This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft File: tQALgentSypwKh71-FLg52nuEOI.mft (raw, json) Hash identifier: MwHMqboDxNkX2qgZPHQFsF/EGRBKSvPtlWr7P9R66Cs= Subject key identifier: F1:6E:7F:80:11:C6:44:C7:EC:84:50:32:5E:B3:10:9C:E9:69:AC:E0 Authority key identifier: B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2 Certificate issuer: /CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2 Certificate serial: 019AF50B6178BFCD7044D1B976CD94AA7537 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft Manifest number: 1001 Signing time: Sat 06 Dec 2025 19:02:34 +0000 Manifest this update: Sat 06 Dec 2025 19:02:34 +0000 Manifest next update: Sun 07 Dec 2025 19:02:34 +0000 Files and hashes: 1: AoPTcwy6H2m6XsU7z7Y2AN7ROE0.roa (hash: EkcAF/FP1ByxQSttbvF051kXzqctUYj/EMjpBXkG1v8=) 2: tQALgentSypwKh71-FLg52nuEOI.crl (hash: w/pQvcIEZOAhAyXpBb2TepT/90seLCnqKglvctR1I0U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:02:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:61:78:bf:cd:70:44:d1:b9:76:cd:94:aa:75:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5000b81e9ed4b2a702a1ef5f852e0e769ee10e2 Validity Not Before: Dec 6 19:02:34 2025 GMT Not After : Dec 7 19:02:34 2025 GMT Subject: CN=f16e7f8011c644c7ec8450325eb3109ce969ace0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e0:90:5f:e2:e5:8a:63:77:37:c7:b9:09:d3: b5:f8:07:00:b7:03:52:78:14:5b:54:35:93:35:ec: 6c:72:4c:58:66:a6:ad:a5:ab:e9:4d:f9:f2:41:f5: d4:f1:10:13:b3:b7:a5:5c:87:07:5b:6d:27:ce:1c: 07:08:70:c7:b6:c2:a9:ce:9f:c2:90:90:7c:a0:d6: b1:11:ca:0a:f6:1c:9f:bd:28:e3:5d:f1:81:bc:1a: 92:55:88:93:19:7e:a8:6b:ce:9c:fb:bc:82:92:5d: d8:1a:56:31:95:52:88:40:30:43:f9:60:bf:ad:d6: 24:87:c8:b8:39:bc:a3:ad:dd:aa:82:39:5e:ac:42: cd:e5:75:ec:df:f7:c4:a3:59:ff:0a:9e:b9:9b:c8: 47:48:48:e9:d8:4c:17:b1:a7:82:87:8e:ee:df:d3: af:0a:05:af:cb:c2:62:11:f8:3e:50:84:45:26:aa: 39:fc:80:74:da:26:b7:9f:03:71:61:2c:58:9c:bc: 26:f3:7d:aa:29:c9:9b:b4:31:c4:63:44:84:f6:0c: 26:c7:14:7c:9a:f9:74:41:60:a3:2d:27:2d:b8:2f: 14:f5:32:e6:6c:68:73:fa:71:78:48:02:32:42:51: 0e:de:d6:d2:01:6a:fa:20:4f:27:8a:c9:1f:25:cd: 5b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6E:7F:80:11:C6:44:C7:EC:84:50:32:5E:B3:10:9C:E9:69:AC:E0 X509v3 Authority Key Identifier: keyid:B5:00:0B:81:E9:ED:4B:2A:70:2A:1E:F5:F8:52:E0:E7:69:EE:10:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tQALgentSypwKh71-FLg52nuEOI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0df7f3-a492-4d6f-b36f-d41e03592335/1/tQALgentSypwKh71-FLg52nuEOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:92:03:91:d9:97:10:0d:0d:df:86:1f:1a:cc:66:ac:1c:db: d0:f1:82:e1:e2:89:84:ee:17:bc:af:10:45:7c:fe:60:d7:96: 53:5b:79:35:04:19:5d:24:a3:97:31:d6:b2:b8:cf:1c:51:14: a8:c9:42:8a:cd:c8:b8:38:39:fe:2a:cf:16:ee:97:6e:64:3a: d6:44:d4:e2:23:32:4b:c0:56:75:a6:b0:fe:df:2b:b3:e4:0c: b5:12:53:c1:2b:37:46:45:22:6e:3c:9c:be:a2:e6:29:0b:1f: 8f:a0:88:07:f3:43:a3:16:03:be:3a:44:a1:7f:4b:75:4c:b2: e9:e1:32:ce:f1:da:70:f9:a9:37:25:a1:40:56:fa:1c:bb:76: 45:cb:66:96:75:d8:7a:d8:56:8a:98:00:21:5c:91:53:2b:ee: 10:78:b9:cd:1f:24:c4:73:b7:0c:a4:9b:12:28:0e:c5:06:56: b6:83:fb:8c:54:84:36:90:d1:2d:04:13:e4:e9:5e:5c:9d:14: fe:aa:7c:ba:3b:9b:22:e9:27:36:db:da:bb:45:86:10:8f:ed: dd:be:8a:37:f3:ce:9a:43:39:96:f6:97:34:76:45:e2:4c:2f: cc:ae:a7:fb:48:58:1d:c3:6b:36:9c:7a:7d:5d:29:8b:a1:f8: f3:5b:27:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1C2F4v81wRNG5ds2UqnU3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1MDAwYjgxZTllZDRiMmE3MDJhMWVmNWY4NTJlMGU3Njll ZTEwZTIwHhcNMjUxMjA2MTkwMjM0WhcNMjUxMjA3MTkwMjM0WjAzMTEwLwYDVQQD EyhmMTZlN2Y4MDExYzY0NGM3ZWM4NDUwMzI1ZWIzMTA5Y2U5NjlhY2UwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuCQX+LlimN3N8e5CdO1+AcAtwNS eBRbVDWTNexsckxYZqatpavpTfnyQfXU8RATs7elXIcHW20nzhwHCHDHtsKpzp/C kJB8oNaxEcoK9hyfvSjjXfGBvBqSVYiTGX6oa86c+7yCkl3YGlYxlVKIQDBD+WC/ rdYkh8i4Obyjrd2qgjlerELN5XXs3/fEo1n/Cp65m8hHSEjp2EwXsaeCh47u39Ov CgWvy8JiEfg+UIRFJqo5/IB02ia3nwNxYSxYnLwm832qKcmbtDHEY0SE9gwmxxR8 mvl0QWCjLSctuC8U9TLmbGhz+nF4SAIyQlEO3tbSAWr6IE8niskfJc1biwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPFuf4ARxkTH7IRQMl6zEJzpaazgMB8GA1UdIwQY MBaAFLUAC4Hp7UsqcCoe9fhS4Odp7hDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8wZGY3ZjMtYTQ5Mi00ZDZmLWIzNmYt ZDQxZTAzNTkyMzM1LzEvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS8wZGY3ZjMtYTQ5Mi00ZDZmLWIzNmYtZDQxZTAzNTkyMzM1 LzEvdFFBTGdlbnRTeXB3S2g3MS1GTGc1Mm51RU9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjJIDkdmX EA0N34YfGsxmrBzb0PGC4eKJhO4XvK8QRXz+YNeWU1t5NQQZXSSjlzHWsrjPHFEU qMlCis3IuDg5/irPFu6XbmQ61kTU4iMyS8BWdaaw/t8rs+QMtRJTwSs3RkUibjyc vqLmKQsfj6CIB/NDoxYDvjpEoX9LdUyy6eEyzvHacPmpNyWhQFb6HLt2RctmlnXY ethWipgAIVyRUyvuEHi5zR8kxHO3DKSbEigOxQZWtoP7jFSENpDRLQQT5OleXJ0U /qp8ujubIuknNtvau0WGEI/t3b6KN/POmkM5lvaXNHZF4kwvzK6n+0hYHcNrNpx6 fV0pi6H481sncg== -----END CERTIFICATE-----Generated at Sun Dec 7 01:49:33 2025 by rpki-client