This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft File: QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft (raw, json) Hash identifier: 5twIGq9JR6LdSWZJ+AkuHwjehRs+hPMFyj4MciL4HeM= Subject key identifier: 3C:4D:E9:EA:56:87:BE:27:27:02:D5:D4:87:BB:3E:02:71:03:48:3A Authority key identifier: 40:8B:0F:E6:58:EB:96:FB:50:B1:35:F7:1B:B9:2F:27:B9:2C:13:94 Certificate issuer: /CN=408b0fe658eb96fb50b135f71bb92f27b92c1394 Certificate serial: 019AF1D2348943DC41311846ECFC97ABCF25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft Manifest number: 175D Signing time: Sat 06 Dec 2025 04:01:16 +0000 Manifest this update: Sat 06 Dec 2025 04:01:16 +0000 Manifest next update: Sun 07 Dec 2025 04:01:16 +0000 Files and hashes: 1: QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl (hash: b8CqW+HUcxvhmL/D1Fp/85zFifWblGdYH/ugUDBIiTY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:34:89:43:dc:41:31:18:46:ec:fc:97:ab:cf:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408b0fe658eb96fb50b135f71bb92f27b92c1394 Validity Not Before: Dec 6 04:01:16 2025 GMT Not After : Dec 7 04:01:16 2025 GMT Subject: CN=3c4de9ea5687be272702d5d487bb3e027103483a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:81:4e:78:8a:71:05:24:d9:91:cb:e0:af:d5: 57:22:ca:80:7f:78:94:0f:92:17:95:7a:10:f0:e4: 22:4c:27:44:c1:b4:38:cd:1f:a6:ea:78:07:f2:9f: 20:8c:39:63:8f:3f:de:05:3d:7a:cc:6a:1c:46:23: cf:8f:85:ec:3f:d0:c8:01:3d:17:48:e0:59:b1:56: 5b:f9:1d:95:82:8b:89:c5:5e:49:81:85:9b:ae:fc: c4:d1:72:15:4f:cc:66:a6:f8:c7:12:bd:6e:82:b6: cb:e9:7d:62:57:40:5a:14:cb:6d:68:35:37:18:e3: 14:af:38:de:ff:c5:b6:24:f4:c6:5b:77:ba:d4:b5: b8:e5:52:81:2b:dd:c3:25:dd:75:cf:a6:46:5b:ca: 53:3c:61:00:e8:5d:26:fb:e5:1c:3d:ea:c3:36:9e: 81:ec:da:5c:a2:f1:96:8c:05:7e:cf:8b:8f:25:83: 6a:c5:ee:c3:c0:f3:25:cb:26:66:cb:0b:f6:11:bc: 2b:35:d4:d9:62:1e:45:b1:b3:48:c2:76:a0:78:78: c1:93:c9:07:c8:f9:44:0f:29:c7:d0:6b:e6:90:5a: 0b:c1:85:45:4f:a3:4d:54:0a:4f:5f:3e:ec:3a:ce: 98:23:68:e2:92:aa:6e:c5:04:bf:b6:d2:bf:78:e4: fb:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:4D:E9:EA:56:87:BE:27:27:02:D5:D4:87:BB:3E:02:71:03:48:3A X509v3 Authority Key Identifier: keyid:40:8B:0F:E6:58:EB:96:FB:50:B1:35:F7:1B:B9:2F:27:B9:2C:13:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:3f:9c:bd:1d:9c:9f:cb:5b:02:b8:29:06:86:7a:a2:a1:d6: 26:cf:2b:eb:be:e2:46:fd:80:8b:f7:24:d0:4e:e7:62:d9:4b: 5f:74:ca:c0:86:15:56:bd:14:27:cc:1b:cb:23:25:da:22:f4: 26:82:a3:6f:b6:6f:b6:61:3f:13:61:64:75:3d:a0:6b:cb:70: 46:ce:37:e9:0a:bf:91:ff:56:2a:a8:28:ab:49:c0:b0:19:04: de:35:0c:da:6d:d0:c0:80:1e:90:a2:37:02:61:91:99:9e:9e: 01:f3:48:20:ad:aa:9c:05:8e:90:fb:1b:1f:7f:49:9d:e3:70: 6a:49:29:1a:6c:7b:ef:65:0b:be:0d:61:64:4a:2a:22:36:b0: 04:38:43:68:f4:00:eb:aa:5b:ad:c2:3a:a3:3c:07:6a:2a:5b: ff:79:03:00:c9:31:03:56:e9:26:65:c2:5b:c8:e2:66:7b:e7: ae:f5:56:bd:47:96:56:de:3c:4b:06:92:65:1a:43:7a:7e:f3: ac:68:ed:b5:15:84:ec:ab:54:3a:12:df:06:b3:ef:aa:74:fb: 9f:70:e2:95:83:a1:5f:09:53:18:8c:eb:1a:82:fd:26:d2:26: af:3a:6a:40:7e:ab:88:de:4d:e6:d8:01:ab:1e:29:ac:81:85: 1c:3c:17:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0jSJQ9xBMRhG7PyXq88lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwOGIwZmU2NThlYjk2ZmI1MGIxMzVmNzFiYjkyZjI3Yjky YzEzOTQwHhcNMjUxMjA2MDQwMTE2WhcNMjUxMjA3MDQwMTE2WjAzMTEwLwYDVQQD EygzYzRkZTllYTU2ODdiZTI3MjcwMmQ1ZDQ4N2JiM2UwMjcxMDM0ODNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8oFOeIpxBSTZkcvgr9VXIsqAf3iU D5IXlXoQ8OQiTCdEwbQ4zR+m6ngH8p8gjDljjz/eBT16zGocRiPPj4XsP9DIAT0X SOBZsVZb+R2VgouJxV5JgYWbrvzE0XIVT8xmpvjHEr1ugrbL6X1iV0BaFMttaDU3 GOMUrzje/8W2JPTGW3e61LW45VKBK93DJd11z6ZGW8pTPGEA6F0m++UcPerDNp6B 7NpcovGWjAV+z4uPJYNqxe7DwPMlyyZmywv2EbwrNdTZYh5FsbNIwnageHjBk8kH yPlEDynH0GvmkFoLwYVFT6NNVApPXz7sOs6YI2jikqpuxQS/ttK/eOT77QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDxN6epWh74nJwLV1Ie7PgJxA0g6MB8GA1UdIwQY MBaAFECLD+ZY65b7ULE19xu5Lye5LBOUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUlzUDVsanJsdnRRc1RYM0c3a3ZKN2tzRTVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9lNTY1NGMtOWZlNy00NzkzLThhOGYt NDBlZGFkZWVlODYwLzEvUUlzUDVsanJsdnRRc1RYM0c3a3ZKN2tzRTVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS9lNTY1NGMtOWZlNy00NzkzLThhOGYtNDBlZGFkZWVlODYw LzEvUUlzUDVsanJsdnRRc1RYM0c3a3ZKN2tzRTVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlD+cvR2c n8tbArgpBoZ6oqHWJs8r677iRv2Ai/ck0E7nYtlLX3TKwIYVVr0UJ8wbyyMl2iL0 JoKjb7ZvtmE/E2FkdT2ga8twRs436Qq/kf9WKqgoq0nAsBkE3jUM2m3QwIAekKI3 AmGRmZ6eAfNIIK2qnAWOkPsbH39JneNwakkpGmx772ULvg1hZEoqIjawBDhDaPQA 66pbrcI6ozwHaipb/3kDAMkxA1bpJmXCW8jiZnvnrvVWvUeWVt48SwaSZRpDen7z rGjttRWE7KtUOhLfBrPvqnT7n3DilYOhXwlTGIzrGoL9JtImrzpqQH6riN5N5tgB qx4prIGFHDwXNQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:21:41 2025 by rpki-client