This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft File: pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft (raw, json) Hash identifier: P+bPkvQ2lui0Kvd9PL07MEJAmupUasGzeciYcZjtV/k= Subject key identifier: 45:87:71:75:4D:B0:B3:6D:6C:6B:D1:6A:75:00:02:FB:86:A0:E7:CA Authority key identifier: A6:AD:5E:70:01:3F:4D:F8:45:5F:A0:6C:93:E6:00:12:C2:99:73:D5 Certificate issuer: /CN=a6ad5e70013f4df8455fa06c93e60012c29973d5 Certificate serial: 019AF50A0B4B4DDDF8E8DA4E0631AC3781B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 19:01:07 +0000 Manifest this update: Sat 06 Dec 2025 19:01:07 +0000 Manifest next update: Sun 07 Dec 2025 19:01:07 +0000 Files and hashes: 1: pq1ecAE_TfhFX6Bsk-YAEsKZc9U.crl (hash: Aff6AlhFZ7MzYhY7jaKWwUMgkHF/FKink1SDt9ffpto=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft rsync://rpki.ripe.net/repository/DEFAULT/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:0b:4b:4d:dd:f8:e8:da:4e:06:31:ac:37:81:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6ad5e70013f4df8455fa06c93e60012c29973d5 Validity Not Before: Dec 6 19:01:07 2025 GMT Not After : Dec 7 19:01:07 2025 GMT Subject: CN=458771754db0b36d6c6bd16a750002fb86a0e7ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:24:bc:5a:73:23:bc:b8:5f:08:cc:4a:4a:4e: 90:1b:e7:34:c8:c5:7d:fa:83:21:68:c5:42:ec:46: f4:a8:b3:ed:c7:5f:9e:38:96:b0:5a:09:d2:53:5c: cf:6d:33:ab:b4:dd:fe:fd:3f:db:98:be:a7:5d:e8: cb:3b:45:54:15:ab:32:ab:ef:b8:21:cc:cc:c4:06: 54:36:a6:30:a2:2e:44:7a:95:8f:3a:21:1f:8e:f1: ec:94:5a:89:24:9f:29:1f:84:66:70:07:97:c3:ae: 79:de:67:9d:18:9c:b7:55:96:b2:7a:f5:f4:00:de: 03:43:07:f0:bc:de:ac:95:98:69:92:39:f5:ea:d3: e8:ec:39:ca:3f:76:7f:05:d7:24:9b:1a:05:e0:8b: 5d:32:e4:40:3e:fa:36:ab:ed:07:df:2f:cb:1a:17: 60:58:f1:3b:ff:11:01:db:09:11:21:81:66:ca:bb: ed:b4:de:7e:0c:a6:35:99:9f:2b:0f:ac:af:ae:58: 1e:da:88:6f:98:fc:01:58:1a:d9:33:23:0b:70:d3: 38:4e:ca:15:18:3b:6e:5d:81:80:d2:17:5c:f4:a2: 65:a0:8b:15:af:ae:30:cd:96:9e:de:c6:50:9f:bf: ac:f6:e0:b5:a6:45:50:3c:97:04:4a:5f:0d:a1:06: 93:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:87:71:75:4D:B0:B3:6D:6C:6B:D1:6A:75:00:02:FB:86:A0:E7:CA X509v3 Authority Key Identifier: keyid:A6:AD:5E:70:01:3F:4D:F8:45:5F:A0:6C:93:E6:00:12:C2:99:73:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:3b:66:23:34:a4:16:82:eb:a0:56:e9:16:55:3b:15:19:95: 31:42:eb:00:6d:4a:14:ba:83:42:ca:74:60:49:2d:41:dc:5d: 9a:ea:90:e3:af:1f:02:c2:a9:05:0e:89:1a:e0:31:86:3a:9a: 4d:6b:8b:42:ae:78:ad:cb:de:f2:77:ec:6b:5d:97:db:8f:cf: d2:22:40:7d:43:2b:9a:7f:9a:bc:2e:01:76:db:a8:e4:55:2c: 1d:ea:d5:f0:1b:69:fd:6f:ef:c3:e1:87:c4:15:80:24:3a:f0: 64:de:08:8e:75:ab:a8:1d:9e:34:ab:a7:e2:f3:0b:07:b7:d8: 9b:b6:a8:10:34:65:54:89:98:f9:8b:c4:a6:02:0b:52:24:44: 82:31:2b:60:5e:1d:72:64:62:04:38:fe:53:90:d7:c3:60:f2: 09:64:9f:e5:ec:34:a2:31:b1:97:7e:b0:50:f7:a6:88:90:63: 08:4e:10:7d:98:0b:f2:be:db:f1:ff:ad:eb:83:21:fc:ec:1f: 05:e4:6b:67:10:80:93:c8:c8:98:4b:2f:11:82:e3:9d:33:2a: f8:d6:c3:74:bf:66:f7:28:80:ee:4c:6b:b0:1d:68:76:3c:d6: 6c:03:e2:99:7c:ea:cf:3b:c7:67:0e:c1:d9:f7:b5:c8:06:61: c6:2f:a1:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CgtLTd346NpOBjGsN4GzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2YWQ1ZTcwMDEzZjRkZjg0NTVmYTA2YzkzZTYwMDEyYzI5 OTczZDUwHhcNMjUxMjA2MTkwMTA3WhcNMjUxMjA3MTkwMTA3WjAzMTEwLwYDVQQD Eyg0NTg3NzE3NTRkYjBiMzZkNmM2YmQxNmE3NTAwMDJmYjg2YTBlN2NhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCS8WnMjvLhfCMxKSk6QG+c0yMV9 +oMhaMVC7Eb0qLPtx1+eOJawWgnSU1zPbTOrtN3+/T/bmL6nXejLO0VUFasyq++4 IczMxAZUNqYwoi5EepWPOiEfjvHslFqJJJ8pH4RmcAeXw6553medGJy3VZayevX0 AN4DQwfwvN6slZhpkjn16tPo7DnKP3Z/BdckmxoF4ItdMuRAPvo2q+0H3y/LGhdg WPE7/xEB2wkRIYFmyrvttN5+DKY1mZ8rD6yvrlge2ohvmPwBWBrZMyMLcNM4TsoV GDtuXYGA0hdc9KJloIsVr64wzZae3sZQn7+s9uC1pkVQPJcESl8NoQaTFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEWHcXVNsLNtbGvRanUAAvuGoOfKMB8GA1UdIwQY MBaAFKatXnABP034RV+gbJPmABLCmXPVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHExZWNBRV9UZmhGWDZCc2stWUFFc0taYzlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi81NDZiOWItZGYwZi00OTcwLWE2OGUt MzY4NzAzMzcwNzdlLzEvcHExZWNBRV9UZmhGWDZCc2stWUFFc0taYzlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi81NDZiOWItZGYwZi00OTcwLWE2OGUtMzY4NzAzMzcwNzdl LzEvcHExZWNBRV9UZmhGWDZCc2stWUFFc0taYzlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqTtmIzSk FoLroFbpFlU7FRmVMULrAG1KFLqDQsp0YEktQdxdmuqQ468fAsKpBQ6JGuAxhjqa TWuLQq54rcve8nfsa12X24/P0iJAfUMrmn+avC4Bdtuo5FUsHerV8Btp/W/vw+GH xBWAJDrwZN4IjnWrqB2eNKun4vMLB7fYm7aoEDRlVImY+YvEpgILUiREgjErYF4d cmRiBDj+U5DXw2DyCWSf5ew0ojGxl36wUPemiJBjCE4QfZgL8r7b8f+t64Mh/Owf BeRrZxCAk8jImEsvEYLjnTMq+NbDdL9m9yiA7kxrsB1odjzWbAPimXzqzzvHZw7B 2fe1yAZhxi+huQ== -----END CERTIFICATE-----Generated at Sun Dec 7 04:57:24 2025 by rpki-client