This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft File: Q4T2-m3sztVXioWlHgvWVwHqNOw.mft (raw, json) Hash identifier: gvHbDGoj5hqPltDdumGKHQlf4os54LuhxbT9razzQJw= Subject key identifier: EF:56:A4:D0:00:FB:AF:B6:91:23:75:68:9B:4E:68:37:31:BF:C0:5A Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec Certificate serial: 019B115D1762DF59266E161654D4150842BD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft Manifest number: 1785 Signing time: Fri 12 Dec 2025 07:01:12 +0000 Manifest this update: Fri 12 Dec 2025 07:01:12 +0000 Manifest next update: Sat 13 Dec 2025 07:01:12 +0000 Files and hashes: 1: 29wssqErvKQtR_9f6uK-OYzddNM.roa (hash: Bh05SYc8VBmf4zaIv99zE5UZHb6fBJqOGBDvempbpVM=) 2: 6ydkCTIO-cNnh8Hv2Ok88IlcHaI.roa (hash: wLv2JoucZBkU56L2p9pXvAWsrjbYGSWjGCERyhVvXsw=) 3: AN-DGU807Zi1GLozE0Ye6tyK7Ic.roa (hash: +/Pg+LZh0oTnlaPXWDZsXPiFa0OXAsSR/g5vgnMvqME=) 4: N0dUKPrjFoc0y8MW0LZVdnxSnBI.roa (hash: GOCzo5+8biESJ82NDr0uRyIZsN+18Kfk+tP9JYURZW4=) 5: Q4T2-m3sztVXioWlHgvWVwHqNOw.crl (hash: NK6JQyZys0gj+t9lZ6ni1hFh7eAuHcWiyuh+UPtWe/w=) 6: akr2zEciBp0bAf10VTnQBF8A5hE.roa (hash: SJfaT9rqeoFgX5bxM6d8wxAKVaMpQ7a7c0aJKadx3yo=) 7: maXcZQ7N2y2_afrzV1oMNjT4O7g.roa (hash: D+pc8oR4WM9Y/chv55U8MqOsuEcIXejdvRWZ+f3Pszg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 07:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:11:5d:17:62:df:59:26:6e:16:16:54:d4:15:08:42:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec Validity Not Before: Dec 12 07:01:12 2025 GMT Not After : Dec 13 07:01:12 2025 GMT Subject: CN=ef56a4d000fbafb6912375689b4e683731bfc05a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:ad:19:28:6d:5f:72:05:ea:45:fc:d4:24:5d: 3a:51:41:89:b6:c0:34:03:57:8d:35:a0:5e:4c:ae: 2c:b7:c8:00:d3:c0:1c:8f:ae:73:8b:25:94:0a:38: 97:15:ed:29:31:23:ba:b4:c2:f4:cb:02:23:24:70: c7:5f:5c:b3:df:18:23:cd:8f:06:e8:dd:e7:84:b6: c4:1a:96:d4:f1:5a:dc:47:cc:aa:6c:d8:40:f8:53: f2:c9:db:1d:50:e5:c9:95:15:d9:93:42:0d:30:49: 0e:0a:4b:81:a3:20:87:df:c4:2e:21:80:26:6f:51: ec:62:37:2e:b7:1c:c0:c2:93:d0:8c:9a:15:e1:14: 46:56:9d:e6:c0:7b:e0:04:c2:b1:1f:b9:7f:d6:f2: fe:87:59:34:72:eb:e4:7d:94:c3:e1:66:ab:61:4d: ce:9b:41:63:2d:b4:c7:51:a2:f1:11:c0:78:8f:8f: b2:cd:e1:cf:11:1b:59:5f:01:48:f6:46:c4:e9:6d: 85:9d:84:2f:b5:59:6e:81:fc:7d:66:4b:17:fa:ef: 60:c4:67:d3:7a:d2:62:04:4c:9f:26:60:78:99:d2: eb:a9:da:40:8c:bc:44:ec:a0:5a:15:67:92:56:32: ad:24:e3:af:4e:19:da:95:f9:0b:57:e5:9d:20:df: 7e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:56:A4:D0:00:FB:AF:B6:91:23:75:68:9B:4E:68:37:31:BF:C0:5A X509v3 Authority Key Identifier: keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:0a:eb:51:b0:af:16:e4:91:5a:26:c3:56:e0:5b:ff:19:42: 60:87:0f:ad:b0:07:9b:dc:1c:df:c0:d3:30:7a:9f:5e:cf:6c: a8:62:87:e9:08:bc:3d:df:27:7e:28:84:77:ba:d8:a9:f9:a5: aa:d1:ac:3e:84:9b:b6:0f:d9:63:5b:c9:88:64:43:18:7d:48: 97:d2:ac:2a:b1:40:01:c0:00:7d:36:e8:ca:69:16:b3:e8:ea: 06:e3:f0:f0:6e:35:2b:57:73:da:d6:40:b6:96:68:30:07:b4: 65:d3:19:6d:22:65:80:ec:85:ae:a4:6e:03:10:3c:9e:75:18: f2:78:1f:ef:78:1b:ca:00:06:0a:21:8f:64:de:d4:09:98:bb: 36:28:7b:cb:9f:8e:ac:67:b4:ee:0b:d4:7c:db:2b:44:94:86: a7:e0:9d:79:ca:b9:9d:58:17:16:7e:5a:de:7e:42:6d:68:ba: ef:bf:1c:fd:d7:2a:f2:f6:e6:9a:6d:d1:38:c9:46:1a:93:ba: e8:be:2c:2f:45:33:29:96:f4:69:3f:bc:23:08:86:14:2a:54: 27:07:09:b9:2d:9d:b2:ca:86:78:82:e4:ac:6a:d9:47:95:36: db:85:3e:23:90:77:7b:db:6a:0d:a0:a4:93:ca:4a:d5:1e:65: 40:2c:9d:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsRXRdi31kmbhYWVNQVCEK9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzODRmNmZhNmRlY2NlZDU1NzhhODVhNTFlMGJkNjU3MDFl YTM0ZWMwHhcNMjUxMjEyMDcwMTEyWhcNMjUxMjEzMDcwMTEyWjAzMTEwLwYDVQQD EyhlZjU2YTRkMDAwZmJhZmI2OTEyMzc1Njg5YjRlNjgzNzMxYmZjMDVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA960ZKG1fcgXqRfzUJF06UUGJtsA0 A1eNNaBeTK4st8gA08Acj65ziyWUCjiXFe0pMSO6tML0ywIjJHDHX1yz3xgjzY8G 6N3nhLbEGpbU8VrcR8yqbNhA+FPyydsdUOXJlRXZk0INMEkOCkuBoyCH38QuIYAm b1HsYjcutxzAwpPQjJoV4RRGVp3mwHvgBMKxH7l/1vL+h1k0cuvkfZTD4WarYU3O m0FjLbTHUaLxEcB4j4+yzeHPERtZXwFI9kbE6W2FnYQvtVlugfx9ZksX+u9gxGfT etJiBEyfJmB4mdLrqdpAjLxE7KBaFWeSVjKtJOOvThnalfkLV+WdIN9+wQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO9WpNAA+6+2kSN1aJtOaDcxv8BaMB8GA1UdIwQY MBaAFEOE9vpt7M7VV4qFpR4L1lcB6jTsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMt MWIxM2JkNDU2NmE1LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMtMWIxM2JkNDU2NmE1 LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAowrrUbCv FuSRWibDVuBb/xlCYIcPrbAHm9wc38DTMHqfXs9sqGKH6Qi8Pd8nfiiEd7rYqfml qtGsPoSbtg/ZY1vJiGRDGH1Il9KsKrFAAcAAfTboymkWs+jqBuPw8G41K1dz2tZA tpZoMAe0ZdMZbSJlgOyFrqRuAxA8nnUY8ngf73gbygAGCiGPZN7UCZi7Nih7y5+O rGe07gvUfNsrRJSGp+Cdecq5nVgXFn5a3n5CbWi6778c/dcq8vbmmm3ROMlGGpO6 6L4sL0UzKZb0aT+8IwiGFCpUJwcJuS2dssqGeILkrGrZR5U224U+I5B3e9tqDaCk k8pK1R5lQCyd4w== -----END CERTIFICATE-----Generated at Fri Dec 12 13:01:20 2025 by rpki-client