This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft File: QYHCLrezLZAdElcA4UDrYAncxto.mft (raw, json) Hash identifier: TmDgolCTRBrJK41PR7gXDN1oWol64nCVl7PVU7E7sAI= Subject key identifier: B1:F1:53:6E:54:59:90:D9:75:1D:5B:EF:AD:FF:A9:40:DB:7D:9A:1C Authority key identifier: 41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA Certificate issuer: /CN=4181c22eb7b32d901d125700e140eb6009dcc6da Certificate serial: 019B0F006E147CF448155B378257D3426058 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft Manifest number: 1775 Signing time: Thu 11 Dec 2025 20:00:44 +0000 Manifest this update: Thu 11 Dec 2025 20:00:44 +0000 Manifest next update: Fri 12 Dec 2025 20:00:44 +0000 Files and hashes: 1: HitPQyHhpEoVidVOwqr2ddK23LE.roa (hash: UNtTyCfc7GR1gxgfjG0Y/XLw7gBd/DnSW8H0cz2SvrM=) 2: QYHCLrezLZAdElcA4UDrYAncxto.crl (hash: M/+hliMa29hColCnK2ImYHMjawcClmUwECNvbNBmVhA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:00:6e:14:7c:f4:48:15:5b:37:82:57:d3:42:60:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4181c22eb7b32d901d125700e140eb6009dcc6da Validity Not Before: Dec 11 20:00:44 2025 GMT Not After : Dec 12 20:00:44 2025 GMT Subject: CN=b1f1536e545990d9751d5befadffa940db7d9a1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:9d:7f:ed:94:87:d8:ec:20:d4:cd:38:9d:d4: d3:03:9d:58:eb:33:c6:51:8c:c6:2e:8e:4d:ab:95: 8f:1a:e3:08:dc:7f:52:c3:7d:a7:e5:c6:58:05:b6: 60:7c:3d:c7:97:78:e0:a7:55:6c:0c:10:ac:98:39: 7a:73:d5:9a:01:bf:a6:19:d1:0d:d8:52:3c:f5:e5: 80:3e:1c:1b:86:08:ee:77:8d:ab:60:ca:a3:b2:87: d9:b1:ba:bf:ce:73:23:af:d5:05:b9:7b:ff:b3:04: 35:4a:c9:4c:cd:4f:b2:94:f1:1e:d5:9e:6a:01:95: d8:2b:20:62:14:23:d0:1e:e7:4d:9d:73:29:e4:3d: dd:c1:70:53:25:39:04:5f:55:5e:ce:d7:00:c1:c4: 89:6b:03:78:57:b1:04:8b:51:e4:2e:43:e2:aa:dc: a7:52:6a:36:8b:1b:a2:83:eb:d2:f1:cf:26:22:3e: 0b:c1:0a:72:0c:a3:38:a4:26:11:65:5c:cc:c4:e7: ed:e6:8a:4a:14:46:3a:4f:bf:f1:09:9a:1e:1f:b6: 2a:2e:3c:f9:34:f9:3c:0f:bb:78:c1:40:8b:e3:18: 4e:56:a2:3c:0a:96:20:21:df:05:68:86:77:89:c2: 40:8a:5f:bf:88:a1:7b:96:55:5c:56:e8:60:15:3c: c9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F1:53:6E:54:59:90:D9:75:1D:5B:EF:AD:FF:A9:40:DB:7D:9A:1C X509v3 Authority Key Identifier: keyid:41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:d7:7d:d1:68:ab:91:6c:96:50:71:ff:1c:14:0c:81:1a:6d: 95:97:82:a0:68:ab:61:8a:f3:97:9e:43:93:77:58:50:1b:eb: 61:95:78:9c:d2:22:f3:4a:8d:49:95:a7:2d:2b:55:d7:5c:23: 64:85:a1:1c:45:f9:cc:16:22:53:0a:23:41:c3:59:b6:89:80: 2f:05:2a:e1:f9:bc:ce:d1:ab:e2:44:9f:86:91:e4:61:9a:1e: c9:be:ec:88:4f:2a:64:62:dd:36:67:35:9a:10:db:d6:1f:4f: d5:97:26:e1:21:6c:1e:a1:84:b3:94:b4:86:1f:d5:b2:f4:76: 27:0d:2d:d7:44:67:6c:4b:8a:90:7d:a9:d1:9f:ae:70:e6:10: 20:62:58:ab:df:a1:7c:7b:72:46:3b:73:61:08:c1:54:b4:76: 69:8e:1a:6d:d9:b1:bc:f6:86:00:a7:ef:56:66:88:62:5f:9e: 53:57:b6:dc:c9:37:4d:bd:85:23:80:14:0f:15:62:c0:19:b3: 01:a0:75:22:a9:f1:d9:cc:67:ae:e4:dc:e5:71:db:ef:8f:45: 31:55:24:92:99:02:e7:b0:9c:89:62:3f:f9:8e:01:b8:61:23: e6:6c:8c:df:77:31:56:a1:db:dc:1e:bd:7a:c4:e1:45:a9:16: 16:a9:2f:fa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPAG4UfPRIFVs3glfTQmBYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxODFjMjJlYjdiMzJkOTAxZDEyNTcwMGUxNDBlYjYwMDlk Y2M2ZGEwHhcNMjUxMjExMjAwMDQ0WhcNMjUxMjEyMjAwMDQ0WjAzMTEwLwYDVQQD EyhiMWYxNTM2ZTU0NTk5MGQ5NzUxZDViZWZhZGZmYTk0MGRiN2Q5YTFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkp1/7ZSH2Owg1M04ndTTA51Y6zPG UYzGLo5Nq5WPGuMI3H9Sw32n5cZYBbZgfD3Hl3jgp1VsDBCsmDl6c9WaAb+mGdEN 2FI89eWAPhwbhgjud42rYMqjsofZsbq/znMjr9UFuXv/swQ1SslMzU+ylPEe1Z5q AZXYKyBiFCPQHudNnXMp5D3dwXBTJTkEX1VeztcAwcSJawN4V7EEi1HkLkPiqtyn Umo2ixuig+vS8c8mIj4LwQpyDKM4pCYRZVzMxOft5opKFEY6T7/xCZoeH7YqLjz5 NPk8D7t4wUCL4xhOVqI8CpYgId8FaIZ3icJAil+/iKF7llVcVuhgFTzJ4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLHxU25UWZDZdR1b763/qUDbfZocMB8GA1UdIwQY MBaAFEGBwi63sy2QHRJXAOFA62AJ3MbaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVlIQ0xyZXpMWkFkRWxjQTRVRHJZQW5jeHRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9mZmRhZjUtYWNhYS00ZGYzLTllNmMt YzIxNDA5NDQyZmFjLzEvUVlIQ0xyZXpMWkFkRWxjQTRVRHJZQW5jeHRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC9mZmRhZjUtYWNhYS00ZGYzLTllNmMtYzIxNDA5NDQyZmFj LzEvUVlIQ0xyZXpMWkFkRWxjQTRVRHJZQW5jeHRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi9d90Wir kWyWUHH/HBQMgRptlZeCoGirYYrzl55Dk3dYUBvrYZV4nNIi80qNSZWnLStV11wj ZIWhHEX5zBYiUwojQcNZtomALwUq4fm8ztGr4kSfhpHkYZoeyb7siE8qZGLdNmc1 mhDb1h9P1Zcm4SFsHqGEs5S0hh/VsvR2Jw0t10RnbEuKkH2p0Z+ucOYQIGJYq9+h fHtyRjtzYQjBVLR2aY4abdmxvPaGAKfvVmaIYl+eU1e23Mk3Tb2FI4AUDxViwBmz AaB1Iqnx2cxnruTc5XHb749FMVUkkpkC57CciWI/+Y4BuGEj5myM33cxVqHb3B69 esThRakWFqkv+g== -----END CERTIFICATE-----Generated at Fri Dec 12 04:11:01 2025 by rpki-client