This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.mft File: qQ_wEQVOz-aKitx94mit5sCCdxE.mft (raw, json) Hash identifier: /4TK0lCvxrUapoJRl3EM8hwzY7Y49dpPJM6JKfK6IMA= Subject key identifier: 1B:0B:12:8C:24:B8:3D:35:75:DA:10:82:8B:72:EA:63:4C:E3:61:E9 Authority key identifier: A9:0F:F0:11:05:4E:CF:E6:8A:8A:DC:7D:E2:68:AD:E6:C0:82:77:11 Certificate issuer: /CN=a90ff011054ecfe68a8adc7de268ade6c0827711 Certificate serial: 019B34C552B989016B4229243829F5CCE4A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qQ_wEQVOz-aKitx94mit5sCCdxE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.mft Manifest number: 1780 Signing time: Fri 19 Dec 2025 04:01:45 +0000 Manifest this update: Fri 19 Dec 2025 04:01:45 +0000 Manifest next update: Sat 20 Dec 2025 04:01:45 +0000 Files and hashes: 1: qQ_wEQVOz-aKitx94mit5sCCdxE.crl (hash: 8P+BalrNNeQ6WsQqw5zMp+M405ci3rJVCf3W7cV1i7g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.mft rsync://rpki.ripe.net/repository/DEFAULT/qQ_wEQVOz-aKitx94mit5sCCdxE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c5:52:b9:89:01:6b:42:29:24:38:29:f5:cc:e4:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a90ff011054ecfe68a8adc7de268ade6c0827711 Validity Not Before: Dec 19 04:01:45 2025 GMT Not After : Dec 20 04:01:45 2025 GMT Subject: CN=1b0b128c24b83d3575da10828b72ea634ce361e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:20:4c:0d:2e:12:d1:52:6f:63:26:16:a2:28: 2c:d8:88:c8:10:66:e3:11:96:9b:56:a4:e8:5e:87: a4:43:fb:ab:dd:e8:f7:35:f3:4f:98:f3:47:7a:c5: 4e:19:07:6b:46:43:e5:37:4e:22:4b:37:37:75:ef: 53:6d:df:e9:75:ac:67:bb:83:a2:37:c1:02:52:18: 90:a1:57:80:39:57:d9:3e:53:82:4e:7d:e3:17:b7: 72:e3:36:44:6f:1b:28:0b:4d:8b:72:ed:5b:1a:e4: 2a:cf:6e:9f:a9:fc:a9:34:2b:18:ed:0d:e8:d2:3f: 05:c1:73:c7:a0:d4:94:64:d1:91:33:f4:22:0e:29: fe:79:0d:da:60:2b:6f:ce:61:99:f7:a5:1b:9a:3e: 2d:09:6a:b9:4e:f6:f0:3e:2b:48:de:0a:cc:dc:59: 63:80:3d:bb:e9:60:f0:d2:3a:ca:37:4c:2f:d2:ee: 35:ee:58:1a:34:a3:a8:4a:b7:b1:6d:e3:17:1a:c8: 53:8e:06:50:f7:99:26:96:3b:6c:89:37:2a:96:37: b9:4d:25:8d:4f:30:3c:b9:2c:8e:75:06:09:51:eb: c0:71:ac:80:ae:af:de:46:86:b7:1f:65:fc:00:17: d5:0f:9a:21:ef:5c:0b:ad:ff:53:41:d8:96:29:a0: 62:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:0B:12:8C:24:B8:3D:35:75:DA:10:82:8B:72:EA:63:4C:E3:61:E9 X509v3 Authority Key Identifier: keyid:A9:0F:F0:11:05:4E:CF:E6:8A:8A:DC:7D:E2:68:AD:E6:C0:82:77:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qQ_wEQVOz-aKitx94mit5sCCdxE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/ba73a2-f0e6-476f-8133-e99277037a43/1/qQ_wEQVOz-aKitx94mit5sCCdxE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:dc:7c:de:15:84:4d:f6:2c:9c:1c:1f:2c:cf:d0:41:47:53: d3:a8:95:5a:e1:6c:46:c1:bc:06:29:76:18:b4:e5:db:0e:69: a2:3c:92:29:3b:e4:bb:21:c6:c1:7b:44:61:1b:c8:11:c2:01: 2d:c5:92:65:ec:f4:7a:5b:21:e9:95:14:95:84:a8:2f:fa:db: d5:fa:66:14:f9:79:35:34:62:c6:69:c3:4c:22:d1:6d:d1:16: ca:25:01:84:6c:93:09:65:65:58:b1:94:a6:63:e4:85:01:1d: d4:b6:c4:20:c7:05:d7:08:c1:01:c3:dd:e5:86:19:28:93:7d: 02:c3:28:e6:54:59:87:d9:39:bc:cf:4b:11:58:ba:89:92:f0: d7:16:30:66:28:a9:08:68:1b:0b:ca:f1:6e:6c:4e:ff:83:59: 01:c9:de:5d:97:65:11:ba:c8:9a:ad:3f:60:69:7b:d3:c2:bd: 86:8c:38:bb:4b:ca:33:d3:92:d8:3e:4a:c2:01:c2:69:a6:41: b1:0a:d6:0c:a4:08:35:61:96:ef:99:55:1e:c5:0b:19:13:6f: 15:14:2d:f9:bd:8e:a0:1e:d6:b8:a3:14:c5:f3:c5:b6:e7:68: de:68:2b:36:f9:b7:20:7e:f4:07:f6:6b:ec:42:85:b4:ba:65: 35:82:5d:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xVK5iQFrQikkOCn1zOShMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5MGZmMDExMDU0ZWNmZTY4YThhZGM3ZGUyNjhhZGU2YzA4 Mjc3MTEwHhcNMjUxMjE5MDQwMTQ1WhcNMjUxMjIwMDQwMTQ1WjAzMTEwLwYDVQQD EygxYjBiMTI4YzI0YjgzZDM1NzVkYTEwODI4YjcyZWE2MzRjZTM2MWU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3yBMDS4S0VJvYyYWoigs2IjIEGbj EZabVqToXoekQ/ur3ej3NfNPmPNHesVOGQdrRkPlN04iSzc3de9Tbd/pdaxnu4Oi N8ECUhiQoVeAOVfZPlOCTn3jF7dy4zZEbxsoC02Lcu1bGuQqz26fqfypNCsY7Q3o 0j8FwXPHoNSUZNGRM/QiDin+eQ3aYCtvzmGZ96Ubmj4tCWq5TvbwPitI3grM3Flj gD276WDw0jrKN0wv0u417lgaNKOoSrexbeMXGshTjgZQ95kmljtsiTcqlje5TSWN TzA8uSyOdQYJUevAcayArq/eRoa3H2X8ABfVD5oh71wLrf9TQdiWKaBifwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBsLEowkuD01ddoQgoty6mNM42HpMB8GA1UdIwQY MBaAFKkP8BEFTs/miorcfeJorebAgncRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVFfd0VRVk96LWFLaXR4OTRtaXQ1c0NDZHhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9iYTczYTItZjBlNi00NzZmLTgxMzMt ZTk5Mjc3MDM3YTQzLzEvcVFfd0VRVk96LWFLaXR4OTRtaXQ1c0NDZHhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy9iYTczYTItZjBlNi00NzZmLTgxMzMtZTk5Mjc3MDM3YTQz LzEvcVFfd0VRVk96LWFLaXR4OTRtaXQ1c0NDZHhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOdx83hWE TfYsnBwfLM/QQUdT06iVWuFsRsG8Bil2GLTl2w5pojySKTvkuyHGwXtEYRvIEcIB LcWSZez0elsh6ZUUlYSoL/rb1fpmFPl5NTRixmnDTCLRbdEWyiUBhGyTCWVlWLGU pmPkhQEd1LbEIMcF1wjBAcPd5YYZKJN9AsMo5lRZh9k5vM9LEVi6iZLw1xYwZiip CGgbC8rxbmxO/4NZAcneXZdlEbrImq0/YGl708K9how4u0vKM9OS2D5KwgHCaaZB sQrWDKQINWGW75lVHsULGRNvFRQt+b2OoB7WuKMUxfPFtudo3mgrNvm3IH70B/Zr 7EKFtLplNYJdew== -----END CERTIFICATE-----Generated at Fri Dec 19 07:20:56 2025 by rpki-client