This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft File: qlPNLFhKPcFiCLqTsNt0dzs_I74.mft (raw, json) Hash identifier: qwsZ6EBBD70OxzadDJ3BcwzfdCx1eEI8C1ZtJEy2OYw= Subject key identifier: 69:75:0B:46:81:B1:66:48:CD:96:20:03:73:A0:44:D6:32:96:92:DD Authority key identifier: AA:53:CD:2C:58:4A:3D:C1:62:08:BA:93:B0:DB:74:77:3B:3F:23:BE Certificate issuer: /CN=aa53cd2c584a3dc16208ba93b0db74773b3f23be Certificate serial: 019AF31B5B0FDFDB4A63118DB9CE4A22EAFA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 10:00:47 +0000 Manifest this update: Sat 06 Dec 2025 10:00:47 +0000 Manifest next update: Sun 07 Dec 2025 10:00:47 +0000 Files and hashes: 1: 0koZyFChDezPZrlYJuMfvZjhl9U.roa (hash: de9sKJ93r6KtWpoBh4fQ9q5HQjJugLR9RFxcJ5k+oDo=) 2: qlPNLFhKPcFiCLqTsNt0dzs_I74.crl (hash: S5jzzp6bEfUi2BbkyLlBzQdOlNGRt5O4ResjoFL83ow=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:5b:0f:df:db:4a:63:11:8d:b9:ce:4a:22:ea:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa53cd2c584a3dc16208ba93b0db74773b3f23be Validity Not Before: Dec 6 10:00:47 2025 GMT Not After : Dec 7 10:00:47 2025 GMT Subject: CN=69750b4681b16648cd96200373a044d6329692dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9d:a0:98:1d:93:f1:f4:d1:4c:56:62:37:db: 85:eb:63:78:42:9d:6c:93:6b:82:82:7f:55:6f:22: 3f:f8:df:52:f2:64:5b:ec:65:f1:bd:0d:bb:53:a2: ab:dd:33:98:6a:2d:cc:18:7a:54:c0:0c:f5:9e:68: c6:1e:2b:a7:6a:19:68:22:4f:9d:09:12:54:44:38: 51:c4:fa:af:3b:53:5a:79:5a:65:53:6d:26:c3:86: 28:56:98:f3:38:d0:00:3a:9c:c3:e5:6b:32:44:8d: 08:08:56:dc:8a:4e:2c:52:34:4f:46:ef:a7:de:87: 68:9a:97:09:2d:61:0f:c2:6b:30:8e:76:f8:04:6e: 2f:3f:2d:c1:c2:06:0b:7c:8e:f8:03:a3:53:22:df: 5a:97:72:5c:a8:55:e5:23:9b:de:c1:7f:f7:21:86: 27:a4:7c:77:08:71:9b:be:95:4c:df:00:83:03:2c: 1e:7d:25:ed:16:50:92:76:44:70:6f:e9:4c:6b:2e: 86:f6:d8:aa:b4:20:43:9e:fd:9f:18:9a:7f:d7:21: 8f:bb:94:f1:ed:44:78:0b:01:72:11:66:63:01:aa: c9:7e:21:d6:dd:13:e1:ac:d7:12:0c:f1:8f:da:50: 6d:a5:89:3c:8a:d7:27:9c:94:dc:d6:e5:8e:a6:f3: c2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:75:0B:46:81:B1:66:48:CD:96:20:03:73:A0:44:D6:32:96:92:DD X509v3 Authority Key Identifier: keyid:AA:53:CD:2C:58:4A:3D:C1:62:08:BA:93:B0:DB:74:77:3B:3F:23:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:12:f3:30:1c:a4:1a:31:11:0b:4d:91:94:c1:44:7e:73:a4: 73:f9:b8:2f:1d:53:23:f9:ec:26:a8:ee:7a:38:1e:59:10:ba: 17:11:32:cc:b8:de:ea:19:61:25:8c:f6:e4:5e:cd:0e:c5:08: 01:74:15:57:27:48:08:cf:00:2d:1c:fc:7d:f1:59:48:0b:98: d2:78:56:9d:45:bc:91:fb:e8:21:2e:a5:b1:78:a6:d5:d0:a3: 5f:8b:2f:82:36:a9:71:dc:44:68:2b:c6:cd:6b:e2:15:e5:84: d8:7b:f9:cb:c9:f3:da:b4:ad:a6:96:af:8b:a6:b8:c9:f1:72: a0:d3:66:8c:da:ce:03:cf:d0:e1:ce:31:2c:32:18:fe:a3:78: 38:96:1d:93:a6:97:01:be:84:c5:45:99:bc:4b:2d:aa:29:77: 5f:48:3f:0a:71:30:02:f9:d5:57:40:a4:82:7a:7d:17:0e:a0: b1:75:cf:0e:4c:5e:a8:d2:86:13:35:ac:80:5b:89:35:a6:a9: 2b:b1:91:21:a6:73:3b:76:b8:99:6c:e3:16:2d:72:6e:29:d6: f8:74:1f:63:44:0a:21:0e:4c:85:4e:8c:30:80:f9:83:85:be: 3e:e4:81:9c:83:78:22:88:e3:d3:a9:9c:2d:98:4f:9f:3c:f6: c0:c7:43:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG1sP39tKYxGNuc5KIur6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNTNjZDJjNTg0YTNkYzE2MjA4YmE5M2IwZGI3NDc3M2Iz ZjIzYmUwHhcNMjUxMjA2MTAwMDQ3WhcNMjUxMjA3MTAwMDQ3WjAzMTEwLwYDVQQD Eyg2OTc1MGI0NjgxYjE2NjQ4Y2Q5NjIwMDM3M2EwNDRkNjMyOTY5MmRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJ2gmB2T8fTRTFZiN9uF62N4Qp1s k2uCgn9VbyI/+N9S8mRb7GXxvQ27U6Kr3TOYai3MGHpUwAz1nmjGHiunahloIk+d CRJURDhRxPqvO1NaeVplU20mw4YoVpjzONAAOpzD5WsyRI0ICFbcik4sUjRPRu+n 3odompcJLWEPwmswjnb4BG4vPy3BwgYLfI74A6NTIt9al3JcqFXlI5vewX/3IYYn pHx3CHGbvpVM3wCDAywefSXtFlCSdkRwb+lMay6G9tiqtCBDnv2fGJp/1yGPu5Tx 7UR4CwFyEWZjAarJfiHW3RPhrNcSDPGP2lBtpYk8itcnnJTc1uWOpvPC1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGl1C0aBsWZIzZYgA3OgRNYylpLdMB8GA1UdIwQY MBaAFKpTzSxYSj3BYgi6k7DbdHc7PyO+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWxQTkxGaEtQY0ZpQ0xxVHNOdDBkenNfSTc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9lNjcwYTctYWQ3OC00NTdlLWFkODAt MDA3OTc4YmRiMDUyLzEvcWxQTkxGaEtQY0ZpQ0xxVHNOdDBkenNfSTc0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy9lNjcwYTctYWQ3OC00NTdlLWFkODAtMDA3OTc4YmRiMDUy LzEvcWxQTkxGaEtQY0ZpQ0xxVHNOdDBkenNfSTc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIRLzMByk GjERC02RlMFEfnOkc/m4Lx1TI/nsJqjuejgeWRC6FxEyzLje6hlhJYz25F7NDsUI AXQVVydICM8ALRz8ffFZSAuY0nhWnUW8kfvoIS6lsXim1dCjX4svgjapcdxEaCvG zWviFeWE2Hv5y8nz2rStppavi6a4yfFyoNNmjNrOA8/Q4c4xLDIY/qN4OJYdk6aX Ab6ExUWZvEstqil3X0g/CnEwAvnVV0Ckgnp9Fw6gsXXPDkxeqNKGEzWsgFuJNaap K7GRIaZzO3a4mWzjFi1ybinW+HQfY0QKIQ5MhU6MMID5g4W+PuSBnIN4Iojj06mc LZhPnzz2wMdD9w== -----END CERTIFICATE-----Generated at Sat Dec 6 18:50:40 2025 by rpki-client