This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft File: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft (raw, json) Hash identifier: y+pb3d/sMRSCZ46jQs02TsPQHhT7rYM6/xLuhpZlgrw= Subject key identifier: FF:95:26:5F:DD:4B:CB:A5:5F:33:ED:B5:8D:7E:8E:F4:8C:A7:A3:7F Authority key identifier: 43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD Certificate issuer: /CN=4368330bea2dfe880ffa62f67b566aeae2d287fd Certificate serial: 019B2C663C8EA075AF9F2BCA58E1F5CF3C71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft Manifest number: 14AB Signing time: Wed 17 Dec 2025 13:00:56 +0000 Manifest this update: Wed 17 Dec 2025 13:00:56 +0000 Manifest next update: Thu 18 Dec 2025 13:00:56 +0000 Files and hashes: 1: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl (hash: ggW6R+QkmfVutuDRGaDUmJNEuxyH80smLkYYgUrPuLY=) 2: rz-RdiM9IWT3IB5wGzMs1ZBSN0Y.roa (hash: o6qyEqxDzSGkgBN+te6/IqxauC6oKPYhjWorkJVF6Cw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2c:66:3c:8e:a0:75:af:9f:2b:ca:58:e1:f5:cf:3c:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4368330bea2dfe880ffa62f67b566aeae2d287fd Validity Not Before: Dec 17 13:00:56 2025 GMT Not After : Dec 18 13:00:56 2025 GMT Subject: CN=ff95265fdd4bcba55f33edb58d7e8ef48ca7a37f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2f:16:47:a8:41:02:87:9a:6f:23:64:de:d5: ff:d4:29:05:f2:63:d6:6c:12:5c:db:42:98:62:79: 09:48:f9:91:31:19:e1:d3:48:13:b6:9d:e9:56:55: ec:52:82:46:ca:a5:3e:43:59:4c:73:41:fe:6e:b4: 84:75:e5:22:04:03:a2:3e:0e:c2:72:56:b5:64:34: 1e:eb:e3:91:b4:da:05:7a:6c:4e:b9:66:ce:19:f3: 75:c6:d8:6f:bc:1d:bc:7b:32:bd:46:9a:46:ab:9f: 88:26:6c:95:69:c8:04:c5:be:c1:58:c3:39:3b:28: e6:60:ef:58:6b:9a:0b:dc:e8:0e:4d:c5:4f:4a:d4: b4:e7:c1:38:28:6e:9d:c7:8c:b2:c4:12:dc:ec:1f: cf:ed:c7:16:02:f3:23:e8:c7:6c:db:81:66:92:c4: cb:ea:7a:4b:89:35:34:82:ce:e0:cd:c4:94:7a:4f: 05:04:43:61:f3:0a:6c:60:de:9e:77:a1:38:18:ee: 1d:7c:e4:33:fc:73:59:4f:54:09:14:06:57:13:97: e0:d8:c0:71:e1:97:de:31:c8:a7:3f:db:eb:ca:2d: 11:3e:86:8c:bc:41:76:e3:7d:65:9d:85:ca:83:47: ba:05:af:45:fa:dd:ab:77:13:6a:29:20:e7:7b:a6: 6a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:95:26:5F:DD:4B:CB:A5:5F:33:ED:B5:8D:7E:8E:F4:8C:A7:A3:7F X509v3 Authority Key Identifier: keyid:43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:55:29:cc:0a:3d:e2:21:1a:4d:fe:54:d6:86:c5:f7:2f:0a: b1:df:38:58:1a:ea:41:74:b9:cd:4a:a3:25:22:03:e5:d1:5b: 6f:d7:20:87:61:99:f7:eb:e2:bd:23:7f:b4:01:76:3a:05:08: 95:fc:6a:31:f1:8a:8c:12:ae:7e:67:5e:5f:34:3b:18:e5:db: c2:e1:d4:b6:29:cd:b6:4c:ad:9c:da:cc:c9:d1:b4:29:89:84: ab:3b:3d:ed:26:5f:3d:e4:b9:e8:10:19:0c:aa:46:a1:56:e0: 96:66:a9:48:ba:d8:9d:0f:9b:49:c8:69:6f:f3:bb:b0:90:48: bc:15:e4:11:d4:1e:bb:47:7d:72:ae:21:ea:3e:21:c5:a2:4e: 38:1e:51:1e:03:2a:77:4e:7d:a6:d9:e1:f9:37:50:33:0a:20: 23:93:7e:6d:45:11:f0:57:2e:3c:a6:5d:cb:a9:6b:34:22:34: a6:06:7b:37:d0:f4:0b:86:07:68:40:e9:83:e9:03:6f:18:43: 1d:19:00:85:f1:cb:01:63:ab:0c:53:bf:b2:36:8a:63:7c:f3: 55:60:4a:ef:4a:ac:89:bb:4a:53:a0:4d:68:74:5f:24:a7:d5: 89:43:a8:77:bc:cd:16:46:b5:7a:04:e6:76:35:17:af:3c:4e: 27:9a:9a:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZssZjyOoHWvnyvKWOH1zzxxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNjgzMzBiZWEyZGZlODgwZmZhNjJmNjdiNTY2YWVhZTJk Mjg3ZmQwHhcNMjUxMjE3MTMwMDU2WhcNMjUxMjE4MTMwMDU2WjAzMTEwLwYDVQQD EyhmZjk1MjY1ZmRkNGJjYmE1NWYzM2VkYjU4ZDdlOGVmNDhjYTdhMzdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsy8WR6hBAoeabyNk3tX/1CkF8mPW bBJc20KYYnkJSPmRMRnh00gTtp3pVlXsUoJGyqU+Q1lMc0H+brSEdeUiBAOiPg7C cla1ZDQe6+ORtNoFemxOuWbOGfN1xthvvB28ezK9RppGq5+IJmyVacgExb7BWMM5 OyjmYO9Ya5oL3OgOTcVPStS058E4KG6dx4yyxBLc7B/P7ccWAvMj6Mds24FmksTL 6npLiTU0gs7gzcSUek8FBENh8wpsYN6ed6E4GO4dfOQz/HNZT1QJFAZXE5fg2MBx 4ZfeMcinP9vryi0RPoaMvEF2431lnYXKg0e6Ba9F+t2rdxNqKSDne6Zq4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP+VJl/dS8ulXzPttY1+jvSMp6N/MB8GA1UdIwQY MBaAFENoMwvqLf6ID/pi9ntWauri0of9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTJnekMtb3Rfb2dQLW1MMmUxWnE2dUxTaF8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS84ZmMzYjAtOTcwNC00NzUxLWIxNDkt NWEzN2Y2YTFiY2E5LzEvUTJnekMtb3Rfb2dQLW1MMmUxWnE2dUxTaF8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS84ZmMzYjAtOTcwNC00NzUxLWIxNDktNWEzN2Y2YTFiY2E5 LzEvUTJnekMtb3Rfb2dQLW1MMmUxWnE2dUxTaF8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHlUpzAo9 4iEaTf5U1obF9y8Ksd84WBrqQXS5zUqjJSID5dFbb9cgh2GZ9+vivSN/tAF2OgUI lfxqMfGKjBKufmdeXzQ7GOXbwuHUtinNtkytnNrMydG0KYmEqzs97SZfPeS56BAZ DKpGoVbglmapSLrYnQ+bSchpb/O7sJBIvBXkEdQeu0d9cq4h6j4hxaJOOB5RHgMq d059ptnh+TdQMwogI5N+bUUR8FcuPKZdy6lrNCI0pgZ7N9D0C4YHaEDpg+kDbxhD HRkAhfHLAWOrDFO/sjaKY3zzVWBK70qsibtKU6BNaHRfJKfViUOod7zNFka1egTm djUXrzxOJ5qa7A== -----END CERTIFICATE-----Generated at Wed Dec 17 19:01:52 2025 by rpki-client