This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/a303fd-36a6-438d-96da-183a47a45b2a/1/qCYCgPNU92LV7fNMisgW4cIHG1k.mft File: qCYCgPNU92LV7fNMisgW4cIHG1k.mft (raw, json) Hash identifier: MWft3Fh/Sj1YhKUKf/HOmhok5PhtKCzgRpQ23U0+sCU= Subject key identifier: B3:CC:5F:95:01:EF:72:C3:D1:01:6E:05:FD:9F:BF:32:11:0E:8B:D6 Authority key identifier: A8:26:02:80:F3:54:F7:62:D5:ED:F3:4C:8A:C8:16:E1:C2:07:1B:59 Certificate issuer: /CN=a8260280f354f762d5edf34c8ac816e1c2071b59 Certificate serial: 019AF5E5873E8F81104973A7193C86869C1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qCYCgPNU92LV7fNMisgW4cIHG1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/a303fd-36a6-438d-96da-183a47a45b2a/1/qCYCgPNU92LV7fNMisgW4cIHG1k.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 23:00:51 +0000 Manifest this update: Sat 06 Dec 2025 23:00:51 +0000 Manifest next update: Sun 07 Dec 2025 23:00:51 +0000 Files and hashes: 1: qCYCgPNU92LV7fNMisgW4cIHG1k.crl (hash: CyT1CGHtPW71iVSWwBVaVOmv9R6ZXWujkcVpw/Vy6uU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/a303fd-36a6-438d-96da-183a47a45b2a/1/qCYCgPNU92LV7fNMisgW4cIHG1k.crl rsync://rpki.ripe.net/repository/DEFAULT/90/a303fd-36a6-438d-96da-183a47a45b2a/1/qCYCgPNU92LV7fNMisgW4cIHG1k.mft rsync://rpki.ripe.net/repository/DEFAULT/qCYCgPNU92LV7fNMisgW4cIHG1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e5:87:3e:8f:81:10:49:73:a7:19:3c:86:86:9c:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a8260280f354f762d5edf34c8ac816e1c2071b59 Validity Not Before: Dec 6 23:00:51 2025 GMT Not After : Dec 7 23:00:51 2025 GMT Subject: CN=b3cc5f9501ef72c3d1016e05fd9fbf32110e8bd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:69:e3:d7:6a:78:84:83:1c:7a:43:ca:28:ff: 9f:4e:05:bf:e4:ad:dd:7d:6c:24:67:47:dd:ca:4c: 4d:a1:23:19:10:26:fd:c6:4b:df:f5:15:97:e0:a1: 9b:e0:f4:a9:1f:c9:d9:35:3f:b9:44:7b:30:0f:45: 45:63:e5:fb:01:97:5a:20:48:86:01:12:29:90:36: 78:d3:76:e8:e0:1e:a2:50:34:ed:90:21:b7:0f:b8: 18:7e:16:52:cd:a2:9e:8e:76:db:1d:17:ba:14:02: f4:9f:dd:97:ba:06:24:3f:67:90:94:6e:a7:f5:4e: 4e:93:96:a1:87:e7:c1:7e:f3:c4:4a:53:df:c4:6c: 34:82:77:d2:56:61:4a:cc:2c:84:bb:87:b8:65:ab: 45:f3:47:56:33:67:51:77:00:01:38:d0:c7:3a:62: cf:6e:1f:e3:8f:f6:1d:43:0b:b3:4c:ac:fa:d3:cf: cb:c9:a5:96:a1:f6:2e:9b:8f:c5:0e:22:22:33:92: 1b:e0:02:f6:8d:af:de:07:81:2b:2f:db:63:cb:1f: 9c:70:87:71:92:80:67:5a:b8:94:6b:c3:0f:e7:20: 4b:d4:bc:d7:12:0d:06:7a:b3:8d:22:9a:7e:0d:58: 3d:6d:1e:f4:27:d7:69:0f:c0:f4:5d:8c:ac:3e:a9: 30:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:CC:5F:95:01:EF:72:C3:D1:01:6E:05:FD:9F:BF:32:11:0E:8B:D6 X509v3 Authority Key Identifier: keyid:A8:26:02:80:F3:54:F7:62:D5:ED:F3:4C:8A:C8:16:E1:C2:07:1B:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qCYCgPNU92LV7fNMisgW4cIHG1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/a303fd-36a6-438d-96da-183a47a45b2a/1/qCYCgPNU92LV7fNMisgW4cIHG1k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/a303fd-36a6-438d-96da-183a47a45b2a/1/qCYCgPNU92LV7fNMisgW4cIHG1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:b7:e1:36:34:8c:9e:34:78:11:49:5a:d0:b8:b1:57:2b:c9: 9b:23:08:9b:64:57:76:03:e7:ee:15:ff:db:12:84:f9:df:aa: 6d:84:65:86:77:ac:5f:39:35:78:5f:9d:81:6e:9b:34:cc:38: a3:ec:3e:56:2e:7e:ce:65:c2:9c:52:a6:46:43:9f:98:ed:5e: 84:23:fe:f8:a8:e1:c6:84:f1:a6:20:b9:db:46:81:63:b6:82: 9a:6d:10:18:59:9c:e4:49:fc:85:cd:6a:c3:1d:df:a6:e7:03: ed:68:34:7d:b4:2a:69:88:ed:b9:51:33:c1:82:2a:02:69:23: 36:10:70:f9:f5:5a:5c:37:98:65:d4:20:2a:88:dc:c6:72:92: 74:0b:db:7f:1b:44:c6:c6:eb:38:22:3b:82:3d:c7:9d:cb:b1: ba:13:1f:ed:51:0d:f4:ed:ef:0b:c7:aa:18:e6:8b:d2:d8:3f: 21:54:44:08:48:24:5b:00:21:31:2c:e7:8d:45:41:f4:ac:cd: 7e:51:37:c2:23:7e:74:f1:19:99:62:be:65:87:92:ee:4a:ea: 89:db:d6:00:33:35:4e:21:0f:c5:b9:66:2f:e4:96:14:9e:20: 87:fe:b6:28:37:89:c7:d2:62:2f:57:96:9d:e5:cc:85:b0:4e: e9:c5:7a:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15Yc+j4EQSXOnGTyGhpwdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4MjYwMjgwZjM1NGY3NjJkNWVkZjM0YzhhYzgxNmUxYzIw NzFiNTkwHhcNMjUxMjA2MjMwMDUxWhcNMjUxMjA3MjMwMDUxWjAzMTEwLwYDVQQD EyhiM2NjNWY5NTAxZWY3MmMzZDEwMTZlMDVmZDlmYmYzMjExMGU4YmQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA32nj12p4hIMcekPKKP+fTgW/5K3d fWwkZ0fdykxNoSMZECb9xkvf9RWX4KGb4PSpH8nZNT+5RHswD0VFY+X7AZdaIEiG ARIpkDZ403bo4B6iUDTtkCG3D7gYfhZSzaKejnbbHRe6FAL0n92XugYkP2eQlG6n 9U5Ok5ahh+fBfvPESlPfxGw0gnfSVmFKzCyEu4e4ZatF80dWM2dRdwABONDHOmLP bh/jj/YdQwuzTKz608/LyaWWofYum4/FDiIiM5Ib4AL2ja/eB4ErL9tjyx+ccIdx koBnWriUa8MP5yBL1LzXEg0GerONIpp+DVg9bR70J9dpD8D0XYysPqkwnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLPMX5UB73LD0QFuBf2fvzIRDovWMB8GA1UdIwQY MBaAFKgmAoDzVPdi1e3zTIrIFuHCBxtZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUNZQ2dQTlU5MkxWN2ZOTWlzZ1c0Y0lIRzFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9hMzAzZmQtMzZhNi00MzhkLTk2ZGEt MTgzYTQ3YTQ1YjJhLzEvcUNZQ2dQTlU5MkxWN2ZOTWlzZ1c0Y0lIRzFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC9hMzAzZmQtMzZhNi00MzhkLTk2ZGEtMTgzYTQ3YTQ1YjJh LzEvcUNZQ2dQTlU5MkxWN2ZOTWlzZ1c0Y0lIRzFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ7fhNjSM njR4EUla0LixVyvJmyMIm2RXdgPn7hX/2xKE+d+qbYRlhnesXzk1eF+dgW6bNMw4 o+w+Vi5+zmXCnFKmRkOfmO1ehCP++KjhxoTxpiC520aBY7aCmm0QGFmc5En8hc1q wx3fpucD7Wg0fbQqaYjtuVEzwYIqAmkjNhBw+fVaXDeYZdQgKojcxnKSdAvbfxtE xsbrOCI7gj3HncuxuhMf7VEN9O3vC8eqGOaL0tg/IVRECEgkWwAhMSznjUVB9KzN flE3wiN+dPEZmWK+ZYeS7krqidvWADM1TiEPxblmL+SWFJ4gh/62KDeJx9JiL1eW neXMhbBO6cV6Ug== -----END CERTIFICATE-----Generated at Sun Dec 7 05:53:14 2025 by rpki-client