This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft File: SQsh95ueovPQQjdHFIZ9EkAZlds.mft (raw, json) Hash identifier: Gt+bYade+/mqQcF0mdQ3i4OptkNrfvkUFj8PfWaEZMk= Subject key identifier: 9A:C5:E5:1A:AE:CD:71:CE:28:16:8C:1A:5C:A8:F3:6E:C4:29:59:66 Authority key identifier: 49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB Certificate issuer: /CN=490b21f79b9ea2f3d042374714867d12401995db Certificate serial: 019B59E4296B02D6740D580868E55AF7A88C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft Manifest number: 179D Signing time: Fri 26 Dec 2025 09:01:23 +0000 Manifest this update: Fri 26 Dec 2025 09:01:23 +0000 Manifest next update: Sat 27 Dec 2025 09:01:23 +0000 Files and hashes: 1: 1-fO1x-zi8QWRbmjkH4DjBKGyJ98.roa (hash: mvfK7I5z/jAXOStg+IEHlWFuIOiBRl1nmXGrXHhSqtY=) 2: NApugC31V5WK63Ny4-racw1twJY.roa (hash: bVtlfHYisvNWIzitGovNgNsC2+/TaBl7fpGIvEq6gaQ=) 3: SQsh95ueovPQQjdHFIZ9EkAZlds.crl (hash: lbE2hg6qVMCY5t0UqXC10+AiLQO4lB66ZVdSBX4YbUY=) 4: i4v6AZ8AjCY-DaijxXBLxpCWr-o.roa (hash: IzqUiUJUiq+h6Lhm9373nMFr5yy8oOrsxUoRI4smlK0=) 5: jHd0BQzN011_cMoKuI7iRsLMJu8.roa (hash: JjmkBCaZsliO1zFW0zpJ5sroTsscOQWZvCVDg8ArSY8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e4:29:6b:02:d6:74:0d:58:08:68:e5:5a:f7:a8:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=490b21f79b9ea2f3d042374714867d12401995db Validity Not Before: Dec 26 09:01:23 2025 GMT Not After : Dec 27 09:01:23 2025 GMT Subject: CN=9ac5e51aaecd71ce28168c1a5ca8f36ec4295966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:96:08:43:2d:f5:f5:0e:e0:74:38:2c:5e:65: e5:20:52:b6:a8:8e:63:f9:f2:ef:5d:4e:66:4a:7d: a0:3a:62:7d:54:97:9e:56:17:3f:93:b8:9f:fa:77: 83:74:29:72:95:c1:04:a4:c2:1d:b0:aa:1e:3d:db: 4a:de:2b:53:3e:e5:20:d4:b9:3b:24:47:0b:ce:7a: cc:e4:e5:7a:40:ec:2d:b6:f8:6d:dc:0d:51:46:a1: 06:0e:bc:98:51:4e:4f:69:70:6a:b9:1f:28:f7:a7: 65:db:ce:fc:37:8a:87:8a:8f:5d:b3:70:90:1c:ea: 00:37:0d:b3:fc:9b:9c:cf:fd:55:ee:13:cd:86:22: 92:b9:6e:0c:b1:d6:84:8f:4a:71:45:32:ec:ca:0c: da:83:ab:0d:b5:86:75:12:7f:7e:b5:b7:e4:86:2f: 6d:64:e0:5a:39:8b:2a:1b:2c:f4:2d:d4:e8:54:60: 1d:08:47:9a:51:56:f9:84:92:9b:d8:7d:15:f0:44: c7:4b:98:fa:69:60:74:87:eb:fc:db:32:14:1e:4a: 83:72:be:81:47:a7:ae:dd:ed:40:ae:1a:0f:c7:dd: 3c:99:61:d5:82:08:46:41:e4:86:99:5c:3f:eb:63: 88:d6:f3:46:dc:4f:5e:e8:b5:32:ff:4c:9c:17:13: b9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C5:E5:1A:AE:CD:71:CE:28:16:8C:1A:5C:A8:F3:6E:C4:29:59:66 X509v3 Authority Key Identifier: keyid:49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:fa:1e:5c:16:8b:c7:e0:a9:93:b5:fa:02:1b:06:f8:53:42: d3:54:45:2d:7a:49:c3:62:45:e0:e4:28:2a:44:82:79:db:fc: 85:6a:6d:76:38:cc:65:46:e0:03:37:c4:30:83:41:5f:2d:6b: ba:30:6a:83:0a:83:1a:de:c8:d1:d8:43:39:ac:31:e6:70:e2: 2f:9f:92:e8:ba:36:1c:58:b1:7e:da:43:89:9a:24:97:5a:b0: 10:6f:fc:0f:ea:93:af:20:21:8c:c7:36:91:30:e1:79:79:cf: a6:18:83:f5:57:16:67:02:aa:9b:74:c7:13:47:66:3d:a1:68: 63:1f:38:97:67:5a:e7:ca:3d:c3:ae:98:fb:a3:1a:7b:30:62: 30:fa:3f:a9:62:98:4f:f4:88:b9:d9:0a:57:e5:d4:c6:39:54: 6c:c2:f8:8d:06:64:ae:a3:33:71:b1:b9:bf:11:87:12:ca:76: ad:b4:19:ed:2d:39:95:d5:31:b4:74:fb:37:11:48:8d:53:80: 60:a6:96:36:78:7d:dc:b5:32:cd:ee:32:57:a5:79:be:e7:a7: 07:a2:63:9d:ba:44:60:cf:ed:cb:03:5f:54:91:6a:9b:eb:c2: 52:fd:24:68:53:38:23:bf:66:e4:89:29:98:a4:ed:61:ad:10: d8:78:84:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ5ClrAtZ0DVgIaOVa96iMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5MGIyMWY3OWI5ZWEyZjNkMDQyMzc0NzE0ODY3ZDEyNDAx OTk1ZGIwHhcNMjUxMjI2MDkwMTIzWhcNMjUxMjI3MDkwMTIzWjAzMTEwLwYDVQQD Eyg5YWM1ZTUxYWFlY2Q3MWNlMjgxNjhjMWE1Y2E4ZjM2ZWM0Mjk1OTY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJYIQy319Q7gdDgsXmXlIFK2qI5j +fLvXU5mSn2gOmJ9VJeeVhc/k7if+neDdClylcEEpMIdsKoePdtK3itTPuUg1Lk7 JEcLznrM5OV6QOwttvht3A1RRqEGDryYUU5PaXBquR8o96dl2878N4qHio9ds3CQ HOoANw2z/Jucz/1V7hPNhiKSuW4MsdaEj0pxRTLsygzag6sNtYZ1En9+tbfkhi9t ZOBaOYsqGyz0LdToVGAdCEeaUVb5hJKb2H0V8ETHS5j6aWB0h+v82zIUHkqDcr6B R6eu3e1ArhoPx908mWHVgghGQeSGmVw/62OI1vNG3E9e6LUy/0ycFxO5RQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJrF5RquzXHOKBaMGlyo827EKVlmMB8GA1UdIwQY MBaAFEkLIfebnqLz0EI3RxSGfRJAGZXbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1FzaDk1dWVvdlBRUWpkSEZJWjlFa0FabGRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9lMTAxNjUtYjRjZC00MzIxLWJmM2Mt NDgwYzMyZjQwMGUxLzEvU1FzaDk1dWVvdlBRUWpkSEZJWjlFa0FabGRzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS9lMTAxNjUtYjRjZC00MzIxLWJmM2MtNDgwYzMyZjQwMGUx LzEvU1FzaDk1dWVvdlBRUWpkSEZJWjlFa0FabGRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlPoeXBaL x+Cpk7X6AhsG+FNC01RFLXpJw2JF4OQoKkSCedv8hWptdjjMZUbgAzfEMINBXy1r ujBqgwqDGt7I0dhDOawx5nDiL5+S6Lo2HFixftpDiZokl1qwEG/8D+qTryAhjMc2 kTDheXnPphiD9VcWZwKqm3THE0dmPaFoYx84l2da58o9w66Y+6MaezBiMPo/qWKY T/SIudkKV+XUxjlUbML4jQZkrqMzcbG5vxGHEsp2rbQZ7S05ldUxtHT7NxFIjVOA YKaWNnh93LUyze4yV6V5vuenB6JjnbpEYM/tywNfVJFqm+vCUv0kaFM4I79m5Ikp mKTtYa0Q2HiEUw== -----END CERTIFICATE-----Generated at Fri Dec 26 16:02:15 2025 by rpki-client