This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/QeQtgw7KmKUz9DctoWnJx5LDk7I.mft File: QeQtgw7KmKUz9DctoWnJx5LDk7I.mft (raw, json) Hash identifier: 58GbMc7eon+DIOA0BxZrfU2pbdReeGus6pAdIa3pcXA= Subject key identifier: 02:16:86:F0:C9:CD:AA:B8:1E:77:C1:39:8F:47:BC:F1:CC:E4:D8:EC Authority key identifier: 41:E4:2D:83:0E:CA:98:A5:33:F4:37:2D:A1:69:C9:C7:92:C3:93:B2 Certificate issuer: /CN=41e42d830eca98a533f4372da169c9c792c393b2 Certificate serial: 019B22F503530687799147E31C5733B4ED60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QeQtgw7KmKUz9DctoWnJx5LDk7I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/QeQtgw7KmKUz9DctoWnJx5LDk7I.mft Manifest number: 177B Signing time: Mon 15 Dec 2025 17:00:41 +0000 Manifest this update: Mon 15 Dec 2025 17:00:41 +0000 Manifest next update: Tue 16 Dec 2025 17:00:41 +0000 Files and hashes: 1: NcqRg7UrtJE68j0DY1PSHwYSu_4.roa (hash: O3F0k70QFpKk+LVxYcWwtpQ0YuG4zUsaxS4NlfXzPQ0=) 2: QeQtgw7KmKUz9DctoWnJx5LDk7I.crl (hash: 5s7DrLiDWNj5PoYz9YtFbAiiP+UDL2G74ECizD24TGM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/QeQtgw7KmKUz9DctoWnJx5LDk7I.crl rsync://rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/QeQtgw7KmKUz9DctoWnJx5LDk7I.mft rsync://rpki.ripe.net/repository/DEFAULT/QeQtgw7KmKUz9DctoWnJx5LDk7I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:f5:03:53:06:87:79:91:47:e3:1c:57:33:b4:ed:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41e42d830eca98a533f4372da169c9c792c393b2 Validity Not Before: Dec 15 17:00:41 2025 GMT Not After : Dec 16 17:00:41 2025 GMT Subject: CN=021686f0c9cdaab81e77c1398f47bcf1cce4d8ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a0:f1:22:82:a4:de:15:41:a7:a2:5a:4a:1b: 4a:c2:a7:6a:3c:39:4b:57:9d:7c:bb:35:18:04:68: 86:b0:d3:fb:ec:ed:08:a1:35:a4:b9:ad:00:21:f4: b3:f6:48:82:55:89:00:a1:4e:e3:ea:79:57:3b:4f: 72:6f:82:65:e2:c2:30:78:eb:0c:ff:aa:86:b1:10: 8a:63:1c:3c:c6:19:e1:fc:b2:7a:a1:fe:6b:0c:08: 37:31:92:8a:89:32:90:0e:18:ad:79:40:79:82:32: d4:2c:8f:b6:71:45:cc:c3:72:03:4b:cd:a9:73:43: f0:5e:84:a1:cc:01:d9:c6:29:34:7c:e5:ba:c6:2f: 1e:a3:e2:f8:98:5b:9f:91:eb:e9:ed:e9:16:48:49: b7:85:21:41:b8:82:45:75:8b:b9:92:ef:34:c6:9f: 36:57:a4:62:cc:05:7d:8f:a0:e1:7b:62:87:e8:2d: 74:32:0b:e0:3f:0c:ae:b7:b5:1d:d2:da:70:a3:ab: fb:31:dd:46:d6:39:71:88:49:fd:d1:72:a8:8a:34: b2:e2:78:4e:2a:74:56:f9:e1:0c:ad:0e:35:44:bd: f3:79:8e:9d:f2:e8:09:09:ef:e8:ed:79:10:3f:16: db:6c:c2:d6:ba:d7:a7:d2:33:9f:c6:bc:ae:cc:2b: f2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:16:86:F0:C9:CD:AA:B8:1E:77:C1:39:8F:47:BC:F1:CC:E4:D8:EC X509v3 Authority Key Identifier: keyid:41:E4:2D:83:0E:CA:98:A5:33:F4:37:2D:A1:69:C9:C7:92:C3:93:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QeQtgw7KmKUz9DctoWnJx5LDk7I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/QeQtgw7KmKUz9DctoWnJx5LDk7I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/QeQtgw7KmKUz9DctoWnJx5LDk7I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:dc:93:00:36:e7:a7:11:32:1c:3c:61:db:c2:ed:c2:96:85: 88:19:ae:2d:fd:68:94:ff:0c:11:4d:ef:c1:4a:22:16:da:6b: 19:89:e5:66:79:16:68:8a:79:fa:86:6f:d3:76:dc:51:2f:3c: 5f:5d:d9:d9:4d:aa:fa:47:09:36:87:47:4f:e7:81:9b:c2:8f: a4:8d:6d:c5:16:a2:9c:16:cc:d0:e4:32:37:3b:88:a1:16:dc: 20:e1:27:b4:ef:cf:1e:b4:fc:cd:07:1d:16:5a:a5:c8:47:68: c3:55:10:35:7b:c4:81:bb:f8:48:ab:18:8a:fa:41:9b:1c:5a: 40:22:0d:d1:33:0b:1e:6a:5e:36:fa:d8:26:7c:42:0e:14:2c: f5:99:44:cb:af:9d:3b:7b:f0:5a:36:74:d5:04:7e:d1:b0:ab: d5:9f:0b:7a:e2:49:c2:a3:10:ec:a7:24:95:a0:48:b1:d0:25: 16:02:4a:0c:cc:08:7c:d5:f1:70:4a:86:47:f6:a6:99:f3:ce: 16:ae:44:2b:ad:de:c4:57:e2:51:f8:ac:9c:95:96:68:64:14: 35:1c:9a:02:b6:5d:fd:34:b0:a7:50:6a:fc:ff:9e:a8:b0:17: 79:3b:eb:38:69:5a:a0:12:5c:91:23:e5:79:8a:0a:00:e2:00: 50:e9:b9:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsi9QNTBod5kUfjHFcztO1gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxZTQyZDgzMGVjYTk4YTUzM2Y0MzcyZGExNjljOWM3OTJj MzkzYjIwHhcNMjUxMjE1MTcwMDQxWhcNMjUxMjE2MTcwMDQxWjAzMTEwLwYDVQQD EygwMjE2ODZmMGM5Y2RhYWI4MWU3N2MxMzk4ZjQ3YmNmMWNjZTRkOGVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwqDxIoKk3hVBp6JaShtKwqdqPDlL V518uzUYBGiGsNP77O0IoTWkua0AIfSz9kiCVYkAoU7j6nlXO09yb4Jl4sIweOsM /6qGsRCKYxw8xhnh/LJ6of5rDAg3MZKKiTKQDhiteUB5gjLULI+2cUXMw3IDS82p c0PwXoShzAHZxik0fOW6xi8eo+L4mFufkevp7ekWSEm3hSFBuIJFdYu5ku80xp82 V6RizAV9j6Dhe2KH6C10MgvgPwyut7Ud0tpwo6v7Md1G1jlxiEn90XKoijSy4nhO KnRW+eEMrQ41RL3zeY6d8ugJCe/o7XkQPxbbbMLWuten0jOfxryuzCvyJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAIWhvDJzaq4HnfBOY9HvPHM5NjsMB8GA1UdIwQY MBaAFEHkLYMOypilM/Q3LaFpyceSw5OyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWVRdGd3N0ttS1V6OURjdG9Xbkp4NUxEazdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC80OTU2ZGYtOTFkYy00NDkwLTgzMzMt MWFkNjFlZGUwYTRhLzEvUWVRdGd3N0ttS1V6OURjdG9Xbkp4NUxEazdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC80OTU2ZGYtOTFkYy00NDkwLTgzMzMtMWFkNjFlZGUwYTRh LzEvUWVRdGd3N0ttS1V6OURjdG9Xbkp4NUxEazdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAINyTADbn pxEyHDxh28LtwpaFiBmuLf1olP8MEU3vwUoiFtprGYnlZnkWaIp5+oZv03bcUS88 X13Z2U2q+kcJNodHT+eBm8KPpI1txRainBbM0OQyNzuIoRbcIOEntO/PHrT8zQcd FlqlyEdow1UQNXvEgbv4SKsYivpBmxxaQCIN0TMLHmpeNvrYJnxCDhQs9ZlEy6+d O3vwWjZ01QR+0bCr1Z8LeuJJwqMQ7KcklaBIsdAlFgJKDMwIfNXxcEqGR/ammfPO Fq5EK63exFfiUfisnJWWaGQUNRyaArZd/TSwp1Bq/P+eqLAXeTvrOGlaoBJckSPl eYoKAOIAUOm5Vw== -----END CERTIFICATE-----Generated at Mon Dec 15 21:56:51 2025 by rpki-client