This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft File: Q2TnsO7yBINcffKon2DAK-HYmt0.mft (raw, json) Hash identifier: 4OS3Qqd33hTJx0ayA3NB/voU/ekkiiNM3IEorwd9+zc= Subject key identifier: 30:87:65:F1:EC:92:15:32:DA:36:52:D3:15:A8:46:94:D7:2C:FD:77 Authority key identifier: 43:64:E7:B0:EE:F2:04:83:5C:7D:F2:A8:9F:60:C0:2B:E1:D8:9A:DD Certificate issuer: /CN=4364e7b0eef204835c7df2a89f60c02be1d89add Certificate serial: 019AF23FA8FE8B454B863DBEAA0A9FAFC216 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft Manifest number: 01A0 Signing time: Sat 06 Dec 2025 06:00:49 +0000 Manifest this update: Sat 06 Dec 2025 06:00:49 +0000 Manifest next update: Sun 07 Dec 2025 06:00:49 +0000 Files and hashes: 1: 4Lqe88CYtrJZ1_QwsLbbBZVtRAc.roa (hash: 4DmhBXf2oC0XIM1RLi3zAk7AYqn+M5oHIj926WSgGgs=) 2: Q2TnsO7yBINcffKon2DAK-HYmt0.crl (hash: XaaTv0JGOxQwl0imGXS4ojRZ7FR0puU28WXYOvFDpio=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:a8:fe:8b:45:4b:86:3d:be:aa:0a:9f:af:c2:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4364e7b0eef204835c7df2a89f60c02be1d89add Validity Not Before: Dec 6 06:00:49 2025 GMT Not After : Dec 7 06:00:49 2025 GMT Subject: CN=308765f1ec921532da3652d315a84694d72cfd77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b0:48:5a:2a:c2:cf:43:34:84:c5:ab:67:ed: 7c:f1:d0:16:9e:df:23:53:bf:eb:ed:81:17:b4:2b: 6f:5b:a8:81:ce:f9:81:a4:b4:b2:4e:0b:a3:72:41: 42:79:3b:ca:6c:30:7b:7c:65:91:72:6d:53:bb:5f: d8:b9:dd:47:23:0a:1a:03:19:2c:0e:5e:37:dd:9a: 26:66:ee:8a:76:8c:ad:7f:72:a7:f3:f8:64:28:90: 69:60:98:25:d0:32:36:1b:fb:5f:8a:93:bc:e6:15: a6:eb:8c:25:04:ef:07:df:11:70:ba:34:bf:ae:59: 10:b0:82:52:0f:bd:a2:78:1c:24:12:85:fc:dd:45: cd:36:cc:7c:89:33:06:4a:bb:f1:26:9d:1c:13:03: 0d:cb:57:c1:42:db:9f:fc:c2:3d:2f:5f:6a:6a:7a: fb:56:6c:10:d1:d6:f5:25:9f:01:72:b5:a2:7f:93: b4:71:f4:05:6c:dd:15:19:dc:ff:49:6d:0e:67:11: 2b:00:d3:2c:9e:ca:f4:89:df:d3:05:d2:c2:af:77: d7:a7:b5:52:6b:62:19:bf:89:d9:b8:87:0e:2c:35: b0:1a:8b:74:ed:9f:d7:51:b2:35:6d:aa:82:15:5d: c1:7a:d5:d4:a6:38:ab:b8:6e:6c:e6:15:50:80:4f: fe:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:87:65:F1:EC:92:15:32:DA:36:52:D3:15:A8:46:94:D7:2C:FD:77 X509v3 Authority Key Identifier: keyid:43:64:E7:B0:EE:F2:04:83:5C:7D:F2:A8:9F:60:C0:2B:E1:D8:9A:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:0b:dd:91:27:c9:9d:c5:c8:a5:ea:93:92:8c:61:bb:51:4f: 2a:e5:a9:ed:0c:2a:d0:09:70:12:e6:46:dd:9f:c2:0f:81:57: 66:8c:38:8d:87:f4:ac:80:06:ad:c8:6b:39:0e:c8:ae:84:b2: b7:16:bb:dd:08:7c:12:ca:54:2e:d2:d8:be:a9:14:9d:d2:32: a9:7e:03:24:6e:c5:fc:a5:00:af:1f:4b:65:0d:0d:d4:e9:01: 8a:0b:ca:76:a2:61:f8:d4:7a:24:32:17:f1:b6:d1:25:d7:99: f0:c8:b4:35:70:03:1d:08:1d:7d:28:02:eb:2d:93:b2:32:29: 35:5d:8b:5b:88:5d:9f:73:37:e4:4c:72:e1:7b:5f:77:5b:14: 95:05:ad:9a:3b:e6:72:2a:50:2b:13:67:a8:ca:59:d9:4e:03: fc:fa:91:dd:5c:ff:62:e9:48:f4:88:65:1a:e3:85:c5:58:fc: de:fb:3b:86:c2:3e:7c:a4:a3:c2:66:8f:78:fc:b7:16:a3:af: 03:9e:d3:3c:87:5e:50:2c:6d:8a:38:af:6b:78:56:d0:ef:75: f7:84:78:e8:4d:a1:d6:4c:ed:19:0f:ff:c1:6c:85:5f:fe:bb: 9f:fd:6f:ec:7d:5d:04:58:ec:4e:6c:23:23:34:40:1e:b5:ae: 34:c5:77:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP6j+i0VLhj2+qgqfr8IWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNjRlN2IwZWVmMjA0ODM1YzdkZjJhODlmNjBjMDJiZTFk ODlhZGQwHhcNMjUxMjA2MDYwMDQ5WhcNMjUxMjA3MDYwMDQ5WjAzMTEwLwYDVQQD EygzMDg3NjVmMWVjOTIxNTMyZGEzNjUyZDMxNWE4NDY5NGQ3MmNmZDc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsbBIWirCz0M0hMWrZ+188dAWnt8j U7/r7YEXtCtvW6iBzvmBpLSyTgujckFCeTvKbDB7fGWRcm1Tu1/Yud1HIwoaAxks Dl433ZomZu6Kdoytf3Kn8/hkKJBpYJgl0DI2G/tfipO85hWm64wlBO8H3xFwujS/ rlkQsIJSD72ieBwkEoX83UXNNsx8iTMGSrvxJp0cEwMNy1fBQtuf/MI9L19qanr7 VmwQ0db1JZ8BcrWif5O0cfQFbN0VGdz/SW0OZxErANMsnsr0id/TBdLCr3fXp7VS a2IZv4nZuIcOLDWwGot07Z/XUbI1baqCFV3BetXUpjiruG5s5hVQgE/+iwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDCHZfHskhUy2jZS0xWoRpTXLP13MB8GA1UdIwQY MBaAFENk57Du8gSDXH3yqJ9gwCvh2JrdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTJUbnNPN3lCSU5jZmZLb24yREFLLUhZbXQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9hOWE1MWEtZThlMy00OTdhLWFiYTIt ZTc5OWMyM2FhYzIwLzEvUTJUbnNPN3lCSU5jZmZLb24yREFLLUhZbXQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS9hOWE1MWEtZThlMy00OTdhLWFiYTItZTc5OWMyM2FhYzIw LzEvUTJUbnNPN3lCSU5jZmZLb24yREFLLUhZbXQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdgvdkSfJ ncXIpeqTkoxhu1FPKuWp7Qwq0AlwEuZG3Z/CD4FXZow4jYf0rIAGrchrOQ7IroSy txa73Qh8EspULtLYvqkUndIyqX4DJG7F/KUArx9LZQ0N1OkBigvKdqJh+NR6JDIX 8bbRJdeZ8Mi0NXADHQgdfSgC6y2TsjIpNV2LW4hdn3M35Exy4Xtfd1sUlQWtmjvm cipQKxNnqMpZ2U4D/PqR3Vz/YulI9IhlGuOFxVj83vs7hsI+fKSjwmaPePy3FqOv A57TPIdeUCxtijiva3hW0O9194R46E2h1kztGQ//wWyFX/67n/1v7H1dBFjsTmwj IzRAHrWuNMV3uQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:59:12 2025 by rpki-client