This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft File: qHxnPzWntwWmtCTTORT6OS07li4.mft (raw, json) Hash identifier: ydXBUvhzMTRPAiUiE58yMSLKJmbbUjrFatm1Gsc53CQ= Subject key identifier: A6:C8:18:AB:7C:D9:D4:83:C0:AF:B9:7F:D6:EF:B6:8B:68:57:B8:4A Authority key identifier: A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E Certificate issuer: /CN=a87c673f35a7b705a6b424d33914fa392d3b962e Certificate serial: 019B19F1ECAA2F1490EEB9A90EB21CEF3C2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft Manifest number: 09F1 Signing time: Sat 13 Dec 2025 23:00:43 +0000 Manifest this update: Sat 13 Dec 2025 23:00:43 +0000 Manifest next update: Sun 14 Dec 2025 23:00:43 +0000 Files and hashes: 1: Eax-YG047Te5n0m45RUjhbrR1oI.roa (hash: iDlk1T+vVuMTMOmIBdx2Kl0rk1EldiQCxibfcQYd5i0=) 2: qHxnPzWntwWmtCTTORT6OS07li4.crl (hash: ZXL/GKmUAnw9kMnWNpAwyiT+IezIrw4w0f8EAH9t9Ck=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.crl rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:f1:ec:aa:2f:14:90:ee:b9:a9:0e:b2:1c:ef:3c:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a87c673f35a7b705a6b424d33914fa392d3b962e Validity Not Before: Dec 13 23:00:43 2025 GMT Not After : Dec 14 23:00:43 2025 GMT Subject: CN=a6c818ab7cd9d483c0afb97fd6efb68b6857b84a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a2:0f:bf:b6:1f:57:9c:1e:17:d4:8d:6e:41: 6f:ef:58:2c:47:85:8e:88:ea:89:a4:f8:99:e3:d4: 26:13:e0:07:2e:f3:27:5c:d2:5c:bc:7b:36:58:4b: 4b:b0:54:01:a9:a8:63:73:8e:7c:8f:4e:ef:81:83: 58:c3:8e:48:81:34:c7:23:6f:5f:1f:2e:99:67:ff: 68:58:6b:12:34:18:c7:32:fc:6b:11:2a:cd:5b:f2: 7e:8e:4b:dd:c6:32:0b:b6:74:6a:d3:cc:b8:05:34: 5b:30:74:4c:74:2c:bd:57:83:fd:03:28:05:c1:68: 7a:a2:79:52:63:08:67:ca:a2:d5:1a:49:db:3e:59: 34:76:64:03:88:4a:89:e6:c4:4c:a8:d3:ec:49:89: 81:8e:ce:b3:e8:33:32:a7:96:9a:60:c7:31:60:52: d8:42:9d:54:81:0c:45:b0:b1:94:51:46:78:d4:0b: 43:75:d1:ab:d4:fb:22:52:5c:31:f5:16:5c:94:b8: 12:d7:d0:ff:7f:8e:d6:78:7e:e8:66:da:d6:f5:c0: 09:6b:e5:3b:43:3a:e7:8c:fe:fc:49:31:8a:6d:5f: d3:53:c7:5b:c3:11:00:c2:a3:3d:66:26:44:10:36: f2:e1:b6:01:49:aa:f4:1b:19:c7:8c:fd:92:4a:7f: 54:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:C8:18:AB:7C:D9:D4:83:C0:AF:B9:7F:D6:EF:B6:8B:68:57:B8:4A X509v3 Authority Key Identifier: keyid:A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:6a:6a:87:75:24:be:12:55:7c:51:63:18:5f:23:73:b9:2c: 7f:cd:16:fc:d2:eb:38:b5:ed:e0:61:c7:c1:45:92:2a:72:1b: e1:22:82:69:ee:b6:c2:61:51:dc:33:2b:65:2c:03:44:f2:3c: fd:45:aa:84:b5:1a:66:48:7e:45:64:7b:2d:9b:2e:07:77:04: 09:1c:7f:71:26:1e:37:c5:43:d9:e1:25:b8:e9:b1:b9:f8:43: 99:67:0a:c8:a1:74:3a:f0:bd:8b:2e:28:a4:c7:46:fb:84:3e: 51:9c:1c:9c:2e:e7:c1:f0:fd:20:40:25:f2:9f:ed:44:8a:b5: 02:4f:6d:8f:c7:d4:b5:d2:5c:15:53:e5:95:6c:25:72:85:e8: 71:01:8b:8e:05:fd:48:95:d8:6d:17:5f:45:ea:ef:60:b7:22: 57:53:e5:c2:17:6f:f8:92:05:19:1f:db:20:a2:b0:c9:7e:be: 11:c0:34:92:29:87:00:e7:7f:76:bb:4d:e4:89:3b:7d:ec:a6: fb:be:e7:4b:ac:03:09:61:64:35:f6:54:16:a4:3c:0d:b1:7b: d6:8a:87:34:15:be:3e:4a:fd:2f:16:5b:26:93:24:56:5c:a3: 87:0e:22:e5:fa:e6:80:a5:24:a4:4b:1c:89:a9:ce:85:8b:2e: bd:49:8b:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZ8eyqLxSQ7rmpDrIc7zwrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4N2M2NzNmMzVhN2I3MDVhNmI0MjRkMzM5MTRmYTM5MmQz Yjk2MmUwHhcNMjUxMjEzMjMwMDQzWhcNMjUxMjE0MjMwMDQzWjAzMTEwLwYDVQQD EyhhNmM4MThhYjdjZDlkNDgzYzBhZmI5N2ZkNmVmYjY4YjY4NTdiODRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuaIPv7YfV5weF9SNbkFv71gsR4WO iOqJpPiZ49QmE+AHLvMnXNJcvHs2WEtLsFQBqahjc458j07vgYNYw45IgTTHI29f Hy6ZZ/9oWGsSNBjHMvxrESrNW/J+jkvdxjILtnRq08y4BTRbMHRMdCy9V4P9AygF wWh6onlSYwhnyqLVGknbPlk0dmQDiEqJ5sRMqNPsSYmBjs6z6DMyp5aaYMcxYFLY Qp1UgQxFsLGUUUZ41AtDddGr1PsiUlwx9RZclLgS19D/f47WeH7oZtrW9cAJa+U7 QzrnjP78STGKbV/TU8dbwxEAwqM9ZiZEEDby4bYBSar0GxnHjP2SSn9UYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKbIGKt82dSDwK+5f9bvtotoV7hKMB8GA1UdIwQY MBaAFKh8Zz81p7cFprQk0zkU+jktO5YuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUh4blB6V250d1dtdENUVE9SVDZPUzA3bGk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9hYTFhZjQtOTI1Ni00NmM4LWFiMDIt OTRlNjQ3MjYyMTYwLzEvcUh4blB6V250d1dtdENUVE9SVDZPUzA3bGk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9hYTFhZjQtOTI1Ni00NmM4LWFiMDItOTRlNjQ3MjYyMTYw LzEvcUh4blB6V250d1dtdENUVE9SVDZPUzA3bGk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfGpqh3Uk vhJVfFFjGF8jc7ksf80W/NLrOLXt4GHHwUWSKnIb4SKCae62wmFR3DMrZSwDRPI8 /UWqhLUaZkh+RWR7LZsuB3cECRx/cSYeN8VD2eEluOmxufhDmWcKyKF0OvC9iy4o pMdG+4Q+UZwcnC7nwfD9IEAl8p/tRIq1Ak9tj8fUtdJcFVPllWwlcoXocQGLjgX9 SJXYbRdfRervYLciV1Plwhdv+JIFGR/bIKKwyX6+EcA0kimHAOd/drtN5Ik7feym +77nS6wDCWFkNfZUFqQ8DbF71oqHNBW+Pkr9LxZbJpMkVlyjhw4i5frmgKUkpEsc ianOhYsuvUmLZA== -----END CERTIFICATE-----Generated at Sun Dec 14 01:56:49 2025 by rpki-client