This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft File: QiW1cPRt5cbosrZO0JCtE4XatzE.mft (raw, json) Hash identifier: NJZdmcrraElqmmgkDt/rfzwewDJECWhjl1C6/DA2tls= Subject key identifier: 94:99:A5:F8:1A:F8:6D:F8:91:E0:09:FA:B6:58:DF:AB:88:56:B0:5F Authority key identifier: 42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31 Certificate issuer: /CN=4225b570f46de5c6e8b2b64ed090ad1385dab731 Certificate serial: 019B2BF9185B224333EA06E9FBCF3E04312E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft Manifest number: 177F Signing time: Wed 17 Dec 2025 11:01:43 +0000 Manifest this update: Wed 17 Dec 2025 11:01:43 +0000 Manifest next update: Thu 18 Dec 2025 11:01:43 +0000 Files and hashes: 1: Ad__4Mw9qH40aKjCCd6U7wn1LE8.roa (hash: XmUspE3wSTnFZCF/0+RPTjtSL/Xtm1GMKSxL+nI/8po=) 2: QiW1cPRt5cbosrZO0JCtE4XatzE.crl (hash: 1reCa0J5F8nLt9cl6KXMHlQ9jnAWCSlqKCoCaPnKDfs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 11:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:f9:18:5b:22:43:33:ea:06:e9:fb:cf:3e:04:31:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4225b570f46de5c6e8b2b64ed090ad1385dab731 Validity Not Before: Dec 17 11:01:43 2025 GMT Not After : Dec 18 11:01:43 2025 GMT Subject: CN=9499a5f81af86df891e009fab658dfab8856b05f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:23:dc:84:b3:87:a9:e5:46:89:33:79:47:60: 82:dc:ea:29:82:90:37:42:fc:7b:f0:9e:9a:a7:e1: d2:cd:a8:2c:44:c2:d8:13:db:a6:d5:43:a1:83:b1: e7:d1:2b:39:57:3b:24:02:d4:c1:11:73:66:9e:ad: 87:41:65:38:53:2b:ac:18:53:78:60:b8:aa:64:1d: 6b:6d:0f:8f:3a:34:74:bc:64:95:0f:7d:8b:75:75: 32:e7:43:09:92:ae:d5:cb:4f:26:c9:5c:2e:45:e8: bc:a2:8a:28:87:0e:b5:6b:fd:62:3f:6d:ec:e9:a0: 63:01:b0:3b:bb:0e:1d:af:f6:a8:81:60:b8:2b:08: b8:fc:20:cd:2d:0b:ad:aa:3e:37:d0:ff:42:b3:d6: 76:64:53:ea:f2:19:fb:59:44:04:f7:ff:9f:a4:f1: 05:25:8d:29:21:12:a2:af:3f:e1:7e:53:9f:eb:e3: 29:da:9c:80:36:8b:39:37:2b:49:13:a6:e1:f9:59: 27:4c:08:7c:4e:25:cd:0a:a5:45:0b:d5:95:bb:56: b6:89:99:61:42:73:ce:b8:0b:f8:38:b6:d3:e3:62: b5:61:3f:6a:38:d0:30:47:b5:a4:8a:fc:16:cf:e9: d3:c3:5e:4d:23:23:37:dc:94:a7:55:02:32:6f:81: ce:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:99:A5:F8:1A:F8:6D:F8:91:E0:09:FA:B6:58:DF:AB:88:56:B0:5F X509v3 Authority Key Identifier: keyid:42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:a4:b3:c5:cc:fe:c8:59:4a:8e:d1:f0:86:7c:6e:35:cb:bc: a4:d2:c5:e2:35:d3:ae:38:ff:38:86:ed:de:4b:5d:c3:c0:a8: 5e:c9:03:55:de:a8:31:2e:76:37:72:3b:e0:c3:9f:ce:02:81: 99:a8:b4:8b:ce:0c:b1:99:59:49:13:77:f1:55:be:0d:25:e0: ea:61:96:74:c8:e5:74:25:a8:ac:9c:bf:ad:2f:fd:2c:89:13: 7d:ad:5c:44:e9:d8:c9:01:1f:fe:99:b4:ac:8f:40:e5:93:0f: 00:9f:63:71:d4:f1:26:0e:34:c8:0e:95:f0:d7:fc:7e:09:22: 47:66:b8:2d:ec:d0:e6:f5:17:ec:a0:61:2c:a9:3d:32:18:b6: b5:13:46:5b:59:4f:c8:7a:dc:df:26:ec:18:0d:6d:3c:53:ed: 61:60:12:45:a0:d5:51:dc:e4:6c:77:09:62:fc:c3:56:70:4d: b3:cd:6c:73:20:eb:cd:e2:ef:23:8c:c3:a2:71:51:74:7f:44: 3a:a6:62:46:4f:2f:7f:6a:12:e1:71:55:f2:14:90:39:cd:50: 92:5c:7b:6f:64:3e:a0:1e:6b:ff:3b:61:9e:d1:13:ea:09:14: 4b:c1:2a:00:ff:71:4c:28:32:37:85:10:ec:8d:75:17:7c:42: 38:39:f1:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsr+RhbIkMz6gbp+88+BDEuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyMjViNTcwZjQ2ZGU1YzZlOGIyYjY0ZWQwOTBhZDEzODVk YWI3MzEwHhcNMjUxMjE3MTEwMTQzWhcNMjUxMjE4MTEwMTQzWjAzMTEwLwYDVQQD Eyg5NDk5YTVmODFhZjg2ZGY4OTFlMDA5ZmFiNjU4ZGZhYjg4NTZiMDVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqyPchLOHqeVGiTN5R2CC3OopgpA3 Qvx78J6ap+HSzagsRMLYE9um1UOhg7Hn0Ss5VzskAtTBEXNmnq2HQWU4UyusGFN4 YLiqZB1rbQ+POjR0vGSVD32LdXUy50MJkq7Vy08myVwuRei8oooohw61a/1iP23s 6aBjAbA7uw4dr/aogWC4Kwi4/CDNLQutqj430P9Cs9Z2ZFPq8hn7WUQE9/+fpPEF JY0pIRKirz/hflOf6+Mp2pyANos5NytJE6bh+VknTAh8TiXNCqVFC9WVu1a2iZlh QnPOuAv4OLbT42K1YT9qONAwR7WkivwWz+nTw15NIyM33JSnVQIyb4HOLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJSZpfga+G34keAJ+rZY36uIVrBfMB8GA1UdIwQY MBaAFEIltXD0beXG6LK2TtCQrROF2rcxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWlXMWNQUnQ1Y2Jvc3JaTzBKQ3RFNFhhdHpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9jMzRjOTktMThjOC00MWEyLTg3NGIt MzkwYjg1Mzk0YmViLzEvUWlXMWNQUnQ1Y2Jvc3JaTzBKQ3RFNFhhdHpFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9jMzRjOTktMThjOC00MWEyLTg3NGItMzkwYjg1Mzk0YmVi LzEvUWlXMWNQUnQ1Y2Jvc3JaTzBKQ3RFNFhhdHpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASqSzxcz+ yFlKjtHwhnxuNcu8pNLF4jXTrjj/OIbt3ktdw8CoXskDVd6oMS52N3I74MOfzgKB mai0i84MsZlZSRN38VW+DSXg6mGWdMjldCWorJy/rS/9LIkTfa1cROnYyQEf/pm0 rI9A5ZMPAJ9jcdTxJg40yA6V8Nf8fgkiR2a4LezQ5vUX7KBhLKk9Mhi2tRNGW1lP yHrc3ybsGA1tPFPtYWASRaDVUdzkbHcJYvzDVnBNs81scyDrzeLvI4zDonFRdH9E OqZiRk8vf2oS4XFV8hSQOc1Qklx7b2Q+oB5r/zthntET6gkUS8EqAP9xTCgyN4UQ 7I11F3xCODnxkg== -----END CERTIFICATE-----Generated at Wed Dec 17 21:07:05 2025 by rpki-client