This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft File: fQtE5JJUnht9pTLIDDSIUMWkToA.mft (raw, json) Hash identifier: cQAdZU4loYB0Cc/jdVfMKeWoT6lCuXHYLU16sK2Zs+g= Subject key identifier: 4B:5F:95:2C:C8:21:36:CA:02:D8:6D:44:3E:C6:DB:40:64:D7:B5:7C Authority key identifier: 7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80 Certificate issuer: /CN=7d0b44e492549e1b7da532c80c348850c5a44e80 Certificate serial: 019B288A1C3FA80F655A7C021A9CE2D86922 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft Manifest number: 177F Signing time: Tue 16 Dec 2025 19:01:38 +0000 Manifest this update: Tue 16 Dec 2025 19:01:38 +0000 Manifest next update: Wed 17 Dec 2025 19:01:38 +0000 Files and hashes: 1: Vh9zdU6UPXBw1wsGMQVn_pjjotw.roa (hash: RHQ7Mk9Ul2niP+vY1weS4xjGH8dOqLq3Efjab5Bc1HU=) 2: fQtE5JJUnht9pTLIDDSIUMWkToA.crl (hash: hEMPc272AwI1aGN5OFy5D+ITHegICsT7bfrurZ+f3Hg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:28:8a:1c:3f:a8:0f:65:5a:7c:02:1a:9c:e2:d8:69:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7d0b44e492549e1b7da532c80c348850c5a44e80 Validity Not Before: Dec 16 19:01:38 2025 GMT Not After : Dec 17 19:01:38 2025 GMT Subject: CN=4b5f952cc82136ca02d86d443ec6db4064d7b57c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:36:e4:15:7c:f7:a1:52:a8:fd:5c:8b:d7:bb: 9d:6e:4a:be:db:bb:19:e7:d5:0e:85:93:e9:f2:a5: f6:b6:ca:ab:1f:e0:cf:93:d4:93:d4:45:a4:b3:5f: c2:b7:df:c3:69:ff:0b:1a:0f:83:6e:b7:e9:af:75: 25:a4:ff:cd:41:f3:c8:c4:a4:f5:d1:4b:63:35:74: d0:77:7b:b1:ea:5a:22:13:36:13:59:df:ee:f2:ca: f2:c3:8c:4e:e3:20:c6:7a:97:17:d5:11:d0:2a:87: 02:3f:b9:95:9b:5c:fd:3c:01:45:90:57:fb:26:4d: 22:89:28:77:e7:36:d0:46:e3:80:b3:b7:4f:85:a2: 11:21:a6:03:92:03:02:3a:94:9f:69:10:12:2c:0e: 77:d7:f7:7e:a6:c1:fa:ca:0a:c6:22:1f:7e:6a:0e: 85:28:bc:4e:27:11:a0:7e:af:c1:3c:8d:2d:4b:f7: c6:69:42:59:dc:2d:fc:08:b8:26:0c:4f:76:f3:38: d6:8f:0e:41:4d:b3:8b:d2:72:a5:d3:70:22:33:62: e8:c3:ce:b8:31:58:a7:e8:25:5d:dc:65:8b:d2:c9: 90:f9:c4:9d:52:cc:67:7c:26:9f:31:8f:25:a2:20: 16:ef:7e:9c:40:c7:4d:8d:1e:0d:6c:16:09:d1:41: 95:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:5F:95:2C:C8:21:36:CA:02:D8:6D:44:3E:C6:DB:40:64:D7:B5:7C X509v3 Authority Key Identifier: keyid:7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:b8:2b:28:20:c8:d3:54:33:9d:45:a0:3d:7a:ee:ba:c3:7e: 55:05:cf:35:08:52:78:9a:5d:53:40:49:ab:7e:d9:7a:a0:e9: 22:08:14:f7:73:92:89:96:98:64:28:a2:43:0b:3e:0f:26:a2: eb:22:66:08:e1:b1:a6:7e:a3:31:4f:22:33:23:cd:5a:1c:29: 72:8c:8f:d2:7a:88:de:6d:01:cb:37:0d:79:c9:90:18:15:51: 8e:a9:1a:8f:8b:4b:9a:6a:c2:e5:00:5a:a6:c4:bf:08:e3:4b: b1:ea:d7:59:77:c8:47:9c:ad:a6:20:4c:e0:4b:53:5d:0a:61: 38:a6:eb:15:b0:fc:e5:7d:a7:56:de:20:ad:ea:6d:13:8d:25: fd:0f:36:fa:6c:46:e4:47:f6:c6:eb:ec:74:aa:07:9e:ff:b9: cc:98:cf:46:89:5b:aa:78:a7:dd:46:90:8d:36:35:2e:2f:7c: 2c:59:5e:9c:f2:99:05:8d:b3:79:91:4d:fb:c3:db:01:2c:76: c0:67:29:57:c5:91:0b:1f:a4:f0:00:f5:2b:1a:81:e1:f6:a5: 5b:f0:85:0f:fc:0d:05:bc:16:19:28:e7:99:cb:a1:c9:00:7e: e3:4e:9c:9b:36:80:75:09:93:8b:bd:ab:8f:95:d0:bf:a7:3d: 31:12:31:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsoihw/qA9lWnwCGpzi2GkiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkMGI0NGU0OTI1NDllMWI3ZGE1MzJjODBjMzQ4ODUwYzVh NDRlODAwHhcNMjUxMjE2MTkwMTM4WhcNMjUxMjE3MTkwMTM4WjAzMTEwLwYDVQQD Eyg0YjVmOTUyY2M4MjEzNmNhMDJkODZkNDQzZWM2ZGI0MDY0ZDdiNTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnzbkFXz3oVKo/VyL17udbkq+27sZ 59UOhZPp8qX2tsqrH+DPk9ST1EWks1/Ct9/Daf8LGg+Dbrfpr3UlpP/NQfPIxKT1 0UtjNXTQd3ux6loiEzYTWd/u8sryw4xO4yDGepcX1RHQKocCP7mVm1z9PAFFkFf7 Jk0iiSh35zbQRuOAs7dPhaIRIaYDkgMCOpSfaRASLA531/d+psH6ygrGIh9+ag6F KLxOJxGgfq/BPI0tS/fGaUJZ3C38CLgmDE928zjWjw5BTbOL0nKl03AiM2Low864 MVin6CVd3GWL0smQ+cSdUsxnfCafMY8loiAW736cQMdNjR4NbBYJ0UGVhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEtflSzIITbKAthtRD7G20Bk17V8MB8GA1UdIwQY MBaAFH0LROSSVJ4bfaUyyAw0iFDFpE6AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZlF0RTVKSlVuaHQ5cFRMSUREU0lVTVdrVG9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9iOTIzMWYtYjNkZi00MDEyLTk2ZDct NzIwNGI4MTEyNTBmLzEvZlF0RTVKSlVuaHQ5cFRMSUREU0lVTVdrVG9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS9iOTIzMWYtYjNkZi00MDEyLTk2ZDctNzIwNGI4MTEyNTBm LzEvZlF0RTVKSlVuaHQ5cFRMSUREU0lVTVdrVG9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnrgrKCDI 01QznUWgPXruusN+VQXPNQhSeJpdU0BJq37ZeqDpIggU93OSiZaYZCiiQws+Dyai 6yJmCOGxpn6jMU8iMyPNWhwpcoyP0nqI3m0ByzcNecmQGBVRjqkaj4tLmmrC5QBa psS/CONLserXWXfIR5ytpiBM4EtTXQphOKbrFbD85X2nVt4greptE40l/Q82+mxG 5Ef2xuvsdKoHnv+5zJjPRolbqnin3UaQjTY1Li98LFlenPKZBY2zeZFN+8PbASx2 wGcpV8WRCx+k8AD1KxqB4falW/CFD/wNBbwWGSjnmcuhyQB+406cmzaAdQmTi72r j5XQv6c9MRIxnA== -----END CERTIFICATE-----Generated at Tue Dec 16 21:31:07 2025 by rpki-client