This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/Q0XQdzx63gjUSBnjthG9KXo5idM.mft File: Q0XQdzx63gjUSBnjthG9KXo5idM.mft (raw, json) Hash identifier: usuALnJ9Ri24osITi0wg87+xncC81QA+kSBZhbmWcEA= Subject key identifier: 09:DD:A1:FF:67:25:1F:3A:4A:FE:3B:64:F4:E8:AB:D8:AF:20:24:B1 Authority key identifier: 43:45:D0:77:3C:7A:DE:08:D4:48:19:E3:B6:11:BD:29:7A:39:89:D3 Certificate issuer: /CN=4345d0773c7ade08d44819e3b611bd297a3989d3 Certificate serial: 019B59ACAC58A6A58F644EBC4504528A5C5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0XQdzx63gjUSBnjthG9KXo5idM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/Q0XQdzx63gjUSBnjthG9KXo5idM.mft Manifest number: 14B0 Signing time: Fri 26 Dec 2025 08:00:46 +0000 Manifest this update: Fri 26 Dec 2025 08:00:46 +0000 Manifest next update: Sat 27 Dec 2025 08:00:46 +0000 Files and hashes: 1: D7IbZMa3P-hRRIAm78DqK4wNZ34.roa (hash: 3Rvd3MmyWPzVOpIFhMlT5LNPsKGSgahML9FUxKiCMwI=) 2: O7r63uTdFaICg1i90uf5cyEl-h4.roa (hash: Efs34tr8Lub/IHxUGCrqJn6lA9J8HyHyjcZJAIyTZbQ=) 3: Q0XQdzx63gjUSBnjthG9KXo5idM.crl (hash: 2VG2oxLDNHqCjbxNc85UHj7wM/VA71aVnhvA6YkGogU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/Q0XQdzx63gjUSBnjthG9KXo5idM.crl rsync://rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/Q0XQdzx63gjUSBnjthG9KXo5idM.mft rsync://rpki.ripe.net/repository/DEFAULT/Q0XQdzx63gjUSBnjthG9KXo5idM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ac:ac:58:a6:a5:8f:64:4e:bc:45:04:52:8a:5c:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4345d0773c7ade08d44819e3b611bd297a3989d3 Validity Not Before: Dec 26 08:00:46 2025 GMT Not After : Dec 27 08:00:46 2025 GMT Subject: CN=09dda1ff67251f3a4afe3b64f4e8abd8af2024b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:32:b8:9c:00:bc:3c:ce:ba:e3:ee:54:f5:9e: ca:4c:6d:a5:c5:eb:91:e2:04:d4:21:f0:79:e1:e5: cd:51:e2:f2:3b:3f:dd:6c:c2:26:59:7f:30:c0:bb: 12:7e:25:c8:f9:df:79:29:d0:65:7f:f0:f5:78:61: c8:99:eb:ab:e2:ab:7b:8b:3e:f3:b7:54:66:58:25: 04:5b:2e:f8:d4:15:ff:52:48:f0:bc:b1:30:5e:38: 54:72:6b:be:2a:de:54:4c:01:71:d4:cf:96:dd:e5: 47:e0:69:d3:24:45:88:f7:cb:c8:39:4a:e7:73:62: f6:2a:be:b1:50:26:9f:f7:cc:2c:0f:61:04:23:b6: bf:37:3c:87:35:ca:91:69:48:e1:b8:77:3b:90:9b: 5c:6d:1e:68:b2:a3:e2:7f:dd:a5:4a:73:f9:07:06: aa:2e:5a:68:58:d4:99:12:94:09:45:92:f6:e4:41: 4c:22:d9:8d:65:63:25:e2:c7:43:f8:e8:d0:e2:b9: 82:9b:68:5a:47:95:5a:04:a0:87:df:32:1e:dc:cd: b2:f2:a1:7e:9d:81:56:c2:58:fe:b4:d3:00:e4:c3: 7f:8f:79:23:a7:d2:e9:34:c9:c5:c9:be:0a:58:8a: c9:f8:41:f6:85:71:e0:37:9b:e8:47:bb:7d:ca:b4: 89:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:DD:A1:FF:67:25:1F:3A:4A:FE:3B:64:F4:E8:AB:D8:AF:20:24:B1 X509v3 Authority Key Identifier: keyid:43:45:D0:77:3C:7A:DE:08:D4:48:19:E3:B6:11:BD:29:7A:39:89:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0XQdzx63gjUSBnjthG9KXo5idM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/Q0XQdzx63gjUSBnjthG9KXo5idM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/Q0XQdzx63gjUSBnjthG9KXo5idM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:ff:16:7b:46:f5:35:2b:e2:63:9c:7c:9b:ea:a8:0c:f5:b4: 05:59:93:b8:71:4d:dd:ed:42:35:7a:84:6e:78:c3:aa:0b:09: be:78:66:e1:f1:26:39:ff:71:aa:48:a5:43:b5:92:8f:20:a5: ef:ec:bb:81:df:e3:73:e5:37:dc:7e:f8:64:35:c5:00:89:d2: c6:91:a7:95:fb:4e:41:30:1d:58:33:17:1b:23:3c:97:28:14: d6:8e:db:e5:eb:38:4e:a6:da:e5:b4:4a:49:08:e0:df:4f:d1: bd:ea:41:be:0b:28:d5:9b:de:9f:be:a7:de:20:f6:ce:2c:f7: bc:10:2c:03:80:9f:c0:e8:dd:b3:d1:16:27:a8:88:9c:8f:2a: 24:95:31:c2:9e:36:3a:6b:60:2c:d0:07:3f:9d:76:94:e8:69: c7:53:15:fd:04:83:1d:1d:f5:7a:23:66:73:6d:f4:68:e4:96: dc:65:4d:bb:33:bf:43:91:05:50:0d:d7:d4:2c:73:5f:48:98: 76:81:8a:b3:af:e6:46:e9:35:76:81:cc:4e:c8:7e:bb:0a:8e: fc:fe:88:81:a9:21:91:c6:42:b0:b5:59:0d:fd:d9:05:2b:3b: 34:17:c5:cf:c3:cc:1f:b6:5c:d5:78:26:1d:f8:5d:69:ec:08: ff:f2:c0:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZrKxYpqWPZE68RQRSilxaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNDVkMDc3M2M3YWRlMDhkNDQ4MTllM2I2MTFiZDI5N2Ez OTg5ZDMwHhcNMjUxMjI2MDgwMDQ2WhcNMjUxMjI3MDgwMDQ2WjAzMTEwLwYDVQQD EygwOWRkYTFmZjY3MjUxZjNhNGFmZTNiNjRmNGU4YWJkOGFmMjAyNGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqzK4nAC8PM664+5U9Z7KTG2lxeuR 4gTUIfB54eXNUeLyOz/dbMImWX8wwLsSfiXI+d95KdBlf/D1eGHImeur4qt7iz7z t1RmWCUEWy741BX/UkjwvLEwXjhUcmu+Kt5UTAFx1M+W3eVH4GnTJEWI98vIOUrn c2L2Kr6xUCaf98wsD2EEI7a/NzyHNcqRaUjhuHc7kJtcbR5osqPif92lSnP5Bwaq LlpoWNSZEpQJRZL25EFMItmNZWMl4sdD+OjQ4rmCm2haR5VaBKCH3zIe3M2y8qF+ nYFWwlj+tNMA5MN/j3kjp9LpNMnFyb4KWIrJ+EH2hXHgN5voR7t9yrSJPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAndof9nJR86Sv47ZPToq9ivICSxMB8GA1UdIwQY MBaAFENF0Hc8et4I1EgZ47YRvSl6OYnTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTBYUWR6eDYzZ2pVU0JuanRoRzlLWG81aWRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9iYjk5NDctMTcyYy00OGIxLWJlOGUt NGM5MDVhZGJmMDc2LzEvUTBYUWR6eDYzZ2pVU0JuanRoRzlLWG81aWRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC9iYjk5NDctMTcyYy00OGIxLWJlOGUtNGM5MDVhZGJmMDc2 LzEvUTBYUWR6eDYzZ2pVU0JuanRoRzlLWG81aWRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPP8We0b1 NSviY5x8m+qoDPW0BVmTuHFN3e1CNXqEbnjDqgsJvnhm4fEmOf9xqkilQ7WSjyCl 7+y7gd/jc+U33H74ZDXFAInSxpGnlftOQTAdWDMXGyM8lygU1o7b5es4Tqba5bRK SQjg30/RvepBvgso1Zven76n3iD2ziz3vBAsA4CfwOjds9EWJ6iInI8qJJUxwp42 OmtgLNAHP512lOhpx1MV/QSDHR31eiNmc230aOSW3GVNuzO/Q5EFUA3X1CxzX0iY doGKs6/mRuk1doHMTsh+uwqO/P6IgakhkcZCsLVZDf3ZBSs7NBfFz8PMH7Zc1Xgm HfhdaewI//LAfg== -----END CERTIFICATE-----Generated at Fri Dec 26 16:02:01 2025 by rpki-client