This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft File: QeODxYB-mzL1dtCluO53RMrPtxc.mft (raw, json) Hash identifier: FnRvLk/38f7dpHlcJoxpc9kIx/cKNOSsnIwNJcX+Lbw= Subject key identifier: 1A:FB:51:E8:83:2A:44:E6:8C:D9:54:72:30:6A:14:34:69:15:BA:B3 Authority key identifier: 41:E3:83:C5:80:7E:9B:32:F5:76:D0:A5:B8:EE:77:44:CA:CF:B7:17 Certificate issuer: /CN=41e383c5807e9b32f576d0a5b8ee7744cacfb717 Certificate serial: 019B3532F4D13AFC5A6AA4A181077FAA7626 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QeODxYB-mzL1dtCluO53RMrPtxc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft Manifest number: 0653 Signing time: Fri 19 Dec 2025 06:01:30 +0000 Manifest this update: Fri 19 Dec 2025 06:01:30 +0000 Manifest next update: Sat 20 Dec 2025 06:01:30 +0000 Files and hashes: 1: 03enaQCGw_eqXqIAwZyG-7zrfRA.roa (hash: YhNG/6VofCuK7pQjtVrVurKsTSoyBGAKru+JjLAKpoo=) 2: DUyUlX3xTZHlVnLSKpECvt4NkYU.roa (hash: ZP6huwEf1pdyFLtyz+3lIcMnm1rz3bsZAcR3RQdU+KU=) 3: QeODxYB-mzL1dtCluO53RMrPtxc.crl (hash: 629hoBNMi/v/EadS5LqE2Oi3hF+L4+QyVjZMYJn8mvg=) 4: bB3G3EZqBAqArfU6X5zzc1opBME.roa (hash: gPeixOKastqxOj7HlHBp8UwchVAjS4fsBzFCexJl5H8=) 5: lKGyjDcky_IoNZN6qvlaMVTqM58.roa (hash: IiBQAy+zcf79xQNY8RIQMsijGISjsQrLjaoVvIJA9t4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.crl rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft rsync://rpki.ripe.net/repository/DEFAULT/QeODxYB-mzL1dtCluO53RMrPtxc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 06:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:32:f4:d1:3a:fc:5a:6a:a4:a1:81:07:7f:aa:76:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41e383c5807e9b32f576d0a5b8ee7744cacfb717 Validity Not Before: Dec 19 06:01:30 2025 GMT Not After : Dec 20 06:01:30 2025 GMT Subject: CN=1afb51e8832a44e68cd95472306a14346915bab3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2c:bd:18:74:cb:1d:0f:a4:67:ac:a5:55:0e: 95:e8:9f:82:d9:99:f9:70:d0:4e:57:2e:4d:f4:6a: cf:9d:79:64:91:a6:ec:a9:cd:82:3c:4f:92:92:99: 13:04:62:9e:80:72:32:83:9c:e3:e2:69:c2:bc:b3: 7f:84:7b:83:ef:50:78:7a:52:1f:fa:74:a1:00:39: a6:63:bf:6c:7d:17:24:fe:e1:d5:09:5d:19:3c:8c: e3:79:ed:3f:d4:ec:e4:72:84:39:62:74:f8:fd:c6: 50:e6:86:e3:27:45:cc:1b:a1:0d:7f:23:e2:32:bd: c8:ed:a5:29:d3:92:09:9d:a9:ef:90:ea:9c:fe:93: 16:cc:42:2e:d7:f5:82:e7:45:a9:18:86:a1:4e:f1: e6:b3:79:c0:db:71:38:5d:bd:a3:c0:b5:b1:65:ea: e1:6c:e5:55:5c:cf:17:f5:be:8f:a3:7e:07:cf:42: b3:91:31:72:6c:36:ba:da:b3:a4:16:af:b2:a1:f6: 65:1b:05:11:3c:24:66:4b:ca:da:5c:ea:f0:6d:0d: 35:6b:50:3c:7d:4f:bc:11:87:f8:8f:a6:e1:84:48: 0e:72:78:41:b9:d8:9f:a0:33:00:77:92:0d:9f:c7: fa:4f:4a:a7:a1:98:a6:c0:c1:4c:b8:fd:be:86:cb: 73:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:FB:51:E8:83:2A:44:E6:8C:D9:54:72:30:6A:14:34:69:15:BA:B3 X509v3 Authority Key Identifier: keyid:41:E3:83:C5:80:7E:9B:32:F5:76:D0:A5:B8:EE:77:44:CA:CF:B7:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QeODxYB-mzL1dtCluO53RMrPtxc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:5e:e8:f3:10:51:48:fd:f8:00:ff:da:68:d5:4c:d5:88:ba: 32:a3:42:aa:3c:ba:6f:34:53:3e:7d:50:8f:ce:79:89:0c:bc: e5:80:8a:5a:b5:d7:94:26:34:70:60:64:9b:c8:4c:c9:39:2c: 86:d4:23:c7:f5:9b:47:14:58:3c:94:fb:48:64:4b:2d:22:3c: a5:03:a6:1b:79:fb:51:63:20:69:fc:fc:5b:de:a7:21:44:a7: be:cc:77:5f:cf:1d:b0:c7:11:af:49:ae:22:46:b0:b1:11:73: f5:95:1b:28:9e:72:cc:e1:f8:c1:3e:ca:1e:ab:b4:dc:0f:d3: 92:e2:f0:65:4f:94:4b:0b:99:3d:b9:d5:a1:d9:f5:75:ef:fa: 54:fc:a9:d0:66:9d:ad:06:64:23:86:c1:b1:9a:e2:36:2e:3d: 89:7f:04:31:c1:20:9c:3d:19:31:0a:6b:72:17:b4:cd:cd:51: 12:95:62:06:c9:a6:33:ee:1e:89:e6:ea:9a:15:7c:0a:33:ea: b7:8c:fd:6c:fd:e1:ed:5f:f7:9f:75:5c:c1:ca:38:e2:e8:cb: 29:1a:3b:95:0b:ba:b9:78:15:b6:d3:53:12:d2:24:5a:78:7f: 85:63:ae:e1:7f:99:00:9e:49:f4:2a:34:6f:4d:36:5b:4a:7d: a7:39:be:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1MvTROvxaaqShgQd/qnYmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxZTM4M2M1ODA3ZTliMzJmNTc2ZDBhNWI4ZWU3NzQ0Y2Fj ZmI3MTcwHhcNMjUxMjE5MDYwMTMwWhcNMjUxMjIwMDYwMTMwWjAzMTEwLwYDVQQD EygxYWZiNTFlODgzMmE0NGU2OGNkOTU0NzIzMDZhMTQzNDY5MTViYWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxiy9GHTLHQ+kZ6ylVQ6V6J+C2Zn5 cNBOVy5N9GrPnXlkkabsqc2CPE+SkpkTBGKegHIyg5zj4mnCvLN/hHuD71B4elIf +nShADmmY79sfRck/uHVCV0ZPIzjee0/1OzkcoQ5YnT4/cZQ5objJ0XMG6ENfyPi Mr3I7aUp05IJnanvkOqc/pMWzEIu1/WC50WpGIahTvHms3nA23E4Xb2jwLWxZerh bOVVXM8X9b6Po34Hz0KzkTFybDa62rOkFq+yofZlGwURPCRmS8raXOrwbQ01a1A8 fU+8EYf4j6bhhEgOcnhBudifoDMAd5INn8f6T0qnoZimwMFMuP2+hstzGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBr7UeiDKkTmjNlUcjBqFDRpFbqzMB8GA1UdIwQY MBaAFEHjg8WAfpsy9XbQpbjud0TKz7cXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWVPRHhZQi1tekwxZHRDbHVPNTNSTXJQdHhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9hZWE0NjUtYmE0NS00OWFjLTljNjgt N2I0MWZhYmM2ZjY3LzEvUWVPRHhZQi1tekwxZHRDbHVPNTNSTXJQdHhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC9hZWE0NjUtYmE0NS00OWFjLTljNjgtN2I0MWZhYmM2ZjY3 LzEvUWVPRHhZQi1tekwxZHRDbHVPNTNSTXJQdHhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhF7o8xBR SP34AP/aaNVM1Yi6MqNCqjy6bzRTPn1Qj855iQy85YCKWrXXlCY0cGBkm8hMyTks htQjx/WbRxRYPJT7SGRLLSI8pQOmG3n7UWMgafz8W96nIUSnvsx3X88dsMcRr0mu IkawsRFz9ZUbKJ5yzOH4wT7KHqu03A/TkuLwZU+USwuZPbnVodn1de/6VPyp0Gad rQZkI4bBsZriNi49iX8EMcEgnD0ZMQprche0zc1REpViBsmmM+4eiebqmhV8CjPq t4z9bP3h7V/3n3Vcwco44ujLKRo7lQu6uXgVttNTEtIkWnh/hWOu4X+ZAJ5J9Co0 b002W0p9pzm+ag== -----END CERTIFICATE-----Generated at Fri Dec 19 12:35:59 2025 by rpki-client