This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft File: bqGhD32UTazB3sBBqqVZ1SK_uus.mft (raw, json) Hash identifier: NERAQRdI92XAUQVpI7S4wHDXdhQyGqwjmuYX9l/qwa8= Subject key identifier: A7:3E:65:27:CB:B5:AE:BD:79:A3:E2:3F:97:71:78:E9:5E:06:A5:02 Authority key identifier: 6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB Certificate issuer: /CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb Certificate serial: 019AF12EAD80E8F9C7ED70C6E6C2D7077334 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft Manifest number: 14D7 Signing time: Sat 06 Dec 2025 01:02:39 +0000 Manifest this update: Sat 06 Dec 2025 01:02:39 +0000 Manifest next update: Sun 07 Dec 2025 01:02:39 +0000 Files and hashes: 1: M9NbgULzUbUgy5QfFA80DfDkYIo.roa (hash: 9jvwTaiwGzjoN6t2OLikrXjXwIhCTFgXlEI2alktc+E=) 2: bqGhD32UTazB3sBBqqVZ1SK_uus.crl (hash: 0SBGYU/r30fV1c3l8SabLlRf0tMnSieFSqvUpZzeqfk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:ad:80:e8:f9:c7:ed:70:c6:e6:c2:d7:07:73:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb Validity Not Before: Dec 6 01:02:39 2025 GMT Not After : Dec 7 01:02:39 2025 GMT Subject: CN=a73e6527cbb5aebd79a3e23f977178e95e06a502 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:de:a2:ae:34:24:3a:17:00:3c:82:a1:a2:c0: b7:b4:a5:56:f2:21:e4:f1:5e:69:d0:94:9a:8f:cc: 7b:b9:47:e2:70:f3:86:aa:14:e1:8b:f3:99:6c:b6: 41:71:05:6c:34:0f:79:e4:66:1d:d2:69:14:7a:27: dd:1c:de:f6:cc:9a:ca:73:71:2b:07:d9:3b:5d:ed: 9f:b5:ba:69:58:f3:89:7e:1d:80:87:a4:a3:3e:17: 65:bf:73:9f:a0:14:34:8d:d2:3e:38:2a:0f:c8:a2: 20:3f:d3:1b:a1:c8:68:f2:6b:72:7e:c6:dd:ed:85: 0d:95:f8:21:56:c3:1c:de:a5:60:6b:16:6c:ae:a8: 7b:8b:4e:8e:8e:10:94:5e:bd:23:25:6d:7c:e0:00: ea:3f:7c:09:2c:76:5d:7d:25:ca:5a:e8:e5:b8:81: f4:2b:88:46:88:3e:8c:99:6c:d1:bb:8f:e8:19:1c: b6:bc:6a:b2:a1:d6:39:2b:6c:29:2a:ff:24:de:d2: 7c:5f:26:5a:29:e6:1c:a0:aa:e4:1e:cb:08:c8:73: e3:d1:44:e9:fa:26:ce:c4:a9:77:9b:5f:6f:e3:18: 21:45:46:67:68:00:57:cc:f4:40:6e:ff:a5:38:85: a7:41:4c:df:a5:82:4a:07:0c:74:cd:23:16:7d:6f: 31:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:3E:65:27:CB:B5:AE:BD:79:A3:E2:3F:97:71:78:E9:5E:06:A5:02 X509v3 Authority Key Identifier: keyid:6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:f5:b5:0b:7b:0d:f5:aa:78:24:0e:db:59:96:78:d8:82:a6: b9:ba:cb:8d:a5:3f:38:5d:0c:e3:b5:b2:ad:fd:f9:a9:08:02: cd:ef:93:89:c9:49:28:a5:17:29:11:03:fc:89:80:f5:d7:b5: 08:95:20:46:df:53:a4:6c:2c:50:bc:92:90:04:db:50:4d:2e: 90:b5:ef:a9:d8:12:6e:d2:49:23:9b:42:78:1e:dd:f5:cf:f6: ef:5a:6a:1f:37:60:ed:50:cb:c7:6a:23:9b:a5:f9:b3:fb:10: dd:04:57:ca:65:66:2c:1d:0f:ae:6a:9f:b3:62:45:fd:8c:86: 98:66:a1:a7:49:4e:8b:b0:fc:95:5f:f0:04:64:95:46:4f:03: 9b:48:be:89:75:f4:e3:88:61:9a:25:39:9b:da:9b:d8:15:8e: a5:69:0a:5e:49:50:e9:f5:28:88:ed:3e:9e:52:69:2d:6f:de: 55:3b:ef:a1:f0:42:8f:19:25:d8:d6:99:78:24:b3:17:66:4c: 69:f1:56:f1:97:d4:69:11:41:c5:fa:db:b3:9c:50:d2:51:50: e6:1b:f3:6d:19:0c:9e:60:fe:7a:d7:d8:46:fc:29:15:f1:b3: b0:26:14:7c:4d:34:dc:f2:bb:1e:5e:d3:e2:cf:42:a0:fd:45: bf:02:e4:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLq2A6PnH7XDG5sLXB3M0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlYTFhMTBmN2Q5NDRkYWNjMWRlYzA0MWFhYTU1OWQ1MjJi ZmJhZWIwHhcNMjUxMjA2MDEwMjM5WhcNMjUxMjA3MDEwMjM5WjAzMTEwLwYDVQQD EyhhNzNlNjUyN2NiYjVhZWJkNzlhM2UyM2Y5NzcxNzhlOTVlMDZhNTAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7d6irjQkOhcAPIKhosC3tKVW8iHk 8V5p0JSaj8x7uUficPOGqhThi/OZbLZBcQVsNA955GYd0mkUeifdHN72zJrKc3Er B9k7Xe2ftbppWPOJfh2Ah6SjPhdlv3OfoBQ0jdI+OCoPyKIgP9Mbocho8mtyfsbd 7YUNlfghVsMc3qVgaxZsrqh7i06OjhCUXr0jJW184ADqP3wJLHZdfSXKWujluIH0 K4hGiD6MmWzRu4/oGRy2vGqyodY5K2wpKv8k3tJ8XyZaKeYcoKrkHssIyHPj0UTp +ibOxKl3m19v4xghRUZnaABXzPRAbv+lOIWnQUzfpYJKBwx0zSMWfW8xnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKc+ZSfLta69eaPiP5dxeOleBqUCMB8GA1UdIwQY MBaAFG6hoQ99lE2swd7AQaqlWdUiv7rrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnFHaEQzMlVUYXpCM3NCQnFxVloxU0tfdXVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC84NWUxMDQtNWU1Mi00MDQ4LWIxYjEt YzUwOTY4Y2RhODZmLzEvYnFHaEQzMlVUYXpCM3NCQnFxVloxU0tfdXVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC84NWUxMDQtNWU1Mi00MDQ4LWIxYjEtYzUwOTY4Y2RhODZm LzEvYnFHaEQzMlVUYXpCM3NCQnFxVloxU0tfdXVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAfW1C3sN 9ap4JA7bWZZ42IKmubrLjaU/OF0M47Wyrf35qQgCze+TiclJKKUXKRED/ImA9de1 CJUgRt9TpGwsULySkATbUE0ukLXvqdgSbtJJI5tCeB7d9c/271pqHzdg7VDLx2oj m6X5s/sQ3QRXymVmLB0Prmqfs2JF/YyGmGahp0lOi7D8lV/wBGSVRk8Dm0i+iXX0 44hhmiU5m9qb2BWOpWkKXklQ6fUoiO0+nlJpLW/eVTvvofBCjxkl2NaZeCSzF2ZM afFW8ZfUaRFBxfrbs5xQ0lFQ5hvzbRkMnmD+etfYRvwpFfGzsCYUfE003PK7Hl7T 4s9CoP1FvwLkrQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:25:16 2025 by rpki-client