This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft File: RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft (raw, json) Hash identifier: LyMulywoK3x4rBjzy5jO7D2DZHG/dkG6KZcC5gU72Po= Subject key identifier: 7A:4C:F8:CA:C1:D7:09:E8:A3:CF:F5:12:1D:4C:B6:24:14:CC:4C:E1 Authority key identifier: 46:AA:60:67:6C:13:0C:64:38:E4:5B:5A:60:72:10:E9:56:6B:68:32 Certificate issuer: /CN=46aa60676c130c6438e45b5a607210e9566b6832 Certificate serial: 019AF578497260EE7319567C1737C2286F58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft Manifest number: 047C Signing time: Sat 06 Dec 2025 21:01:31 +0000 Manifest this update: Sat 06 Dec 2025 21:01:31 +0000 Manifest next update: Sun 07 Dec 2025 21:01:31 +0000 Files and hashes: 1: 4pIrmmCZWAO8NuTmun2AQKQETQo.roa (hash: Pf6nhAI8L5UL8XOlhvccLv1CzKTIGW/DapLLMv9479I=) 2: RqpgZ2wTDGQ45FtaYHIQ6VZraDI.crl (hash: pYaQvTG9iNEIJAtKOAKlfuMBvh98/HGAZspx0drZIMY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft rsync://rpki.ripe.net/repository/DEFAULT/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:78:49:72:60:ee:73:19:56:7c:17:37:c2:28:6f:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46aa60676c130c6438e45b5a607210e9566b6832 Validity Not Before: Dec 6 21:01:31 2025 GMT Not After : Dec 7 21:01:31 2025 GMT Subject: CN=7a4cf8cac1d709e8a3cff5121d4cb62414cc4ce1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:ad:3f:38:19:50:fe:66:f6:b0:a1:7d:a2:a0: 10:06:86:3e:47:68:65:ff:83:df:79:59:f0:55:3d: 56:f0:0e:db:cf:35:48:c9:89:3d:f5:0d:c4:a0:21: 3c:ef:37:6d:76:82:98:ff:29:5d:36:80:09:f7:db: 0c:ab:5b:af:7d:34:b1:99:8f:dc:19:82:fa:08:b9: c3:ed:76:5b:85:be:85:8a:3e:02:24:9b:39:6a:fb: 39:a3:f0:ba:20:53:93:b9:09:2e:30:1c:0a:ae:12: 55:0d:b2:5e:b3:7d:ed:3c:64:e1:c6:70:8a:d7:58: 4f:03:41:8d:0c:9d:91:c7:88:05:6a:76:1c:83:70: 1c:08:98:25:fd:e7:21:93:c4:3b:ec:61:82:69:8f: 97:ab:e5:20:1d:aa:5b:5d:6e:f4:27:ea:f3:13:f9: 12:6c:bb:e2:c4:54:85:a4:95:4a:17:d6:54:41:96: 75:76:e3:ae:08:1f:1a:6c:17:74:08:66:3c:c1:c4: 88:2e:84:77:8e:3a:5c:a4:ac:62:81:de:01:6a:57: da:77:46:f2:db:1c:90:c7:d6:7a:31:8a:da:c1:a3: 49:98:dd:b9:3f:ce:91:e5:1c:1e:60:98:4f:bd:33: 4d:a1:b6:87:34:5e:2d:c9:a3:76:d8:b9:0d:cf:1f: e9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:4C:F8:CA:C1:D7:09:E8:A3:CF:F5:12:1D:4C:B6:24:14:CC:4C:E1 X509v3 Authority Key Identifier: keyid:46:AA:60:67:6C:13:0C:64:38:E4:5B:5A:60:72:10:E9:56:6B:68:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cf:ef:da:ab:aa:51:7f:a5:d3:47:56:42:1c:3c:5d:70:39:ee: 3a:eb:24:4f:dd:c5:da:3d:58:50:11:d0:e1:51:18:c3:ba:e9: 1a:8d:ae:e9:71:31:5f:29:3a:63:fb:28:dc:01:8b:1d:b6:a2: 36:67:13:23:df:db:a8:12:42:fa:71:95:ba:c6:69:9f:41:e7: f5:bd:2d:a5:60:73:33:5f:48:e2:c9:0c:d9:43:1b:18:be:a5: 1d:f5:f8:51:a4:30:34:6e:ce:db:ca:bc:41:e1:b6:e1:8b:37: b0:c6:70:57:ac:a9:37:75:0f:61:e2:74:97:a0:9c:e2:05:87: 81:03:1f:00:1c:13:e3:0e:fa:8a:2d:66:20:fb:e7:3d:a1:73: 1f:8f:be:1d:00:9d:00:67:55:3c:16:90:0f:23:7e:fa:8f:f9: 3c:63:57:3f:db:15:16:30:0a:d1:ba:9d:e1:45:5d:f3:20:37: 04:f3:91:4d:f2:f2:7a:9d:61:ac:45:60:34:37:c2:78:0b:e3: da:f3:1b:50:d1:16:ef:bb:3d:a5:ca:b2:3b:75:83:41:2b:6b: b9:af:69:64:1d:c4:90:6a:5b:56:11:1d:ec:80:32:53:df:06: 76:e2:f9:ce:11:3e:e8:9c:22:a5:cf:10:5c:6f:fb:9c:b8:71: 57:ae:18:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1eElyYO5zGVZ8FzfCKG9YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2YWE2MDY3NmMxMzBjNjQzOGU0NWI1YTYwNzIxMGU5NTY2 YjY4MzIwHhcNMjUxMjA2MjEwMTMxWhcNMjUxMjA3MjEwMTMxWjAzMTEwLwYDVQQD Eyg3YTRjZjhjYWMxZDcwOWU4YTNjZmY1MTIxZDRjYjYyNDE0Y2M0Y2UxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkq0/OBlQ/mb2sKF9oqAQBoY+R2hl /4PfeVnwVT1W8A7bzzVIyYk99Q3EoCE87zdtdoKY/yldNoAJ99sMq1uvfTSxmY/c GYL6CLnD7XZbhb6Fij4CJJs5avs5o/C6IFOTuQkuMBwKrhJVDbJes33tPGThxnCK 11hPA0GNDJ2Rx4gFanYcg3AcCJgl/echk8Q77GGCaY+Xq+UgHapbXW70J+rzE/kS bLvixFSFpJVKF9ZUQZZ1duOuCB8abBd0CGY8wcSILoR3jjpcpKxigd4Balfad0by 2xyQx9Z6MYrawaNJmN25P86R5RweYJhPvTNNobaHNF4tyaN22LkNzx/pewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHpM+MrB1wnoo8/1Eh1MtiQUzEzhMB8GA1UdIwQY MBaAFEaqYGdsEwxkOORbWmByEOlWa2gyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUnFwZ1oyd1RER1E0NUZ0YVlISVE2VlpyYURJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8xNzIxZDgtYWE0Ni00ZmFhLWFlMTUt YzVlMzJjODI3MmQ3LzEvUnFwZ1oyd1RER1E0NUZ0YVlISVE2VlpyYURJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC8xNzIxZDgtYWE0Ni00ZmFhLWFlMTUtYzVlMzJjODI3MmQ3 LzEvUnFwZ1oyd1RER1E0NUZ0YVlISVE2VlpyYURJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAz+/aq6pR f6XTR1ZCHDxdcDnuOuskT93F2j1YUBHQ4VEYw7rpGo2u6XExXyk6Y/so3AGLHbai NmcTI9/bqBJC+nGVusZpn0Hn9b0tpWBzM19I4skM2UMbGL6lHfX4UaQwNG7O28q8 QeG24Ys3sMZwV6ypN3UPYeJ0l6Cc4gWHgQMfABwT4w76ii1mIPvnPaFzH4++HQCd AGdVPBaQDyN++o/5PGNXP9sVFjAK0bqd4UVd8yA3BPORTfLyep1hrEVgNDfCeAvj 2vMbUNEW77s9pcqyO3WDQStrua9pZB3EkGpbVhEd7IAyU98GduL5zhE+6Jwipc8Q XG/7nLhxV64Y2A== -----END CERTIFICATE-----Generated at Sun Dec 7 01:49:06 2025 by rpki-client