This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft File: QucVYSpqaXFPXj8uTLxI_OhKb1I.mft (raw, json) Hash identifier: p7LuNjOC8KhB6cbyKIBqKsU30Y8dveVBqPiY6lr4UVU= Subject key identifier: 14:0F:B9:15:18:4E:0C:A1:F5:8F:42:8D:26:5E:F2:BE:E5:BE:0D:C4 Authority key identifier: 42:E7:15:61:2A:6A:69:71:4F:5E:3F:2E:4C:BC:48:FC:E8:4A:6F:52 Certificate issuer: /CN=42e715612a6a69714f5e3f2e4cbc48fce84a6f52 Certificate serial: 019B3EDA8F72D2DB70EBDEC92E8E4B20922D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QucVYSpqaXFPXj8uTLxI_OhKb1I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft Manifest number: 1786 Signing time: Sun 21 Dec 2025 03:01:09 +0000 Manifest this update: Sun 21 Dec 2025 03:01:09 +0000 Manifest next update: Mon 22 Dec 2025 03:01:09 +0000 Files and hashes: 1: QucVYSpqaXFPXj8uTLxI_OhKb1I.crl (hash: sYLztorxb86I99P+7U91l2s56iQIW2gnFqdoY7JYDaQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft rsync://rpki.ripe.net/repository/DEFAULT/QucVYSpqaXFPXj8uTLxI_OhKb1I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:da:8f:72:d2:db:70:eb:de:c9:2e:8e:4b:20:92:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42e715612a6a69714f5e3f2e4cbc48fce84a6f52 Validity Not Before: Dec 21 03:01:09 2025 GMT Not After : Dec 22 03:01:09 2025 GMT Subject: CN=140fb915184e0ca1f58f428d265ef2bee5be0dc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0e:7f:0c:f5:96:a6:86:05:7a:24:55:0a:58: 01:a0:6f:cb:85:10:e2:3c:fa:5a:dc:f8:47:01:e8: ad:12:f5:18:c4:40:d4:f4:f1:6c:6f:29:8b:b4:07: 23:3b:fe:36:26:e0:6f:46:48:b0:d5:a2:14:aa:90: fb:f0:b3:61:19:f5:e0:c0:b9:67:21:93:79:a3:8e: fb:5b:28:2f:3b:5a:d0:45:23:0f:3e:a6:90:61:42: 57:58:28:3e:98:0f:ed:6f:b9:49:f1:66:8d:10:21: ea:85:dc:32:fa:4c:23:9e:dc:95:3d:c2:47:17:e3: 69:69:a3:39:95:cb:3b:5b:a9:78:96:19:cf:70:19: 98:19:9b:b7:7b:bc:18:57:3e:3c:c0:d8:8c:e7:b0: f7:77:42:83:ae:5c:09:e6:ab:4a:98:f1:f7:e7:0d: d2:0f:7d:3e:74:e0:49:46:e4:39:2b:27:b6:90:bd: c7:38:0f:2d:2b:c4:94:af:aa:75:3d:79:4e:df:c6: 0f:05:65:a7:23:31:d6:22:9c:2d:06:a0:79:74:f1: 80:1c:d6:91:45:77:6c:5f:c5:ea:08:88:5b:02:80: cc:53:96:5f:87:54:70:27:52:d0:5d:e8:2c:fb:f0: 91:7e:0b:02:74:d5:7e:22:aa:92:f0:ad:5f:77:80: 4e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:0F:B9:15:18:4E:0C:A1:F5:8F:42:8D:26:5E:F2:BE:E5:BE:0D:C4 X509v3 Authority Key Identifier: keyid:42:E7:15:61:2A:6A:69:71:4F:5E:3F:2E:4C:BC:48:FC:E8:4A:6F:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QucVYSpqaXFPXj8uTLxI_OhKb1I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:d2:80:48:69:92:79:8b:73:a7:8d:76:80:20:84:a2:2f:16: 74:a9:22:4f:e5:f8:78:29:d7:78:3c:8d:a2:11:78:e7:2d:82: a9:30:75:83:ec:42:af:ff:12:bb:99:4c:78:9d:18:77:9a:b7: 84:73:65:4e:62:23:6c:8f:c0:9e:76:cc:f0:e1:c2:98:a1:b5: 81:02:52:fc:53:a4:7b:cf:b0:1d:25:51:87:de:99:9c:2d:98: 73:8e:de:07:6c:c6:03:a0:7d:75:3a:c1:99:34:8a:83:8c:30: b0:b9:5f:ac:7a:a7:86:53:77:20:c7:9a:b1:34:25:33:34:88: 18:2d:a8:da:56:e9:ae:c5:c2:77:2e:7b:79:a1:72:b1:11:34: 17:19:d6:19:66:d3:7c:4b:20:24:f5:c4:48:e2:6c:81:0d:f3: 93:26:20:e1:99:87:8a:50:c6:15:e5:89:1b:17:61:53:fc:c3: e0:a9:48:ce:61:28:1f:6d:b1:bd:0f:8b:6e:62:86:57:43:18: 50:08:e7:97:b1:ff:e9:b6:36:a2:9a:d6:47:e7:de:6d:da:fe: b8:59:6a:09:b1:e6:71:37:22:92:49:37:97:45:a8:a5:70:3e: 6a:8c:68:ab:3e:c0:68:10:12:48:1e:24:05:ae:63:7d:c1:26: dd:ec:b6:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+2o9y0ttw697JLo5LIJItMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyZTcxNTYxMmE2YTY5NzE0ZjVlM2YyZTRjYmM0OGZjZTg0 YTZmNTIwHhcNMjUxMjIxMDMwMTA5WhcNMjUxMjIyMDMwMTA5WjAzMTEwLwYDVQQD EygxNDBmYjkxNTE4NGUwY2ExZjU4ZjQyOGQyNjVlZjJiZWU1YmUwZGM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxg5/DPWWpoYFeiRVClgBoG/LhRDi PPpa3PhHAeitEvUYxEDU9PFsbymLtAcjO/42JuBvRkiw1aIUqpD78LNhGfXgwLln IZN5o477WygvO1rQRSMPPqaQYUJXWCg+mA/tb7lJ8WaNECHqhdwy+kwjntyVPcJH F+NpaaM5lcs7W6l4lhnPcBmYGZu3e7wYVz48wNiM57D3d0KDrlwJ5qtKmPH35w3S D30+dOBJRuQ5Kye2kL3HOA8tK8SUr6p1PXlO38YPBWWnIzHWIpwtBqB5dPGAHNaR RXdsX8XqCIhbAoDMU5Zfh1RwJ1LQXegs+/CRfgsCdNV+IqqS8K1fd4BOnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBQPuRUYTgyh9Y9CjSZe8r7lvg3EMB8GA1UdIwQY MBaAFELnFWEqamlxT14/Lky8SPzoSm9SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXVjVllTcHFhWEZQWGo4dVRMeElfT2hLYjFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy82ZmI5YzMtNmM5Yy00MzllLThjY2Et ZDk5YTIxOThhNjhkLzEvUXVjVllTcHFhWEZQWGo4dVRMeElfT2hLYjFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy82ZmI5YzMtNmM5Yy00MzllLThjY2EtZDk5YTIxOThhNjhk LzEvUXVjVllTcHFhWEZQWGo4dVRMeElfT2hLYjFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ9KASGmS eYtzp412gCCEoi8WdKkiT+X4eCnXeDyNohF45y2CqTB1g+xCr/8Su5lMeJ0Yd5q3 hHNlTmIjbI/AnnbM8OHCmKG1gQJS/FOke8+wHSVRh96ZnC2Yc47eB2zGA6B9dTrB mTSKg4wwsLlfrHqnhlN3IMeasTQlMzSIGC2o2lbprsXCdy57eaFysRE0FxnWGWbT fEsgJPXESOJsgQ3zkyYg4ZmHilDGFeWJGxdhU/zD4KlIzmEoH22xvQ+LbmKGV0MY UAjnl7H/6bY2oprWR+febdr+uFlqCbHmcTcikkk3l0WopXA+aoxoqz7AaBASSB4k Ba5jfcEm3ey2bg== -----END CERTIFICATE-----Generated at Sun Dec 21 06:52:53 2025 by rpki-client