This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft File: QyB1WWVFCTwGpvz4-rV7GS53kKo.mft (raw, json) Hash identifier: 6AXMZqn1JbqHWSGzdChxIZlmgU+SgltjJb6HEo2L2lY= Subject key identifier: D4:66:AF:87:CE:C1:A3:FC:2A:BF:2B:C5:80:4D:83:FA:FC:86:0F:01 Authority key identifier: 43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA Certificate issuer: /CN=432075596545093c06a6fcf8fab57b192e7790aa Certificate serial: 019AF389614DFD6E8E4BDE574FBE86651D14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 12:00:58 +0000 Manifest this update: Sat 06 Dec 2025 12:00:58 +0000 Manifest next update: Sun 07 Dec 2025 12:00:58 +0000 Files and hashes: 1: QyB1WWVFCTwGpvz4-rV7GS53kKo.crl (hash: N1KBi+Ob38NoGxs802W65CHgeQ6bwuDIwjWvw30Q42A=) 2: Y6QTaw-FjofB_OhkxIXlcm9P4-I.roa (hash: 4Yb+dRFpkkMPfeWzASwoM5NrRtcERhjg7Yl8jCZxXRE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:61:4d:fd:6e:8e:4b:de:57:4f:be:86:65:1d:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432075596545093c06a6fcf8fab57b192e7790aa Validity Not Before: Dec 6 12:00:58 2025 GMT Not After : Dec 7 12:00:58 2025 GMT Subject: CN=d466af87cec1a3fc2abf2bc5804d83fafc860f01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4b:5d:af:47:c9:d9:b5:55:f4:c5:09:34:5f: 33:15:db:97:45:dc:5b:0d:a5:17:6d:5f:b4:fd:e1: d0:23:50:8a:b5:f1:4d:fd:fb:42:0f:4b:a3:bf:91: e5:01:11:0b:29:a9:76:e6:d9:d7:62:4f:4f:e5:d4: 28:87:5d:77:8f:fe:41:85:f2:c3:79:96:9b:38:2e: f2:78:7b:23:89:95:8f:6e:2b:06:25:17:f7:cb:c7: d9:3d:f7:63:c2:91:6a:d0:e1:aa:3f:fb:04:9a:05: 32:ac:5a:88:e6:fc:5e:4b:29:c7:93:ef:0a:3f:ea: 91:f2:d4:1f:e9:32:ac:bf:da:61:f4:31:7c:cf:92: a8:8a:1c:b1:b0:a9:a4:1b:04:08:b0:ac:7c:bc:d5: 70:94:fb:d2:a2:5b:ab:72:84:13:0c:60:ca:fa:b8: ba:4b:f7:15:15:8f:9c:35:af:0a:f8:8b:7d:fe:6e: a1:fc:d1:14:91:f5:19:4a:3d:36:4c:3c:81:67:31: 1c:ce:50:f8:b4:39:5d:1d:a3:ce:3e:a6:3a:da:05: b4:35:5b:36:51:27:2a:4d:75:76:27:b7:14:cb:00: 2d:b3:66:60:61:57:91:eb:4d:d1:d3:b8:0e:29:9a: eb:66:e9:fc:67:32:b3:db:ac:97:62:f7:67:17:73: dd:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:66:AF:87:CE:C1:A3:FC:2A:BF:2B:C5:80:4D:83:FA:FC:86:0F:01 X509v3 Authority Key Identifier: keyid:43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ba:7d:b4:21:47:77:16:a2:e0:8d:09:b4:53:f7:03:7a:08:04: be:63:a0:4b:c0:99:23:5d:e6:55:b3:47:e6:cb:c2:12:4c:4f: f2:c5:30:9e:2f:de:57:16:8c:ae:13:25:d8:06:42:98:43:eb: 3a:dc:88:07:3e:48:99:76:5a:4b:8f:e3:00:b3:2a:3b:37:8f: 34:96:4d:68:f0:73:9e:0f:ee:ef:ea:a4:55:1b:e2:54:fb:5e: a7:e7:da:9c:ab:b8:73:75:eb:a9:96:9d:93:0d:23:51:ef:3d: 83:5a:88:38:1d:36:fa:69:84:f2:be:cb:3c:b9:e3:a7:03:a1: 41:b4:85:a0:33:9b:9d:29:36:76:0a:11:0a:5c:0b:0d:4f:1d: ea:24:d2:92:ae:0b:e7:b3:9c:6f:65:ac:de:f5:53:a9:ce:f1: 45:9d:28:4a:d7:16:a7:47:13:8c:ab:ff:c4:76:7e:51:50:3c: 75:9e:b5:6b:de:05:f1:54:d8:e0:b0:a5:55:49:eb:d4:83:00: ca:6a:a4:96:f2:4f:4b:de:e8:6b:7d:b0:4e:74:80:69:b6:f9: 2a:18:b9:f3:43:71:85:21:2e:27:99:c4:e8:3b:f3:e7:13:41: 91:91:ca:a1:ca:bf:93:a1:91:af:1d:36:65:08:88:40:9e:b6: 23:79:93:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziWFN/W6OS95XT76GZR0UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzMjA3NTU5NjU0NTA5M2MwNmE2ZmNmOGZhYjU3YjE5MmU3 NzkwYWEwHhcNMjUxMjA2MTIwMDU4WhcNMjUxMjA3MTIwMDU4WjAzMTEwLwYDVQQD EyhkNDY2YWY4N2NlYzFhM2ZjMmFiZjJiYzU4MDRkODNmYWZjODYwZjAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEtdr0fJ2bVV9MUJNF8zFduXRdxb DaUXbV+0/eHQI1CKtfFN/ftCD0ujv5HlARELKal25tnXYk9P5dQoh113j/5BhfLD eZabOC7yeHsjiZWPbisGJRf3y8fZPfdjwpFq0OGqP/sEmgUyrFqI5vxeSynHk+8K P+qR8tQf6TKsv9ph9DF8z5KoihyxsKmkGwQIsKx8vNVwlPvSolurcoQTDGDK+ri6 S/cVFY+cNa8K+It9/m6h/NEUkfUZSj02TDyBZzEczlD4tDldHaPOPqY62gW0NVs2 UScqTXV2J7cUywAts2ZgYVeR603R07gOKZrrZun8ZzKz26yXYvdnF3PdgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNRmr4fOwaP8Kr8rxYBNg/r8hg8BMB8GA1UdIwQY MBaAFEMgdVllRQk8Bqb8+Pq1exkud5CqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXlCMVdXVkZDVHdHcHZ6NC1yVjdHUzUza0tvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9iZGEyNDUtNTc2Yi00OTQwLWE5ZjUt OTI3OThkYWNhZjc1LzEvUXlCMVdXVkZDVHdHcHZ6NC1yVjdHUzUza0tvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC9iZGEyNDUtNTc2Yi00OTQwLWE5ZjUtOTI3OThkYWNhZjc1 LzEvUXlCMVdXVkZDVHdHcHZ6NC1yVjdHUzUza0tvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAun20IUd3 FqLgjQm0U/cDeggEvmOgS8CZI13mVbNH5svCEkxP8sUwni/eVxaMrhMl2AZCmEPr OtyIBz5ImXZaS4/jALMqOzePNJZNaPBzng/u7+qkVRviVPtep+fanKu4c3XrqZad kw0jUe89g1qIOB02+mmE8r7LPLnjpwOhQbSFoDObnSk2dgoRClwLDU8d6iTSkq4L 57Ocb2Ws3vVTqc7xRZ0oStcWp0cTjKv/xHZ+UVA8dZ61a94F8VTY4LClVUnr1IMA ymqklvJPS97oa32wTnSAabb5Khi580NxhSEuJ5nE6Dvz5xNBkZHKocq/k6GRrx02 ZQiIQJ62I3mTlg== -----END CERTIFICATE-----Generated at Sat Dec 6 21:05:19 2025 by rpki-client