This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft File: QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft (raw, json) Hash identifier: Mr+j4NDG3r3/JlhjMBg+A/8ZvsGcs9wWDVvt7G7iJSI= Subject key identifier: 88:05:58:98:CB:D6:46:70:3B:31:15:62:CF:E1:23:F5:35:B7:AE:B7 Authority key identifier: 42:13:B5:47:19:66:C2:56:10:D9:5A:5A:2F:A5:CC:06:FC:93:FF:57 Certificate issuer: /CN=4213b5471966c25610d95a5a2fa5cc06fc93ff57 Certificate serial: 019B3569FD7DE5A4E8661214C1A1DCD9A77B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft Manifest number: 06A8 Signing time: Fri 19 Dec 2025 07:01:37 +0000 Manifest this update: Fri 19 Dec 2025 07:01:37 +0000 Manifest next update: Sat 20 Dec 2025 07:01:37 +0000 Files and hashes: 1: QhO1RxlmwlYQ2VpaL6XMBvyT_1c.crl (hash: cfTbgGqhYPzoNlMW1UrnOY5qin+sgY43TUlIn0KzfbU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft rsync://rpki.ripe.net/repository/DEFAULT/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:69:fd:7d:e5:a4:e8:66:12:14:c1:a1:dc:d9:a7:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4213b5471966c25610d95a5a2fa5cc06fc93ff57 Validity Not Before: Dec 19 07:01:37 2025 GMT Not After : Dec 20 07:01:37 2025 GMT Subject: CN=88055898cbd646703b311562cfe123f535b7aeb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:eb:e1:6c:9b:5a:83:c7:0b:53:26:0c:91:b7: 4d:fc:1b:81:22:f9:15:b7:81:e6:80:f5:5c:22:15: 5b:6e:b4:85:bc:20:8d:d5:2b:d6:1e:2e:f9:10:f7: 2b:14:fa:95:8d:2b:a6:43:bf:15:00:66:18:b0:13: 1c:08:85:2b:8e:95:ac:01:84:53:ec:10:55:49:8a: 18:b0:a4:e9:9a:c5:e0:b8:f3:57:a8:a7:6f:54:ec: d6:4e:21:90:91:a6:fe:3e:20:15:43:34:76:aa:87: d7:d5:2e:71:22:01:23:00:2d:f0:6c:ff:f7:ba:fd: 18:c6:c2:b0:08:e8:9e:7e:de:fe:7b:f8:ca:91:78: e6:41:6c:9c:b8:1f:77:6b:76:36:4d:29:22:75:2a: 80:f6:51:36:12:cd:0c:61:f4:af:93:b1:eb:00:4d: cd:4d:9d:82:0f:ac:46:24:d7:35:62:31:57:94:58: b6:ca:a6:ff:43:5e:35:37:cd:bb:37:b6:13:ee:05: 8d:f3:9f:0c:00:ef:f0:0a:44:74:76:f5:cf:a8:9e: a7:b9:0d:10:cb:43:4c:01:c9:39:9f:d4:a0:3a:8b: 9b:95:47:76:bd:11:4f:4b:34:33:48:62:ee:34:09: 5d:b9:c5:d2:fe:c3:78:20:b1:38:46:1e:8a:38:4c: 1f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:05:58:98:CB:D6:46:70:3B:31:15:62:CF:E1:23:F5:35:B7:AE:B7 X509v3 Authority Key Identifier: keyid:42:13:B5:47:19:66:C2:56:10:D9:5A:5A:2F:A5:CC:06:FC:93:FF:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:38:f5:bc:1c:ca:43:bc:93:d7:13:44:21:5f:b0:67:8d:ff: 3f:82:f6:8e:bd:2c:66:06:75:1d:44:60:fd:89:cf:23:a0:2b: de:77:cc:ec:aa:71:a3:e7:a8:f6:23:8f:e2:4b:83:8e:45:5c: b6:d6:f8:c7:1c:99:23:6e:a4:eb:3b:fe:2a:bf:33:7a:8f:9f: 13:ef:d2:ae:39:a3:bf:d7:1d:0b:44:e5:ec:43:1b:ea:6e:6f: a9:7d:f5:3a:40:40:82:04:d4:b6:d7:38:b4:33:48:15:a6:d9: 92:1f:49:8d:6d:90:77:0a:9c:38:7d:44:0f:b5:6e:ca:26:98: f0:61:ba:24:62:a8:2d:6c:03:cc:0d:f6:42:90:39:f2:b4:2d: 2a:fc:ed:68:77:d2:88:9d:ac:93:d9:89:b9:a3:e8:40:88:db: 02:3e:f7:de:a2:b5:99:85:6c:7f:d9:a6:03:8b:da:73:cf:5c: 86:27:c7:2c:e2:5e:4c:c6:78:16:d7:c1:cd:05:a2:0a:09:8a: e7:62:a1:ae:ce:1b:a9:4d:8e:10:2f:e8:73:87:65:95:da:20: fd:a4:09:86:ed:72:9d:b3:30:15:a9:4d:d7:2f:69:f4:24:24: f5:90:b6:67:3c:b5:8a:ef:09:c3:ed:14:3d:d5:f7:e8:62:b2: 45:dc:dd:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1af195aToZhIUwaHc2ad7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyMTNiNTQ3MTk2NmMyNTYxMGQ5NWE1YTJmYTVjYzA2ZmM5 M2ZmNTcwHhcNMjUxMjE5MDcwMTM3WhcNMjUxMjIwMDcwMTM3WjAzMTEwLwYDVQQD Eyg4ODA1NTg5OGNiZDY0NjcwM2IzMTE1NjJjZmUxMjNmNTM1YjdhZWI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxevhbJtag8cLUyYMkbdN/BuBIvkV t4HmgPVcIhVbbrSFvCCN1SvWHi75EPcrFPqVjSumQ78VAGYYsBMcCIUrjpWsAYRT 7BBVSYoYsKTpmsXguPNXqKdvVOzWTiGQkab+PiAVQzR2qofX1S5xIgEjAC3wbP/3 uv0YxsKwCOieft7+e/jKkXjmQWycuB93a3Y2TSkidSqA9lE2Es0MYfSvk7HrAE3N TZ2CD6xGJNc1YjFXlFi2yqb/Q141N827N7YT7gWN858MAO/wCkR0dvXPqJ6nuQ0Q y0NMAck5n9SgOoublUd2vRFPSzQzSGLuNAlducXS/sN4ILE4Rh6KOEwfLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIgFWJjL1kZwOzEVYs/hI/U1t663MB8GA1UdIwQY MBaAFEITtUcZZsJWENlaWi+lzAb8k/9XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWhPMVJ4bG13bFlRMlZwYUw2WE1CdnlUXzFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8wMDA0ODUtNzIxZi00ZDk3LWEwZjIt NWJkYjJjNjAxMDJkLzEvUWhPMVJ4bG13bFlRMlZwYUw2WE1CdnlUXzFjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy8wMDA0ODUtNzIxZi00ZDk3LWEwZjItNWJkYjJjNjAxMDJk LzEvUWhPMVJ4bG13bFlRMlZwYUw2WE1CdnlUXzFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArzj1vBzK Q7yT1xNEIV+wZ43/P4L2jr0sZgZ1HURg/YnPI6Ar3nfM7Kpxo+eo9iOP4kuDjkVc ttb4xxyZI26k6zv+Kr8zeo+fE+/Srjmjv9cdC0Tl7EMb6m5vqX31OkBAggTUttc4 tDNIFabZkh9JjW2QdwqcOH1ED7VuyiaY8GG6JGKoLWwDzA32QpA58rQtKvztaHfS iJ2sk9mJuaPoQIjbAj733qK1mYVsf9mmA4vac89chifHLOJeTMZ4FtfBzQWiCgmK 52Khrs4bqU2OEC/oc4dlldog/aQJhu1ynbMwFalN1y9p9CQk9ZC2Zzy1iu8Jw+0U PdX36GKyRdzdWA== -----END CERTIFICATE-----Generated at Fri Dec 19 09:14:43 2025 by rpki-client