This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft File: qDOwgB1A0FhJBy4vyBITsCXSorw.mft (raw, json) Hash identifier: hAomo5vLBS+8lvKqe9Z+wgioDPmcujlQd8KL4SJCf6k= Subject key identifier: 82:22:AC:E1:DA:EE:90:FE:23:97:A5:69:A1:4B:4C:0B:10:9B:C5:B3 Authority key identifier: A8:33:B0:80:1D:40:D0:58:49:07:2E:2F:C8:12:13:B0:25:D2:A2:BC Certificate issuer: /CN=a833b0801d40d05849072e2fc81213b025d2a2bc Certificate serial: 019AF2098B9553C6D32EB10194AB21EFE2BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qDOwgB1A0FhJBy4vyBITsCXSorw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft Manifest number: 0115 Signing time: Sat 06 Dec 2025 05:01:42 +0000 Manifest this update: Sat 06 Dec 2025 05:01:42 +0000 Manifest next update: Sun 07 Dec 2025 05:01:42 +0000 Files and hashes: 1: IuBa70BDMg0yPa-auzZdBIfQXlM.roa (hash: P7DlWRmLUo7YIyLqEcKhGguGrK8gKl8k7uHLBwT0v4U=) 2: NHd08g9X-MuopAlLpgKXbxukW8k.roa (hash: qCjWNPKActqOGuKEjDGHdWjpl9WS29egZUeHGegFoKg=) 3: qDOwgB1A0FhJBy4vyBITsCXSorw.crl (hash: OmJNy4GQ41VY6GFPtTQ4pmU/9hK3NvplAMy+lco4GpM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.crl rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft rsync://rpki.ripe.net/repository/DEFAULT/qDOwgB1A0FhJBy4vyBITsCXSorw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:8b:95:53:c6:d3:2e:b1:01:94:ab:21:ef:e2:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a833b0801d40d05849072e2fc81213b025d2a2bc Validity Not Before: Dec 6 05:01:42 2025 GMT Not After : Dec 7 05:01:42 2025 GMT Subject: CN=8222ace1daee90fe2397a569a14b4c0b109bc5b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2e:5b:20:b4:61:a4:48:29:bb:24:de:14:4b: 9d:0d:01:2e:3f:46:5a:e8:04:1f:e4:b5:3d:ee:e3: e2:83:92:74:f8:47:4e:7a:10:03:82:99:67:42:ee: e2:f5:95:ff:ca:75:a9:71:ef:43:d3:00:90:e3:ce: 78:92:f7:db:9a:02:e3:31:62:be:1a:fe:b1:e0:7c: 72:4b:f2:a6:cf:5a:3c:dc:e4:9c:95:f6:44:6d:8d: 44:d1:6a:b1:47:f7:46:72:3f:b0:21:dc:fc:a9:08: 9b:34:73:d1:86:e1:8b:20:f9:d1:1d:4e:54:6b:a8: b7:49:c1:81:b6:b2:59:ae:40:e3:e5:10:bb:58:c9: 54:f5:4e:0b:25:c4:cc:90:3d:f3:37:17:d2:c7:db: ed:33:86:d8:a1:be:0b:d5:ef:5a:17:9f:7b:19:a8: 9b:2e:cc:50:da:46:b6:73:a7:9f:ae:b0:d8:d8:f5: bd:71:f8:f1:3f:ce:00:71:68:6a:0c:b8:d7:51:e0: 11:ca:c1:51:f7:62:38:ee:11:ec:2e:39:17:be:dc: 49:9c:96:30:9f:41:13:61:53:24:36:af:a7:0e:96: 1b:ef:ea:6e:8a:b0:07:8e:40:3e:72:4a:e8:7c:c7: ac:af:92:df:36:49:d5:3a:ae:97:da:28:a7:cc:6f: ce:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:22:AC:E1:DA:EE:90:FE:23:97:A5:69:A1:4B:4C:0B:10:9B:C5:B3 X509v3 Authority Key Identifier: keyid:A8:33:B0:80:1D:40:D0:58:49:07:2E:2F:C8:12:13:B0:25:D2:A2:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qDOwgB1A0FhJBy4vyBITsCXSorw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:b9:b9:ef:cc:27:0f:e0:3c:ff:9e:eb:dc:d9:64:5e:d1:1a: 67:21:b2:c1:df:b1:0d:70:59:b6:1f:46:b9:89:54:fe:e7:b9: 51:c3:9a:22:d7:42:10:d7:c4:38:3d:e0:2b:81:f2:3b:21:a1: 43:ba:d3:6f:fe:5a:d9:4a:f8:68:5c:b8:27:d3:6b:2c:b7:5c: cd:b8:3e:5f:bc:9a:c0:19:10:c0:3d:55:d4:a1:12:9b:aa:4e: 3a:73:09:e5:e8:a3:36:14:7c:41:99:27:88:08:98:09:54:b5: ac:75:e5:94:2a:b6:a2:6c:20:74:cc:ae:ce:b2:f4:96:9f:fd: 68:d7:62:8a:fd:da:b7:b2:cb:71:a0:c8:5f:a6:a8:5a:fc:52: 90:35:d8:cb:9b:57:59:bf:ea:07:ad:33:17:ea:a1:1d:a0:78: 64:9d:76:76:b2:19:83:fc:d5:61:6c:37:49:a0:0b:8e:3a:5d: 2d:fa:e8:08:6b:d7:21:79:03:5e:f3:52:26:39:58:c7:34:2e: 75:7a:4a:10:5b:7b:6f:19:36:24:fd:3e:4e:07:76:8a:36:96: bb:db:13:39:23:2c:e5:55:b5:2e:fb:5f:0b:2e:f5:4b:b3:2a: 4e:b4:77:0d:60:14:9d:79:de:e3:6f:2b:1d:73:76:67:f2:9c: 58:6e:76:42 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCYuVU8bTLrEBlKsh7+K/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4MzNiMDgwMWQ0MGQwNTg0OTA3MmUyZmM4MTIxM2IwMjVk MmEyYmMwHhcNMjUxMjA2MDUwMTQyWhcNMjUxMjA3MDUwMTQyWjAzMTEwLwYDVQQD Eyg4MjIyYWNlMWRhZWU5MGZlMjM5N2E1NjlhMTRiNGMwYjEwOWJjNWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsy5bILRhpEgpuyTeFEudDQEuP0Za 6AQf5LU97uPig5J0+EdOehADgplnQu7i9ZX/ynWpce9D0wCQ4854kvfbmgLjMWK+ Gv6x4HxyS/Kmz1o83OSclfZEbY1E0WqxR/dGcj+wIdz8qQibNHPRhuGLIPnRHU5U a6i3ScGBtrJZrkDj5RC7WMlU9U4LJcTMkD3zNxfSx9vtM4bYob4L1e9aF597Gaib LsxQ2ka2c6efrrDY2PW9cfjxP84AcWhqDLjXUeARysFR92I47hHsLjkXvtxJnJYw n0ETYVMkNq+nDpYb7+puirAHjkA+ckrofMesr5LfNknVOq6X2iinzG/OrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIIirOHa7pD+I5elaaFLTAsQm8WzMB8GA1UdIwQY MBaAFKgzsIAdQNBYSQcuL8gSE7Al0qK8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcURPd2dCMUEwRmhKQnk0dnlCSVRzQ1hTb3J3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9mNDJhYjEtMTA4OS00YjE0LWIyZjkt MTdiZjA2NmRhNGM1LzEvcURPd2dCMUEwRmhKQnk0dnlCSVRzQ1hTb3J3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi9mNDJhYjEtMTA4OS00YjE0LWIyZjktMTdiZjA2NmRhNGM1 LzEvcURPd2dCMUEwRmhKQnk0dnlCSVRzQ1hTb3J3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdbm578wn D+A8/57r3NlkXtEaZyGywd+xDXBZth9GuYlU/ue5UcOaItdCENfEOD3gK4HyOyGh Q7rTb/5a2Ur4aFy4J9NrLLdczbg+X7yawBkQwD1V1KESm6pOOnMJ5eijNhR8QZkn iAiYCVS1rHXllCq2omwgdMyuzrL0lp/9aNdiiv3at7LLcaDIX6aoWvxSkDXYy5tX Wb/qB60zF+qhHaB4ZJ12drIZg/zVYWw3SaALjjpdLfroCGvXIXkDXvNSJjlYxzQu dXpKEFt7bxk2JP0+Tgd2ijaWu9sTOSMs5VW1LvtfCy71S7MqTrR3DWAUnXne428r HXN2Z/KcWG52Qg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:37:42 2025 by rpki-client