This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft File: QclkksAECK1U1zDA62KeOgtQ2A8.mft (raw, json) Hash identifier: yoFNgdTSxgWNurUcB6Ueb6GURLZnXQGZpdWZePWnnPI= Subject key identifier: 53:C3:3B:0D:1D:95:69:FE:B9:21:95:21:F3:A2:3B:BE:F3:05:1F:8E Authority key identifier: 41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F Certificate issuer: /CN=41c96492c00408ad54d730c0eb629e3a0b50d80f Certificate serial: 019AF31C9E05759C9734760AE2E1FB74EB81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft Manifest number: 03EC Signing time: Sat 06 Dec 2025 10:02:10 +0000 Manifest this update: Sat 06 Dec 2025 10:02:10 +0000 Manifest next update: Sun 07 Dec 2025 10:02:10 +0000 Files and hashes: 1: EpeCh_PHvVwvR1jtfMGPQVrMsrQ.roa (hash: XKVWPCeZYhwf3z1v0hUSbNv7x/hm4cVMh5YcJnXqtvg=) 2: QclkksAECK1U1zDA62KeOgtQ2A8.crl (hash: +1TQadTpE51NJ3Ix2CL7eyeYeGH4a73tvztc3kkYyF4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:9e:05:75:9c:97:34:76:0a:e2:e1:fb:74:eb:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41c96492c00408ad54d730c0eb629e3a0b50d80f Validity Not Before: Dec 6 10:02:10 2025 GMT Not After : Dec 7 10:02:10 2025 GMT Subject: CN=53c33b0d1d9569feb9219521f3a23bbef3051f8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:ed:89:65:ad:b9:04:cd:7d:0c:fe:f3:41:b0: 66:db:22:00:0f:77:b5:36:c9:e5:86:67:4b:a6:b7: 17:04:90:a0:b6:c9:b3:a6:30:75:92:c3:b4:e9:87: ce:7f:75:66:31:36:ee:18:d2:c5:20:fe:ca:2e:7d: 3d:05:5e:c3:59:e5:80:27:c8:96:a5:84:f4:88:f1: 6e:71:a4:66:bc:b4:3c:b7:69:2d:c6:b0:e6:e4:59: 88:54:37:c1:08:0d:ea:3d:f8:ef:01:66:5e:fc:87: 5a:c1:8b:1f:44:8e:12:35:40:6e:d0:63:02:c1:8d: f7:a7:15:d1:a8:3c:61:8e:42:ee:4c:9b:6f:45:be: 04:39:03:b6:73:b2:ad:13:dc:3f:08:1e:75:a8:a9: bc:01:bd:cb:30:b9:dd:9b:59:85:3c:30:be:dd:a6: 29:e7:fa:a7:eb:ff:96:45:e9:f7:f5:54:33:eb:aa: 45:43:ed:94:37:85:fc:5f:5c:17:f8:88:64:9d:4e: 09:af:ac:ce:ad:83:d0:12:60:b4:6d:89:59:3e:33: c6:75:7c:42:a9:08:6e:56:1f:76:77:e8:b6:6b:05: 61:24:c1:61:d5:1a:75:27:6b:f7:66:18:70:15:1c: c5:bc:4b:ba:fc:23:fa:af:0c:b8:cc:1d:78:43:2c: ed:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:C3:3B:0D:1D:95:69:FE:B9:21:95:21:F3:A2:3B:BE:F3:05:1F:8E X509v3 Authority Key Identifier: keyid:41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:30:e5:88:be:d3:0d:f5:e3:a7:e8:26:fc:4a:aa:fb:ee:17: 40:46:7a:96:ff:59:95:6e:f1:10:cb:44:51:36:60:ce:9b:65: 69:8e:89:f8:b7:4d:7f:44:ef:6f:1a:58:de:04:15:99:10:4e: 97:6e:61:ab:06:61:b9:b1:a8:b6:76:6b:a8:ce:d9:70:99:80: 40:25:1b:77:c6:5c:d8:41:2b:dd:cb:7e:14:28:a4:a6:b2:d9: aa:b4:8c:55:06:6f:f6:35:03:00:dc:14:ae:dd:75:ed:1a:5d: dc:a5:42:53:8f:18:b7:cf:9e:16:af:2e:de:af:a4:c0:f1:d6: 0a:74:12:a8:b1:58:2b:77:7e:45:7e:fe:92:c8:cc:7a:d9:19: 56:75:23:0f:8c:02:d1:9f:8d:02:20:ce:b8:dc:6b:12:9b:6c: ff:d5:0e:d2:de:75:ab:46:a6:40:4c:65:ca:0b:f5:e3:3f:42: 5a:03:03:40:18:db:e7:6c:9e:06:d0:58:8e:a2:f4:6b:c4:e8: da:c8:b8:68:4e:39:f1:fb:fe:b9:10:c4:c4:8f:7c:98:15:66: b5:31:73:a7:67:1c:30:2e:54:e6:38:72:95:c3:7b:5c:52:0d: e4:a6:06:d4:be:43:38:f4:e7:60:a2:80:40:93:be:04:ce:1a: 74:8f:78:fa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHJ4FdZyXNHYK4uH7dOuBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxYzk2NDkyYzAwNDA4YWQ1NGQ3MzBjMGViNjI5ZTNhMGI1 MGQ4MGYwHhcNMjUxMjA2MTAwMjEwWhcNMjUxMjA3MTAwMjEwWjAzMTEwLwYDVQQD Eyg1M2MzM2IwZDFkOTU2OWZlYjkyMTk1MjFmM2EyM2JiZWYzMDUxZjhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAke2JZa25BM19DP7zQbBm2yIAD3e1 NsnlhmdLprcXBJCgtsmzpjB1ksO06YfOf3VmMTbuGNLFIP7KLn09BV7DWeWAJ8iW pYT0iPFucaRmvLQ8t2ktxrDm5FmIVDfBCA3qPfjvAWZe/IdawYsfRI4SNUBu0GMC wY33pxXRqDxhjkLuTJtvRb4EOQO2c7KtE9w/CB51qKm8Ab3LMLndm1mFPDC+3aYp 5/qn6/+WRen39VQz66pFQ+2UN4X8X1wX+IhknU4Jr6zOrYPQEmC0bYlZPjPGdXxC qQhuVh92d+i2awVhJMFh1Rp1J2v3ZhhwFRzFvEu6/CP6rwy4zB14QyztVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFPDOw0dlWn+uSGVIfOiO77zBR+OMB8GA1UdIwQY MBaAFEHJZJLABAitVNcwwOtinjoLUNgPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWNsa2tzQUVDSzFVMXpEQTYyS2VPZ3RRMkE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8xOWQwOTAtMTAzYi00M2RiLWIwNzQt YTRlMzdjODY3YjA5LzEvUWNsa2tzQUVDSzFVMXpEQTYyS2VPZ3RRMkE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS8xOWQwOTAtMTAzYi00M2RiLWIwNzQtYTRlMzdjODY3YjA5 LzEvUWNsa2tzQUVDSzFVMXpEQTYyS2VPZ3RRMkE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjTDliL7T DfXjp+gm/Eqq++4XQEZ6lv9ZlW7xEMtEUTZgzptlaY6J+LdNf0TvbxpY3gQVmRBO l25hqwZhubGotnZrqM7ZcJmAQCUbd8Zc2EEr3ct+FCikprLZqrSMVQZv9jUDANwU rt117Rpd3KVCU48Yt8+eFq8u3q+kwPHWCnQSqLFYK3d+RX7+ksjMetkZVnUjD4wC 0Z+NAiDOuNxrEpts/9UO0t51q0amQExlygv14z9CWgMDQBjb52yeBtBYjqL0a8To 2si4aE458fv+uRDExI98mBVmtTFzp2ccMC5U5jhylcN7XFIN5KYG1L5DOPTnYKKA QJO+BM4adI94+g== -----END CERTIFICATE-----Generated at Sat Dec 6 15:01:28 2025 by rpki-client