This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft File: QwPxM011rEMsDKp404mnDAnBLKY.mft (raw, json) Hash identifier: ilHvF2mLAD7qbs6ztdIRok6+8NBKJZWjcmT1v0JuNkk= Subject key identifier: 15:E9:CD:08:B4:91:27:B3:43:D5:0E:73:55:DD:10:AC:B8:CA:C8:85 Authority key identifier: 43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6 Certificate issuer: /CN=4303f1334d75ac432c0caa78d389a70c09c12ca6 Certificate serial: 019B2E54C6642B412649B6FC899969226ABD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft Manifest number: 02D6 Signing time: Wed 17 Dec 2025 22:01:06 +0000 Manifest this update: Wed 17 Dec 2025 22:01:06 +0000 Manifest next update: Thu 18 Dec 2025 22:01:06 +0000 Files and hashes: 1: QwPxM011rEMsDKp404mnDAnBLKY.crl (hash: 0ojgcCa6g2Youp8PpGKbz3AzNjutcBBkgdKBTxbP/sk=) 2: etqHJp94mEXyM-mZRNVFRO7Kziw.roa (hash: Y6iOU/XBP66s91SGzXjQj2BEKS4QjWa/buoOF4uhFqg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:54:c6:64:2b:41:26:49:b6:fc:89:99:69:22:6a:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4303f1334d75ac432c0caa78d389a70c09c12ca6 Validity Not Before: Dec 17 22:01:06 2025 GMT Not After : Dec 18 22:01:06 2025 GMT Subject: CN=15e9cd08b49127b343d50e7355dd10acb8cac885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:da:f1:bd:d9:ce:33:8d:0e:82:87:0f:7e:42: f1:bf:25:ca:5c:13:70:74:d5:15:23:a9:84:99:88: 86:fc:dc:68:f9:6e:00:4a:a2:fc:83:23:d4:9d:98: 59:64:a1:34:5d:a8:11:b6:a6:b1:f8:a7:65:7b:7d: 26:8f:81:59:fc:dc:22:9e:7e:b1:9b:8d:7d:2e:9d: 11:28:bd:a9:26:21:6a:16:97:0b:45:6c:45:89:e3: 64:ed:65:73:20:87:fa:83:21:75:33:48:a0:70:60: 41:29:7e:1d:fd:c0:92:24:fe:00:97:4b:86:72:63: 22:59:e4:f6:20:b7:e5:a9:e3:74:23:c0:6e:de:88: e0:1f:31:3a:6d:5c:03:e1:bf:e3:34:83:2b:d4:e6: a7:9d:be:1a:c9:43:76:61:ed:07:fd:a6:ef:e7:39: f2:02:a4:f2:bf:ca:d8:90:88:b5:c7:40:a6:80:21: 76:cc:3b:ae:8f:f9:75:95:3b:81:27:b7:08:d8:e3: 3e:ec:b6:66:c2:29:a5:ae:c8:8c:3a:93:4f:92:6d: 53:30:4f:4d:2b:0b:e3:d3:92:eb:51:2b:dd:8e:e8: 3b:08:b0:c5:0e:a2:58:9e:0d:0e:f1:2b:51:bf:dc: 49:e0:9a:f5:60:45:cc:4e:47:35:a6:0f:b3:ea:86: c4:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:E9:CD:08:B4:91:27:B3:43:D5:0E:73:55:DD:10:AC:B8:CA:C8:85 X509v3 Authority Key Identifier: keyid:43:03:F1:33:4D:75:AC:43:2C:0C:AA:78:D3:89:A7:0C:09:C1:2C:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwPxM011rEMsDKp404mnDAnBLKY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/438008-338d-4c31-97c5-4cb97076cff2/1/QwPxM011rEMsDKp404mnDAnBLKY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:0d:75:5b:39:e6:53:c1:86:6d:9b:c0:df:e4:6a:07:f1:5d: ec:50:f5:11:59:25:1d:5a:ac:79:e9:54:fe:3b:0f:f7:84:4c: e9:1e:48:7e:f8:07:8e:ca:9e:bd:3a:28:52:d3:f3:35:19:09: 06:9d:3d:d7:1c:00:ce:cd:cd:21:a1:c8:6a:18:24:0f:bf:87: d4:8a:23:cc:81:80:de:f1:b2:f2:5c:f1:fb:5a:63:83:e5:4a: 63:3f:fc:0d:20:8d:48:0b:83:f5:df:90:85:b2:81:51:f2:15: af:d3:0d:2d:13:68:59:de:bb:26:f3:6c:6e:99:40:bf:dc:f4: ae:c8:dc:fd:e2:23:a0:ed:24:69:bd:4b:85:3b:4d:a8:ed:0f: c9:5c:41:33:36:a6:7a:10:37:cf:38:99:4d:d6:e2:7f:06:2a: 60:24:62:9b:78:6b:a3:b2:e1:44:4c:a8:30:64:a3:85:4f:3e: 81:ab:f6:f2:5a:03:23:2d:05:29:9b:e4:8b:bf:15:27:c7:6c: 25:f0:83:1c:7c:fb:75:5a:58:50:b9:71:b2:aa:1b:14:94:f8: a7:24:ae:d8:f1:46:dc:84:d3:4f:df:a4:41:bf:c3:de:2e:19: eb:52:68:d7:67:ff:6b:d9:8a:52:cb:36:80:28:20:0a:c7:d5: 0c:aa:d5:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsuVMZkK0EmSbb8iZlpImq9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzMDNmMTMzNGQ3NWFjNDMyYzBjYWE3OGQzODlhNzBjMDlj MTJjYTYwHhcNMjUxMjE3MjIwMTA2WhcNMjUxMjE4MjIwMTA2WjAzMTEwLwYDVQQD EygxNWU5Y2QwOGI0OTEyN2IzNDNkNTBlNzM1NWRkMTBhY2I4Y2FjODg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1NrxvdnOM40OgocPfkLxvyXKXBNw dNUVI6mEmYiG/Nxo+W4ASqL8gyPUnZhZZKE0XagRtqax+Kdle30mj4FZ/Nwinn6x m419Lp0RKL2pJiFqFpcLRWxFieNk7WVzIIf6gyF1M0igcGBBKX4d/cCSJP4Al0uG cmMiWeT2ILflqeN0I8Bu3ojgHzE6bVwD4b/jNIMr1Oannb4ayUN2Ye0H/abv5zny AqTyv8rYkIi1x0CmgCF2zDuuj/l1lTuBJ7cI2OM+7LZmwimlrsiMOpNPkm1TME9N Kwvj05LrUSvdjug7CLDFDqJYng0O8StRv9xJ4Jr1YEXMTkc1pg+z6obELQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBXpzQi0kSezQ9UOc1XdEKy4ysiFMB8GA1UdIwQY MBaAFEMD8TNNdaxDLAyqeNOJpwwJwSymMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXdQeE0wMTFyRU1zREtwNDA0bW5EQW5CTEtZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS80MzgwMDgtMzM4ZC00YzMxLTk3YzUt NGNiOTcwNzZjZmYyLzEvUXdQeE0wMTFyRU1zREtwNDA0bW5EQW5CTEtZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS80MzgwMDgtMzM4ZC00YzMxLTk3YzUtNGNiOTcwNzZjZmYy LzEvUXdQeE0wMTFyRU1zREtwNDA0bW5EQW5CTEtZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaQ11Wznm U8GGbZvA3+RqB/Fd7FD1EVklHVqseelU/jsP94RM6R5IfvgHjsqevTooUtPzNRkJ Bp091xwAzs3NIaHIahgkD7+H1IojzIGA3vGy8lzx+1pjg+VKYz/8DSCNSAuD9d+Q hbKBUfIVr9MNLRNoWd67JvNsbplAv9z0rsjc/eIjoO0kab1LhTtNqO0PyVxBMzam ehA3zziZTdbifwYqYCRim3hro7LhREyoMGSjhU8+gav28loDIy0FKZvki78VJ8ds JfCDHHz7dVpYULlxsqobFJT4pySu2PFG3ITTT9+kQb/D3i4Z61Jo12f/a9mKUss2 gCggCsfVDKrVIw== -----END CERTIFICATE-----Generated at Thu Dec 18 04:19:25 2025 by rpki-client