This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft File: QY1UtVsZKiSLhHI026US-XYMq_o.mft (raw, json) Hash identifier: S8ZZpS0uBNHBw6S314ZH6djxyffJ2vwBXjeS/BnQObc= Subject key identifier: 54:DA:4A:D5:C7:B2:41:C5:B6:27:1F:46:0D:80:A6:AA:ED:0A:77:DA Authority key identifier: 41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA Certificate issuer: /CN=418d54b55b192a248b847234dba512f9760cabfa Certificate serial: 019AF0BFA443CD06B9C8AF1EEDBEA096232C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft Manifest number: 0AE5 Signing time: Fri 05 Dec 2025 23:01:22 +0000 Manifest this update: Fri 05 Dec 2025 23:01:22 +0000 Manifest next update: Sat 06 Dec 2025 23:01:22 +0000 Files and hashes: 1: PTvQgS1qnjLwo9s4LdFb_Ohs-14.roa (hash: ISrdGe09G63GrIhvFHUR6KGbQ/gtnJbbuoeTtm56a1E=) 2: QY1UtVsZKiSLhHI026US-XYMq_o.crl (hash: xG/f9Q2vV9Tr+BXfF9RgXIy3SffdSVIq7ZgYSy6qV1Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:a4:43:cd:06:b9:c8:af:1e:ed:be:a0:96:23:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=418d54b55b192a248b847234dba512f9760cabfa Validity Not Before: Dec 5 23:01:22 2025 GMT Not After : Dec 6 23:01:22 2025 GMT Subject: CN=54da4ad5c7b241c5b6271f460d80a6aaed0a77da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:73:ff:b3:2a:8a:75:77:0b:b5:9f:bf:0d:33: 65:2c:e1:75:82:7d:70:5a:d0:32:4b:7d:53:f9:b1: 93:3a:cc:34:61:25:c8:e2:0b:06:29:b4:97:4b:ad: 3c:9a:a9:ff:e4:a4:66:08:b4:52:0c:e7:cd:99:7c: 9d:07:02:31:76:df:a7:c4:80:9e:30:b6:fd:b5:f7: 2c:fc:7a:54:10:2d:45:24:ed:8e:c9:ce:95:1d:c1: 85:1a:9b:61:2d:70:be:4a:36:03:44:c7:86:3f:e7: 6b:84:c4:0f:f0:ae:ea:3f:3b:bd:1c:84:3e:46:48: ff:99:64:02:5b:37:e5:0f:71:12:12:3a:30:36:66: 59:0b:1b:07:b5:a5:d9:94:68:3c:f0:a0:db:f6:0f: d4:cd:cf:33:05:4e:fa:11:44:ed:62:4b:53:55:f8: c6:bc:f2:dc:96:d4:7e:75:e2:2c:5e:09:e6:ee:dc: ce:4a:ff:4c:8f:4f:26:1e:67:b3:b7:e0:11:07:23: db:66:4c:99:f2:8a:9d:cf:6e:77:cb:9b:b5:2b:77: 91:bf:5a:fa:2f:f4:02:1c:2e:a9:36:9e:d7:17:75: 63:2f:30:36:32:98:dd:5d:28:a3:78:b6:32:53:92: 56:f2:35:35:54:cf:67:8a:a3:85:ad:97:ed:93:4a: a0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:DA:4A:D5:C7:B2:41:C5:B6:27:1F:46:0D:80:A6:AA:ED:0A:77:DA X509v3 Authority Key Identifier: keyid:41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:f0:23:4c:04:78:a2:73:e6:f7:71:57:eb:ba:9d:e2:50:5d: 73:3a:e9:b0:27:98:36:be:ff:08:58:f0:5b:37:0c:e2:b9:98: a3:93:86:c5:02:51:e7:8c:8e:28:1c:c3:d3:01:1e:bf:f7:e9: 03:d2:fc:a0:fe:41:3a:38:a8:ba:d7:74:97:1c:31:16:cd:1c: 6f:39:c5:9f:e4:70:28:d0:8c:d9:e6:8b:8a:7b:f8:12:7f:80: 5e:92:f5:55:87:bb:0d:b5:a0:ce:93:48:cf:43:71:f5:df:ce: 80:9d:54:ba:e9:50:71:c0:d5:44:e7:88:6e:c4:fb:bb:20:c1: c6:35:15:7a:dd:da:e0:10:62:95:68:9a:40:11:6e:fc:d2:cf: 4b:8e:bc:b3:5f:0a:06:0c:71:39:6b:b6:90:8f:ae:28:ec:f2: fe:ad:d4:ea:10:6e:30:62:c6:e2:2d:a0:c0:5e:63:7b:69:f1: b2:1d:ae:87:99:35:7a:31:60:aa:77:2d:92:58:ac:d8:ce:f5: d1:fa:8d:4d:71:54:dd:5d:66:fa:45:1b:bb:ed:12:8a:3a:52: 30:60:91:33:91:ad:a7:ba:b1:dc:1a:a1:32:5f:ad:06:d1:99: 73:f7:85:66:67:1b:9b:2d:82:1d:11:c0:a9:cc:9a:ee:2a:57: 17:b9:a9:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwv6RDzQa5yK8e7b6gliMsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxOGQ1NGI1NWIxOTJhMjQ4Yjg0NzIzNGRiYTUxMmY5NzYw Y2FiZmEwHhcNMjUxMjA1MjMwMTIyWhcNMjUxMjA2MjMwMTIyWjAzMTEwLwYDVQQD Eyg1NGRhNGFkNWM3YjI0MWM1YjYyNzFmNDYwZDgwYTZhYWVkMGE3N2RhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3P/syqKdXcLtZ+/DTNlLOF1gn1w WtAyS31T+bGTOsw0YSXI4gsGKbSXS608mqn/5KRmCLRSDOfNmXydBwIxdt+nxICe MLb9tfcs/HpUEC1FJO2Oyc6VHcGFGpthLXC+SjYDRMeGP+drhMQP8K7qPzu9HIQ+ Rkj/mWQCWzflD3ESEjowNmZZCxsHtaXZlGg88KDb9g/Uzc8zBU76EUTtYktTVfjG vPLcltR+deIsXgnm7tzOSv9Mj08mHmezt+ARByPbZkyZ8oqdz253y5u1K3eRv1r6 L/QCHC6pNp7XF3VjLzA2MpjdXSijeLYyU5JW8jU1VM9niqOFrZftk0qgFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFTaStXHskHFticfRg2ApqrtCnfaMB8GA1UdIwQY MBaAFEGNVLVbGSoki4RyNNulEvl2DKv6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVkxVXRWc1pLaVNMaEhJMDI2VVMtWFlNcV9vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9iNDM4NTctMDIxYy00MjYyLWIxODMt MWQ3N2NmMmE3MTAwLzEvUVkxVXRWc1pLaVNMaEhJMDI2VVMtWFlNcV9vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS9iNDM4NTctMDIxYy00MjYyLWIxODMtMWQ3N2NmMmE3MTAw LzEvUVkxVXRWc1pLaVNMaEhJMDI2VVMtWFlNcV9vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAufAjTAR4 onPm93FX67qd4lBdczrpsCeYNr7/CFjwWzcM4rmYo5OGxQJR54yOKBzD0wEev/fp A9L8oP5BOjioutd0lxwxFs0cbznFn+RwKNCM2eaLinv4En+AXpL1VYe7DbWgzpNI z0Nx9d/OgJ1UuulQccDVROeIbsT7uyDBxjUVet3a4BBilWiaQBFu/NLPS468s18K BgxxOWu2kI+uKOzy/q3U6hBuMGLG4i2gwF5je2nxsh2uh5k1ejFgqnctklis2M71 0fqNTXFU3V1m+kUbu+0SijpSMGCRM5Gtp7qx3BqhMl+tBtGZc/eFZmcbmy2CHRHA qcya7ipXF7mpoQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:03:05 2025 by rpki-client