This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft File: QyB1WWVFCTwGpvz4-rV7GS53kKo.mft (raw, json) Hash identifier: YJPEVtcuGld+PE9opapEKUG255R+Shogf6yZWsrS+8Q= Subject key identifier: E8:8A:C4:D5:BB:8E:B1:50:11:D4:02:8D:25:81:96:0B:C7:DF:BB:9E Authority key identifier: 43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA Certificate issuer: /CN=432075596545093c06a6fcf8fab57b192e7790aa Certificate serial: 019B3CECA78F080EB1D3773EE0AC854E33DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft Manifest number: 1789 Signing time: Sat 20 Dec 2025 18:01:40 +0000 Manifest this update: Sat 20 Dec 2025 18:01:40 +0000 Manifest next update: Sun 21 Dec 2025 18:01:40 +0000 Files and hashes: 1: QyB1WWVFCTwGpvz4-rV7GS53kKo.crl (hash: BUIvqkbj2ALS2xO/pfztmG5Up4lmATLRZkPIt8Y8BUg=) 2: Y6QTaw-FjofB_OhkxIXlcm9P4-I.roa (hash: 4Yb+dRFpkkMPfeWzASwoM5NrRtcERhjg7Yl8jCZxXRE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:ec:a7:8f:08:0e:b1:d3:77:3e:e0:ac:85:4e:33:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432075596545093c06a6fcf8fab57b192e7790aa Validity Not Before: Dec 20 18:01:40 2025 GMT Not After : Dec 21 18:01:40 2025 GMT Subject: CN=e88ac4d5bb8eb15011d4028d2581960bc7dfbb9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:26:70:9f:67:04:4b:65:2e:3d:8a:3e:13:82: fd:46:cb:80:48:d6:01:14:c8:28:0a:17:ba:a0:7f: f8:bc:76:e5:be:15:b6:16:89:21:97:b5:bd:c6:1b: 12:4c:69:0e:bb:d7:65:bc:46:3e:c6:5e:b6:6b:9c: 08:25:39:7c:38:0e:32:72:15:5c:e6:2e:cc:01:95: 41:55:dd:65:0f:20:16:83:52:c4:e9:44:d3:4a:f6: 6b:6b:0f:64:f2:6a:8e:38:84:29:86:d8:ad:17:15: fe:83:95:05:3b:67:10:c8:27:67:4f:be:07:54:fa: b6:1c:75:5d:d8:dc:40:99:4c:aa:a5:40:f6:58:13: 0b:6c:80:67:65:93:0c:89:e4:70:ea:90:96:7f:2d: 61:90:e7:fb:97:9e:ff:a3:3c:d2:f1:9d:8c:57:e3: f0:c8:8c:74:da:8c:6e:00:38:2d:b2:3e:73:cb:ce: 59:bf:89:1d:5b:29:cb:21:d4:fb:14:a0:c1:8e:be: 9c:92:06:05:9a:40:94:0f:47:51:01:df:ae:cf:7b: 97:cc:65:aa:8a:dd:90:3a:7c:d7:9c:c7:ca:4d:f4: f4:3b:5e:a5:a6:1b:e6:5a:89:f3:0b:94:d6:e6:0d: b1:50:23:58:1a:e8:0c:1a:e3:ec:60:41:06:87:78: 30:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:8A:C4:D5:BB:8E:B1:50:11:D4:02:8D:25:81:96:0B:C7:DF:BB:9E X509v3 Authority Key Identifier: keyid:43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:71:03:20:c3:b6:c3:ba:43:ba:3d:b7:df:9a:96:5e:3e:7c: 51:98:7a:76:d9:b8:54:c0:da:07:83:e9:44:25:a1:76:bd:77: 82:49:e9:4c:ac:2d:9d:db:ff:48:32:c6:68:fa:ba:64:65:00: ea:22:f9:d9:1b:73:b5:53:49:04:3d:a2:98:c6:c2:bc:75:05: 79:b5:83:f9:12:c2:f1:dc:24:cf:50:60:11:2d:3f:97:70:45: e2:28:dc:a7:1a:e2:ce:b0:36:1b:32:f7:91:44:6e:1a:8b:e5: 90:6a:13:d4:b8:54:80:cc:62:78:c9:9e:0c:d7:0e:b6:35:06: 92:a2:17:a0:8c:4b:6f:dc:dd:5b:c7:06:6e:47:73:a1:ed:5f: 55:d2:e2:24:7a:e5:75:b9:cd:9b:8f:a4:5f:88:8d:7b:8b:96: 4e:57:46:19:1e:26:f8:09:c5:0e:f0:66:af:65:85:0b:9b:bd: e5:a0:cd:3f:d0:58:d7:65:cb:e2:14:96:0d:0d:b8:de:f0:d9: bb:79:56:df:94:9f:54:19:17:2e:ad:6b:b3:fa:2d:32:b2:59: 1f:e8:83:62:d4:b7:26:a9:bf:ff:f6:09:d6:89:77:93:99:7e: a6:ec:6f:7c:d7:f8:9c:fa:3c:2d:ba:37:fe:de:78:7c:3a:9f: b1:77:24:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs87KePCA6x03c+4KyFTjPaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzMjA3NTU5NjU0NTA5M2MwNmE2ZmNmOGZhYjU3YjE5MmU3 NzkwYWEwHhcNMjUxMjIwMTgwMTQwWhcNMjUxMjIxMTgwMTQwWjAzMTEwLwYDVQQD EyhlODhhYzRkNWJiOGViMTUwMTFkNDAyOGQyNTgxOTYwYmM3ZGZiYjllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqCZwn2cES2UuPYo+E4L9RsuASNYB FMgoChe6oH/4vHblvhW2Fokhl7W9xhsSTGkOu9dlvEY+xl62a5wIJTl8OA4ychVc 5i7MAZVBVd1lDyAWg1LE6UTTSvZraw9k8mqOOIQphtitFxX+g5UFO2cQyCdnT74H VPq2HHVd2NxAmUyqpUD2WBMLbIBnZZMMieRw6pCWfy1hkOf7l57/ozzS8Z2MV+Pw yIx02oxuADgtsj5zy85Zv4kdWynLIdT7FKDBjr6ckgYFmkCUD0dRAd+uz3uXzGWq it2QOnzXnMfKTfT0O16lphvmWonzC5TW5g2xUCNYGugMGuPsYEEGh3gwRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOiKxNW7jrFQEdQCjSWBlgvH37ueMB8GA1UdIwQY MBaAFEMgdVllRQk8Bqb8+Pq1exkud5CqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXlCMVdXVkZDVHdHcHZ6NC1yVjdHUzUza0tvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9iZGEyNDUtNTc2Yi00OTQwLWE5ZjUt OTI3OThkYWNhZjc1LzEvUXlCMVdXVkZDVHdHcHZ6NC1yVjdHUzUza0tvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC9iZGEyNDUtNTc2Yi00OTQwLWE5ZjUtOTI3OThkYWNhZjc1 LzEvUXlCMVdXVkZDVHdHcHZ6NC1yVjdHUzUza0tvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvHEDIMO2 w7pDuj2335qWXj58UZh6dtm4VMDaB4PpRCWhdr13gknpTKwtndv/SDLGaPq6ZGUA 6iL52RtztVNJBD2imMbCvHUFebWD+RLC8dwkz1BgES0/l3BF4ijcpxrizrA2GzL3 kURuGovlkGoT1LhUgMxieMmeDNcOtjUGkqIXoIxLb9zdW8cGbkdzoe1fVdLiJHrl dbnNm4+kX4iNe4uWTldGGR4m+AnFDvBmr2WFC5u95aDNP9BY12XL4hSWDQ243vDZ u3lW35SfVBkXLq1rs/otMrJZH+iDYtS3Jqm///YJ1ol3k5l+puxvfNf4nPo8Lbo3 /t54fDqfsXckYw== -----END CERTIFICATE-----Generated at Sat Dec 20 20:31:40 2025 by rpki-client