This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft File: Q4T2-m3sztVXioWlHgvWVwHqNOw.mft (raw, json) Hash identifier: S1tNDKs7DiOWXCLlixV4mluuGcGJ4ZKbvK2jD2tsbTs= Subject key identifier: 5B:45:E5:52:12:FF:44:EA:47:0F:2D:15:09:96:68:FB:D1:FE:6A:6F Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec Certificate serial: 019AF276F19C630F53475E1D8F12C8761F7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft Manifest number: 1775 Signing time: Sat 06 Dec 2025 07:01:12 +0000 Manifest this update: Sat 06 Dec 2025 07:01:12 +0000 Manifest next update: Sun 07 Dec 2025 07:01:12 +0000 Files and hashes: 1: 29wssqErvKQtR_9f6uK-OYzddNM.roa (hash: Bh05SYc8VBmf4zaIv99zE5UZHb6fBJqOGBDvempbpVM=) 2: 6ydkCTIO-cNnh8Hv2Ok88IlcHaI.roa (hash: wLv2JoucZBkU56L2p9pXvAWsrjbYGSWjGCERyhVvXsw=) 3: AN-DGU807Zi1GLozE0Ye6tyK7Ic.roa (hash: +/Pg+LZh0oTnlaPXWDZsXPiFa0OXAsSR/g5vgnMvqME=) 4: N0dUKPrjFoc0y8MW0LZVdnxSnBI.roa (hash: GOCzo5+8biESJ82NDr0uRyIZsN+18Kfk+tP9JYURZW4=) 5: Q4T2-m3sztVXioWlHgvWVwHqNOw.crl (hash: eW4UvRfyglxsFBwrmB/l60TEqanezc5XIgT15kFfQGY=) 6: akr2zEciBp0bAf10VTnQBF8A5hE.roa (hash: SJfaT9rqeoFgX5bxM6d8wxAKVaMpQ7a7c0aJKadx3yo=) 7: maXcZQ7N2y2_afrzV1oMNjT4O7g.roa (hash: D+pc8oR4WM9Y/chv55U8MqOsuEcIXejdvRWZ+f3Pszg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:f1:9c:63:0f:53:47:5e:1d:8f:12:c8:76:1f:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec Validity Not Before: Dec 6 07:01:12 2025 GMT Not After : Dec 7 07:01:12 2025 GMT Subject: CN=5b45e55212ff44ea470f2d15099668fbd1fe6a6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:49:62:d7:2c:82:28:52:73:63:37:2a:d2:0c: 3a:c0:7e:e1:03:ae:79:01:e9:30:c8:47:14:83:7b: ef:04:0d:51:f8:a8:4a:d1:63:ab:37:0d:6b:62:2f: 96:6d:0a:27:71:d7:78:73:4b:9e:fc:19:ec:72:c5: 1b:59:22:2a:cd:1f:be:7d:c1:bf:1e:0b:20:8a:ec: 2b:47:87:84:d0:7e:d4:54:4d:ae:51:85:fd:21:89: 5c:8b:25:06:82:d5:fe:45:9f:70:42:a0:46:71:d8: 12:ad:9c:e6:a3:21:5a:9c:a3:89:4a:81:cc:59:49: 9d:4d:77:7a:01:37:ed:93:e7:b7:aa:f1:99:c0:db: 97:16:df:85:86:72:27:fa:f7:80:f5:ee:b8:c8:e4: f6:e4:4d:6d:02:db:20:10:3a:60:42:f4:4c:d3:b2: 1e:82:6c:1b:ed:7d:d3:11:33:1d:2a:08:b7:88:49: fb:1f:77:a1:19:da:e7:17:ea:52:a3:a9:bc:67:d5: c8:24:46:34:67:9b:77:ee:9c:98:01:a1:16:df:58: 20:c6:90:ec:66:25:c9:2d:66:10:a2:9a:d7:e7:65: 89:b0:e4:5f:85:0b:e8:bd:e1:fc:e9:4a:8f:64:48: 7e:f2:7c:5f:d9:06:76:86:15:c0:d7:5b:a3:4b:05: cd:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:45:E5:52:12:FF:44:EA:47:0F:2D:15:09:96:68:FB:D1:FE:6A:6F X509v3 Authority Key Identifier: keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:86:92:ce:5a:b2:73:94:16:16:96:cb:fd:32:74:aa:b4:50: ca:a8:2d:5b:5c:4a:f3:f8:6c:be:b5:b3:e9:54:2b:04:b3:87: d6:ca:ab:9c:dd:92:52:4b:7e:d5:e5:e4:dd:68:33:ef:64:8c: 8e:50:27:d4:9e:23:aa:51:3e:6b:0e:bb:50:76:01:fb:05:91: 64:d1:3f:25:ed:34:a7:65:90:38:b3:d4:6f:85:59:4a:f3:f5: be:9c:b4:0c:b8:ef:be:99:a9:4e:12:33:14:00:e5:5b:7c:89: 84:5f:94:de:2a:09:62:56:8f:29:00:13:37:28:b1:a9:97:6a: 03:0b:8d:37:fa:89:43:17:a3:c0:67:2c:a9:db:b5:23:fd:e4: ed:ee:dd:59:ff:85:4c:e7:c8:52:7e:a1:f9:f2:be:f5:c6:1c: 8f:e2:e3:4d:3e:be:29:fa:20:f3:e5:51:73:97:4f:85:3b:c6: 75:61:39:04:7a:8d:89:6f:e6:f9:df:e2:3e:29:8f:16:a2:5b: 02:08:85:d8:33:36:78:4e:a3:7f:23:38:32:55:bc:ba:43:a5: 1d:79:dc:69:b0:e7:0d:77:b7:a8:02:2c:47:6d:ff:2c:de:46: de:1e:e1:7d:7c:8a:3f:3e:4a:2f:13:06:c8:ba:35:75:32:e8: 18:db:ad:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydvGcYw9TR14djxLIdh9+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzODRmNmZhNmRlY2NlZDU1NzhhODVhNTFlMGJkNjU3MDFl YTM0ZWMwHhcNMjUxMjA2MDcwMTEyWhcNMjUxMjA3MDcwMTEyWjAzMTEwLwYDVQQD Eyg1YjQ1ZTU1MjEyZmY0NGVhNDcwZjJkMTUwOTk2NjhmYmQxZmU2YTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Eli1yyCKFJzYzcq0gw6wH7hA655 AekwyEcUg3vvBA1R+KhK0WOrNw1rYi+WbQoncdd4c0ue/BnscsUbWSIqzR++fcG/ HgsgiuwrR4eE0H7UVE2uUYX9IYlciyUGgtX+RZ9wQqBGcdgSrZzmoyFanKOJSoHM WUmdTXd6ATftk+e3qvGZwNuXFt+FhnIn+veA9e64yOT25E1tAtsgEDpgQvRM07Ie gmwb7X3TETMdKgi3iEn7H3ehGdrnF+pSo6m8Z9XIJEY0Z5t37pyYAaEW31ggxpDs ZiXJLWYQoprX52WJsORfhQvoveH86UqPZEh+8nxf2QZ2hhXA11ujSwXNTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFtF5VIS/0TqRw8tFQmWaPvR/mpvMB8GA1UdIwQY MBaAFEOE9vpt7M7VV4qFpR4L1lcB6jTsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMt MWIxM2JkNDU2NmE1LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMtMWIxM2JkNDU2NmE1 LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkYaSzlqy c5QWFpbL/TJ0qrRQyqgtW1xK8/hsvrWz6VQrBLOH1sqrnN2SUkt+1eXk3Wgz72SM jlAn1J4jqlE+aw67UHYB+wWRZNE/Je00p2WQOLPUb4VZSvP1vpy0DLjvvpmpThIz FADlW3yJhF+U3ioJYlaPKQATNyixqZdqAwuNN/qJQxejwGcsqdu1I/3k7e7dWf+F TOfIUn6h+fK+9cYcj+LjTT6+Kfog8+VRc5dPhTvGdWE5BHqNiW/m+d/iPimPFqJb AgiF2DM2eE6jfyM4MlW8ukOlHXncabDnDXe3qAIsR23/LN5G3h7hfXyKPz5KLxMG yLo1dTLoGNutDQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:42:23 2025 by rpki-client