This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft File: qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft (raw, json) Hash identifier: WJlgyO6Blb5WLiHshJ2XMJ646VUf5zlFAd1jZCGDOqw= Subject key identifier: CD:F4:9A:24:4C:1C:D9:9C:FD:A2:3F:F0:AE:96:2A:63:37:5C:53:99 Authority key identifier: AA:4A:AC:19:48:CE:E2:3D:DF:4D:71:5F:80:35:22:F9:3B:0C:DD:B4 Certificate issuer: /CN=aa4aac1948cee23ddf4d715f803522f93b0cddb4 Certificate serial: 019B2A7881DAB3F2AB5661BFF443A2D77F5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft Manifest number: 092B Signing time: Wed 17 Dec 2025 04:01:39 +0000 Manifest this update: Wed 17 Dec 2025 04:01:39 +0000 Manifest next update: Thu 18 Dec 2025 04:01:39 +0000 Files and hashes: 1: 4F9izwsHHxNkuKU97mIzesCX1fA.roa (hash: 9EEtKc3sBCyfxrwHugYM/2yhW3k3q6DEwjqGSNZdJ9g=) 2: qkqsGUjO4j3fTXFfgDUi-TsM3bQ.crl (hash: CN25/4/UCMsW0UQkNQ3wyRRNTvHXcHFZ7pvP3ny+6w0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft rsync://rpki.ripe.net/repository/DEFAULT/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2a:78:81:da:b3:f2:ab:56:61:bf:f4:43:a2:d7:7f:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa4aac1948cee23ddf4d715f803522f93b0cddb4 Validity Not Before: Dec 17 04:01:39 2025 GMT Not After : Dec 18 04:01:39 2025 GMT Subject: CN=cdf49a244c1cd99cfda23ff0ae962a63375c5399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:00:a1:98:9e:0f:71:e5:42:be:40:d7:56:f8: 1a:e3:40:16:76:95:89:b7:18:53:dd:6b:ae:22:e1: 36:4a:f4:ab:33:05:32:fb:af:47:f8:cb:c4:4f:52: 92:df:bb:3d:89:c2:50:8c:a3:08:e7:30:db:fb:0f: 83:56:33:f3:f3:d0:2c:2f:d8:8b:50:2d:9a:1b:91: 93:92:a3:81:31:cd:8e:4c:52:bc:8b:6b:5b:d8:19: b7:8c:39:b1:4f:d4:64:c6:a2:63:3d:ee:a2:97:c8: 50:18:49:9c:58:c9:c1:9e:f4:eb:38:c8:99:9d:10: 29:33:90:eb:00:20:8e:00:2a:9f:85:0d:94:be:3b: ad:f7:3e:23:4e:92:f0:1c:0b:c2:4f:1f:98:85:46: 9d:cb:73:1f:15:4f:ab:41:bd:23:a4:4b:1d:50:d7: 4a:18:2d:59:b5:49:09:08:79:7e:f8:7a:5f:68:d2: 84:4c:72:ca:a2:cd:cc:c0:15:bf:22:b7:9a:9c:e6: 1e:ae:97:eb:1e:81:2a:e0:78:86:b9:3b:65:5b:5b: f5:53:5d:2a:5c:ce:ee:d9:82:76:3e:6a:06:71:d5: 01:cf:42:58:f9:5f:f5:a5:bc:02:c7:7d:e9:40:a4: af:03:8d:4f:bb:d9:4e:f1:16:d9:e4:68:e5:0b:cb: ef:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:F4:9A:24:4C:1C:D9:9C:FD:A2:3F:F0:AE:96:2A:63:37:5C:53:99 X509v3 Authority Key Identifier: keyid:AA:4A:AC:19:48:CE:E2:3D:DF:4D:71:5F:80:35:22:F9:3B:0C:DD:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:1d:83:f9:f8:70:05:1c:56:eb:89:d6:dd:67:53:09:3c:08: e8:0f:0e:e9:4f:52:7b:f1:ed:d8:63:d1:4c:ae:74:12:5f:0c: e6:f7:94:a4:8b:54:3b:c1:0f:25:64:2a:2d:2a:fd:ee:f3:8e: 21:b1:2b:69:8f:05:4b:55:c3:2e:50:d2:54:4f:55:e6:68:99: 44:8d:0a:d1:b2:c4:da:e7:c6:f2:30:a3:2d:b6:1e:03:3e:38: 41:7a:11:b3:39:df:ed:60:a5:5d:1a:a1:ec:46:2f:e2:ce:6e: 3b:94:dd:53:01:34:6a:2f:db:69:89:aa:11:b8:95:8f:72:b0: 17:45:87:a7:cf:53:e6:f0:66:6f:da:69:cc:52:0f:82:e3:44: f7:d5:03:4a:3d:99:a0:7c:88:27:a6:90:32:58:86:37:b4:e4: 98:88:61:30:ce:7e:83:d8:b4:94:e7:eb:79:97:f3:4e:a6:0f: 46:f3:24:4d:cd:bb:9f:59:82:2c:16:d9:9f:8c:02:28:e4:70: 1c:ce:28:1c:87:f5:5b:bd:e9:3b:45:39:1a:c4:2d:3b:9b:84: af:f4:26:12:cb:a3:42:82:2d:59:93:97:b6:cb:35:26:d9:8c: ca:f0:c4:33:25:90:0f:c9:83:e6:5a:92:63:a4:fb:18:7e:ba: 67:f4:aa:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsqeIHas/KrVmG/9EOi139eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNGFhYzE5NDhjZWUyM2RkZjRkNzE1ZjgwMzUyMmY5M2Iw Y2RkYjQwHhcNMjUxMjE3MDQwMTM5WhcNMjUxMjE4MDQwMTM5WjAzMTEwLwYDVQQD EyhjZGY0OWEyNDRjMWNkOTljZmRhMjNmZjBhZTk2MmE2MzM3NWM1Mzk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlQChmJ4PceVCvkDXVvga40AWdpWJ txhT3WuuIuE2SvSrMwUy+69H+MvET1KS37s9icJQjKMI5zDb+w+DVjPz89AsL9iL UC2aG5GTkqOBMc2OTFK8i2tb2Bm3jDmxT9RkxqJjPe6il8hQGEmcWMnBnvTrOMiZ nRApM5DrACCOACqfhQ2Uvjut9z4jTpLwHAvCTx+YhUady3MfFU+rQb0jpEsdUNdK GC1ZtUkJCHl++HpfaNKETHLKos3MwBW/IreanOYerpfrHoEq4HiGuTtlW1v1U10q XM7u2YJ2PmoGcdUBz0JY+V/1pbwCx33pQKSvA41Pu9lO8RbZ5GjlC8vv3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM30miRMHNmc/aI/8K6WKmM3XFOZMB8GA1UdIwQY MBaAFKpKrBlIzuI9301xX4A1Ivk7DN20MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWtxc0dVak80ajNmVFhGZmdEVWktVHNNM2JRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi8wNmIyNDEtNmRlNy00ODVjLTk4YWUt ZjliZDY0Y2E2ZTRjLzEvcWtxc0dVak80ajNmVFhGZmdEVWktVHNNM2JRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi8wNmIyNDEtNmRlNy00ODVjLTk4YWUtZjliZDY0Y2E2ZTRj LzEvcWtxc0dVak80ajNmVFhGZmdEVWktVHNNM2JRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUh2D+fhw BRxW64nW3WdTCTwI6A8O6U9Se/Ht2GPRTK50El8M5veUpItUO8EPJWQqLSr97vOO IbEraY8FS1XDLlDSVE9V5miZRI0K0bLE2ufG8jCjLbYeAz44QXoRsznf7WClXRqh 7EYv4s5uO5TdUwE0ai/baYmqEbiVj3KwF0WHp89T5vBmb9ppzFIPguNE99UDSj2Z oHyIJ6aQMliGN7TkmIhhMM5+g9i0lOfreZfzTqYPRvMkTc27n1mCLBbZn4wCKORw HM4oHIf1W73pO0U5GsQtO5uEr/QmEsujQoItWZOXtss1JtmMyvDEMyWQD8mD5lqS Y6T7GH66Z/Sq/w== -----END CERTIFICATE-----Generated at Wed Dec 17 06:29:01 2025 by rpki-client