wuNhFAJknqG0fP7Z1zlCMcJ9DMiyb9ndPNYJYWVAd38nvBD0V8xz3tIIYmDxG odtoUIqAOq09L0Mze0Cnpl9QFmNGN7CX42/rpCu7/X8hEMW1SqfQ8CapKGo348My uWHG0Aff+GR9LsYK2sTEKY1+LpeNlfP7J/grvf6c0QELbLdgFIgAzgEb6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF1V33QkLOnT1wkJtrQ56cdVJHzcMB8GA1UdIwQY MBaAFKnwkCx7MP7D4Nz18jv+31AYI0KbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWZDUUxIc3dfc1BnM1BYeU9fN2ZVQmdqUXBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9kNjZmZjMtYjYwNy00NzZlLThkNWUt ODk2ODU2NWRmNjNhLzEvcWZDUUxIc3dfc1BnM1BYeU9fN2ZVQmdqUXBzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9kNjZmZjMtYjYwNy00NzZlLThkNWUtODk2ODU2NWRmNjNh LzEvcWZDUUxIc3dfc1BnM1BYeU9fN2ZVQmdqUXBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXXq/eXkf xILua98tcvGa7aEYCLbL8dXSm4nXpUlV0i6IpydmmL+DMS9Ho0svIkjLlDESB9iU rJ1wuKn7se3Yq4Se4YiSMo87MyONQh00Up7L/uIUJX6hmqf/5Z8JhupMz2Nr0KdW kgnRlM/ebiQzCcfQXBT/jDAzmIF/mwmKQJhAgfOl+Rk56nsyw5t2YS/KXcdwW3RS j2OdTHAPWFHr3HA4w17wRLYc1am1LVF8y6AKOZ3KNvWWf8Aqgx+JXk0fAov4vX+p 2PIiiejom1eGMgPENEgpVyxABNxzYJS/5eOpwoC41Omz7JdEFYpHXxfGmcvp82OL mM0H8r6HYxyWdw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:21:29 2025 by rpki-client