This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft File: Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft (raw, json) Hash identifier: hpnjioym8wWWhFRdNmn6A/7OCVKSAGf0SQEabZwxqps= Subject key identifier: E7:5E:60:F9:A1:E3:1A:B0:BD:49:A8:39:1D:49:4F:66:23:55:F7:B9 Authority key identifier: 43:D5:18:D7:30:77:88:FC:A3:89:18:78:49:0E:4F:32:D9:AA:F6:AF Certificate issuer: /CN=43d518d7307788fca3891878490e4f32d9aaf6af Certificate serial: 019B34FB7E40B97464224F515DBF90C1E514 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft Manifest number: 11CE Signing time: Fri 19 Dec 2025 05:00:55 +0000 Manifest this update: Fri 19 Dec 2025 05:00:55 +0000 Manifest next update: Sat 20 Dec 2025 05:00:55 +0000 Files and hashes: 1: Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl (hash: 6amo/CyiRe092pIJQmpXJ92BfChUBGvG8FrIuDON3XA=) 2: hOsUXVARCl8NqYdv3cI6OIcfqwU.roa (hash: w1gjvrKQRUt3hmiD9OYkOr05DsegCS6tRj5zStTTlPE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 05:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:fb:7e:40:b9:74:64:22:4f:51:5d:bf:90:c1:e5:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43d518d7307788fca3891878490e4f32d9aaf6af Validity Not Before: Dec 19 05:00:55 2025 GMT Not After : Dec 20 05:00:55 2025 GMT Subject: CN=e75e60f9a1e31ab0bd49a8391d494f662355f7b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9c:f2:e9:6b:3f:a0:df:2e:a0:4f:c9:02:9e: c9:77:50:88:45:87:0b:23:cd:b1:b2:9e:c6:9e:62: c2:15:a3:9c:b5:37:58:65:9e:50:e9:19:f4:1a:18: db:99:3c:e0:38:1d:93:58:a3:8d:98:32:04:97:50: 56:19:9f:c6:5d:2b:27:43:53:18:7f:11:e8:4e:5d: 61:b4:6c:d2:61:9d:63:4e:fb:b1:96:de:34:ed:d1: 18:75:1f:11:61:59:d9:67:40:05:70:5b:25:b4:70: 17:0d:96:e0:e2:b3:eb:a0:18:53:2b:c6:ee:57:e3: d4:89:03:f7:26:91:0b:6b:3b:78:54:45:82:4f:ad: 38:8a:fc:c7:80:74:a3:dc:30:d3:88:fc:a3:df:d6: ae:ff:89:4a:cb:8c:eb:a0:40:db:11:0a:45:e4:23: 17:91:d3:d5:a4:a8:1b:48:a8:9e:e5:8e:45:e9:53: 2a:d8:dd:47:1d:f8:1c:88:9b:76:4f:a0:06:86:4b: 0d:62:7f:79:65:1f:a4:1b:45:d4:fb:c6:16:b2:3c: c2:a3:c1:30:2c:ee:99:13:2c:5e:30:cf:5c:6c:d9: 57:c4:80:70:b7:c5:8a:3a:eb:9a:c6:c1:fb:ce:79: 2d:fe:23:0d:8d:4c:aa:58:4b:0a:34:fc:a3:1e:83: 30:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:5E:60:F9:A1:E3:1A:B0:BD:49:A8:39:1D:49:4F:66:23:55:F7:B9 X509v3 Authority Key Identifier: keyid:43:D5:18:D7:30:77:88:FC:A3:89:18:78:49:0E:4F:32:D9:AA:F6:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:de:57:ba:7b:de:85:30:c3:5e:9e:d4:18:df:92:a0:a4:9e: 1e:e9:19:08:d5:a3:95:3f:04:cb:c6:8e:1a:b1:d8:ac:66:72: 94:49:91:8c:6b:9d:05:eb:7d:5b:dd:fb:2e:2e:16:fa:95:f1: e5:02:f1:0e:51:e3:9b:27:27:19:fa:d2:1e:27:87:fb:ec:49: 83:aa:63:d8:99:2a:0b:69:cb:a8:e6:a0:8e:b5:a8:1b:a0:8f: be:5d:a4:62:4d:69:5f:cd:62:cb:69:b0:bc:74:2a:83:ec:a8: 27:0e:5b:2b:cc:5c:24:bd:a6:bb:5d:9c:ae:9a:ac:3e:0d:d0: c4:3e:de:ae:0a:a8:9d:ab:84:2b:81:5a:41:1f:c4:61:d9:22: 51:0a:1b:20:1f:89:28:2f:98:06:6a:0c:8d:33:1b:85:f7:bf: a5:69:2b:91:10:30:fe:a9:db:af:b9:81:97:50:70:8c:e8:96: 66:ce:be:f0:bc:f4:b8:6a:4e:b3:eb:32:ee:15:c4:b0:91:b5: bf:e9:e8:e6:87:3b:5b:ae:76:70:ca:c8:dc:97:8a:34:76:94: 47:cd:ce:8a:32:68:56:0e:ff:80:45:02:9d:e8:60:f7:32:72: 94:82:18:73:e7:82:77:ae:7d:8c:65:90:90:7e:e0:66:c9:90: b2:2a:af:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0+35AuXRkIk9RXb+QweUUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzZDUxOGQ3MzA3Nzg4ZmNhMzg5MTg3ODQ5MGU0ZjMyZDlh YWY2YWYwHhcNMjUxMjE5MDUwMDU1WhcNMjUxMjIwMDUwMDU1WjAzMTEwLwYDVQQD EyhlNzVlNjBmOWExZTMxYWIwYmQ0OWE4MzkxZDQ5NGY2NjIzNTVmN2I5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJzy6Ws/oN8uoE/JAp7Jd1CIRYcL I82xsp7GnmLCFaOctTdYZZ5Q6Rn0GhjbmTzgOB2TWKONmDIEl1BWGZ/GXSsnQ1MY fxHoTl1htGzSYZ1jTvuxlt407dEYdR8RYVnZZ0AFcFsltHAXDZbg4rProBhTK8bu V+PUiQP3JpELazt4VEWCT604ivzHgHSj3DDTiPyj39au/4lKy4zroEDbEQpF5CMX kdPVpKgbSKie5Y5F6VMq2N1HHfgciJt2T6AGhksNYn95ZR+kG0XU+8YWsjzCo8Ew LO6ZEyxeMM9cbNlXxIBwt8WKOuuaxsH7znkt/iMNjUyqWEsKNPyjHoMwjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOdeYPmh4xqwvUmoOR1JT2YjVfe5MB8GA1UdIwQY MBaAFEPVGNcwd4j8o4kYeEkOTzLZqvavMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTlVWTF6QjNpUHlqaVJoNFNRNVBNdG1xOXE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9hYjdjYWEtOGJjNS00YmNlLWExMzAt ZWRkZjMyMGQ1MGUyLzEvUTlVWTF6QjNpUHlqaVJoNFNRNVBNdG1xOXE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS9hYjdjYWEtOGJjNS00YmNlLWExMzAtZWRkZjMyMGQ1MGUy LzEvUTlVWTF6QjNpUHlqaVJoNFNRNVBNdG1xOXE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf95Xunve hTDDXp7UGN+SoKSeHukZCNWjlT8Ey8aOGrHYrGZylEmRjGudBet9W937Li4W+pXx 5QLxDlHjmycnGfrSHieH++xJg6pj2JkqC2nLqOagjrWoG6CPvl2kYk1pX81iy2mw vHQqg+yoJw5bK8xcJL2mu12crpqsPg3QxD7ergqonauEK4FaQR/EYdkiUQobIB+J KC+YBmoMjTMbhfe/pWkrkRAw/qnbr7mBl1BwjOiWZs6+8Lz0uGpOs+sy7hXEsJG1 v+no5oc7W652cMrI3JeKNHaUR83OijJoVg7/gEUCnehg9zJylIIYc+eCd659jGWQ kH7gZsmQsiqvXw== -----END CERTIFICATE-----Generated at Fri Dec 19 09:28:00 2025 by rpki-client