This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft File: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft (raw, json) Hash identifier: /QtsuYNl4MLVvjOBZwJaRjP8Rj2nJZOO4jSQ51Z20X4= Subject key identifier: 70:B7:4C:89:83:47:F7:3A:F9:CD:23:E0:CE:5C:6A:D6:E1:AF:95:3F Authority key identifier: A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C Certificate issuer: /CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c Certificate serial: 019AF23F72AEEC794F102ABE9AFB44CFB6FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 06:00:35 +0000 Manifest this update: Sat 06 Dec 2025 06:00:35 +0000 Manifest next update: Sun 07 Dec 2025 06:00:35 +0000 Files and hashes: 1: KE4XnKQhqPguqlRYcxIoqo981UE.roa (hash: az71zExo8C/1i/65qlceZGsCGShh0tDnt7kF10fzzW0=) 2: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl (hash: i+BGT4Xt95MA+xZkaewBVjIEIFsVPITHQZU5FXEHbtE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:72:ae:ec:79:4f:10:2a:be:9a:fb:44:cf:b6:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c Validity Not Before: Dec 6 06:00:35 2025 GMT Not After : Dec 7 06:00:35 2025 GMT Subject: CN=70b74c898347f73af9cd23e0ce5c6ad6e1af953f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1c:9c:50:1d:ff:6d:5b:d8:fc:75:a5:3c:b3: 0a:fe:81:81:90:fd:bb:b9:2b:49:3b:be:8a:af:9d: 85:a2:3c:76:0e:b5:84:d1:eb:bb:dd:07:5b:cd:56: 50:ab:ee:3c:5c:bf:40:c0:f8:4f:9a:e9:82:28:e5: fb:d9:3a:bf:5d:1a:40:92:69:14:d9:b1:75:7b:a6: 7d:27:fc:6f:98:f7:b2:c5:67:d6:bb:52:dd:d1:b9: 8b:ba:c7:fc:53:00:06:5f:04:51:b9:83:e0:29:64: 97:6d:43:c1:c6:a7:59:15:4d:52:98:13:42:95:20: 6b:59:45:e6:0a:34:04:da:7e:fd:5d:3f:c6:ce:b9: 63:90:e4:7a:0f:b7:91:17:05:90:8a:4a:ce:28:47: b3:56:77:2a:56:27:24:9e:8c:f6:5a:c8:ed:5a:23: 03:e7:a9:4f:4b:2a:0a:9f:4d:7f:83:4b:55:92:fb: d4:cd:45:1d:f0:32:74:87:79:e6:02:2f:8e:eb:b8: 43:79:f9:20:d8:50:97:91:7b:67:7c:49:2b:21:68: ed:81:04:90:05:43:d1:31:c7:73:9f:4b:32:24:4c: f7:f0:9e:57:a6:d1:b3:3a:38:5c:8a:cf:30:c8:cf: 7a:ec:52:ac:54:ec:32:bf:e0:81:e0:7f:00:52:6a: 59:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B7:4C:89:83:47:F7:3A:F9:CD:23:E0:CE:5C:6A:D6:E1:AF:95:3F X509v3 Authority Key Identifier: keyid:A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:07:0c:73:e2:a6:ea:2e:c9:81:57:69:18:a2:52:44:48:2a: 33:07:a7:24:d4:46:31:12:e8:b3:bf:f7:34:22:1c:06:1e:31: f0:ea:34:8d:70:b9:cb:c2:af:65:4c:79:ec:f0:b7:13:61:23: 59:c7:f4:9e:49:9b:bf:31:0a:cb:03:29:5b:9d:5a:29:b9:5d: ed:fa:ac:ee:81:b2:ce:dc:27:e3:a4:a9:59:d7:cf:24:71:8f: a1:9c:15:80:c7:82:f1:56:e0:87:ec:fd:51:34:23:8f:2c:0c: 57:11:e1:0a:ad:db:90:c1:b2:93:06:29:2c:36:b5:bd:ca:59: 74:3f:fc:26:90:93:41:c2:a6:19:6a:52:0d:cb:fc:98:0b:6a: 45:56:6d:9e:71:4c:54:7e:6a:b0:29:4f:49:01:a0:1b:79:22: 13:a2:9d:4d:2c:ef:93:8d:b0:47:5c:3e:55:1b:c6:12:86:7a: cd:93:de:70:22:16:9d:09:d9:74:74:59:bf:34:19:d7:b6:77: 5f:7d:a9:0b:14:b8:cd:30:d3:0e:d4:13:8e:31:b4:50:6e:eb: c2:1d:6e:68:7a:e2:3e:b8:89:f0:41:7e:a1:9f:41:f0:93:1e: 93:66:0b:71:d0:b8:c9:e9:b8:1d:b6:b8:ef:b4:72:12:d9:cd: 7c:94:37:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP3Ku7HlPECq+mvtEz7b7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5OGU1OTQzYzM1NWQ0OGMwMDRlNmJmNGEzYjZjZGI4YzMw YWRjNGMwHhcNMjUxMjA2MDYwMDM1WhcNMjUxMjA3MDYwMDM1WjAzMTEwLwYDVQQD Eyg3MGI3NGM4OTgzNDdmNzNhZjljZDIzZTBjZTVjNmFkNmUxYWY5NTNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBycUB3/bVvY/HWlPLMK/oGBkP27 uStJO76Kr52Fojx2DrWE0eu73QdbzVZQq+48XL9AwPhPmumCKOX72Tq/XRpAkmkU 2bF1e6Z9J/xvmPeyxWfWu1Ld0bmLusf8UwAGXwRRuYPgKWSXbUPBxqdZFU1SmBNC lSBrWUXmCjQE2n79XT/GzrljkOR6D7eRFwWQikrOKEezVncqVicknoz2WsjtWiMD 56lPSyoKn01/g0tVkvvUzUUd8DJ0h3nmAi+O67hDefkg2FCXkXtnfEkrIWjtgQSQ BUPRMcdzn0syJEz38J5XptGzOjhcis8wyM967FKsVOwyv+CB4H8AUmpZEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHC3TImDR/c6+c0j4M5catbhr5U/MB8GA1UdIwQY MBaAFKmOWUPDVdSMAE5r9KO2zbjDCtxMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVk1WlE4TlYxSXdBVG12MG83Yk51TU1LM0V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9jZDkyY2QtN2ZlMy00MjIzLTgzNTAt M2M3NzNhNmM0MmY5LzEvcVk1WlE4TlYxSXdBVG12MG83Yk51TU1LM0V3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy9jZDkyY2QtN2ZlMy00MjIzLTgzNTAtM2M3NzNhNmM0MmY5 LzEvcVk1WlE4TlYxSXdBVG12MG83Yk51TU1LM0V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiAcMc+Km 6i7JgVdpGKJSREgqMwenJNRGMRLos7/3NCIcBh4x8Oo0jXC5y8KvZUx57PC3E2Ej Wcf0nkmbvzEKywMpW51aKbld7fqs7oGyztwn46SpWdfPJHGPoZwVgMeC8Vbgh+z9 UTQjjywMVxHhCq3bkMGykwYpLDa1vcpZdD/8JpCTQcKmGWpSDcv8mAtqRVZtnnFM VH5qsClPSQGgG3kiE6KdTSzvk42wR1w+VRvGEoZ6zZPecCIWnQnZdHRZvzQZ17Z3 X32pCxS4zTDTDtQTjjG0UG7rwh1uaHriPriJ8EF+oZ9B8JMek2YLcdC4yem4Hba4 77RyEtnNfJQ3TA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:03:57 2025 by rpki-client