This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft File: Q1QWsigrRTPDUJwY6VfODINryDc.mft (raw, json) Hash identifier: +Va5uY9AdNeFsbhqfbxctUW9Lsder8sJmzkiLPT9VTM= Subject key identifier: CD:B4:DB:42:58:D0:6C:91:70:2F:71:82:0A:AD:37:8B:20:50:75:2B Authority key identifier: 43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37 Certificate issuer: /CN=435416b2282b4533c3509c18e957ce0c836bc837 Certificate serial: 019AF16424C32E404CC8C8565DCFC2E6B389 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft Manifest number: 0F50 Signing time: Sat 06 Dec 2025 02:01:03 +0000 Manifest this update: Sat 06 Dec 2025 02:01:03 +0000 Manifest next update: Sun 07 Dec 2025 02:01:03 +0000 Files and hashes: 1: Q1QWsigrRTPDUJwY6VfODINryDc.crl (hash: szyFJxjL3br+MYavgQPNQdnKnwblWmQZQQ8eJ933VkU=) 2: Tt9cDnLqp2SOeeoElhH21A1JSmo.roa (hash: g7FEq0smlg0TkkjLfygzTEzTD8KkWT+7GvQHUxPqdJo=) 3: pSYXiKXGXABhmANIG0Y2vhGLRUA.roa (hash: kjXcWabBcy+Nz9B+eKiIbdHIvrnXu/XwD/9ZftdegXw=) 4: uJ1wgWjtfF_PUvxzUj8noSaLQx0.roa (hash: 5K3mYspcTrH8J1dlAJJG2SBHWuIALi8AQG16SYzuq8w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:24:c3:2e:40:4c:c8:c8:56:5d:cf:c2:e6:b3:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=435416b2282b4533c3509c18e957ce0c836bc837 Validity Not Before: Dec 6 02:01:03 2025 GMT Not After : Dec 7 02:01:03 2025 GMT Subject: CN=cdb4db4258d06c91702f71820aad378b2050752b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:65:e1:dc:98:b7:48:2c:83:27:fb:c8:9c:4a: 30:f5:16:86:6e:b6:12:a6:92:41:63:83:6d:bf:a1: 3f:73:ef:fd:71:e3:49:fb:7c:a9:8f:bd:08:4f:68: 23:47:ba:c1:31:11:d5:cf:ce:85:28:e5:22:60:60: 83:51:92:e3:1c:9d:da:c2:cd:ba:2d:cf:ee:0d:a2: b6:b6:24:d5:a1:df:2a:00:16:2f:7c:88:0e:f2:e1: 58:1e:d3:90:4e:43:a9:c0:87:fa:f0:65:ec:69:ca: f4:c1:dd:ef:8a:a8:4d:61:fd:00:e3:d7:76:c6:6f: aa:3f:2c:39:ed:5c:2b:ae:cd:8d:58:ec:3e:38:b3: 57:bc:99:66:a5:14:dc:48:74:93:00:d9:e8:4b:e6: 24:11:3e:cd:0e:33:bd:f9:f2:c6:02:cb:48:43:ec: a8:7e:6a:63:90:87:d7:5f:47:fa:1e:b4:77:5d:4d: 5d:36:d6:18:6b:bd:ad:cf:f0:86:9e:9d:d8:47:2d: 7b:8a:76:5d:96:c9:0b:cf:ad:fe:9c:f6:cc:95:b1: 13:da:d3:9d:c1:89:42:f3:4f:0b:dd:20:f8:fe:48: 73:70:2f:8f:3c:61:ce:1a:60:7a:64:ec:63:cf:3f: de:09:56:3a:70:55:5b:d1:f4:0c:91:14:c9:0f:aa: 8d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B4:DB:42:58:D0:6C:91:70:2F:71:82:0A:AD:37:8B:20:50:75:2B X509v3 Authority Key Identifier: keyid:43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:aa:1c:1e:98:58:7f:dc:6b:58:36:c3:70:0b:84:6f:d7:74: 64:c8:0c:32:41:e2:55:e4:d7:bb:1a:82:ed:c3:7d:c1:04:fa: dc:11:a9:93:11:be:a0:54:07:65:3f:81:81:d0:b3:b2:39:42: 83:44:f3:2d:f6:69:c6:d4:9a:74:35:38:f8:22:a1:3f:b0:72: db:17:f3:02:dd:fa:b0:20:5c:77:0c:5e:4a:da:73:bb:ca:15: 2b:1d:79:39:0e:e6:45:53:78:e0:3c:f9:c1:d0:70:c7:17:07: 26:f9:78:76:24:3c:a7:c5:05:e8:a4:9e:97:7a:a6:ea:21:19: 7b:47:c8:c1:37:df:2e:e5:7c:65:bd:f7:e8:98:3a:91:b5:1f: a2:a4:71:42:c7:f6:60:0c:67:53:ac:06:6b:f2:f3:c0:ef:42: 82:37:14:17:df:82:1c:10:24:07:71:ca:a9:76:45:ce:85:0f: 93:cf:9d:1d:c9:c7:bb:70:a1:0a:a0:55:c3:bb:63:8c:73:43: 2f:45:82:de:aa:4d:1a:94:3a:47:00:be:b8:8f:ae:ba:46:a4: e9:8e:fd:40:07:eb:36:c3:12:40:65:02:d0:95:98:63:be:31: 7f:f7:86:4b:0b:7f:49:fb:47:df:78:be:a8:68:ec:36:d4:49: 90:3f:bb:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZCTDLkBMyMhWXc/C5rOJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNTQxNmIyMjgyYjQ1MzNjMzUwOWMxOGU5NTdjZTBjODM2 YmM4MzcwHhcNMjUxMjA2MDIwMTAzWhcNMjUxMjA3MDIwMTAzWjAzMTEwLwYDVQQD EyhjZGI0ZGI0MjU4ZDA2YzkxNzAyZjcxODIwYWFkMzc4YjIwNTA3NTJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2WXh3Ji3SCyDJ/vInEow9RaGbrYS ppJBY4Ntv6E/c+/9ceNJ+3ypj70IT2gjR7rBMRHVz86FKOUiYGCDUZLjHJ3aws26 Lc/uDaK2tiTVod8qABYvfIgO8uFYHtOQTkOpwIf68GXsacr0wd3viqhNYf0A49d2 xm+qPyw57Vwrrs2NWOw+OLNXvJlmpRTcSHSTANnoS+YkET7NDjO9+fLGAstIQ+yo fmpjkIfXX0f6HrR3XU1dNtYYa72tz/CGnp3YRy17inZdlskLz63+nPbMlbET2tOd wYlC808L3SD4/khzcC+PPGHOGmB6ZOxjzz/eCVY6cFVb0fQMkRTJD6qNnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM2020JY0GyRcC9xggqtN4sgUHUrMB8GA1UdIwQY MBaAFENUFrIoK0Uzw1CcGOlXzgyDa8g3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTFRV3NpZ3JSVFBEVUp3WTZWZk9ESU5yeURjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy82M2ZmODEtNjQ2MC00YzA1LTg1MmQt MjYyZWIzOWJiZTc2LzEvUTFRV3NpZ3JSVFBEVUp3WTZWZk9ESU5yeURjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy82M2ZmODEtNjQ2MC00YzA1LTg1MmQtMjYyZWIzOWJiZTc2 LzEvUTFRV3NpZ3JSVFBEVUp3WTZWZk9ESU5yeURjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW6ocHphY f9xrWDbDcAuEb9d0ZMgMMkHiVeTXuxqC7cN9wQT63BGpkxG+oFQHZT+BgdCzsjlC g0TzLfZpxtSadDU4+CKhP7By2xfzAt36sCBcdwxeStpzu8oVKx15OQ7mRVN44Dz5 wdBwxxcHJvl4diQ8p8UF6KSel3qm6iEZe0fIwTffLuV8Zb336Jg6kbUfoqRxQsf2 YAxnU6wGa/LzwO9CgjcUF9+CHBAkB3HKqXZFzoUPk8+dHcnHu3ChCqBVw7tjjHND L0WC3qpNGpQ6RwC+uI+uukak6Y79QAfrNsMSQGUC0JWYY74xf/eGSwt/SftH33i+ qGjsNtRJkD+7eg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:57:09 2025 by rpki-client