This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft File: Q1w_GpeQPnlikqKsenjUGxwh24U.mft (raw, json) Hash identifier: z4DXuJliUyB96omPk1KbYRm8qMRAPFHuQy9xy6AtQuQ= Subject key identifier: 93:51:F3:FB:FF:71:FB:A4:43:28:98:6B:ED:D9:93:CD:E0:DE:B0:02 Authority key identifier: 43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85 Certificate issuer: /CN=435c3f1a97903e796292a2ac7a78d41b1c21db85 Certificate serial: 019B341F74A64E90222FF191E4AEBCF54B08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft Manifest number: 10AC Signing time: Fri 19 Dec 2025 01:00:35 +0000 Manifest this update: Fri 19 Dec 2025 01:00:35 +0000 Manifest next update: Sat 20 Dec 2025 01:00:35 +0000 Files and hashes: 1: IB6At0eMkw1jy1fdpcIgarxWKQ4.roa (hash: rOQggKg6yCYoTFHyozZzxf3+Jia2rL6WXiIW/P0HCuo=) 2: Q1w_GpeQPnlikqKsenjUGxwh24U.crl (hash: uijC1ArdHYy2dH96ID8hFMJK7d6aK5WxQP5DlCWiSXA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.crl rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:1f:74:a6:4e:90:22:2f:f1:91:e4:ae:bc:f5:4b:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=435c3f1a97903e796292a2ac7a78d41b1c21db85 Validity Not Before: Dec 19 01:00:35 2025 GMT Not After : Dec 20 01:00:35 2025 GMT Subject: CN=9351f3fbff71fba44328986bedd993cde0deb002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5e:3b:a6:f6:0f:e7:f4:fa:e2:e2:f3:4b:90: ee:b0:39:67:ab:b9:3d:05:08:0a:da:c1:82:09:0a: 9e:53:a3:99:f3:8b:48:e0:a0:b0:b6:f6:be:88:d2: 99:ed:19:b1:3b:fa:ba:a2:b4:71:94:d9:17:29:ab: 97:c7:c8:f3:73:e2:8c:e7:ab:06:34:18:97:23:5b: 55:dc:9f:ab:6a:42:16:1b:ad:a5:b7:4c:90:62:f7: c5:ba:02:36:fc:a5:18:be:6a:d8:24:d1:06:64:2a: 89:d4:fb:9b:b1:d4:f3:c2:1c:4e:ec:27:d9:78:02: d4:78:10:c1:f3:9f:d7:38:a0:29:fd:68:a0:5a:a6: d7:26:20:86:fe:90:8f:34:2f:98:d9:65:39:ea:10: db:f0:70:69:72:c3:d8:c7:a6:e5:2a:d3:f9:c8:1e: 47:f8:36:aa:a5:3b:22:4b:36:5f:9b:08:f6:0b:df: d5:c9:63:af:83:f5:e7:9a:d7:d3:3f:64:fe:8a:b2: f8:eb:af:3f:3d:da:0f:d6:9a:1d:08:f2:1a:d1:6c: f2:69:d9:eb:b0:df:ad:b3:7f:7f:e0:99:72:88:f9: c8:67:e5:26:45:c0:19:11:6b:81:bc:4e:95:89:77: 2a:30:16:43:19:55:ca:7a:d3:88:0c:8e:f8:8c:1f: 6a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:51:F3:FB:FF:71:FB:A4:43:28:98:6B:ED:D9:93:CD:E0:DE:B0:02 X509v3 Authority Key Identifier: keyid:43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:f9:e0:4b:db:bc:c1:83:89:12:3a:8b:9b:ee:b1:9a:25:ba: 6c:03:aa:53:9a:b5:d2:02:07:eb:e2:bf:97:74:8b:5b:55:14: 1d:59:7f:d4:e3:d2:d9:25:72:c7:3d:aa:3a:1f:ab:06:d8:6d: 1e:da:5f:79:08:53:18:f6:a7:a8:1d:28:dc:34:8b:5c:ea:33: 56:5b:1c:e8:2f:5e:1c:fb:82:5e:2d:f5:59:3a:2a:99:1c:20: 2c:84:12:60:4f:b7:a7:38:ac:c8:fe:8b:fe:93:76:f2:04:bd: 03:91:44:cd:ab:d9:d9:29:96:d4:49:f1:48:f3:50:33:86:1d: 84:ec:79:ff:40:fc:8f:df:39:cb:98:6c:18:0e:70:86:86:03: 5d:74:41:85:fd:7a:57:90:c2:52:78:c5:c6:e6:e3:3c:47:06: 98:b0:49:4f:4b:96:57:e3:bd:a3:0e:63:13:d9:1b:99:c3:3d: 52:dc:c6:a7:9c:6a:9c:a2:61:1c:3f:ff:7f:6b:b4:26:f9:cb: 3f:04:b4:b6:77:d2:b6:cf:57:9c:6f:f5:e4:00:ce:9d:2c:31: 58:66:ec:d7:8c:83:2c:9c:72:67:5f:c2:5a:76:25:3b:2b:55: 32:f1:6d:82:5c:73:e5:40:ed:74:72:fc:85:b7:27:12:bf:b8: 33:d0:02:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0H3SmTpAiL/GR5K689UsIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNWMzZjFhOTc5MDNlNzk2MjkyYTJhYzdhNzhkNDFiMWMy MWRiODUwHhcNMjUxMjE5MDEwMDM1WhcNMjUxMjIwMDEwMDM1WjAzMTEwLwYDVQQD Eyg5MzUxZjNmYmZmNzFmYmE0NDMyODk4NmJlZGQ5OTNjZGUwZGViMDAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuV47pvYP5/T64uLzS5DusDlnq7k9 BQgK2sGCCQqeU6OZ84tI4KCwtva+iNKZ7RmxO/q6orRxlNkXKauXx8jzc+KM56sG NBiXI1tV3J+rakIWG62lt0yQYvfFugI2/KUYvmrYJNEGZCqJ1PubsdTzwhxO7CfZ eALUeBDB85/XOKAp/WigWqbXJiCG/pCPNC+Y2WU56hDb8HBpcsPYx6blKtP5yB5H +DaqpTsiSzZfmwj2C9/VyWOvg/XnmtfTP2T+irL4668/PdoP1podCPIa0Wzyadnr sN+ts39/4JlyiPnIZ+UmRcAZEWuBvE6ViXcqMBZDGVXKetOIDI74jB9qFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJNR8/v/cfukQyiYa+3Zk83g3rACMB8GA1UdIwQY MBaAFENcPxqXkD55YpKirHp41BscIduFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTF3X0dwZVFQbmxpa3FLc2VualVHeHdoMjRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9kOGFkYmUtZGNiZS00YzI3LTk2NzEt ZGJkZWIzZDUzNjBiLzEvUTF3X0dwZVFQbmxpa3FLc2VualVHeHdoMjRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy9kOGFkYmUtZGNiZS00YzI3LTk2NzEtZGJkZWIzZDUzNjBi LzEvUTF3X0dwZVFQbmxpa3FLc2VualVHeHdoMjRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVvngS9u8 wYOJEjqLm+6xmiW6bAOqU5q10gIH6+K/l3SLW1UUHVl/1OPS2SVyxz2qOh+rBtht HtpfeQhTGPanqB0o3DSLXOozVlsc6C9eHPuCXi31WToqmRwgLIQSYE+3pzisyP6L /pN28gS9A5FEzavZ2SmW1EnxSPNQM4YdhOx5/0D8j985y5hsGA5whoYDXXRBhf16 V5DCUnjFxubjPEcGmLBJT0uWV+O9ow5jE9kbmcM9UtzGp5xqnKJhHD//f2u0JvnL PwS0tnfSts9XnG/15ADOnSwxWGbs14yDLJxyZ1/CWnYlOytVMvFtglxz5UDtdHL8 hbcnEr+4M9ACPg== -----END CERTIFICATE-----Generated at Fri Dec 19 06:23:32 2025 by rpki-client