This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft File: qsV1yvoAvEHVfElKwfXbz-54My4.mft (raw, json) Hash identifier: as7TPrJA/6hGs6u0CbWL1Os9OWmE4nRxFSpJDKNvE+0= Subject key identifier: 42:61:DB:F5:F9:F7:B0:81:6D:F7:F0:D0:19:E5:5E:8D:31:D3:FD:2E Authority key identifier: AA:C5:75:CA:FA:00:BC:41:D5:7C:49:4A:C1:F5:DB:CF:EE:78:33:2E Certificate issuer: /CN=aac575cafa00bc41d57c494ac1f5dbcfee78332e Certificate serial: 019AF389DF99DA08AA7FA9F54ABB9F0AC88A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 12:01:30 +0000 Manifest this update: Sat 06 Dec 2025 12:01:30 +0000 Manifest next update: Sun 07 Dec 2025 12:01:30 +0000 Files and hashes: 1: XtPvNkbtFvkSrn1XGkdkM55xfJ4.roa (hash: XvdvDvnaLffIXutFMAXtL47S87Pb9dwgFS/EYsDxu5Q=) 2: qsV1yvoAvEHVfElKwfXbz-54My4.crl (hash: StcL4MyA5hzsiXQY7kHDRCOKjvsJi9A5ItDveFMlF6g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:df:99:da:08:aa:7f:a9:f5:4a:bb:9f:0a:c8:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aac575cafa00bc41d57c494ac1f5dbcfee78332e Validity Not Before: Dec 6 12:01:30 2025 GMT Not After : Dec 7 12:01:30 2025 GMT Subject: CN=4261dbf5f9f7b0816df7f0d019e55e8d31d3fd2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1f:f8:49:0a:e7:9a:8d:93:d9:11:b3:41:34: 73:5e:db:1d:68:f4:38:50:e9:e2:21:d9:01:a5:59: 6a:5a:94:85:d1:c8:70:6c:57:a5:ac:82:fa:80:a9: a6:db:fa:29:43:c5:d0:fc:2d:e1:ea:40:9d:46:7e: b7:55:3a:8c:a8:06:8f:6f:e3:07:7e:fc:e3:32:2d: 01:ea:e1:66:57:97:d4:e0:99:96:52:46:3d:fd:2c: 60:0c:60:d7:e1:45:fe:3b:91:6a:49:ea:70:45:68: c0:66:f4:bd:2b:a8:b3:96:f9:29:a1:0e:57:83:51: 41:10:6f:68:7e:af:85:c9:fd:e4:7c:23:39:20:6c: 02:32:9e:03:87:e5:90:93:3f:fe:ee:87:81:35:fe: 57:98:17:2a:3b:57:c0:41:a8:2b:61:51:60:ed:b5: 67:72:8d:d1:e1:e5:b9:f4:98:f8:2c:f3:c7:0e:71: b4:87:f6:54:da:c4:2a:c0:da:e1:96:29:f4:3d:bd: 97:e8:a4:1d:9b:03:60:7d:06:f8:0b:e5:ce:f4:47: 05:06:14:43:4f:09:44:68:87:d2:c0:38:bb:8b:1a: d9:ee:b3:e2:f5:32:9a:70:ec:35:8d:54:c2:35:7b: 89:f1:10:e9:5a:d9:67:28:97:53:55:07:e3:3a:38: e5:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:61:DB:F5:F9:F7:B0:81:6D:F7:F0:D0:19:E5:5E:8D:31:D3:FD:2E X509v3 Authority Key Identifier: keyid:AA:C5:75:CA:FA:00:BC:41:D5:7C:49:4A:C1:F5:DB:CF:EE:78:33:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:0e:03:4f:fe:76:1b:c1:aa:21:39:e0:bd:72:74:5d:4f:69: 87:34:9b:b6:8c:04:50:fa:27:ab:22:4f:ea:43:6f:93:c0:70: 8e:81:0b:10:7b:e7:f2:c8:4d:fa:ab:d8:ab:90:f3:18:78:fd: 89:45:c1:0c:f6:c8:51:91:b7:ca:7b:c6:a4:a5:ff:ac:47:22: c8:26:88:33:ed:31:c0:b7:82:77:ea:49:1b:e4:d7:74:14:da: 29:c8:bd:a4:2c:b2:0a:55:84:dd:fe:9b:24:07:98:31:0f:4a: 40:9b:e2:6b:03:db:0c:7a:d5:6b:a6:80:67:77:47:c2:bc:8a: 18:12:5b:80:5f:ac:05:65:9c:f9:93:c9:55:fe:62:92:61:9a: 2d:0b:d4:dd:2b:40:47:85:bc:e8:93:da:99:a2:e2:69:ad:d9: cb:fb:c4:c3:9a:06:48:c4:13:0e:23:81:a6:9a:47:25:5b:99: 2b:68:62:7c:9d:15:5f:36:51:d7:62:a3:2e:ec:f9:d3:39:81: 36:6e:f7:36:46:73:17:04:28:a2:9a:bb:2b:9f:d9:23:66:5a: a6:7e:2d:99:0b:7b:25:4f:a7:27:a0:6f:7b:84:04:42:8a:46: af:69:85:f7:04:73:c6:96:ab:7d:56:46:92:d8:14:d8:a4:1b: 3c:dd:00:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzid+Z2giqf6n1SrufCsiKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhYzU3NWNhZmEwMGJjNDFkNTdjNDk0YWMxZjVkYmNmZWU3 ODMzMmUwHhcNMjUxMjA2MTIwMTMwWhcNMjUxMjA3MTIwMTMwWjAzMTEwLwYDVQQD Eyg0MjYxZGJmNWY5ZjdiMDgxNmRmN2YwZDAxOWU1NWU4ZDMxZDNmZDJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwR/4SQrnmo2T2RGzQTRzXtsdaPQ4 UOniIdkBpVlqWpSF0chwbFelrIL6gKmm2/opQ8XQ/C3h6kCdRn63VTqMqAaPb+MH fvzjMi0B6uFmV5fU4JmWUkY9/SxgDGDX4UX+O5FqSepwRWjAZvS9K6izlvkpoQ5X g1FBEG9ofq+Fyf3kfCM5IGwCMp4Dh+WQkz/+7oeBNf5XmBcqO1fAQagrYVFg7bVn co3R4eW59Jj4LPPHDnG0h/ZU2sQqwNrhlin0Pb2X6KQdmwNgfQb4C+XO9EcFBhRD TwlEaIfSwDi7ixrZ7rPi9TKacOw1jVTCNXuJ8RDpWtlnKJdTVQfjOjjliwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEJh2/X597CBbffw0BnlXo0x0/0uMB8GA1UdIwQY MBaAFKrFdcr6ALxB1XxJSsH128/ueDMuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXNWMXl2b0F2RUhWZkVsS3dmWGJ6LTU0TXk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8zNWQ1OTgtYzMyYy00OWE3LWIxZjYt OGY5MTNlMjY5NmU1LzEvcXNWMXl2b0F2RUhWZkVsS3dmWGJ6LTU0TXk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi8zNWQ1OTgtYzMyYy00OWE3LWIxZjYtOGY5MTNlMjY5NmU1 LzEvcXNWMXl2b0F2RUhWZkVsS3dmWGJ6LTU0TXk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAng4DT/52 G8GqITngvXJ0XU9phzSbtowEUPonqyJP6kNvk8BwjoELEHvn8shN+qvYq5DzGHj9 iUXBDPbIUZG3ynvGpKX/rEciyCaIM+0xwLeCd+pJG+TXdBTaKci9pCyyClWE3f6b JAeYMQ9KQJviawPbDHrVa6aAZ3dHwryKGBJbgF+sBWWc+ZPJVf5ikmGaLQvU3StA R4W86JPamaLiaa3Zy/vEw5oGSMQTDiOBpppHJVuZK2hifJ0VXzZR12KjLuz50zmB Nm73NkZzFwQoopq7K5/ZI2Zapn4tmQt7JU+nJ6Bve4QEQopGr2mF9wRzxparfVZG ktgU2KQbPN0ABA== -----END CERTIFICATE-----Generated at Sat Dec 6 18:12:10 2025 by rpki-client