This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft File: qERYOVOgK8amaZ3pJ89FcAfwVSg.mft (raw, json) Hash identifier: j0dIwN5ClOPfiBsnB1VcPe4qlSTB6pyk5D4qUlOqmn8= Subject key identifier: 61:1E:7A:13:2D:1B:5B:26:3C:A5:BD:FA:29:46:83:6F:24:CC:C3:E7 Authority key identifier: A8:44:58:39:53:A0:2B:C6:A6:69:9D:E9:27:CF:45:70:07:F0:55:28 Certificate issuer: /CN=a844583953a02bc6a6699de927cf457007f05528 Certificate serial: 019B59E448241378D89533E15FB964548970 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft Manifest number: 2E Signing time: Fri 26 Dec 2025 09:01:31 +0000 Manifest this update: Fri 26 Dec 2025 09:01:31 +0000 Manifest next update: Sat 27 Dec 2025 09:01:31 +0000 Files and hashes: 1: 6haaqsZJASL0vfr2TIyTHd7LSqw.roa (hash: dsj6vnuBCN4426KVza8EzOGbZVK+ekxYCC7Vg/Bv8dM=) 2: qERYOVOgK8amaZ3pJ89FcAfwVSg.crl (hash: AislDqVibcB50L1qAWklURJlh7OioIL3z69fzG0JVZ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.crl rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e4:48:24:13:78:d8:95:33:e1:5f:b9:64:54:89:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a844583953a02bc6a6699de927cf457007f05528 Validity Not Before: Dec 26 09:01:31 2025 GMT Not After : Dec 27 09:01:31 2025 GMT Subject: CN=611e7a132d1b5b263ca5bdfa2946836f24ccc3e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:12:58:13:08:40:a6:b0:6e:c2:5d:88:e2:36: 81:9b:c8:fb:41:94:66:62:82:21:cb:a6:4c:3f:ae: 83:92:b9:54:27:0e:5e:92:a4:fd:9e:52:4f:86:19: 87:c6:18:dc:d8:59:04:2c:84:11:ed:dc:bd:10:00: 73:ff:03:17:c1:04:8d:f2:d1:be:fc:97:a1:3a:24: 1a:db:18:b2:66:c4:ad:96:3f:e0:0c:e7:ef:a9:8e: 03:fd:09:91:8e:46:3e:60:27:50:dd:d4:01:99:0b: b7:7c:69:dc:d8:de:1b:3d:42:29:5d:0a:5d:8c:91: 22:8e:53:f7:2a:cd:5b:65:88:47:c6:4e:16:54:48: 49:c4:2d:4e:f6:71:aa:c4:7a:7a:a1:17:2f:37:b2: 94:89:49:2e:83:f4:7e:c8:93:9d:a7:78:0b:03:f2: c5:fd:02:20:16:42:e7:0a:18:5e:3c:a2:92:f1:62: 26:12:56:a5:1e:07:cf:82:eb:57:87:a2:ab:f9:0e: 7d:7e:28:32:9c:fb:22:0a:52:d5:8e:31:5f:3b:1e: 58:1e:93:69:55:90:b1:fe:84:89:ad:22:ad:41:d1: 06:9c:7f:b1:5b:ad:03:79:73:a1:47:ea:43:8d:83: 96:52:16:aa:e2:b2:d7:d6:6a:ac:18:54:cc:3d:8a: 9c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:1E:7A:13:2D:1B:5B:26:3C:A5:BD:FA:29:46:83:6F:24:CC:C3:E7 X509v3 Authority Key Identifier: keyid:A8:44:58:39:53:A0:2B:C6:A6:69:9D:E9:27:CF:45:70:07:F0:55:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:2e:b0:e6:86:57:dd:d1:36:02:9e:f6:9b:51:e0:2f:f6:9d: 1b:2f:b7:d2:6e:25:5f:a2:14:6c:e5:79:25:b8:c5:4f:cf:1d: ab:3d:41:56:50:10:51:6e:01:d9:0c:15:18:2e:8d:22:87:45: ac:e7:39:99:9d:6f:3b:c4:75:f5:ab:67:bd:95:fb:44:cc:d1: c0:a8:59:a1:a3:78:01:e7:04:90:d9:8f:d4:d4:4e:44:e1:18: 5e:d1:0a:a4:89:18:5d:15:5e:cf:5a:06:1d:a1:cf:25:36:b6: 8a:8c:f1:45:69:16:03:c2:33:29:1d:6d:b4:59:1e:01:fb:8a: 25:9f:6d:7f:cc:7a:7e:42:8e:09:66:25:de:af:24:ce:e3:14: 2a:06:93:bd:76:53:aa:cf:36:dc:c7:a9:b1:f9:e4:66:5b:3b: e9:b7:cc:77:a1:ca:7a:58:1c:6e:de:26:6a:2c:7a:3e:bb:6d: ef:0b:89:59:54:15:f1:99:89:d1:61:ee:93:68:70:3a:44:6f: c8:70:d6:64:83:94:eb:d7:7a:7c:1c:48:54:a3:fd:27:dd:5c: eb:09:91:43:98:51:81:5e:43:6c:11:46:ff:25:70:70:4f:4e: 1b:5a:0a:4b:d1:07:be:be:e5:67:e1:d2:2d:56:1e:2c:c4:00: 66:de:b8:1b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ5EgkE3jYlTPhX7lkVIlwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NDQ1ODM5NTNhMDJiYzZhNjY5OWRlOTI3Y2Y0NTcwMDdm MDU1MjgwHhcNMjUxMjI2MDkwMTMxWhcNMjUxMjI3MDkwMTMxWjAzMTEwLwYDVQQD Eyg2MTFlN2ExMzJkMWI1YjI2M2NhNWJkZmEyOTQ2ODM2ZjI0Y2NjM2U3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxhJYEwhAprBuwl2I4jaBm8j7QZRm YoIhy6ZMP66DkrlUJw5ekqT9nlJPhhmHxhjc2FkELIQR7dy9EABz/wMXwQSN8tG+ /JehOiQa2xiyZsStlj/gDOfvqY4D/QmRjkY+YCdQ3dQBmQu3fGnc2N4bPUIpXQpd jJEijlP3Ks1bZYhHxk4WVEhJxC1O9nGqxHp6oRcvN7KUiUkug/R+yJOdp3gLA/LF /QIgFkLnChhePKKS8WImElalHgfPgutXh6Kr+Q59figynPsiClLVjjFfOx5YHpNp VZCx/oSJrSKtQdEGnH+xW60DeXOhR+pDjYOWUhaq4rLX1mqsGFTMPYqczQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGEeehMtG1smPKW9+ilGg28kzMPnMB8GA1UdIwQY MBaAFKhEWDlToCvGpmmd6SfPRXAH8FUoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUVSWU9WT2dLOGFtYVozcEo4OUZjQWZ3VlNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8zMDMxY2MtYTcwNS00MmM4LTgwMDMt MTEzODEwYTlmY2FlLzEvcUVSWU9WT2dLOGFtYVozcEo4OUZjQWZ3VlNnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC8zMDMxY2MtYTcwNS00MmM4LTgwMDMtMTEzODEwYTlmY2Fl LzEvcUVSWU9WT2dLOGFtYVozcEo4OUZjQWZ3VlNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbS6w5oZX 3dE2Ap72m1HgL/adGy+30m4lX6IUbOV5JbjFT88dqz1BVlAQUW4B2QwVGC6NIodF rOc5mZ1vO8R19atnvZX7RMzRwKhZoaN4AecEkNmP1NROROEYXtEKpIkYXRVez1oG HaHPJTa2iozxRWkWA8IzKR1ttFkeAfuKJZ9tf8x6fkKOCWYl3q8kzuMUKgaTvXZT qs823MepsfnkZls76bfMd6HKelgcbt4maix6Prtt7wuJWVQV8ZmJ0WHuk2hwOkRv yHDWZIOU69d6fBxIVKP9J91c6wmRQ5hRgV5DbBFG/yVwcE9OG1oKS9EHvr7lZ+HS LVYeLMQAZt64Gw== -----END CERTIFICATE-----Generated at Fri Dec 26 15:43:35 2025 by rpki-client