This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft File: qltHHQugidnp9GwpExlnT6yBKNA.mft (raw, json) Hash identifier: qx79tJ28+C6Lq8Ok9obDsSBhEte2BiDSE821PgBFIh0= Subject key identifier: 8C:8C:47:E2:F2:F4:FD:C4:D8:4B:87:16:C2:29:22:03:26:26:9D:B7 Authority key identifier: AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0 Certificate issuer: /CN=aa5b471d0ba089d9e9f46c291319674fac8128d0 Certificate serial: 019B2EFAFFD8AAA2CD9CA78709B87087F6B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft Manifest number: 0DD3 Signing time: Thu 18 Dec 2025 01:02:39 +0000 Manifest this update: Thu 18 Dec 2025 01:02:39 +0000 Manifest next update: Fri 19 Dec 2025 01:02:39 +0000 Files and hashes: 1: 2K6387yyM5gxakFjGUcn1KUMQ58.roa (hash: KwEJI06hkpRX+nj9eXMKKI3vC9xa4ElKQ9FhYTbVyds=) 2: VNd90Fl0tWahsmhhQvhoAAT8f5U.roa (hash: U+zi8hpH0S9lksZLxaBLhZX/Hg0tdOzYwVmTSHbyaHY=) 3: qltHHQugidnp9GwpExlnT6yBKNA.crl (hash: GzoNFnSREoGmDGQzZXc4j03b0yOi/ITYoC8UB1Z8FxY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:fa:ff:d8:aa:a2:cd:9c:a7:87:09:b8:70:87:f6:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa5b471d0ba089d9e9f46c291319674fac8128d0 Validity Not Before: Dec 18 01:02:39 2025 GMT Not After : Dec 19 01:02:39 2025 GMT Subject: CN=8c8c47e2f2f4fdc4d84b8716c229220326269db7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7f:a2:c4:6e:ba:20:9f:6a:6a:10:e4:c5:36: fc:c7:8d:4d:f4:c4:43:15:a7:55:08:ad:09:75:88: 7f:8a:44:c4:5b:5b:69:f5:97:81:b6:24:eb:b7:7e: 0e:0e:41:2f:01:67:d8:84:30:bf:58:e0:c8:7f:9e: 80:94:bc:8c:98:e7:e3:12:66:e9:04:1d:b5:dd:ff: 9f:2a:2d:df:6d:c9:2e:e3:73:20:ca:66:c9:e8:24: 32:b3:1d:09:19:45:95:d3:59:11:3c:62:40:db:7b: e9:6d:bc:ce:74:3d:0c:f5:e1:be:b4:a5:7d:d1:f4: 2a:c6:00:c1:42:e9:ac:ae:50:0b:40:02:39:c3:21: f6:ab:03:af:22:74:5f:8d:7c:5e:d1:9f:5c:7a:02: e8:d4:5e:d7:8d:16:5a:98:4a:3f:e1:24:77:ec:02: ba:33:64:ec:26:a3:30:55:4b:70:71:5e:b5:8c:45: 5e:d4:c6:4e:f6:8f:84:e9:35:eb:92:12:ea:62:7f: ae:6e:33:87:ae:ab:42:18:e2:d4:03:1d:e1:67:2f: 18:1b:8f:05:f0:62:14:89:28:47:d9:4a:99:b0:f1: dc:29:5d:4a:fb:de:f2:8f:cf:de:aa:f2:f8:97:13: ca:61:cd:35:47:0f:e6:ea:5c:96:1d:ce:ff:29:c3: be:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:8C:47:E2:F2:F4:FD:C4:D8:4B:87:16:C2:29:22:03:26:26:9D:B7 X509v3 Authority Key Identifier: keyid:AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:c6:8d:60:16:8c:89:6a:5e:b3:5e:71:5e:3a:5b:62:43:ab: 91:5c:df:1b:24:2a:9f:2e:4e:f5:66:0a:1d:11:42:92:0d:d7: 22:f8:f4:5c:37:dd:0e:f0:de:01:f5:68:79:52:67:a8:cb:c6: 32:a2:dc:38:28:3b:f7:12:b9:ea:93:8d:2d:09:2e:48:79:3b: 8b:49:19:68:8d:12:fd:42:b8:57:62:93:f0:f8:50:3d:b6:40: ff:3d:8b:a8:a2:95:a1:1e:d5:ee:86:b3:39:27:f2:1d:05:a8: 9d:3b:66:91:6a:44:07:82:f1:43:df:a7:1c:d8:41:86:09:c4: a2:7b:94:69:29:28:64:66:14:5d:06:d5:06:df:03:5c:5f:12: f9:40:32:55:22:68:49:ef:69:75:ae:2b:a9:83:15:21:cc:c2: 18:a5:a9:46:04:1d:41:51:2c:f9:e0:b8:2a:d7:ec:fd:4f:c8: ad:55:ed:66:bb:6b:e2:a9:27:a9:b0:98:18:9b:ad:99:d6:7c: c5:28:c3:30:c3:ec:c7:d8:65:33:e2:36:1b:f7:a3:2c:bd:4b: e4:58:d6:80:22:75:26:98:f0:84:4d:5d:7d:a3:02:cc:be:60: f4:7e:4e:c9:8c:db:d9:6c:29:db:1d:dd:30:c5:41:ef:d9:58: 4e:ec:00:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+v/YqqLNnKeHCbhwh/a4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNWI0NzFkMGJhMDg5ZDllOWY0NmMyOTEzMTk2NzRmYWM4 MTI4ZDAwHhcNMjUxMjE4MDEwMjM5WhcNMjUxMjE5MDEwMjM5WjAzMTEwLwYDVQQD Eyg4YzhjNDdlMmYyZjRmZGM0ZDg0Yjg3MTZjMjI5MjIwMzI2MjY5ZGI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3+ixG66IJ9qahDkxTb8x41N9MRD FadVCK0JdYh/ikTEW1tp9ZeBtiTrt34ODkEvAWfYhDC/WODIf56AlLyMmOfjEmbp BB213f+fKi3fbcku43MgymbJ6CQysx0JGUWV01kRPGJA23vpbbzOdD0M9eG+tKV9 0fQqxgDBQumsrlALQAI5wyH2qwOvInRfjXxe0Z9cegLo1F7XjRZamEo/4SR37AK6 M2TsJqMwVUtwcV61jEVe1MZO9o+E6TXrkhLqYn+ubjOHrqtCGOLUAx3hZy8YG48F 8GIUiShH2UqZsPHcKV1K+97yj8/eqvL4lxPKYc01Rw/m6lyWHc7/KcO+2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIyMR+Ly9P3E2EuHFsIpIgMmJp23MB8GA1UdIwQY MBaAFKpbRx0LoInZ6fRsKRMZZ0+sgSjQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWx0SEhRdWdpZG5wOUd3cEV4bG5UNnlCS05BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS80YmUwMjctODhlOS00N2UzLWJiODgt NmYyZTI1MjliZTgyLzEvcWx0SEhRdWdpZG5wOUd3cEV4bG5UNnlCS05BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS80YmUwMjctODhlOS00N2UzLWJiODgtNmYyZTI1MjliZTgy LzEvcWx0SEhRdWdpZG5wOUd3cEV4bG5UNnlCS05BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApMaNYBaM iWpes15xXjpbYkOrkVzfGyQqny5O9WYKHRFCkg3XIvj0XDfdDvDeAfVoeVJnqMvG MqLcOCg79xK56pONLQkuSHk7i0kZaI0S/UK4V2KT8PhQPbZA/z2LqKKVoR7V7oaz OSfyHQWonTtmkWpEB4LxQ9+nHNhBhgnEonuUaSkoZGYUXQbVBt8DXF8S+UAyVSJo Se9pda4rqYMVIczCGKWpRgQdQVEs+eC4Ktfs/U/IrVXtZrtr4qknqbCYGJutmdZ8 xSjDMMPsx9hlM+I2G/ejLL1L5FjWgCJ1JpjwhE1dfaMCzL5g9H5OyYzb2Wwp2x3d MMVB79lYTuwA2w== -----END CERTIFICATE-----Generated at Thu Dec 18 04:21:02 2025 by rpki-client