This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft File: q22oNLMssSxL2uM_Zy80jZg_MXY.mft (raw, json) Hash identifier: nn4gpd0WqpJ4BVn2csLWiR3hj2R1Ky33hCfAF22dIKg= Subject key identifier: 05:5C:0B:88:AB:24:52:29:72:0A:74:65:49:A7:EB:9D:8F:8A:A2:63 Authority key identifier: AB:6D:A8:34:B3:2C:B1:2C:4B:DA:E3:3F:67:2F:34:8D:98:3F:31:76 Certificate issuer: /CN=ab6da834b32cb12c4bdae33f672f348d983f3176 Certificate serial: 019AF19AD6CACD7671ACD6224E82F93525FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft Manifest number: 0FC9 Signing time: Sat 06 Dec 2025 03:00:47 +0000 Manifest this update: Sat 06 Dec 2025 03:00:47 +0000 Manifest next update: Sun 07 Dec 2025 03:00:47 +0000 Files and hashes: 1: evpxyC_xQr6-9_i5vhF3SSD60QY.roa (hash: F+Lkz2iLknBGekmgWZevszL+qAh6hnFUDMady9RqMNg=) 2: q22oNLMssSxL2uM_Zy80jZg_MXY.crl (hash: W5fdQ/ODPwRUijMLEkefmvEFqpE26QQwO/7DikELjvs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:d6:ca:cd:76:71:ac:d6:22:4e:82:f9:35:25:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab6da834b32cb12c4bdae33f672f348d983f3176 Validity Not Before: Dec 6 03:00:47 2025 GMT Not After : Dec 7 03:00:47 2025 GMT Subject: CN=055c0b88ab245229720a746549a7eb9d8f8aa263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3e:c0:20:03:8f:2e:91:01:d1:8a:d7:ff:a4: a6:82:c6:21:56:a7:b6:c0:0a:39:c9:fe:a5:fb:2b: 67:c7:b4:58:b8:6a:75:fd:f6:73:19:a1:15:dd:04: c6:05:ec:aa:70:97:eb:12:db:46:f3:26:c9:d1:da: f1:cb:2d:8a:86:40:9e:b6:d8:b7:0f:07:a2:e2:c6: 96:7e:c0:74:40:9e:87:46:7c:8a:7d:c7:7e:4b:53: 69:73:c6:09:02:5a:bd:2a:17:ab:8a:46:d9:b2:8a: 6c:c0:7f:ec:a1:d1:90:01:1a:89:44:c8:78:6d:c5: 0f:0d:2f:9a:a4:cf:10:7e:d8:2c:a1:c0:a3:56:38: 5b:29:2b:05:c2:17:87:57:58:6a:e9:72:63:18:5d: 47:dd:b6:60:a7:ac:e7:1e:3b:3e:b7:e8:f5:fb:fa: ca:e9:1b:9a:99:dc:b0:4f:7d:ee:19:22:b9:98:a3: c0:0d:ad:bf:b1:cf:c4:64:40:22:53:0e:20:b7:42: 53:fa:d0:f1:79:83:2e:6b:aa:2a:f5:38:bb:bb:0a: 8f:cb:af:9d:2c:c7:a2:94:f8:d5:d4:16:2b:63:77: fe:e3:8e:f5:5f:cd:3f:96:58:8e:ab:27:9a:5b:ed: fe:42:6c:a0:64:5b:93:a1:67:85:27:96:a3:05:fe: f6:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:5C:0B:88:AB:24:52:29:72:0A:74:65:49:A7:EB:9D:8F:8A:A2:63 X509v3 Authority Key Identifier: keyid:AB:6D:A8:34:B3:2C:B1:2C:4B:DA:E3:3F:67:2F:34:8D:98:3F:31:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:40:86:bd:94:9b:a6:b5:97:d7:5c:37:26:48:59:35:de:01: 71:b4:dd:10:12:60:2b:75:28:40:f1:f2:35:dd:b8:d3:92:82: 4d:51:fd:54:88:26:16:19:85:ce:13:5f:3f:67:e2:a4:00:62: fe:2d:71:1c:79:41:06:cd:03:4b:ae:f4:03:b2:50:81:2e:db: 27:ce:04:6b:4b:ff:d5:37:15:2c:da:81:90:55:81:ea:a4:5b: dd:e8:2e:f3:ef:61:e8:ab:31:8e:60:aa:56:d7:d4:f6:81:90: d0:de:ce:75:e6:c0:fa:99:39:0d:27:06:63:39:34:a4:66:5d: ef:d1:c1:5c:c7:cf:b1:df:0c:f7:09:be:78:a4:a9:99:5d:35: e4:dc:89:ba:8c:9d:35:3f:38:a1:35:9e:fd:4a:d1:ea:7c:9d: 94:0b:37:72:30:68:f5:c2:4f:21:9f:fa:a8:5b:68:2f:6c:ab: db:64:9d:1e:16:b9:81:bd:36:5f:72:3c:9f:f4:af:54:6c:b5: 2d:5c:2b:35:d1:93:ef:89:8a:20:55:ed:25:cf:8b:15:a9:36: 71:df:c8:58:81:9d:c8:81:74:c2:b9:cb:b2:fc:78:33:5c:e7: b3:a2:1d:44:68:f8:4e:3f:10:55:62:24:5d:ca:19:0f:70:b2: d6:3f:d2:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmtbKzXZxrNYiToL5NSX+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiNmRhODM0YjMyY2IxMmM0YmRhZTMzZjY3MmYzNDhkOTgz ZjMxNzYwHhcNMjUxMjA2MDMwMDQ3WhcNMjUxMjA3MDMwMDQ3WjAzMTEwLwYDVQQD EygwNTVjMGI4OGFiMjQ1MjI5NzIwYTc0NjU0OWE3ZWI5ZDhmOGFhMjYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApj7AIAOPLpEB0YrX/6SmgsYhVqe2 wAo5yf6l+ytnx7RYuGp1/fZzGaEV3QTGBeyqcJfrEttG8ybJ0drxyy2KhkCetti3 Dwei4saWfsB0QJ6HRnyKfcd+S1Npc8YJAlq9KherikbZsopswH/sodGQARqJRMh4 bcUPDS+apM8QftgsocCjVjhbKSsFwheHV1hq6XJjGF1H3bZgp6znHjs+t+j1+/rK 6RuamdywT33uGSK5mKPADa2/sc/EZEAiUw4gt0JT+tDxeYMua6oq9Ti7uwqPy6+d LMeilPjV1BYrY3f+4471X80/lliOqyeaW+3+QmygZFuToWeFJ5ajBf72zQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAVcC4irJFIpcgp0ZUmn652PiqJjMB8GA1UdIwQY MBaAFKttqDSzLLEsS9rjP2cvNI2YPzF2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTIyb05MTXNzU3hMMnVNX1p5ODBqWmdfTVhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8wZWM3YTctMGFiYy00ZmY5LTk5NTgt NTg2N2NhNzc4OTdlLzEvcTIyb05MTXNzU3hMMnVNX1p5ODBqWmdfTVhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy8wZWM3YTctMGFiYy00ZmY5LTk5NTgtNTg2N2NhNzc4OTdl LzEvcTIyb05MTXNzU3hMMnVNX1p5ODBqWmdfTVhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgUCGvZSb prWX11w3JkhZNd4BcbTdEBJgK3UoQPHyNd2405KCTVH9VIgmFhmFzhNfP2fipABi /i1xHHlBBs0DS670A7JQgS7bJ84Ea0v/1TcVLNqBkFWB6qRb3egu8+9h6KsxjmCq VtfU9oGQ0N7OdebA+pk5DScGYzk0pGZd79HBXMfPsd8M9wm+eKSpmV015NyJuoyd NT84oTWe/UrR6nydlAs3cjBo9cJPIZ/6qFtoL2yr22SdHha5gb02X3I8n/SvVGy1 LVwrNdGT74mKIFXtJc+LFak2cd/IWIGdyIF0wrnLsvx4M1zns6IdRGj4Tj8QVWIk XcoZD3Cy1j/SVA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:18:43 2025 by rpki-client