This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft File: sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft (raw, json) Hash identifier: v8cRvRqDNzTl4BLtX8C0MHbW/+YnHNXWb6vpG2sd2bM= Subject key identifier: F2:1D:4B:82:79:3F:22:77:7E:BC:ED:54:7E:78:9D:08:38:33:4D:3B Authority key identifier: B2:A8:53:71:E9:2F:39:A2:BE:42:47:60:B0:4E:47:AD:9D:A3:ED:3B Certificate issuer: /CN=b2a85371e92f39a2be424760b04e47ad9da3ed3b Certificate serial: 019AF163E88A8CEB52E4301968164A7E803B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft Manifest number: 03FF Signing time: Sat 06 Dec 2025 02:00:47 +0000 Manifest this update: Sat 06 Dec 2025 02:00:47 +0000 Manifest next update: Sun 07 Dec 2025 02:00:47 +0000 Files and hashes: 1: sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl (hash: 9DXc3JOpi/zYvv5WEVNXgfi1FcCfe8uln2nTqMud7NI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:63:e8:8a:8c:eb:52:e4:30:19:68:16:4a:7e:80:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2a85371e92f39a2be424760b04e47ad9da3ed3b Validity Not Before: Dec 6 02:00:47 2025 GMT Not After : Dec 7 02:00:47 2025 GMT Subject: CN=f21d4b82793f22777ebced547e789d0838334d3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:24:e2:57:69:83:db:cc:b7:c3:fb:67:19:1e: 40:b6:47:a7:66:16:84:36:bc:1c:f2:24:91:73:a8: 90:f7:d7:37:e1:32:5d:15:10:3b:64:f0:8f:8c:88: 44:f7:87:fb:c9:f6:b7:23:dc:c9:28:d2:f3:73:1c: c3:0a:04:78:b2:2d:a7:78:5e:c6:ed:26:68:ef:cd: 3f:0a:68:9d:67:15:6f:8e:73:0b:32:fc:c9:1e:d6: e0:2b:5e:2f:30:7f:33:73:e0:be:ea:62:c0:70:34: c3:c6:a1:d9:71:13:d0:39:c7:e8:0d:69:4c:7d:59: bd:fa:b9:03:54:b6:5c:a2:09:5f:49:7c:f5:9b:53: ce:84:b0:00:89:cf:61:a7:8e:4f:b2:d2:d1:78:00: 57:6f:c1:80:3a:f8:ca:14:c3:c6:ce:75:2a:0b:03: 06:b5:00:7f:36:a5:84:4d:6e:86:da:83:5e:07:4b: 6b:48:fd:0d:fa:72:5f:c0:bf:5f:ae:56:f5:70:91: f2:48:8b:49:d0:89:d5:a9:ec:b8:c1:76:c0:f2:50: 80:f9:5e:50:a6:76:ec:91:80:08:e8:67:72:a7:ed: e5:65:75:6d:a8:49:b6:88:33:15:92:db:14:71:89: 0c:ad:b3:c6:df:fe:98:af:23:ee:41:e5:75:73:d4: 49:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:1D:4B:82:79:3F:22:77:7E:BC:ED:54:7E:78:9D:08:38:33:4D:3B X509v3 Authority Key Identifier: keyid:B2:A8:53:71:E9:2F:39:A2:BE:42:47:60:B0:4E:47:AD:9D:A3:ED:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:a7:42:8e:07:f0:ff:16:31:73:01:66:42:0a:cb:2e:2d:89: 4f:cf:b7:a3:5c:a0:d2:a9:c1:95:b2:4b:3b:e6:0d:d3:2d:47: 0d:6d:03:ce:e1:34:44:8d:4e:67:0e:9d:de:0b:56:86:a8:d4: dc:47:cc:e1:0f:e7:08:e9:5b:5d:33:84:69:d7:8e:46:40:fa: 68:79:e4:12:84:4d:c8:90:f5:99:d2:7a:c6:6b:01:4f:1b:dd: 2b:c1:ea:cb:c7:47:c3:28:a1:df:b2:d4:c2:e8:0d:ad:72:33: c3:85:ad:1d:87:4b:bd:75:34:55:9e:82:2f:44:e2:ff:28:30: 28:4b:8f:08:48:12:dc:0b:ac:7c:ac:cd:f3:89:2f:87:8c:c2: 10:8c:60:ad:8f:04:b2:70:08:df:cf:2a:c5:ea:29:6c:05:20: 31:93:cf:55:6b:79:30:ec:ed:de:24:e0:30:1d:82:17:06:91: b1:08:fd:3c:6e:a3:a0:a8:85:0e:fe:42:04:80:28:c4:ca:4d: 25:da:23:d0:cb:25:c3:5d:6a:24:3b:2f:27:f8:1e:94:5e:e3: dc:9a:eb:46:5e:33:7c:e5:27:42:f8:63:a5:ab:67:8f:d9:16: 04:e2:0f:fa:7e:f3:ae:ea:ba:9c:aa:93:08:4b:88:c5:f2:ab: b5:1e:3c:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxY+iKjOtS5DAZaBZKfoA7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyYTg1MzcxZTkyZjM5YTJiZTQyNDc2MGIwNGU0N2FkOWRh M2VkM2IwHhcNMjUxMjA2MDIwMDQ3WhcNMjUxMjA3MDIwMDQ3WjAzMTEwLwYDVQQD EyhmMjFkNGI4Mjc5M2YyMjc3N2ViY2VkNTQ3ZTc4OWQwODM4MzM0ZDNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3CTiV2mD28y3w/tnGR5AtkenZhaE Nrwc8iSRc6iQ99c34TJdFRA7ZPCPjIhE94f7yfa3I9zJKNLzcxzDCgR4si2neF7G 7SZo780/CmidZxVvjnMLMvzJHtbgK14vMH8zc+C+6mLAcDTDxqHZcRPQOcfoDWlM fVm9+rkDVLZcoglfSXz1m1POhLAAic9hp45PstLReABXb8GAOvjKFMPGznUqCwMG tQB/NqWETW6G2oNeB0trSP0N+nJfwL9frlb1cJHySItJ0InVqey4wXbA8lCA+V5Q pnbskYAI6Gdyp+3lZXVtqEm2iDMVktsUcYkMrbPG3/6YryPuQeV1c9RJLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPIdS4J5PyJ3frztVH54nQg4M007MB8GA1UdIwQY MBaAFLKoU3HpLzmivkJHYLBOR62do+07MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3FoVGNla3ZPYUstUWtkZ3NFNUhyWjJqN1RzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9mNWQ3MzAtZjhlYi00ZjgwLTlhOWMt OWFiZTRlNmMyYmUxLzEvc3FoVGNla3ZPYUstUWtkZ3NFNUhyWjJqN1RzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi9mNWQ3MzAtZjhlYi00ZjgwLTlhOWMtOWFiZTRlNmMyYmUx LzEvc3FoVGNla3ZPYUstUWtkZ3NFNUhyWjJqN1RzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYKdCjgfw /xYxcwFmQgrLLi2JT8+3o1yg0qnBlbJLO+YN0y1HDW0DzuE0RI1OZw6d3gtWhqjU 3EfM4Q/nCOlbXTOEadeORkD6aHnkEoRNyJD1mdJ6xmsBTxvdK8Hqy8dHwyih37LU wugNrXIzw4WtHYdLvXU0VZ6CL0Ti/ygwKEuPCEgS3AusfKzN84kvh4zCEIxgrY8E snAI388qxeopbAUgMZPPVWt5MOzt3iTgMB2CFwaRsQj9PG6joKiFDv5CBIAoxMpN Jdoj0Mslw11qJDsvJ/gelF7j3JrrRl4zfOUnQvhjpatnj9kWBOIP+n7zruq6nKqT CEuIxfKrtR48wA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:36:50 2025 by rpki-client