This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft File: QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft (raw, json) Hash identifier: iD5HQ9wuCo273frS+9B9Rc+TtwACZxqtgcTjcBarqKQ= Subject key identifier: 78:D5:4E:6B:D3:52:09:7F:DE:DD:C2:F6:18:30:47:74:0C:78:14:45 Authority key identifier: 42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2 Certificate issuer: /CN=4214088c77bd12687fd4ba9fe3159ea805888ed2 Certificate serial: 019B33E8F13B82852F9EDA7132A79172BC58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft Manifest number: 1784 Signing time: Fri 19 Dec 2025 00:01:02 +0000 Manifest this update: Fri 19 Dec 2025 00:01:02 +0000 Manifest next update: Sat 20 Dec 2025 00:01:02 +0000 Files and hashes: 1: 3wDf96BAjCwHPGLFXHfr6FPj5tk.roa (hash: n76aMPDVHHg0+waIaYLD5Tllb242OUUWngTT/Znka38=) 2: Crd7C8SVck2OIDtSkQeAyuMLu6I.roa (hash: wscKj8/Aoswv3PHZoE2nGYXdRz4QSyUb5GTz6Q8fmgM=) 3: QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl (hash: yQ/xKbKYV2jDaeK++FVSrdeeycL/lDRieJYAmJn0pyw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:e8:f1:3b:82:85:2f:9e:da:71:32:a7:91:72:bc:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4214088c77bd12687fd4ba9fe3159ea805888ed2 Validity Not Before: Dec 19 00:01:02 2025 GMT Not After : Dec 20 00:01:02 2025 GMT Subject: CN=78d54e6bd352097fdeddc2f6183047740c781445 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:59:f0:6e:8a:c9:fc:7e:c8:70:97:ff:91:b3: 5c:da:5f:b5:9f:7f:5b:4e:07:14:cc:78:6f:e9:22: 42:25:b5:13:21:0e:d5:f2:07:c6:9f:d3:92:8f:60: de:10:9e:51:3e:48:d7:80:37:67:d0:2e:e2:82:80: 89:2d:ce:4e:8f:b0:49:79:3b:c5:3c:83:3a:35:0d: e7:ed:22:c9:36:f8:ad:f9:f6:1c:8d:f5:72:9c:8f: 06:31:a2:cb:9e:ef:ff:cd:2e:5a:fd:ac:00:d8:4c: 88:35:04:05:bc:f9:45:0b:be:68:41:48:e3:ae:cf: 25:72:57:7f:ab:db:24:e6:5b:57:50:29:f5:f3:06: 60:73:d6:b1:05:a6:9b:82:75:c2:aa:80:5b:45:3c: 05:31:31:d4:6e:90:37:8b:f1:49:09:fc:4c:67:bb: 5e:ec:e2:ad:ad:2b:3e:30:b0:1e:79:8f:e8:1c:e7: 0e:7c:1c:1b:6a:5d:5c:22:ef:b9:0e:bc:9e:d3:f5: a7:c9:63:00:79:8c:e0:9a:1d:93:1d:ff:b1:a8:e0: 8c:7f:85:38:56:0a:68:5d:d3:b6:7c:4c:90:61:58: 11:f5:a5:ab:cd:3f:21:10:7e:80:ac:57:a7:45:aa: 9b:57:73:a5:37:45:e8:e4:25:bf:a8:7d:a3:ee:3d: fb:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D5:4E:6B:D3:52:09:7F:DE:DD:C2:F6:18:30:47:74:0C:78:14:45 X509v3 Authority Key Identifier: keyid:42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:9b:49:02:eb:07:46:84:b5:5f:4b:d6:d5:de:c8:ee:4c:4d: 80:f1:80:8c:5b:a0:c2:c5:de:f1:1b:3c:71:ea:0b:ea:9e:42: 3d:6a:4e:2a:32:06:24:ee:31:f6:4a:b7:0d:ba:05:5a:22:7a: b3:ed:89:71:2f:41:08:7f:fc:fc:62:fb:4b:28:76:98:74:c1: f0:2e:36:99:99:62:46:11:1f:4e:ac:7e:58:e3:50:33:4c:fc: 7a:2d:9d:1c:c2:e4:f5:8f:14:74:f6:e9:66:53:0b:9c:82:33: b6:19:85:e8:73:13:6f:1d:b9:65:7d:f4:a0:b0:11:c6:dd:1f: 8a:ad:16:bd:ca:0c:22:63:d6:a3:af:38:a2:91:25:f6:fb:05: ee:81:86:7f:e8:2b:fa:d7:a6:63:18:ee:34:00:95:eb:4e:19: d8:22:ff:57:bb:79:96:56:f2:14:fd:62:ae:2d:47:5a:3a:82: 69:92:98:f8:90:92:4d:e3:d2:6a:ac:4f:fe:28:c7:ac:bf:fe: 95:cc:24:d4:b6:96:d2:37:cf:20:58:32:ff:c9:65:04:50:8e: d9:72:70:01:ea:21:07:9b:0f:fc:b0:cf:71:2c:25:c2:aa:f1: 83:4e:a5:27:5c:21:f8:ef:56:45:5e:d3:c8:fe:25:82:b3:d2: 8b:db:23:eb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsz6PE7goUvntpxMqeRcrxYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyMTQwODhjNzdiZDEyNjg3ZmQ0YmE5ZmUzMTU5ZWE4MDU4 ODhlZDIwHhcNMjUxMjE5MDAwMTAyWhcNMjUxMjIwMDAwMTAyWjAzMTEwLwYDVQQD Eyg3OGQ1NGU2YmQzNTIwOTdmZGVkZGMyZjYxODMwNDc3NDBjNzgxNDQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVnwborJ/H7IcJf/kbNc2l+1n39b TgcUzHhv6SJCJbUTIQ7V8gfGn9OSj2DeEJ5RPkjXgDdn0C7igoCJLc5Oj7BJeTvF PIM6NQ3n7SLJNvit+fYcjfVynI8GMaLLnu//zS5a/awA2EyINQQFvPlFC75oQUjj rs8lcld/q9sk5ltXUCn18wZgc9axBaabgnXCqoBbRTwFMTHUbpA3i/FJCfxMZ7te 7OKtrSs+MLAeeY/oHOcOfBwbal1cIu+5Drye0/WnyWMAeYzgmh2THf+xqOCMf4U4 VgpoXdO2fEyQYVgR9aWrzT8hEH6ArFenRaqbV3OlN0Xo5CW/qH2j7j37CQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHjVTmvTUgl/3t3C9hgwR3QMeBRFMB8GA1UdIwQY MBaAFEIUCIx3vRJof9S6n+MVnqgFiI7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWhRSWpIZTlFbWhfMUxxZjR4V2VxQVdJanRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9iYjVlY2UtMDEyZS00MTk0LTk5ODAt N2UyMWRiNWEyZWY5LzEvUWhRSWpIZTlFbWhfMUxxZjR4V2VxQVdJanRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9iYjVlY2UtMDEyZS00MTk0LTk5ODAtN2UyMWRiNWEyZWY5 LzEvUWhRSWpIZTlFbWhfMUxxZjR4V2VxQVdJanRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK5tJAusH RoS1X0vW1d7I7kxNgPGAjFugwsXe8Rs8ceoL6p5CPWpOKjIGJO4x9kq3DboFWiJ6 s+2JcS9BCH/8/GL7Syh2mHTB8C42mZliRhEfTqx+WONQM0z8ei2dHMLk9Y8UdPbp ZlMLnIIzthmF6HMTbx25ZX30oLARxt0fiq0WvcoMImPWo684opEl9vsF7oGGf+gr +temYxjuNACV604Z2CL/V7t5llbyFP1iri1HWjqCaZKY+JCSTePSaqxP/ijHrL/+ lcwk1LaW0jfPIFgy/8llBFCO2XJwAeohB5sP/LDPcSwlwqrxg06lJ1wh+O9WRV7T yP4lgrPSi9sj6w== -----END CERTIFICATE-----Generated at Fri Dec 19 02:02:04 2025 by rpki-client