This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft File: 2QqBMQKSV7_3YURI5va1A8Ersp0.mft (raw, json) Hash identifier: ffhTY/hR5MyhFoXhjbMsTdUbPOTsZbFhF5I17kQPSY0= Subject key identifier: 26:AC:83:13:AA:44:9A:FF:2B:4E:18:59:E2:8F:39:BF:76:B8:3E:AC Authority key identifier: D9:0A:81:31:02:92:57:BF:F7:61:44:48:E6:F6:B5:03:C1:2B:B2:9D Certificate issuer: /CN=d90a8131029257bff7614448e6f6b503c12bb29d Certificate serial: 019B2DE67A515260FCB0092AB4C4C1724105 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QqBMQKSV7_3YURI5va1A8Ersp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft Manifest number: 0451 Signing time: Wed 17 Dec 2025 20:00:37 +0000 Manifest this update: Wed 17 Dec 2025 20:00:37 +0000 Manifest next update: Thu 18 Dec 2025 20:00:37 +0000 Files and hashes: 1: 2QqBMQKSV7_3YURI5va1A8Ersp0.crl (hash: MmU0IBMj2IeotJxAxDAMRTxqwqPT5VVDzoW+qY693+c=) 2: ktw-FkrMXPNswM8IraWY-5p7J3I.roa (hash: jzXeR9Bv5fkU8m0kPMqZ57dXqdxvNx+7MlrJIZfIQC4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft rsync://rpki.ripe.net/repository/DEFAULT/2QqBMQKSV7_3YURI5va1A8Ersp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2d:e6:7a:51:52:60:fc:b0:09:2a:b4:c4:c1:72:41:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d90a8131029257bff7614448e6f6b503c12bb29d Validity Not Before: Dec 17 20:00:37 2025 GMT Not After : Dec 18 20:00:37 2025 GMT Subject: CN=26ac8313aa449aff2b4e1859e28f39bf76b83eac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5c:ff:f6:86:f6:76:88:3e:d0:e1:ef:5f:97: 64:e3:cc:0b:fa:d6:3d:0e:b1:1b:50:e5:1d:ed:bf: 59:3f:8c:0f:68:e1:0d:83:a6:4d:11:00:ea:61:11: 0b:c7:aa:af:b8:9d:8c:13:cd:e7:26:4f:d5:0a:58: 12:77:6a:6e:7f:d2:d4:c2:01:02:a4:21:a6:ef:0a: 18:44:0c:34:43:90:b0:e4:b8:cf:3e:81:b7:ab:6c: 0a:90:b2:da:5d:28:0a:98:0c:d1:59:e3:2d:85:8e: 49:34:d3:60:fa:e7:93:80:8c:68:b5:11:95:2f:e9: 73:fa:33:3a:99:e7:4d:ca:86:38:13:bc:be:88:be: aa:79:41:b7:de:9a:93:38:62:9a:01:80:1e:50:9a: c7:a9:99:e9:8e:42:41:d6:d3:54:e5:10:4d:a8:4b: 6d:89:e0:9f:07:91:8e:bb:85:83:7d:80:8c:6e:5f: aa:c1:fb:51:94:9b:d0:c1:7e:d1:05:ce:44:11:9e: 05:8a:24:2b:d7:3f:73:e4:6d:14:7b:9f:f3:10:02: 4f:59:e9:3b:54:57:2d:f5:49:44:cf:3c:13:07:c7: 55:bd:1e:86:fb:c7:e2:f2:d2:e4:8a:47:46:56:de: 9a:e9:f3:1c:45:60:48:ae:6c:f5:a0:72:7b:e4:dd: 35:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:AC:83:13:AA:44:9A:FF:2B:4E:18:59:E2:8F:39:BF:76:B8:3E:AC X509v3 Authority Key Identifier: keyid:D9:0A:81:31:02:92:57:BF:F7:61:44:48:E6:F6:B5:03:C1:2B:B2:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QqBMQKSV7_3YURI5va1A8Ersp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:18:16:5a:54:b0:70:05:05:5b:b7:7d:50:89:0d:3c:8f:5f: 4b:f9:c8:28:30:71:53:eb:4f:b2:f9:0c:5b:2a:45:2f:ce:f8: 04:65:8b:91:08:0f:5f:e3:37:76:38:a9:c8:a3:3c:05:4d:fe: 54:d3:1c:c6:06:fc:7b:e6:60:8d:fb:44:7d:4a:b4:97:44:9d: 42:31:4f:1e:b7:d9:3b:ce:f2:6f:c7:a4:20:68:01:43:c5:86: 79:4a:4c:7e:08:ae:48:4a:fe:d6:c1:32:49:0b:5e:6b:08:f9: af:f3:3e:54:4e:32:6d:16:09:aa:f1:7e:ba:f9:5c:3d:98:34: 88:05:d6:52:2f:49:35:67:40:44:c9:fa:43:8d:f8:d2:46:99: 3d:48:27:cd:a6:83:2e:2a:21:31:e8:b8:5d:84:e7:b7:c6:78: 32:43:86:6d:b2:24:cf:40:56:c8:20:68:ff:17:97:85:d1:bb: 62:3a:4a:25:67:98:c8:d7:6c:07:f7:af:d2:ca:30:73:24:0a: 74:0f:b8:b5:c4:fc:03:7b:11:80:12:95:1d:92:fb:83:ac:eb: a1:44:81:cb:55:3a:16:22:56:7d:46:9f:7c:c6:61:18:ee:3d: 62:f7:bc:c2:d4:aa:12:cd:7a:fb:00:68:da:43:bd:f3:3d:11: de:66:a2:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZst5npRUmD8sAkqtMTBckEFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MGE4MTMxMDI5MjU3YmZmNzYxNDQ0OGU2ZjZiNTAzYzEy YmIyOWQwHhcNMjUxMjE3MjAwMDM3WhcNMjUxMjE4MjAwMDM3WjAzMTEwLwYDVQQD EygyNmFjODMxM2FhNDQ5YWZmMmI0ZTE4NTllMjhmMzliZjc2YjgzZWFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Fz/9ob2dog+0OHvX5dk48wL+tY9 DrEbUOUd7b9ZP4wPaOENg6ZNEQDqYRELx6qvuJ2ME83nJk/VClgSd2puf9LUwgEC pCGm7woYRAw0Q5Cw5LjPPoG3q2wKkLLaXSgKmAzRWeMthY5JNNNg+ueTgIxotRGV L+lz+jM6medNyoY4E7y+iL6qeUG33pqTOGKaAYAeUJrHqZnpjkJB1tNU5RBNqEtt ieCfB5GOu4WDfYCMbl+qwftRlJvQwX7RBc5EEZ4FiiQr1z9z5G0Ue5/zEAJPWek7 VFct9UlEzzwTB8dVvR6G+8fi8tLkikdGVt6a6fMcRWBIrmz1oHJ75N01uwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCasgxOqRJr/K04YWeKPOb92uD6sMB8GA1UdIwQY MBaAFNkKgTECkle/92FESOb2tQPBK7KdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlFxQk1RS1NWN18zWVVSSTV2YTFBOEVyc3AwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi84ZmYyYWQtYTY4Zi00NDY1LThkMTgt OTZjZDg2ZmQwY2I3LzEvMlFxQk1RS1NWN18zWVVSSTV2YTFBOEVyc3AwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi84ZmYyYWQtYTY4Zi00NDY1LThkMTgtOTZjZDg2ZmQwY2I3 LzEvMlFxQk1RS1NWN18zWVVSSTV2YTFBOEVyc3AwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXBgWWlSw cAUFW7d9UIkNPI9fS/nIKDBxU+tPsvkMWypFL874BGWLkQgPX+M3djipyKM8BU3+ VNMcxgb8e+ZgjftEfUq0l0SdQjFPHrfZO87yb8ekIGgBQ8WGeUpMfgiuSEr+1sEy SQteawj5r/M+VE4ybRYJqvF+uvlcPZg0iAXWUi9JNWdARMn6Q4340kaZPUgnzaaD LiohMei4XYTnt8Z4MkOGbbIkz0BWyCBo/xeXhdG7YjpKJWeYyNdsB/ev0sowcyQK dA+4tcT8A3sRgBKVHZL7g6zroUSBy1U6FiJWfUaffMZhGO49Yve8wtSqEs16+wBo 2kO98z0R3maipw== -----END CERTIFICATE-----Generated at Thu Dec 18 05:40:42 2025 by rpki-client