This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft File: QiW1cPRt5cbosrZO0JCtE4XatzE.mft (raw, json) Hash identifier: wim9mLWJKjIUJ3Lkbb9yqjSwMKaCbQJ33jiX3dJCM40= Subject key identifier: 3B:B6:4C:77:C7:04:5C:70:2C:A3:17:32:0F:02:10:20:FC:FA:9E:4E Authority key identifier: 42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31 Certificate issuer: /CN=4225b570f46de5c6e8b2b64ed090ad1385dab731 Certificate serial: 019AF20955613800B6C93D2A98625473F587 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 05:01:28 +0000 Manifest this update: Sat 06 Dec 2025 05:01:28 +0000 Manifest next update: Sun 07 Dec 2025 05:01:28 +0000 Files and hashes: 1: Ad__4Mw9qH40aKjCCd6U7wn1LE8.roa (hash: XmUspE3wSTnFZCF/0+RPTjtSL/Xtm1GMKSxL+nI/8po=) 2: QiW1cPRt5cbosrZO0JCtE4XatzE.crl (hash: h+17EZeQi8juJ2Gy5uFmBM17jHUuRUre9YrnfegLmS0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:55:61:38:00:b6:c9:3d:2a:98:62:54:73:f5:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4225b570f46de5c6e8b2b64ed090ad1385dab731 Validity Not Before: Dec 6 05:01:28 2025 GMT Not After : Dec 7 05:01:28 2025 GMT Subject: CN=3bb64c77c7045c702ca317320f021020fcfa9e4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:94:bd:d4:3d:15:91:bf:56:b3:6a:60:fd:2c: 48:4e:4c:c6:c6:0c:9d:af:b0:61:f5:7d:df:11:d4: ba:10:fd:13:45:b2:25:43:51:07:4f:9d:00:05:98: 7e:a9:99:b1:f6:2b:2e:3b:e2:83:1c:3b:68:5e:b3: 1c:5a:07:8f:e3:e3:ed:79:65:68:8f:b7:6d:de:d6: 5b:95:e1:fc:60:d5:25:01:54:d6:85:4a:d1:c4:8e: ff:32:8d:42:b4:0e:8f:e0:73:ae:8f:b6:e7:e0:31: 0e:0e:bb:0c:9f:d7:fa:19:39:4c:fb:6f:87:ef:59: 82:2d:06:9c:ae:89:48:95:c6:ad:9f:1d:ce:97:32: ba:0f:49:ea:d0:ba:10:61:a3:37:f3:75:27:6f:38: 8b:59:a8:eb:fc:0b:1a:05:13:70:9e:4f:63:16:e0: f7:fe:e6:1f:d4:86:7a:cc:12:8f:44:25:d3:ca:52: e0:4a:c8:54:cf:9b:5c:6f:53:41:d2:8a:da:ea:fa: eb:1a:96:e2:51:5e:aa:03:d0:66:c9:8f:55:13:6a: 6c:29:76:c6:a8:ad:31:fa:33:9e:cc:26:4f:c1:bc: bc:13:5e:b2:83:97:96:4c:94:8a:98:d2:90:f1:99: 82:75:fc:04:d8:1d:9e:54:9a:68:fd:81:7e:2c:6e: 59:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:B6:4C:77:C7:04:5C:70:2C:A3:17:32:0F:02:10:20:FC:FA:9E:4E X509v3 Authority Key Identifier: keyid:42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:35:19:33:9a:6a:99:ec:8f:ac:5c:fe:f5:38:a2:1d:6e:4d: 71:0e:d4:bd:6a:8f:83:18:e7:ba:31:74:c9:13:2e:42:46:47: d2:c5:65:e0:b1:39:76:bf:c1:d0:5d:72:c4:ce:f1:11:84:79: 98:86:eb:ce:b7:3f:71:c4:83:32:f8:33:26:86:fe:31:36:d3: 80:75:fa:fb:86:a7:20:2d:fb:84:52:c9:35:20:9d:4c:e3:2b: d8:9f:6f:b2:5d:30:b9:37:22:8a:96:02:19:8f:b8:7e:ff:9e: 81:fc:37:9c:45:a9:58:16:c5:c8:b5:86:b6:ce:83:d0:aa:49: 10:94:80:65:97:4d:4c:42:6f:e4:38:77:93:0f:ec:d7:79:9e: a4:85:ee:58:e0:37:57:55:be:fb:5f:ec:ac:21:41:22:fd:f0: 79:3c:92:7e:25:3b:72:db:6c:1d:9a:23:cf:5c:91:19:29:61: 88:1b:c0:47:31:c6:b4:c8:a5:78:12:7a:38:d2:3a:d8:61:e6: c2:10:df:b7:c9:c5:3c:15:1e:62:f7:aa:b4:36:e0:73:e1:b1: fc:93:95:23:ac:47:95:f0:be:27:3c:9f:e5:88:91:02:c2:cb: 91:78:e3:c3:6d:91:97:15:e9:ef:e1:fb:9c:0b:b3:3c:0e:b9: 26:15:cd:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCVVhOAC2yT0qmGJUc/WHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyMjViNTcwZjQ2ZGU1YzZlOGIyYjY0ZWQwOTBhZDEzODVk YWI3MzEwHhcNMjUxMjA2MDUwMTI4WhcNMjUxMjA3MDUwMTI4WjAzMTEwLwYDVQQD EygzYmI2NGM3N2M3MDQ1YzcwMmNhMzE3MzIwZjAyMTAyMGZjZmE5ZTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx5S91D0Vkb9Ws2pg/SxITkzGxgyd r7Bh9X3fEdS6EP0TRbIlQ1EHT50ABZh+qZmx9isuO+KDHDtoXrMcWgeP4+PteWVo j7dt3tZbleH8YNUlAVTWhUrRxI7/Mo1CtA6P4HOuj7bn4DEODrsMn9f6GTlM+2+H 71mCLQacrolIlcatnx3OlzK6D0nq0LoQYaM383UnbziLWajr/AsaBRNwnk9jFuD3 /uYf1IZ6zBKPRCXTylLgSshUz5tcb1NB0ora6vrrGpbiUV6qA9BmyY9VE2psKXbG qK0x+jOezCZPwby8E16yg5eWTJSKmNKQ8ZmCdfwE2B2eVJpo/YF+LG5ZKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDu2THfHBFxwLKMXMg8CECD8+p5OMB8GA1UdIwQY MBaAFEIltXD0beXG6LK2TtCQrROF2rcxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWlXMWNQUnQ1Y2Jvc3JaTzBKQ3RFNFhhdHpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9jMzRjOTktMThjOC00MWEyLTg3NGIt MzkwYjg1Mzk0YmViLzEvUWlXMWNQUnQ1Y2Jvc3JaTzBKQ3RFNFhhdHpFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9jMzRjOTktMThjOC00MWEyLTg3NGItMzkwYjg1Mzk0YmVi LzEvUWlXMWNQUnQ1Y2Jvc3JaTzBKQ3RFNFhhdHpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWTUZM5pq meyPrFz+9TiiHW5NcQ7UvWqPgxjnujF0yRMuQkZH0sVl4LE5dr/B0F1yxM7xEYR5 mIbrzrc/ccSDMvgzJob+MTbTgHX6+4anIC37hFLJNSCdTOMr2J9vsl0wuTciipYC GY+4fv+egfw3nEWpWBbFyLWGts6D0KpJEJSAZZdNTEJv5Dh3kw/s13mepIXuWOA3 V1W++1/srCFBIv3weTySfiU7cttsHZojz1yRGSlhiBvARzHGtMileBJ6ONI62GHm whDft8nFPBUeYveqtDbgc+Gx/JOVI6xHlfC+Jzyf5YiRAsLLkXjjw22RlxXp7+H7 nAuzPA65JhXN3Q== -----END CERTIFICATE-----Generated at Sat Dec 6 14:00:57 2025 by rpki-client