This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft File: qLq2HDYOoQjNGSx856ftVWW9--A.mft (raw, json) Hash identifier: nozWuxqKKf+5rQ2VOgSXP3fNKsEkg4EfPjOA6LBAFWE= Subject key identifier: D3:6C:DC:EC:F7:FF:5D:F6:5C:C0:86:E7:70:DA:8F:EE:7F:9F:EA:CC Authority key identifier: A8:BA:B6:1C:36:0E:A1:08:CD:19:2C:7C:E7:A7:ED:55:65:BD:FB:E0 Certificate issuer: /CN=a8bab61c360ea108cd192c7ce7a7ed5565bdfbe0 Certificate serial: 019AF19AFBCD848F56F392F8B891E4DD62D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qLq2HDYOoQjNGSx856ftVWW9--A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft Manifest number: 0ED7 Signing time: Sat 06 Dec 2025 03:00:57 +0000 Manifest this update: Sat 06 Dec 2025 03:00:57 +0000 Manifest next update: Sun 07 Dec 2025 03:00:57 +0000 Files and hashes: 1: llKmEV0JVzIG0_MZWPlP8ygpeC0.roa (hash: jPaOJ8ND+JyHLtdhEIszWBX4EhT8804ihxPfOvX+M6g=) 2: qLq2HDYOoQjNGSx856ftVWW9--A.crl (hash: FYf1ojbLHJ/HZqHBBmbtDHimNExxZaCndxDXMFeX43o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.crl rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft rsync://rpki.ripe.net/repository/DEFAULT/qLq2HDYOoQjNGSx856ftVWW9--A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:fb:cd:84:8f:56:f3:92:f8:b8:91:e4:dd:62:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a8bab61c360ea108cd192c7ce7a7ed5565bdfbe0 Validity Not Before: Dec 6 03:00:57 2025 GMT Not After : Dec 7 03:00:57 2025 GMT Subject: CN=d36cdcecf7ff5df65cc086e770da8fee7f9feacc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:43:37:44:ca:29:a8:c2:2a:50:72:9f:66:78: ba:ad:a0:85:da:0c:43:ae:7e:19:82:f8:a1:2e:87: 0a:18:86:3e:d7:e8:ea:67:68:82:47:f5:31:79:cc: ff:cd:73:71:a0:ae:68:e0:75:d6:aa:be:29:25:07: 14:37:05:31:05:17:dc:18:1b:ab:c0:ab:69:c8:73: 5b:e7:8f:45:0d:5c:ff:17:eb:20:3c:36:b8:cf:57: b3:33:4a:cb:29:01:0a:dc:c6:e8:4e:d2:37:7f:ee: cf:74:18:41:3b:68:25:d4:6e:9a:d3:27:98:66:38: 87:09:2d:99:00:69:35:b6:92:b2:8e:6f:13:78:b8: 3c:8d:01:39:c1:de:e5:e7:ec:31:02:ac:2b:4f:18: 3a:6d:05:5c:5f:53:d1:bd:19:bc:2d:65:54:c8:7f: c0:20:ec:65:bf:aa:56:b0:d6:58:4d:7d:2e:6f:40: 5b:97:bf:d6:7b:fd:1c:d5:38:54:7b:27:dc:68:e5: d3:24:83:dd:0c:a8:f1:dd:92:55:45:eb:26:a4:bf: 77:5c:3a:e5:28:a8:25:95:0e:40:7d:3d:d4:86:36: 9b:3d:a4:31:69:6a:d3:6a:60:32:f1:76:ab:14:32: 06:27:87:5d:8e:49:ab:93:36:72:96:25:11:7f:e6: aa:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:6C:DC:EC:F7:FF:5D:F6:5C:C0:86:E7:70:DA:8F:EE:7F:9F:EA:CC X509v3 Authority Key Identifier: keyid:A8:BA:B6:1C:36:0E:A1:08:CD:19:2C:7C:E7:A7:ED:55:65:BD:FB:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qLq2HDYOoQjNGSx856ftVWW9--A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:fe:90:1c:34:57:9d:f9:2a:b0:e6:cd:87:48:a7:93:3b:81: 40:b5:a0:3b:69:d8:33:d1:90:5a:65:09:fd:8f:bc:a6:fd:c5: 2a:7f:86:ea:e3:af:de:d1:82:33:c5:0c:8e:17:17:44:83:e8: 42:1c:b4:e9:30:52:ea:12:03:f0:09:78:1d:db:98:87:d3:c6: ac:97:88:7f:80:cf:c9:f8:13:0b:60:ac:a1:6e:59:0d:2c:4e: 36:46:5e:db:a3:95:7e:40:67:d1:d0:d5:44:2d:bb:46:60:b0: 70:3b:75:6c:40:24:69:fd:38:bb:6d:ff:13:3f:0d:35:29:e6: 23:fe:23:bf:d0:45:3d:dc:a3:e6:34:d9:9b:dc:30:8e:16:99: 0e:bd:66:9c:cb:2b:00:8f:f0:22:f2:de:06:9b:bd:e6:74:2d: 9c:13:2b:da:bb:6d:b3:24:4b:8f:6e:ed:09:2e:ed:7b:f2:ce: b7:83:e4:4b:6b:b8:bc:ec:08:9b:a2:15:08:60:bf:01:52:4e: e0:c0:4b:18:b6:dd:7e:ad:b9:d7:4f:82:c8:6f:e2:72:19:75: 98:1d:83:c5:8f:2d:27:72:08:af:ab:d2:fe:77:12:72:bc:08: c5:74:24:8d:b0:49:57:ea:37:87:86:3c:b5:44:2e:b6:14:4f: ee:c3:95:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmvvNhI9W85L4uJHk3WLRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4YmFiNjFjMzYwZWExMDhjZDE5MmM3Y2U3YTdlZDU1NjVi ZGZiZTAwHhcNMjUxMjA2MDMwMDU3WhcNMjUxMjA3MDMwMDU3WjAzMTEwLwYDVQQD EyhkMzZjZGNlY2Y3ZmY1ZGY2NWNjMDg2ZTc3MGRhOGZlZTdmOWZlYWNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0M3RMopqMIqUHKfZni6raCF2gxD rn4ZgvihLocKGIY+1+jqZ2iCR/Uxecz/zXNxoK5o4HXWqr4pJQcUNwUxBRfcGBur wKtpyHNb549FDVz/F+sgPDa4z1ezM0rLKQEK3MboTtI3f+7PdBhBO2gl1G6a0yeY ZjiHCS2ZAGk1tpKyjm8TeLg8jQE5wd7l5+wxAqwrTxg6bQVcX1PRvRm8LWVUyH/A IOxlv6pWsNZYTX0ub0Bbl7/We/0c1ThUeyfcaOXTJIPdDKjx3ZJVResmpL93XDrl KKgllQ5AfT3UhjabPaQxaWrTamAy8XarFDIGJ4ddjkmrkzZyliURf+aqtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNNs3Oz3/132XMCG53Daj+5/n+rMMB8GA1UdIwQY MBaAFKi6thw2DqEIzRksfOen7VVlvfvgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUxxMkhEWU9vUWpOR1N4ODU2ZnRWV1c5LS1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC85YjM5YjktODJjOC00YzdkLWIyNjgt NzY2ZTU0NjA1N2E3LzEvcUxxMkhEWU9vUWpOR1N4ODU2ZnRWV1c5LS1BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC85YjM5YjktODJjOC00YzdkLWIyNjgtNzY2ZTU0NjA1N2E3 LzEvcUxxMkhEWU9vUWpOR1N4ODU2ZnRWV1c5LS1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATv6QHDRX nfkqsObNh0inkzuBQLWgO2nYM9GQWmUJ/Y+8pv3FKn+G6uOv3tGCM8UMjhcXRIPo Qhy06TBS6hID8Al4HduYh9PGrJeIf4DPyfgTC2CsoW5ZDSxONkZe26OVfkBn0dDV RC27RmCwcDt1bEAkaf04u23/Ez8NNSnmI/4jv9BFPdyj5jTZm9wwjhaZDr1mnMsr AI/wIvLeBpu95nQtnBMr2rttsyRLj27tCS7te/LOt4PkS2u4vOwIm6IVCGC/AVJO 4MBLGLbdfq2510+CyG/ichl1mB2DxY8tJ3IIr6vS/ncScrwIxXQkjbBJV+o3h4Y8 tUQuthRP7sOVsQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:14:35 2025 by rpki-client