This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft File: QpBWwzjRbJLN_aHlXQk2givFDNI.mft (raw, json) Hash identifier: rtHXFSteyjwiy3zY2drKXdZk4KCrH3dk0zqRawn5f50= Subject key identifier: 1C:30:F3:5F:E2:7B:AA:C6:CA:AA:27:32:73:3A:82:D4:BE:78:64:5C Authority key identifier: 42:90:56:C3:38:D1:6C:92:CD:FD:A1:E5:5D:09:36:82:2B:C5:0C:D2 Certificate issuer: /CN=429056c338d16c92cdfda1e55d0936822bc50cd2 Certificate serial: 019B1A60632F51F5955A662C6E172D5268E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft Manifest number: 060B Signing time: Sun 14 Dec 2025 01:01:22 +0000 Manifest this update: Sun 14 Dec 2025 01:01:22 +0000 Manifest next update: Mon 15 Dec 2025 01:01:22 +0000 Files and hashes: 1: QpBWwzjRbJLN_aHlXQk2givFDNI.crl (hash: gvQX3aJEhZ89b3d3mOSg6lSkY476EXyAxtZm+JZKPKM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 01:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:60:63:2f:51:f5:95:5a:66:2c:6e:17:2d:52:68:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=429056c338d16c92cdfda1e55d0936822bc50cd2 Validity Not Before: Dec 14 01:01:22 2025 GMT Not After : Dec 15 01:01:22 2025 GMT Subject: CN=1c30f35fe27baac6caaa2732733a82d4be78645c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3c:3f:43:3a:27:cf:24:bc:e3:3c:e7:38:63: 23:55:15:ad:9b:ec:7e:c5:aa:17:1d:22:7b:06:ac: 87:f5:5e:d2:9e:de:66:8e:4d:85:5a:28:bb:08:b0: ef:25:1e:f7:a0:61:92:c7:ea:a9:2e:e0:e7:f0:56: 8b:56:e4:0d:e9:77:b3:9f:16:65:73:ba:e7:de:1d: 24:71:70:5e:9d:f9:18:d8:0d:11:94:a2:65:37:af: 6d:0f:53:3f:76:98:61:24:0d:36:df:b9:0a:73:6a: 30:e3:4c:48:c9:68:d4:25:97:50:0e:e5:5b:54:23: 20:4d:28:1f:f7:0b:fa:d0:0d:ac:7f:9a:d8:95:4a: 74:95:0d:58:c2:a7:b8:c9:0b:52:37:11:53:09:df: 29:04:7c:b8:49:b7:97:c9:2a:8e:9f:7e:98:54:53: e0:1a:46:79:8c:97:51:01:18:56:bc:70:82:19:b6: 95:34:c0:22:49:4a:f4:c8:db:8f:63:98:4b:21:60: a4:ec:05:03:f2:80:bb:a4:42:63:af:b3:1b:74:15: 57:d2:8b:77:f9:4e:23:3b:6f:82:bb:7c:9a:f1:ad: 42:9d:87:93:37:55:44:67:be:55:2f:07:c8:7f:eb: 80:0e:41:31:b8:df:81:fc:0e:3c:c4:83:1b:eb:5d: 99:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:30:F3:5F:E2:7B:AA:C6:CA:AA:27:32:73:3A:82:D4:BE:78:64:5C X509v3 Authority Key Identifier: keyid:42:90:56:C3:38:D1:6C:92:CD:FD:A1:E5:5D:09:36:82:2B:C5:0C:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:46:c8:80:29:07:ec:d2:bc:d4:fb:7a:06:17:da:f9:77:80: 14:ac:7d:b5:9a:7d:64:56:21:c5:9d:2f:ff:d8:bb:c7:b5:30: ed:db:e0:99:b9:ad:80:11:98:a9:d7:59:4a:fb:3d:f9:9a:8b: ac:b6:8d:4c:d4:0c:06:45:22:96:86:29:7d:51:82:91:d9:9b: 03:0c:80:4d:e9:6e:6d:ea:bc:a6:df:e3:17:74:6f:1e:0a:46: 89:66:2a:8b:b3:b6:40:f0:f3:1a:27:12:88:37:e4:c2:cf:68: 4f:c7:c9:d7:cf:4e:6d:c0:56:65:6b:c4:88:84:22:09:84:e3: f5:e6:72:c6:15:e9:f1:5a:19:49:a6:a5:48:87:13:31:00:ca: 31:e3:5a:3d:67:d5:4e:5b:12:fc:e9:5c:0a:f0:86:0f:fe:d9: ca:57:5d:fe:0b:d9:d3:0e:b6:b4:72:12:2f:9f:52:bf:1d:64: fa:14:e3:46:41:ad:e9:af:bb:1f:ff:eb:c0:e5:5b:63:a0:9e: 9c:ec:d8:2d:dd:13:9a:f7:ba:bd:79:ae:f6:79:6e:16:3f:df: 8c:e9:14:19:f2:78:6e:67:9e:81:3f:1e:ed:64:1a:bc:cf:20: c2:e4:08:b8:d6:44:8d:ba:31:9a:03:f7:41:ad:3e:a7:f9:2a: 04:14:df:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsaYGMvUfWVWmYsbhctUmjhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyOTA1NmMzMzhkMTZjOTJjZGZkYTFlNTVkMDkzNjgyMmJj NTBjZDIwHhcNMjUxMjE0MDEwMTIyWhcNMjUxMjE1MDEwMTIyWjAzMTEwLwYDVQQD EygxYzMwZjM1ZmUyN2JhYWM2Y2FhYTI3MzI3MzNhODJkNGJlNzg2NDVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2zw/QzonzyS84zznOGMjVRWtm+x+ xaoXHSJ7BqyH9V7Snt5mjk2FWii7CLDvJR73oGGSx+qpLuDn8FaLVuQN6XeznxZl c7rn3h0kcXBenfkY2A0RlKJlN69tD1M/dphhJA0237kKc2ow40xIyWjUJZdQDuVb VCMgTSgf9wv60A2sf5rYlUp0lQ1Ywqe4yQtSNxFTCd8pBHy4SbeXySqOn36YVFPg GkZ5jJdRARhWvHCCGbaVNMAiSUr0yNuPY5hLIWCk7AUD8oC7pEJjr7MbdBVX0ot3 +U4jO2+Cu3ya8a1CnYeTN1VEZ75VLwfIf+uADkExuN+B/A48xIMb612ZgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBww81/ie6rGyqonMnM6gtS+eGRcMB8GA1UdIwQY MBaAFEKQVsM40WySzf2h5V0JNoIrxQzSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXBCV3d6alJiSkxOX2FIbFhRazJnaXZGRE5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy81MTNiNzctOWUzYi00YTZjLTllZDUt N2YyMWQ5YmVmYzJjLzEvUXBCV3d6alJiSkxOX2FIbFhRazJnaXZGRE5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy81MTNiNzctOWUzYi00YTZjLTllZDUtN2YyMWQ5YmVmYzJj LzEvUXBCV3d6alJiSkxOX2FIbFhRazJnaXZGRE5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAakbIgCkH 7NK81Pt6Bhfa+XeAFKx9tZp9ZFYhxZ0v/9i7x7Uw7dvgmbmtgBGYqddZSvs9+ZqL rLaNTNQMBkUiloYpfVGCkdmbAwyATelubeq8pt/jF3RvHgpGiWYqi7O2QPDzGicS iDfkws9oT8fJ189ObcBWZWvEiIQiCYTj9eZyxhXp8VoZSaalSIcTMQDKMeNaPWfV TlsS/OlcCvCGD/7Zyldd/gvZ0w62tHISL59Svx1k+hTjRkGt6a+7H//rwOVbY6Ce nOzYLd0Tmve6vXmu9nluFj/fjOkUGfJ4bmeegT8e7WQavM8gwuQIuNZEjboxmgP3 Qa0+p/kqBBTfig== -----END CERTIFICATE-----Generated at Sun Dec 14 07:43:06 2025 by rpki-client