This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft File: QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft (raw, json) Hash identifier: MOniUbhnRR2hXE6iXmH6Mzg16usRNNT2tyCyMkVm35I= Subject key identifier: 85:82:72:29:E2:B9:39:D9:12:AA:53:00:C4:0E:80:34:B5:B4:6C:68 Authority key identifier: 42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2 Certificate issuer: /CN=4214088c77bd12687fd4ba9fe3159ea805888ed2 Certificate serial: 019B300C6F927EE169F18FBD700C7AFD982E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft Manifest number: 1782 Signing time: Thu 18 Dec 2025 06:01:19 +0000 Manifest this update: Thu 18 Dec 2025 06:01:19 +0000 Manifest next update: Fri 19 Dec 2025 06:01:19 +0000 Files and hashes: 1: 3wDf96BAjCwHPGLFXHfr6FPj5tk.roa (hash: n76aMPDVHHg0+waIaYLD5Tllb242OUUWngTT/Znka38=) 2: Crd7C8SVck2OIDtSkQeAyuMLu6I.roa (hash: wscKj8/Aoswv3PHZoE2nGYXdRz4QSyUb5GTz6Q8fmgM=) 3: QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl (hash: 4LL55Ln7/IQ3J2DyTcJnQ+89B5Hwyk/VNF/cS+RdsLw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 06:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:0c:6f:92:7e:e1:69:f1:8f:bd:70:0c:7a:fd:98:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4214088c77bd12687fd4ba9fe3159ea805888ed2 Validity Not Before: Dec 18 06:01:19 2025 GMT Not After : Dec 19 06:01:19 2025 GMT Subject: CN=85827229e2b939d912aa5300c40e8034b5b46c68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:19:a7:b7:50:a1:b3:e7:5c:3b:5f:07:bd:95: 67:3a:05:8b:9a:20:c1:09:25:8a:99:39:0b:dc:8a: 02:6a:50:db:ee:22:78:9a:b9:19:76:4c:f8:db:a2: 3d:4b:2f:3c:2e:b6:cd:02:64:5c:9b:83:aa:15:3e: 9e:eb:59:9d:24:5c:7a:48:2f:29:1d:9f:58:c2:16: 92:eb:e9:a4:9b:a1:5d:64:cd:bd:e3:48:22:9d:fb: 94:c5:a8:e5:d9:17:a7:31:10:32:e0:26:96:70:e8: c5:b6:da:c2:1e:ac:84:f4:54:f5:5a:17:a5:fe:01: 2a:f6:49:86:a7:d7:7e:89:f9:24:ae:6c:04:d8:1a: 33:91:36:c2:06:36:d7:aa:a9:d0:23:ec:e6:c9:91: 56:65:cb:02:9a:cc:c8:f1:a3:95:f9:bc:71:72:ca: 1b:12:a7:11:38:3c:02:23:6b:f7:51:97:63:57:a9: e0:4e:50:33:a0:2a:92:db:40:50:46:ba:e6:4b:91: 4c:7b:8d:f4:c3:18:40:65:75:58:6c:11:e5:e0:35: 23:c2:c7:ec:07:59:0d:1a:89:63:a2:15:84:35:1a: c9:11:9d:71:8a:ce:5b:c7:a2:67:5e:21:1e:f9:ee: d2:26:e9:36:86:22:ed:28:fe:65:65:c6:2b:4a:2a: bb:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:82:72:29:E2:B9:39:D9:12:AA:53:00:C4:0E:80:34:B5:B4:6C:68 X509v3 Authority Key Identifier: keyid:42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:14:35:45:c6:b1:6b:d2:80:34:a2:c1:b0:98:86:ec:70:cc: dc:da:9e:f4:5a:1f:c3:f5:93:81:c6:84:35:06:6d:f7:13:2c: 4d:45:d5:28:c7:e7:00:f2:be:9e:cd:8d:0a:11:a4:c8:d9:4c: 8f:9e:10:f4:8a:fa:2e:d5:8b:37:0f:7c:05:38:d9:6e:80:3e: b0:20:be:31:31:44:dc:09:8f:59:b8:ef:0b:de:2c:9b:fa:fe: 42:e6:2b:39:98:e7:e1:b7:27:fd:69:8d:c1:fd:f1:74:22:7c: 0e:ab:95:b1:fe:1f:42:b3:9f:7c:74:83:34:8f:36:17:11:97: 6f:e7:d9:61:0a:58:39:b6:f2:ab:94:1d:31:99:00:02:10:ea: 69:f8:58:8d:78:b0:b0:d6:ff:6f:bc:e5:f6:ec:96:83:f8:0d: bc:c9:dd:97:ac:0f:d2:e9:20:48:ec:16:a0:62:d8:2b:d0:a7: 84:fc:43:9c:c0:13:94:e7:39:ab:d7:17:46:85:28:68:99:0c: a1:97:45:e9:a4:8d:ac:47:a3:15:6a:b5:71:60:71:74:61:1d: 25:18:e5:8e:da:43:cc:9c:b2:5f:16:35:4e:5c:0c:15:3c:32: 34:41:83:c3:29:ad:94:1e:c1:15:3b:b2:dd:17:0d:18:83:4e: 52:18:5f:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZswDG+SfuFp8Y+9cAx6/ZguMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyMTQwODhjNzdiZDEyNjg3ZmQ0YmE5ZmUzMTU5ZWE4MDU4 ODhlZDIwHhcNMjUxMjE4MDYwMTE5WhcNMjUxMjE5MDYwMTE5WjAzMTEwLwYDVQQD Eyg4NTgyNzIyOWUyYjkzOWQ5MTJhYTUzMDBjNDBlODAzNGI1YjQ2YzY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Rmnt1Chs+dcO18HvZVnOgWLmiDB CSWKmTkL3IoCalDb7iJ4mrkZdkz426I9Sy88LrbNAmRcm4OqFT6e61mdJFx6SC8p HZ9YwhaS6+mkm6FdZM2940ginfuUxajl2RenMRAy4CaWcOjFttrCHqyE9FT1Whel /gEq9kmGp9d+ifkkrmwE2BozkTbCBjbXqqnQI+zmyZFWZcsCmszI8aOV+bxxcsob EqcRODwCI2v3UZdjV6ngTlAzoCqS20BQRrrmS5FMe430wxhAZXVYbBHl4DUjwsfs B1kNGoljohWENRrJEZ1xis5bx6JnXiEe+e7SJuk2hiLtKP5lZcYrSiq7PQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIWCciniuTnZEqpTAMQOgDS1tGxoMB8GA1UdIwQY MBaAFEIUCIx3vRJof9S6n+MVnqgFiI7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWhRSWpIZTlFbWhfMUxxZjR4V2VxQVdJanRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9iYjVlY2UtMDEyZS00MTk0LTk5ODAt N2UyMWRiNWEyZWY5LzEvUWhRSWpIZTlFbWhfMUxxZjR4V2VxQVdJanRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9iYjVlY2UtMDEyZS00MTk0LTk5ODAtN2UyMWRiNWEyZWY5 LzEvUWhRSWpIZTlFbWhfMUxxZjR4V2VxQVdJanRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQRQ1Rcax a9KANKLBsJiG7HDM3Nqe9Fofw/WTgcaENQZt9xMsTUXVKMfnAPK+ns2NChGkyNlM j54Q9Ir6LtWLNw98BTjZboA+sCC+MTFE3AmPWbjvC94sm/r+QuYrOZjn4bcn/WmN wf3xdCJ8DquVsf4fQrOffHSDNI82FxGXb+fZYQpYObbyq5QdMZkAAhDqafhYjXiw sNb/b7zl9uyWg/gNvMndl6wP0ukgSOwWoGLYK9CnhPxDnMATlOc5q9cXRoUoaJkM oZdF6aSNrEejFWq1cWBxdGEdJRjljtpDzJyyXxY1TlwMFTwyNEGDwymtlB7BFTuy 3RcNGINOUhhfEQ== -----END CERTIFICATE-----Generated at Thu Dec 18 15:30:08 2025 by rpki-client