This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft File: QTe22qILXgYYYrb7meI2rCwuNPg.mft (raw, json) Hash identifier: YIrVbsfa9qEALWfL5dLkYDDulo+JnDjztM7CcY1R3/w= Subject key identifier: D2:73:F5:B8:1C:D4:A0:2B:14:D1:C9:12:90:9B:90:0C:98:68:B3:19 Authority key identifier: 41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8 Certificate issuer: /CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8 Certificate serial: 019AF49C5C49072F93CE8DC9D7C33BBC6CC1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft Manifest number: 0730 Signing time: Sat 06 Dec 2025 17:01:19 +0000 Manifest this update: Sat 06 Dec 2025 17:01:19 +0000 Manifest next update: Sun 07 Dec 2025 17:01:19 +0000 Files and hashes: 1: 8ydd8JZX5EAnrnnw2HV2rHK_3p4.roa (hash: j4GR32txclZSQHedOrcHnmy9IerE3851xb5yxFpNcdg=) 2: QTe22qILXgYYYrb7meI2rCwuNPg.crl (hash: lLvceE6KjnXch870oKM+nORtvMEK1fm9ktAQCfJDtbQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:9c:5c:49:07:2f:93:ce:8d:c9:d7:c3:3b:bc:6c:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8 Validity Not Before: Dec 6 17:01:19 2025 GMT Not After : Dec 7 17:01:19 2025 GMT Subject: CN=d273f5b81cd4a02b14d1c912909b900c9868b319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:04:07:02:a4:bf:3c:51:f9:75:a2:d5:ee:66: 7b:12:9f:6e:96:90:6a:33:61:73:4f:cd:db:19:c6: 34:85:83:e9:2c:cf:45:e9:af:d9:43:31:ea:5a:30: de:5d:21:92:a2:e7:e9:73:28:e6:78:d4:3e:a4:11: 3b:c4:52:4d:27:cd:c4:85:15:59:5d:8f:ff:7c:b8: 89:a0:25:a5:1e:d5:ad:47:81:da:a3:00:c6:a2:95: f8:96:a7:d8:9c:f0:4b:1a:9d:55:80:7b:5c:b5:01: f2:69:69:35:e7:4e:17:ca:9e:30:95:b4:43:1c:71: 56:6c:b2:de:86:b5:eb:52:c4:44:64:8f:b3:94:05: 27:1a:3a:fd:40:e9:2a:1f:a5:be:5e:38:a0:4b:7e: d8:2a:2d:ef:84:f7:c8:ac:1e:e3:e6:43:9f:52:57: 91:5d:cb:e8:71:be:d9:71:54:62:29:1b:11:bb:8e: 4a:08:d3:2a:84:7c:7c:e5:fd:a7:09:09:a2:1b:f5: 2a:20:da:71:21:af:6c:97:7b:8d:70:20:e9:e9:4e: 4a:91:ac:79:b5:af:e7:d8:50:03:dc:7f:cb:a9:8f: a9:5c:e1:3b:92:fb:fa:07:bc:7a:91:f1:94:f9:c2: 67:6c:fe:c1:e9:b2:fa:e2:26:b5:54:d9:fe:36:29: 2e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:73:F5:B8:1C:D4:A0:2B:14:D1:C9:12:90:9B:90:0C:98:68:B3:19 X509v3 Authority Key Identifier: keyid:41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:c6:43:ce:6c:0c:f5:d8:3f:44:e3:ab:3a:72:de:5f:18:70: 58:7a:a2:9e:c1:65:7e:33:53:ca:18:22:fb:71:f6:b6:48:8e: 6c:d8:ab:70:50:65:a6:ff:21:fa:3c:28:94:ee:65:68:72:14: c5:86:9a:31:fb:fb:c0:36:44:f7:cd:50:77:1a:3c:ad:3b:7a: d5:47:4d:6b:13:48:0c:ee:c4:f7:44:8e:25:18:c6:cb:49:c4: f9:80:b7:e5:dd:df:a7:9b:dd:73:02:12:6b:84:98:a4:24:7e: 8f:9c:6a:c1:38:5f:b4:fd:be:29:94:29:f7:c3:dd:1c:84:b8: a7:2a:9b:7b:57:38:a7:b9:1b:44:12:e2:c5:a9:6d:ee:ed:eb: 0a:82:b6:a9:23:bc:dc:de:9b:3a:1f:db:96:dd:59:a1:16:26: f2:15:0a:df:49:8c:4e:0d:7f:12:39:7b:e3:18:20:df:29:72: 89:9b:54:53:94:1f:3a:94:b4:54:30:ca:af:7e:11:e6:e1:7c: 8d:ba:b8:eb:15:cb:2c:a4:7c:59:c8:f5:5f:1c:6c:9a:61:12: 3e:25:c0:72:1e:c1:45:7b:93:7b:6f:f6:22:b8:74:8c:04:99: fb:21:43:c5:db:67:21:b3:09:05:ba:07:f8:d0:84:73:88:07: 84:99:38:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0nFxJBy+Tzo3J18M7vGzBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxMzdiNmRhYTIwYjVlMDYxODYyYjZmYjk5ZTIzNmFjMmMy ZTM0ZjgwHhcNMjUxMjA2MTcwMTE5WhcNMjUxMjA3MTcwMTE5WjAzMTEwLwYDVQQD EyhkMjczZjViODFjZDRhMDJiMTRkMWM5MTI5MDliOTAwYzk4NjhiMzE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgQHAqS/PFH5daLV7mZ7Ep9ulpBq M2FzT83bGcY0hYPpLM9F6a/ZQzHqWjDeXSGSoufpcyjmeNQ+pBE7xFJNJ83EhRVZ XY//fLiJoCWlHtWtR4HaowDGopX4lqfYnPBLGp1VgHtctQHyaWk1504Xyp4wlbRD HHFWbLLehrXrUsREZI+zlAUnGjr9QOkqH6W+XjigS37YKi3vhPfIrB7j5kOfUleR Xcvocb7ZcVRiKRsRu45KCNMqhHx85f2nCQmiG/UqINpxIa9sl3uNcCDp6U5Kkax5 ta/n2FAD3H/LqY+pXOE7kvv6B7x6kfGU+cJnbP7B6bL64ia1VNn+NikuBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNJz9bgc1KArFNHJEpCbkAyYaLMZMB8GA1UdIwQY MBaAFEE3ttqiC14GGGK2+5niNqwsLjT4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVRlMjJxSUxYZ1lZWXJiN21lSTJyQ3d1TlBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS8wM2ZkNDItNjU4OS00NmJhLWE2NzMt MGIwMmE0NzMyNDc5LzEvUVRlMjJxSUxYZ1lZWXJiN21lSTJyQ3d1TlBnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NS8wM2ZkNDItNjU4OS00NmJhLWE2NzMtMGIwMmE0NzMyNDc5 LzEvUVRlMjJxSUxYZ1lZWXJiN21lSTJyQ3d1TlBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS8ZDzmwM 9dg/ROOrOnLeXxhwWHqinsFlfjNTyhgi+3H2tkiObNircFBlpv8h+jwolO5laHIU xYaaMfv7wDZE981Qdxo8rTt61UdNaxNIDO7E90SOJRjGy0nE+YC35d3fp5vdcwIS a4SYpCR+j5xqwThftP2+KZQp98PdHIS4pyqbe1c4p7kbRBLixalt7u3rCoK2qSO8 3N6bOh/blt1ZoRYm8hUK30mMTg1/Ejl74xgg3ylyiZtUU5QfOpS0VDDKr34R5uF8 jbq46xXLLKR8Wcj1XxxsmmESPiXAch7BRXuTe2/2Irh0jASZ+yFDxdtnIbMJBboH +NCEc4gHhJk4aA== -----END CERTIFICATE-----Generated at Sat Dec 6 23:00:59 2025 by rpki-client