This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft File: QqbmQBmAE94SolHwhgMM14xzJRY.mft (raw, json) Hash identifier: PSX5ugFUJZ7gpyogCqijps6VF1/Z008hSEWbefhO5J0= Subject key identifier: BE:0D:B8:96:FE:0F:77:A4:1F:89:13:B7:2A:C3:0E:0D:5A:75:9C:0E Authority key identifier: 42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16 Certificate issuer: /CN=42a6e640198013de12a251f086030cd78c732516 Certificate serial: 019B3B6B4EFC801375F03F0CDC5F20AE0531 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft Manifest number: 1717 Signing time: Sat 20 Dec 2025 11:00:46 +0000 Manifest this update: Sat 20 Dec 2025 11:00:46 +0000 Manifest next update: Sun 21 Dec 2025 11:00:46 +0000 Files and hashes: 1: QqbmQBmAE94SolHwhgMM14xzJRY.crl (hash: X8EWSUDkqO73X9CPHtNtflRgeNc8rlp3lEto/s0Ppwg=) 2: j37XoMC3UG0E_oUwTDht88JJrh8.roa (hash: cqy63HfmTCUoUdF/JZjPLrFzuSfjpRSNk0rinu9lqNQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:6b:4e:fc:80:13:75:f0:3f:0c:dc:5f:20:ae:05:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42a6e640198013de12a251f086030cd78c732516 Validity Not Before: Dec 20 11:00:46 2025 GMT Not After : Dec 21 11:00:46 2025 GMT Subject: CN=be0db896fe0f77a41f8913b72ac30e0d5a759c0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:77:42:3c:21:8b:94:67:49:c3:80:57:f8:12: 8f:46:6f:22:b3:d1:02:c7:00:d2:99:e9:3b:28:d9: 21:5a:53:8b:07:bc:c4:3e:33:61:1a:81:c6:6f:ba: e2:d2:b4:2b:2d:8d:2d:5a:05:10:51:85:e0:bc:87: ec:3a:a6:dc:62:0e:b7:9f:41:ff:9f:bb:2e:f9:cd: fc:6d:09:48:44:16:fe:74:c1:ee:7f:8a:7b:fe:dc: 8d:a4:1d:04:4a:20:ef:f5:cb:3f:3d:69:0c:37:4d: f7:20:9c:91:52:b3:fc:4a:47:d9:91:e4:a4:cc:d0: e4:7e:91:37:50:a1:8a:5c:5b:9d:a4:a3:2e:50:9d: 5f:82:7e:59:ef:1b:65:f6:9d:79:85:4d:6d:c7:fc: cc:48:86:af:a8:2d:4e:44:b6:bd:5d:82:c1:dc:3b: 7d:62:cc:09:4b:2e:6d:4e:c0:28:87:2f:d2:b1:ba: c8:f7:e5:9f:f0:df:ff:72:e7:ea:f7:02:9c:99:8a: 78:b5:e2:4a:99:95:ed:70:38:e7:9a:95:5f:0f:94: ef:71:8a:83:08:97:8d:0d:84:91:d1:3e:2b:34:92: fd:4c:87:7c:40:14:29:1b:08:cf:78:48:f9:fc:c6: a2:62:34:44:35:17:71:68:52:0e:a6:a9:13:af:8f: 53:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:0D:B8:96:FE:0F:77:A4:1F:89:13:B7:2A:C3:0E:0D:5A:75:9C:0E X509v3 Authority Key Identifier: keyid:42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:5d:72:7d:8e:6b:d6:9c:63:02:56:03:20:8c:a5:99:8a:1a: 28:b5:a7:79:ca:84:e4:92:b1:c0:b3:50:1f:ac:ca:e2:77:10: b1:da:07:db:33:75:ed:da:9d:e5:d1:ff:e4:62:6a:3c:a8:3f: 12:2e:04:5b:ef:c1:07:48:a2:b3:06:7d:8e:c1:fa:3f:c0:fc: db:72:11:d6:96:d0:85:8f:6e:ca:76:01:9f:ba:1b:6f:e1:ad: c9:93:47:c4:ee:5d:9f:19:9f:dd:d5:29:e9:bb:21:67:61:e1: c4:d9:7b:db:d7:fd:52:d1:b0:ad:6a:55:fe:45:ef:ff:05:b8: 43:f0:d5:d3:22:16:55:9c:72:ca:83:95:b0:6d:15:e4:68:8d: 41:6d:9a:c7:1a:99:ed:78:79:2e:0d:67:68:38:55:fd:a3:cd: c7:17:1e:ba:3f:80:49:6c:08:95:7a:70:64:87:ab:64:24:ac: 94:eb:5c:3b:2c:c1:c0:0b:4f:47:83:fd:1f:f1:12:c4:a8:e7: f8:6d:10:44:0c:6e:91:98:c0:a4:ff:a0:95:2c:55:96:8b:e0: 9c:52:09:bb:b9:e9:d0:83:3f:ab:ae:a2:30:57:69:32:88:a2: b3:29:35:0d:d7:a7:30:2d:02:f6:46:c1:50:50:66:69:86:0b: 28:00:fe:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7a078gBN18D8M3F8grgUxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyYTZlNjQwMTk4MDEzZGUxMmEyNTFmMDg2MDMwY2Q3OGM3 MzI1MTYwHhcNMjUxMjIwMTEwMDQ2WhcNMjUxMjIxMTEwMDQ2WjAzMTEwLwYDVQQD EyhiZTBkYjg5NmZlMGY3N2E0MWY4OTEzYjcyYWMzMGUwZDVhNzU5YzBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ndCPCGLlGdJw4BX+BKPRm8is9EC xwDSmek7KNkhWlOLB7zEPjNhGoHGb7ri0rQrLY0tWgUQUYXgvIfsOqbcYg63n0H/ n7su+c38bQlIRBb+dMHuf4p7/tyNpB0ESiDv9cs/PWkMN033IJyRUrP8SkfZkeSk zNDkfpE3UKGKXFudpKMuUJ1fgn5Z7xtl9p15hU1tx/zMSIavqC1ORLa9XYLB3Dt9 YswJSy5tTsAohy/SsbrI9+Wf8N//cufq9wKcmYp4teJKmZXtcDjnmpVfD5TvcYqD CJeNDYSR0T4rNJL9TId8QBQpGwjPeEj5/MaiYjRENRdxaFIOpqkTr49TvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL4NuJb+D3ekH4kTtyrDDg1adZwOMB8GA1UdIwQY MBaAFEKm5kAZgBPeEqJR8IYDDNeMcyUWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXFibVFCbUFFOTRTb2xId2hnTU0xNHh6SlJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9iYTJmM2QtNmJkMi00ZjMyLTgxYWYt YzI4NzY3MGNjZTUxLzEvUXFibVFCbUFFOTRTb2xId2hnTU0xNHh6SlJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9iYTJmM2QtNmJkMi00ZjMyLTgxYWYtYzI4NzY3MGNjZTUx LzEvUXFibVFCbUFFOTRTb2xId2hnTU0xNHh6SlJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMV1yfY5r 1pxjAlYDIIylmYoaKLWnecqE5JKxwLNQH6zK4ncQsdoH2zN17dqd5dH/5GJqPKg/ Ei4EW+/BB0iiswZ9jsH6P8D823IR1pbQhY9uynYBn7obb+GtyZNHxO5dnxmf3dUp 6bshZ2HhxNl729f9UtGwrWpV/kXv/wW4Q/DV0yIWVZxyyoOVsG0V5GiNQW2axxqZ 7Xh5Lg1naDhV/aPNxxceuj+ASWwIlXpwZIerZCSslOtcOyzBwAtPR4P9H/ESxKjn +G0QRAxukZjApP+glSxVlovgnFIJu7np0IM/q66iMFdpMoiisyk1DdenMC0C9kbB UFBmaYYLKAD+oA== -----END CERTIFICATE-----Generated at Sat Dec 20 18:12:51 2025 by rpki-client