This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft File: 2QqBMQKSV7_3YURI5va1A8Ersp0.mft (raw, json) Hash identifier: /i2wAwmFg2VtIvwpqzh56JKxXl/npart8HsyZmFUdh8= Subject key identifier: E1:63:5F:B6:19:57:68:02:AB:8F:87:D3:4D:D3:98:EE:90:65:1E:69 Authority key identifier: D9:0A:81:31:02:92:57:BF:F7:61:44:48:E6:F6:B5:03:C1:2B:B2:9D Certificate issuer: /CN=d90a8131029257bff7614448e6f6b503c12bb29d Certificate serial: 019AF209125D6B14ECF8DAAAB9D782DBF528 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QqBMQKSV7_3YURI5va1A8Ersp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft Manifest number: 0432 Signing time: Sat 06 Dec 2025 05:01:12 +0000 Manifest this update: Sat 06 Dec 2025 05:01:12 +0000 Manifest next update: Sun 07 Dec 2025 05:01:12 +0000 Files and hashes: 1: 2QqBMQKSV7_3YURI5va1A8Ersp0.crl (hash: 2VWT7CL3H27hyccIhMi1ubgut21ctRNqlX5sH4PFDqA=) 2: ktw-FkrMXPNswM8IraWY-5p7J3I.roa (hash: jzXeR9Bv5fkU8m0kPMqZ57dXqdxvNx+7MlrJIZfIQC4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft rsync://rpki.ripe.net/repository/DEFAULT/2QqBMQKSV7_3YURI5va1A8Ersp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:12:5d:6b:14:ec:f8:da:aa:b9:d7:82:db:f5:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d90a8131029257bff7614448e6f6b503c12bb29d Validity Not Before: Dec 6 05:01:12 2025 GMT Not After : Dec 7 05:01:12 2025 GMT Subject: CN=e1635fb619576802ab8f87d34dd398ee90651e69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:28:a1:1f:8b:b3:73:fb:7a:06:b5:84:26:ec: 68:67:6e:70:5f:1d:52:cd:15:83:f1:ef:f7:e3:8a: 81:68:55:69:ce:8a:63:72:67:37:3f:10:ef:ab:88: 9b:ae:43:df:9d:9c:5e:5e:06:f9:59:6d:11:7e:c0: 86:10:c6:e0:57:98:72:72:90:4b:c2:85:5a:c8:07: fe:ee:9a:4d:5b:66:b2:c6:c9:19:54:23:c1:b6:38: 92:f6:e1:d9:1e:f2:98:ec:d3:00:5b:5b:86:3e:78: 72:e7:7b:1d:1e:96:f0:c9:89:34:b4:2b:79:91:28: b1:99:bf:41:f0:58:b5:04:11:8b:92:9d:10:8f:82: 38:e8:6a:a4:18:19:4a:53:e0:e3:b4:8c:8c:2c:58: 96:41:42:cf:db:85:1f:7f:12:a2:0e:6c:25:e0:46: 76:f1:16:ba:03:00:01:d3:e8:11:a2:6e:4e:77:a3: f3:75:dc:0d:24:3a:6d:a3:3e:51:ae:dc:5c:20:22: 3f:35:af:dc:b0:59:e9:57:8d:f7:66:a5:6a:bf:2d: 50:9e:1a:9e:52:54:df:1d:97:50:37:05:1e:93:98: 37:00:fd:8e:c6:d6:53:5f:f9:ad:96:ba:00:a7:b0: 9b:d2:fe:87:df:9c:16:64:be:cf:dd:e9:04:23:18: 02:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:63:5F:B6:19:57:68:02:AB:8F:87:D3:4D:D3:98:EE:90:65:1E:69 X509v3 Authority Key Identifier: keyid:D9:0A:81:31:02:92:57:BF:F7:61:44:48:E6:F6:B5:03:C1:2B:B2:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QqBMQKSV7_3YURI5va1A8Ersp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:ba:a2:31:22:04:3b:36:fb:8e:1f:ec:2c:39:11:ec:f4:a6: 62:a4:88:e3:49:b6:8a:22:14:af:9c:3d:d7:04:24:58:3a:9c: 59:7a:4a:eb:55:da:12:a8:4a:81:ca:29:bb:33:e2:d3:c7:63: d9:ab:ff:9e:ff:8c:80:01:a8:7e:a0:a7:9f:5c:dc:b7:a9:39: 3b:5e:fa:4e:20:a8:56:40:1d:b0:0c:e8:29:5b:f4:23:68:f4: a2:27:4f:e6:3b:0f:2e:01:4e:0b:35:79:5f:9f:22:da:63:8b: 2f:85:df:d9:60:42:49:75:f0:45:de:5b:e8:e4:26:fa:4a:6e: d6:f1:17:6a:41:b8:3f:01:5c:b1:c6:26:a8:9c:4a:cf:c2:a3: 4e:9b:82:ac:21:6d:72:94:b0:c9:c7:05:ac:7b:32:1b:0c:e3: 62:c8:85:f5:a3:db:0d:37:04:87:86:58:13:19:b8:21:b4:39: 96:82:a0:1e:fa:44:94:d0:72:5f:d6:83:4c:8f:4a:c8:6f:0f: 5b:a3:c5:d4:27:b1:c7:f1:eb:7b:c7:c2:83:33:f4:ed:3a:30: 16:98:64:d8:b2:66:71:d2:f1:df:ad:fb:52:cf:c8:c2:4c:1d: fb:24:2d:ae:22:97:9b:d7:9b:81:47:c4:c3:d6:e0:21:2f:61: 49:8d:56:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCRJdaxTs+NqqudeC2/UoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MGE4MTMxMDI5MjU3YmZmNzYxNDQ0OGU2ZjZiNTAzYzEy YmIyOWQwHhcNMjUxMjA2MDUwMTEyWhcNMjUxMjA3MDUwMTEyWjAzMTEwLwYDVQQD EyhlMTYzNWZiNjE5NTc2ODAyYWI4Zjg3ZDM0ZGQzOThlZTkwNjUxZTY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmiihH4uzc/t6BrWEJuxoZ25wXx1S zRWD8e/344qBaFVpzopjcmc3PxDvq4ibrkPfnZxeXgb5WW0RfsCGEMbgV5hycpBL woVayAf+7ppNW2ayxskZVCPBtjiS9uHZHvKY7NMAW1uGPnhy53sdHpbwyYk0tCt5 kSixmb9B8Fi1BBGLkp0Qj4I46GqkGBlKU+DjtIyMLFiWQULP24UffxKiDmwl4EZ2 8Ra6AwAB0+gRom5Od6PzddwNJDptoz5RrtxcICI/Na/csFnpV433ZqVqvy1Qnhqe UlTfHZdQNwUek5g3AP2OxtZTX/mtlroAp7Cb0v6H35wWZL7P3ekEIxgCwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOFjX7YZV2gCq4+H003TmO6QZR5pMB8GA1UdIwQY MBaAFNkKgTECkle/92FESOb2tQPBK7KdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlFxQk1RS1NWN18zWVVSSTV2YTFBOEVyc3AwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi84ZmYyYWQtYTY4Zi00NDY1LThkMTgt OTZjZDg2ZmQwY2I3LzEvMlFxQk1RS1NWN18zWVVSSTV2YTFBOEVyc3AwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi84ZmYyYWQtYTY4Zi00NDY1LThkMTgtOTZjZDg2ZmQwY2I3 LzEvMlFxQk1RS1NWN18zWVVSSTV2YTFBOEVyc3AwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjrqiMSIE Ozb7jh/sLDkR7PSmYqSI40m2iiIUr5w91wQkWDqcWXpK61XaEqhKgcopuzPi08dj 2av/nv+MgAGofqCnn1zct6k5O176TiCoVkAdsAzoKVv0I2j0oidP5jsPLgFOCzV5 X58i2mOLL4Xf2WBCSXXwRd5b6OQm+kpu1vEXakG4PwFcscYmqJxKz8KjTpuCrCFt cpSwyccFrHsyGwzjYsiF9aPbDTcEh4ZYExm4IbQ5loKgHvpElNByX9aDTI9KyG8P W6PF1Cexx/Hre8fCgzP07TowFphk2LJmcdLx3637Us/Iwkwd+yQtriKXm9ebgUfE w9bgIS9hSY1W1Q== -----END CERTIFICATE-----Generated at Sat Dec 6 09:20:48 2025 by rpki-client