This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft File: QlbgyzjNYSXO4U5Jcii4SQodQOk.mft (raw, json) Hash identifier: fl7Ng0IOim1NP8sSuXcQQ1LtZPWq0vEkbd8qjJ2KMzI= Subject key identifier: F8:E8:D2:35:45:F2:7E:3A:04:DD:97:94:DA:6E:AF:82:EC:6D:E5:03 Authority key identifier: 42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9 Certificate issuer: /CN=4256e0cb38cd6125cee14e497228b8490a1d40e9 Certificate serial: 019B0F008AFBA4694AC35BAFC2EF1560348C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft Manifest number: 06CC Signing time: Thu 11 Dec 2025 20:00:52 +0000 Manifest this update: Thu 11 Dec 2025 20:00:52 +0000 Manifest next update: Fri 12 Dec 2025 20:00:52 +0000 Files and hashes: 1: QlbgyzjNYSXO4U5Jcii4SQodQOk.crl (hash: 8qC2N+ZhM6ZNHUesbHjr2L9K1yHztb8aNQf0CtHIT08=) 2: ekPIeumjzc0aQ-0qnlrmTiVhDJI.roa (hash: MI/BYhVlkTAuExjmOk0h+DG2/B/CqzwrvfdzA0OS10s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:00:8a:fb:a4:69:4a:c3:5b:af:c2:ef:15:60:34:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4256e0cb38cd6125cee14e497228b8490a1d40e9 Validity Not Before: Dec 11 20:00:52 2025 GMT Not After : Dec 12 20:00:52 2025 GMT Subject: CN=f8e8d23545f27e3a04dd9794da6eaf82ec6de503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:71:ec:58:92:60:6f:a6:30:15:4f:ad:c3:b3: 9c:6f:8c:eb:c5:42:ef:1b:1e:8b:c1:de:cb:55:c9: e3:10:bf:a3:be:fc:4f:63:de:e0:64:fb:6a:b2:3b: 3a:37:d6:5c:5b:87:e3:2b:5b:9b:4e:f9:c2:31:53: 75:5c:8f:4a:72:aa:68:9c:b6:72:f5:4d:26:cb:a3: 15:c5:08:a7:64:0b:30:31:5e:92:f1:43:c3:96:bb: bc:62:3f:d1:7a:02:1c:da:21:af:cd:f1:9d:81:a7: 0b:41:bf:05:36:62:86:82:64:99:0d:86:96:a7:ce: 27:21:50:11:b0:83:75:c1:f0:bd:f9:af:9e:25:3c: 67:7e:61:c4:d9:d3:f8:af:ae:73:d4:4e:97:57:42: dc:30:3f:59:33:bb:b7:bb:a0:5b:3b:a1:a2:f9:22: 12:86:1f:8a:e1:35:db:b0:52:21:bc:f9:0a:5f:c7: 80:ba:be:4e:c2:56:16:2e:4d:bc:97:b8:82:a1:f5: 82:28:7a:65:83:52:c2:a5:2b:ec:31:a8:12:87:a4: d8:17:79:7f:f1:2b:fd:94:51:43:47:5e:97:bb:01: fc:4e:6e:23:ab:0e:1f:c6:6e:50:2b:e0:10:ee:53: d8:3f:0b:d0:10:e3:d5:2d:5d:a9:1b:a3:8f:43:46: 83:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E8:D2:35:45:F2:7E:3A:04:DD:97:94:DA:6E:AF:82:EC:6D:E5:03 X509v3 Authority Key Identifier: keyid:42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:22:65:c0:ba:e1:2a:80:98:bd:dc:21:b1:bb:f1:7b:2e:7d: 6e:b6:0c:c5:1a:59:68:3d:de:f1:cc:53:ee:c3:f1:e2:02:d6: e9:c6:7d:96:94:ab:63:e2:6a:3e:98:fc:bc:44:e8:f9:f3:bf: 99:13:f9:41:e0:38:59:14:11:ff:82:65:15:e3:aa:a3:e9:c5: ac:16:64:81:c2:2d:a4:0e:fa:61:85:49:ad:70:00:b9:2c:d3: 3e:7a:1a:3b:4f:90:42:23:8f:c2:18:e3:ff:be:0b:44:cc:80: a6:7b:58:bc:88:aa:9e:de:22:7a:9a:df:80:78:92:68:84:3e: 8e:f3:6d:9c:6b:93:76:23:79:93:32:e7:b0:4d:e0:6b:58:bd: 9f:c4:22:73:d4:a8:8c:06:7e:36:ef:5f:9f:ba:cf:18:70:a7: c4:72:86:7f:b6:38:f6:c3:89:f1:0e:b7:da:74:2b:88:d1:01: e3:ff:7b:e3:fd:b9:cc:9e:5b:b4:9a:25:13:d0:46:c7:d2:ec: 5e:e5:92:19:8b:bf:55:7c:09:6e:8d:f8:69:c3:34:9c:ed:1b: 35:5b:84:cd:fd:28:05:0e:b2:00:46:c7:e2:6f:88:ab:8b:63: 55:e8:90:96:78:d4:fd:59:72:8f:9c:a6:12:1f:f9:5f:af:74: 1a:7d:8a:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPAIr7pGlKw1uvwu8VYDSMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyNTZlMGNiMzhjZDYxMjVjZWUxNGU0OTcyMjhiODQ5MGEx ZDQwZTkwHhcNMjUxMjExMjAwMDUyWhcNMjUxMjEyMjAwMDUyWjAzMTEwLwYDVQQD EyhmOGU4ZDIzNTQ1ZjI3ZTNhMDRkZDk3OTRkYTZlYWY4MmVjNmRlNTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtHHsWJJgb6YwFU+tw7Ocb4zrxULv Gx6Lwd7LVcnjEL+jvvxPY97gZPtqsjs6N9ZcW4fjK1ubTvnCMVN1XI9KcqponLZy 9U0my6MVxQinZAswMV6S8UPDlru8Yj/RegIc2iGvzfGdgacLQb8FNmKGgmSZDYaW p84nIVARsIN1wfC9+a+eJTxnfmHE2dP4r65z1E6XV0LcMD9ZM7u3u6BbO6Gi+SIS hh+K4TXbsFIhvPkKX8eAur5OwlYWLk28l7iCofWCKHplg1LCpSvsMagSh6TYF3l/ 8Sv9lFFDR16XuwH8Tm4jqw4fxm5QK+AQ7lPYPwvQEOPVLV2pG6OPQ0aD6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPjo0jVF8n46BN2XlNpur4LsbeUDMB8GA1UdIwQY MBaAFEJW4Ms4zWElzuFOSXIouEkKHUDpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWxiZ3l6ak5ZU1hPNFU1SmNpaTRTUW9kUU9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9jMzE0ZjQtYjFhYy00MjZmLThmMjEt YTVlODUwYjZhMWJjLzEvUWxiZ3l6ak5ZU1hPNFU1SmNpaTRTUW9kUU9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny9jMzE0ZjQtYjFhYy00MjZmLThmMjEtYTVlODUwYjZhMWJj LzEvUWxiZ3l6ak5ZU1hPNFU1SmNpaTRTUW9kUU9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmiJlwLrh KoCYvdwhsbvxey59brYMxRpZaD3e8cxT7sPx4gLW6cZ9lpSrY+JqPpj8vETo+fO/ mRP5QeA4WRQR/4JlFeOqo+nFrBZkgcItpA76YYVJrXAAuSzTPnoaO0+QQiOPwhjj /74LRMyApntYvIiqnt4ieprfgHiSaIQ+jvNtnGuTdiN5kzLnsE3ga1i9n8Qic9So jAZ+Nu9fn7rPGHCnxHKGf7Y49sOJ8Q632nQriNEB4/974/25zJ5btJolE9BGx9Ls XuWSGYu/VXwJbo34acM0nO0bNVuEzf0oBQ6yAEbH4m+Iq4tjVeiQlnjU/Vlyj5ym Eh/5X690Gn2K+w== -----END CERTIFICATE-----Generated at Fri Dec 12 03:42:13 2025 by rpki-client