This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.mft File: k8QjPQuo54YYoJpyVh3M0GSYyE4.mft (raw, json) Hash identifier: f1SJ9LsxXq2+y3iVUuzzfNiVSvLTUUKzcfd70mDMm1U= Subject key identifier: 37:C2:0F:1D:BE:C6:FA:60:1A:41:99:9B:61:D6:74:04:A0:FE:CF:8C Authority key identifier: 93:C4:23:3D:0B:A8:E7:86:18:A0:9A:72:56:1D:CC:D0:64:98:C8:4E Certificate issuer: /CN=93c4233d0ba8e78618a09a72561dccd06498c84e Certificate serial: 019AF12CBF737BB11B136397BC9AC7BCFF0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k8QjPQuo54YYoJpyVh3M0GSYyE4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 01:00:32 +0000 Manifest this update: Sat 06 Dec 2025 01:00:32 +0000 Manifest next update: Sun 07 Dec 2025 01:00:32 +0000 Files and hashes: 1: k8QjPQuo54YYoJpyVh3M0GSYyE4.crl (hash: xIt/svPzJBXnLAzy4xJiAdw0+ive9SgnqmowQCEp+c8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.mft rsync://rpki.ripe.net/repository/DEFAULT/k8QjPQuo54YYoJpyVh3M0GSYyE4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:bf:73:7b:b1:1b:13:63:97:bc:9a:c7:bc:ff:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93c4233d0ba8e78618a09a72561dccd06498c84e Validity Not Before: Dec 6 01:00:32 2025 GMT Not After : Dec 7 01:00:32 2025 GMT Subject: CN=37c20f1dbec6fa601a41999b61d67404a0fecf8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7d:df:3f:c2:bc:e0:5d:37:40:54:5f:fe:6e: b7:6e:0c:e6:81:97:e0:34:1b:b5:03:27:c3:66:6a: 4c:44:2b:db:ac:17:e9:27:8c:44:92:31:d5:98:c8: f2:82:8a:7c:50:7c:ef:67:b2:ec:c0:94:e3:a4:a8: 24:5d:34:d9:9b:7d:a3:e9:3d:65:e0:18:4b:6a:05: 51:c0:be:7b:51:1e:a8:33:ed:7a:5d:66:23:c1:3f: 63:ab:81:e7:3c:eb:c5:00:67:37:02:15:a0:75:aa: c8:1b:61:5a:49:c8:d4:fd:ce:0d:c4:be:f6:bf:8a: 8f:41:45:ce:a9:5e:db:31:18:07:65:1c:a4:94:6e: 51:58:3c:76:87:77:7a:4a:3d:81:bf:b8:74:74:f5: b7:ff:73:fa:ba:82:94:d4:88:81:0f:42:f8:d0:9a: d8:8d:35:db:1c:bc:00:03:ba:cc:39:d8:a9:c2:0e: 89:89:11:42:e0:d9:bc:62:6c:e2:6b:a5:1b:22:7a: c5:3b:b6:26:f2:86:ee:b5:f3:d7:e5:80:d3:79:b5: 22:f9:e1:2b:a4:2a:82:b8:72:f9:1e:cf:98:62:bd: 06:8b:b3:60:56:f7:69:5d:fd:3b:3b:d7:85:5f:f1: 9b:27:d2:83:ea:ab:e0:2e:3c:80:4c:dd:6b:66:a1: c6:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C2:0F:1D:BE:C6:FA:60:1A:41:99:9B:61:D6:74:04:A0:FE:CF:8C X509v3 Authority Key Identifier: keyid:93:C4:23:3D:0B:A8:E7:86:18:A0:9A:72:56:1D:CC:D0:64:98:C8:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k8QjPQuo54YYoJpyVh3M0GSYyE4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:bb:a4:d7:3d:3b:fc:3c:ca:b0:79:c2:57:ab:76:08:07:da: 4d:e9:d8:85:53:f7:c5:ea:55:97:39:66:c4:df:13:0f:ce:4c: 2f:c7:e8:73:82:1f:12:58:96:64:3f:c4:30:2d:de:d1:23:8b: 0a:e3:62:6c:e2:91:88:6f:db:4c:0b:a1:2d:c6:98:f2:ac:58: 64:06:7b:0e:21:3f:ea:21:3b:c4:21:d0:d6:36:19:77:fd:27: 3e:88:4d:69:b2:8d:50:1e:22:60:cb:2d:0c:ab:c0:82:67:06: c6:6e:5c:09:71:18:78:05:31:6b:53:85:11:9a:42:02:e1:45: c7:62:cc:92:64:73:0b:75:a5:02:27:8e:dc:d0:80:4a:35:f4: e1:9c:37:e2:6b:11:71:b4:6a:7f:5b:0e:a3:0c:54:d0:b7:68: 02:ac:c2:b5:ba:d6:7d:ad:c4:d3:97:a8:24:50:5b:8c:e2:1d: 10:bd:30:06:f2:0e:e1:70:e6:b3:68:4a:77:0d:bf:aa:54:1e: 21:11:a1:39:08:27:64:60:de:ce:31:23:49:2d:85:da:d2:8f: dc:41:07:6f:b2:77:3d:95:86:ad:04:e1:30:84:18:88:1f:12: 65:c9:65:d0:bf:72:b7:c5:90:6b:b4:cc:2b:ac:56:9f:78:1d: 56:90:34:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLL9ze7EbE2OXvJrHvP8NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzYzQyMzNkMGJhOGU3ODYxOGEwOWE3MjU2MWRjY2QwNjQ5 OGM4NGUwHhcNMjUxMjA2MDEwMDMyWhcNMjUxMjA3MDEwMDMyWjAzMTEwLwYDVQQD EygzN2MyMGYxZGJlYzZmYTYwMWE0MTk5OWI2MWQ2NzQwNGEwZmVjZjhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw33fP8K84F03QFRf/m63bgzmgZfg NBu1AyfDZmpMRCvbrBfpJ4xEkjHVmMjygop8UHzvZ7LswJTjpKgkXTTZm32j6T1l 4BhLagVRwL57UR6oM+16XWYjwT9jq4HnPOvFAGc3AhWgdarIG2FaScjU/c4NxL72 v4qPQUXOqV7bMRgHZRyklG5RWDx2h3d6Sj2Bv7h0dPW3/3P6uoKU1IiBD0L40JrY jTXbHLwAA7rMOdipwg6JiRFC4Nm8Ymzia6UbInrFO7Ym8obutfPX5YDTebUi+eEr pCqCuHL5Hs+YYr0Gi7NgVvdpXf07O9eFX/GbJ9KD6qvgLjyATN1rZqHGiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDfCDx2+xvpgGkGZm2HWdASg/s+MMB8GA1UdIwQY MBaAFJPEIz0LqOeGGKCaclYdzNBkmMhOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazhRalBRdW81NFlZb0pweVZoM00wR1NZeUU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi81Zjc1N2ItNGYyMi00M2RiLTlkYTkt MjQ5NjExNmU0MTVkLzEvazhRalBRdW81NFlZb0pweVZoM00wR1NZeUU0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi81Zjc1N2ItNGYyMi00M2RiLTlkYTktMjQ5NjExNmU0MTVk LzEvazhRalBRdW81NFlZb0pweVZoM00wR1NZeUU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJruk1z07 /DzKsHnCV6t2CAfaTenYhVP3xepVlzlmxN8TD85ML8foc4IfEliWZD/EMC3e0SOL CuNibOKRiG/bTAuhLcaY8qxYZAZ7DiE/6iE7xCHQ1jYZd/0nPohNabKNUB4iYMst DKvAgmcGxm5cCXEYeAUxa1OFEZpCAuFFx2LMkmRzC3WlAieO3NCASjX04Zw34msR cbRqf1sOowxU0LdoAqzCtbrWfa3E05eoJFBbjOIdEL0wBvIO4XDms2hKdw2/qlQe IRGhOQgnZGDezjEjSS2F2tKP3EEHb7J3PZWGrQThMIQYiB8SZcll0L9yt8WQa7TM K6xWn3gdVpA0vQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:00:06 2025 by rpki-client