This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft File: sq-PF3TgWSXyTkHe5p5bYj2axj0.mft (raw, json) Hash identifier: MHyW15cU5d7v5eesfPTAU22gVKSxLGCxuMQI6UT7Im0= Subject key identifier: 05:17:3E:F7:89:EC:20:D4:45:58:4D:87:63:A9:A2:72:17:80:5C:E5 Authority key identifier: B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D Certificate issuer: /CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d Certificate serial: 019B3645023443F41BD2EE2C484647B14DF9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft Manifest number: 1786 Signing time: Fri 19 Dec 2025 11:00:50 +0000 Manifest this update: Fri 19 Dec 2025 11:00:50 +0000 Manifest next update: Sat 20 Dec 2025 11:00:50 +0000 Files and hashes: 1: dHmQJZqThrz58J_TSvHl_H-39E8.roa (hash: lBrrDh2GaFmnqywSNW3PsD5utU5WNEXu75PvBG3VZjI=) 2: sq-PF3TgWSXyTkHe5p5bYj2axj0.crl (hash: 1UjAcSbVZ9WlGOJ5VtX7+78nLZBRrAnuGTgfl3XY5hQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:45:02:34:43:f4:1b:d2:ee:2c:48:46:47:b1:4d:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d Validity Not Before: Dec 19 11:00:50 2025 GMT Not After : Dec 20 11:00:50 2025 GMT Subject: CN=05173ef789ec20d445584d8763a9a27217805ce5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8d:91:62:d7:d7:aa:d7:e8:9a:47:58:5e:1a: 55:95:57:09:03:dc:62:fe:db:6a:38:d5:25:5b:e8: 83:61:75:c0:3a:6f:7c:be:33:d7:7a:9c:4b:54:64: 0a:33:f2:62:32:58:fc:87:55:c3:42:30:75:c6:96: ca:2e:a7:4d:75:b3:1b:f3:7a:db:21:9f:9e:c9:2c: 5f:52:d9:21:e8:fb:07:eb:e1:3b:d4:9a:d6:71:d9: da:66:90:5a:4d:41:54:79:3b:91:2c:61:09:a6:c3: 71:ea:c3:c7:42:b1:a7:a4:c2:6f:f1:9d:7c:5d:36: 41:be:57:25:0a:07:d4:33:da:8e:c6:64:1e:b1:bc: bc:ab:01:10:49:36:21:0a:70:62:38:68:88:e9:37: c6:ea:71:18:da:8e:87:1b:c8:00:fc:25:f0:66:c1: 54:5b:5d:8a:30:9b:8d:c9:d3:98:ee:10:e2:0c:bb: c4:ff:68:96:13:57:96:bd:f7:12:58:82:0a:de:1b: a7:9b:da:fe:99:23:1b:17:90:72:3a:68:b2:a0:bf: 99:f5:1e:22:0c:aa:95:bb:af:15:66:6e:e2:bb:d2: 19:11:8c:a8:6b:dd:d7:6a:f0:2c:5b:18:03:b6:0c: aa:77:47:7d:98:fb:55:bf:27:d8:94:05:5c:d6:53: 30:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:17:3E:F7:89:EC:20:D4:45:58:4D:87:63:A9:A2:72:17:80:5C:E5 X509v3 Authority Key Identifier: keyid:B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:b6:72:95:69:6b:62:88:35:e4:db:58:fa:21:f1:0b:cf:e2: 3d:9d:54:80:23:45:f1:b7:f6:ff:ed:78:e1:a2:cf:96:e6:3f: 1e:6f:ff:ef:02:3d:70:bc:2b:8f:e4:14:77:ea:b0:2c:18:51: 53:13:c0:03:2d:2d:c7:5c:65:48:6a:83:bd:3f:6b:61:de:d7: 22:ff:0a:0a:bc:fc:92:9f:ac:21:75:56:a0:4b:84:7c:06:8d: e0:51:5e:ac:e5:09:9d:e8:b9:ac:04:c5:49:81:c8:0c:73:94: 8d:f3:92:98:a3:83:09:76:5e:13:bb:c0:8a:b0:5b:1a:62:64: 16:06:ca:4f:0b:33:c4:1f:91:6f:e5:fd:d2:a1:1e:7c:7f:a3: 66:b1:ed:1d:e7:2a:3c:32:02:84:2d:11:f9:63:86:32:ce:4e: 07:96:94:7b:b9:fc:b7:28:09:d2:a5:30:7b:d9:d1:82:51:38: ac:24:5e:b6:11:fa:48:0d:73:2f:56:4d:ac:f5:35:9c:92:5b: 65:b8:07:04:e5:1b:90:20:14:36:47:4d:f2:07:16:ef:47:31: b4:ae:3f:9f:1b:7d:16:1e:4f:d9:64:45:ba:46:8f:8d:1a:a5: 32:0f:20:c7:e4:aa:fd:79:bd:4a:d4:2b:df:77:7d:1b:e5:5d: 42:1f:d8:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2RQI0Q/Qb0u4sSEZHsU35MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyYWY4ZjE3NzRlMDU5MjVmMjRlNDFkZWU2OWU1YjYyM2Q5 YWM2M2QwHhcNMjUxMjE5MTEwMDUwWhcNMjUxMjIwMTEwMDUwWjAzMTEwLwYDVQQD EygwNTE3M2VmNzg5ZWMyMGQ0NDU1ODRkODc2M2E5YTI3MjE3ODA1Y2U1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvI2RYtfXqtfomkdYXhpVlVcJA9xi /ttqONUlW+iDYXXAOm98vjPXepxLVGQKM/JiMlj8h1XDQjB1xpbKLqdNdbMb83rb IZ+eySxfUtkh6PsH6+E71JrWcdnaZpBaTUFUeTuRLGEJpsNx6sPHQrGnpMJv8Z18 XTZBvlclCgfUM9qOxmQesby8qwEQSTYhCnBiOGiI6TfG6nEY2o6HG8gA/CXwZsFU W12KMJuNydOY7hDiDLvE/2iWE1eWvfcSWIIK3hunm9r+mSMbF5ByOmiyoL+Z9R4i DKqVu68VZm7iu9IZEYyoa93XavAsWxgDtgyqd0d9mPtVvyfYlAVc1lMwGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAUXPveJ7CDURVhNh2OponIXgFzlMB8GA1UdIwQY MBaAFLKvjxd04Fkl8k5B3uaeW2I9msY9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3EtUEYzVGdXU1h5VGtIZTVwNWJZajJheGowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9jMTU2NzEtYmExYi00OGYyLWI2OTEt ZmE1N2MxMjZiYzJhLzEvc3EtUEYzVGdXU1h5VGtIZTVwNWJZajJheGowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS9jMTU2NzEtYmExYi00OGYyLWI2OTEtZmE1N2MxMjZiYzJh LzEvc3EtUEYzVGdXU1h5VGtIZTVwNWJZajJheGowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX7ZylWlr Yog15NtY+iHxC8/iPZ1UgCNF8bf2/+144aLPluY/Hm//7wI9cLwrj+QUd+qwLBhR UxPAAy0tx1xlSGqDvT9rYd7XIv8KCrz8kp+sIXVWoEuEfAaN4FFerOUJnei5rATF SYHIDHOUjfOSmKODCXZeE7vAirBbGmJkFgbKTwszxB+Rb+X90qEefH+jZrHtHecq PDIChC0R+WOGMs5OB5aUe7n8tygJ0qUwe9nRglE4rCRethH6SA1zL1ZNrPU1nJJb ZbgHBOUbkCAUNkdN8gcW70cxtK4/nxt9Fh5P2WRFukaPjRqlMg8gx+Sq/Xm9StQr 33d9G+VdQh/YXA== -----END CERTIFICATE-----Generated at Fri Dec 19 13:35:36 2025 by rpki-client