This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft File: sq-PF3TgWSXyTkHe5p5bYj2axj0.mft (raw, json) Hash identifier: GS9tDu4xmpKKSHZSCj1CMw8cb9j889OAdnXaTgRAEc8= Subject key identifier: E0:B3:20:ED:56:85:BC:EE:DB:4B:1E:DB:D7:AE:34:C4:93:85:16:75 Authority key identifier: B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D Certificate issuer: /CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d Certificate serial: 019AF2AD657833058B7847885DB841D1466C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 08:00:41 +0000 Manifest this update: Sat 06 Dec 2025 08:00:41 +0000 Manifest next update: Sun 07 Dec 2025 08:00:41 +0000 Files and hashes: 1: dHmQJZqThrz58J_TSvHl_H-39E8.roa (hash: lBrrDh2GaFmnqywSNW3PsD5utU5WNEXu75PvBG3VZjI=) 2: sq-PF3TgWSXyTkHe5p5bYj2axj0.crl (hash: DwfYTxaxkL58CCEz+uyQdCP/AaoypyCvY0Y+fJOlG9M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:65:78:33:05:8b:78:47:88:5d:b8:41:d1:46:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d Validity Not Before: Dec 6 08:00:41 2025 GMT Not After : Dec 7 08:00:41 2025 GMT Subject: CN=e0b320ed5685bceedb4b1edbd7ae34c493851675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6c:a3:73:46:5f:14:da:90:69:6b:dd:38:d6: 3d:59:44:d2:ed:a6:c4:0f:96:d2:96:aa:ba:54:73: af:8a:aa:ab:18:62:37:f3:1a:06:f4:68:77:d7:fd: d2:16:be:6c:ba:3c:16:b7:6a:0e:42:eb:4a:4b:9a: d1:5b:11:7f:4d:00:fe:00:df:c0:e3:f0:13:07:1e: f0:7b:41:d3:e7:42:a9:38:b7:d8:9a:7a:09:0e:a4: aa:ba:9a:aa:54:ad:7f:ce:22:de:1d:47:dc:0c:26: 3a:e1:42:85:bf:de:bf:1d:e5:ad:b3:d9:df:13:b6: da:ba:c0:df:a6:bf:ba:46:07:57:a2:70:8e:1e:b4: 41:8c:e0:f9:2a:1e:32:1b:b5:1e:1c:75:da:78:4e: e4:d8:0d:6c:40:ae:82:f3:d4:86:f9:12:46:3b:2b: 02:65:97:f7:4c:0a:50:8c:c5:8d:df:09:3f:e2:dc: d5:9f:ef:9a:c5:ce:9b:45:02:9f:ac:21:bf:d6:e9: b5:2e:5d:97:a1:07:11:96:c7:f7:df:39:5b:55:d6: 4d:8b:a8:09:31:7f:4d:dc:f9:d5:61:24:c5:df:8f: 25:c0:c6:96:e9:50:44:8d:06:9e:49:09:ca:27:1f: 76:ad:dd:1f:f9:eb:2f:a3:10:5c:cf:ec:8e:ea:e2: 79:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B3:20:ED:56:85:BC:EE:DB:4B:1E:DB:D7:AE:34:C4:93:85:16:75 X509v3 Authority Key Identifier: keyid:B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:7f:c6:15:b8:d2:95:ce:da:de:7c:01:2d:33:f6:ca:2b:f5: 8c:43:54:a3:54:b5:81:ed:e7:b5:30:06:d2:56:41:f8:e2:5c: d8:24:ee:3b:f7:ba:18:8a:5e:7f:cb:a4:0c:45:cc:b8:f5:3d: 81:9e:45:99:d7:b5:88:8c:68:ef:91:5d:79:9b:3b:54:46:9e: 04:6e:20:50:f9:b1:eb:ba:3d:c4:f6:c4:74:2f:6a:6a:e3:c1: 3b:51:53:76:ff:24:99:52:43:5f:5b:98:82:13:da:20:00:47: a9:6a:c6:9e:11:72:56:b1:98:ab:5f:86:6f:23:f1:1e:ac:32: fc:4f:ad:85:09:bc:b8:19:01:d7:c9:fa:8a:aa:d7:bb:ab:2b: f6:c4:a8:13:02:df:18:23:48:e7:98:8f:04:ea:36:d8:65:4e: 2e:bc:69:28:ca:ae:70:e4:44:99:e9:3c:3d:f8:42:31:8e:17: e6:c3:69:ed:6f:0e:ee:c7:80:e4:7c:31:a8:33:28:7a:f9:a2: 79:83:ab:3e:18:8b:6c:e0:07:92:86:5d:a7:05:9b:a2:d9:77: 2a:98:5e:d3:f9:b8:d0:a6:e5:b9:38:1e:2a:d9:7e:1c:10:0b: 9a:a5:fe:83:76:46:bf:e8:db:f1:41:89:31:76:dc:34:be:ed: eb:01:b3:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrWV4MwWLeEeIXbhB0UZsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyYWY4ZjE3NzRlMDU5MjVmMjRlNDFkZWU2OWU1YjYyM2Q5 YWM2M2QwHhcNMjUxMjA2MDgwMDQxWhcNMjUxMjA3MDgwMDQxWjAzMTEwLwYDVQQD EyhlMGIzMjBlZDU2ODViY2VlZGI0YjFlZGJkN2FlMzRjNDkzODUxNjc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Gyjc0ZfFNqQaWvdONY9WUTS7abE D5bSlqq6VHOviqqrGGI38xoG9Gh31/3SFr5sujwWt2oOQutKS5rRWxF/TQD+AN/A 4/ATBx7we0HT50KpOLfYmnoJDqSqupqqVK1/ziLeHUfcDCY64UKFv96/HeWts9nf E7bausDfpr+6RgdXonCOHrRBjOD5Kh4yG7UeHHXaeE7k2A1sQK6C89SG+RJGOysC ZZf3TApQjMWN3wk/4tzVn++axc6bRQKfrCG/1um1Ll2XoQcRlsf33zlbVdZNi6gJ MX9N3PnVYSTF348lwMaW6VBEjQaeSQnKJx92rd0f+esvoxBcz+yO6uJ5LQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOCzIO1Whbzu20se29euNMSThRZ1MB8GA1UdIwQY MBaAFLKvjxd04Fkl8k5B3uaeW2I9msY9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3EtUEYzVGdXU1h5VGtIZTVwNWJZajJheGowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9jMTU2NzEtYmExYi00OGYyLWI2OTEt ZmE1N2MxMjZiYzJhLzEvc3EtUEYzVGdXU1h5VGtIZTVwNWJZajJheGowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS9jMTU2NzEtYmExYi00OGYyLWI2OTEtZmE1N2MxMjZiYzJh LzEvc3EtUEYzVGdXU1h5VGtIZTVwNWJZajJheGowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFH/GFbjS lc7a3nwBLTP2yiv1jENUo1S1ge3ntTAG0lZB+OJc2CTuO/e6GIpef8ukDEXMuPU9 gZ5Fmde1iIxo75FdeZs7VEaeBG4gUPmx67o9xPbEdC9qauPBO1FTdv8kmVJDX1uY ghPaIABHqWrGnhFyVrGYq1+GbyPxHqwy/E+thQm8uBkB18n6iqrXu6sr9sSoEwLf GCNI55iPBOo22GVOLrxpKMqucOREmek8PfhCMY4X5sNp7W8O7seA5HwxqDMoevmi eYOrPhiLbOAHkoZdpwWbotl3Kphe0/m40KbluTgeKtl+HBALmqX+g3ZGv+jb8UGJ MXbcNL7t6wGz1A== -----END CERTIFICATE-----Generated at Sat Dec 6 10:24:39 2025 by rpki-client