This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft File: Q1QWsigrRTPDUJwY6VfODINryDc.mft (raw, json) Hash identifier: y+3BzZaffzdk5jrn+9HdC9LBMqPqQVke72Obc4rure8= Subject key identifier: 03:CE:5E:87:05:C2:62:BB:53:4D:9E:72:C6:E3:DC:98:BE:A2:9C:74 Authority key identifier: 43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37 Certificate issuer: /CN=435416b2282b4533c3509c18e957ce0c836bc837 Certificate serial: 019B1803EACF8C19F9DF8665091B202D8051 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft Manifest number: 0F64 Signing time: Sat 13 Dec 2025 14:01:08 +0000 Manifest this update: Sat 13 Dec 2025 14:01:08 +0000 Manifest next update: Sun 14 Dec 2025 14:01:08 +0000 Files and hashes: 1: Q1QWsigrRTPDUJwY6VfODINryDc.crl (hash: yE6IWK9KYkWvWHB4Bxr7ibaD5kC4AG5RifaEdn/vllo=) 2: Tt9cDnLqp2SOeeoElhH21A1JSmo.roa (hash: g7FEq0smlg0TkkjLfygzTEzTD8KkWT+7GvQHUxPqdJo=) 3: pSYXiKXGXABhmANIG0Y2vhGLRUA.roa (hash: kjXcWabBcy+Nz9B+eKiIbdHIvrnXu/XwD/9ZftdegXw=) 4: uJ1wgWjtfF_PUvxzUj8noSaLQx0.roa (hash: 5K3mYspcTrH8J1dlAJJG2SBHWuIALi8AQG16SYzuq8w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:18:03:ea:cf:8c:19:f9:df:86:65:09:1b:20:2d:80:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=435416b2282b4533c3509c18e957ce0c836bc837 Validity Not Before: Dec 13 14:01:08 2025 GMT Not After : Dec 14 14:01:08 2025 GMT Subject: CN=03ce5e8705c262bb534d9e72c6e3dc98bea29c74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d9:cb:80:e3:a1:6d:28:dc:85:6d:0f:06:cd: 79:32:85:04:d9:46:51:1b:63:da:15:49:98:2f:0c: 41:30:e4:51:fa:36:40:98:f6:83:94:e8:61:92:00: e3:be:4c:fb:04:7e:18:b1:9a:a5:21:bc:fd:11:d6: a2:0d:99:96:ad:f1:57:fb:4e:8f:bd:bd:e5:34:29: 1a:d2:56:82:e6:cc:47:35:0b:1c:20:ec:09:f2:c1: d5:be:4f:88:21:45:94:dc:e2:8c:95:ae:a5:a1:7c: 96:cc:9e:ed:b9:9f:cd:b6:92:9c:78:6b:c3:29:db: 77:42:dc:ad:57:38:a7:61:be:3b:71:2f:d0:44:03: 7d:74:45:b6:bf:ae:98:9c:a2:12:e7:5e:5c:5d:e5: d3:53:ac:69:db:c5:b8:32:e7:b3:15:92:db:ed:1e: 08:d8:af:40:de:0a:93:fa:12:3b:9b:83:92:66:e4: b0:17:da:fd:c9:1e:96:a7:b4:c3:ea:e1:10:9b:ee: 7b:28:84:cc:7d:cb:b1:c8:15:ae:e6:d3:97:bf:0a: f7:b4:e9:78:92:60:d2:b4:6a:88:c3:25:d4:0d:03: 90:87:69:b8:ca:03:42:7c:62:69:b1:9e:29:83:f7: 05:4b:a0:47:84:d3:6f:35:6d:a1:15:c0:88:d2:54: b5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:CE:5E:87:05:C2:62:BB:53:4D:9E:72:C6:E3:DC:98:BE:A2:9C:74 X509v3 Authority Key Identifier: keyid:43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:fc:91:53:c5:c2:05:d3:57:96:e1:96:2c:57:6f:eb:50:9a: 35:7f:9e:ad:ed:c8:a2:9b:19:bd:11:8e:f9:4c:f9:17:d4:2a: 46:fd:bc:86:14:79:7d:42:f7:3c:cb:54:3f:bd:f0:47:91:63: 47:84:85:51:69:13:2e:70:ce:6b:89:a9:76:00:4e:f1:1c:2b: aa:bc:2f:16:0b:ab:6d:71:5e:86:82:37:b9:ef:34:98:f0:25: 05:e5:87:05:1e:c7:08:fb:77:1e:f8:65:8b:e4:c0:75:16:33: 95:46:97:26:3a:2e:aa:fd:51:21:ec:79:28:56:56:81:c8:fc: e5:60:19:19:ce:70:1b:d7:f8:96:da:dd:f1:31:51:33:85:2b: af:3c:65:af:a4:60:da:bc:95:da:88:56:8a:c8:7d:9d:62:b1: 11:de:6b:f7:3d:6c:ec:87:40:20:4d:b1:3e:87:7f:99:ae:6e: e0:b3:da:5e:46:08:ac:8b:e0:e6:46:c3:df:4c:d4:e1:82:89: ae:af:f7:43:f5:c1:ed:88:37:53:b1:a4:1f:21:10:b4:f9:2a: 5b:db:7f:d0:12:4b:7c:79:a9:d9:1d:b7:0d:42:e7:db:57:f7: b2:18:f0:2b:83:52:0d:a2:fd:03:52:9f:80:4b:a5:58:63:09: 69:80:ba:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsYA+rPjBn534ZlCRsgLYBRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNTQxNmIyMjgyYjQ1MzNjMzUwOWMxOGU5NTdjZTBjODM2 YmM4MzcwHhcNMjUxMjEzMTQwMTA4WhcNMjUxMjE0MTQwMTA4WjAzMTEwLwYDVQQD EygwM2NlNWU4NzA1YzI2MmJiNTM0ZDllNzJjNmUzZGM5OGJlYTI5Yzc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvNnLgOOhbSjchW0PBs15MoUE2UZR G2PaFUmYLwxBMORR+jZAmPaDlOhhkgDjvkz7BH4YsZqlIbz9EdaiDZmWrfFX+06P vb3lNCka0laC5sxHNQscIOwJ8sHVvk+IIUWU3OKMla6loXyWzJ7tuZ/NtpKceGvD Kdt3QtytVzinYb47cS/QRAN9dEW2v66YnKIS515cXeXTU6xp28W4MuezFZLb7R4I 2K9A3gqT+hI7m4OSZuSwF9r9yR6Wp7TD6uEQm+57KITMfcuxyBWu5tOXvwr3tOl4 kmDStGqIwyXUDQOQh2m4ygNCfGJpsZ4pg/cFS6BHhNNvNW2hFcCI0lS1hQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAPOXocFwmK7U02ecsbj3Ji+opx0MB8GA1UdIwQY MBaAFENUFrIoK0Uzw1CcGOlXzgyDa8g3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTFRV3NpZ3JSVFBEVUp3WTZWZk9ESU5yeURjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy82M2ZmODEtNjQ2MC00YzA1LTg1MmQt MjYyZWIzOWJiZTc2LzEvUTFRV3NpZ3JSVFBEVUp3WTZWZk9ESU5yeURjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy82M2ZmODEtNjQ2MC00YzA1LTg1MmQtMjYyZWIzOWJiZTc2 LzEvUTFRV3NpZ3JSVFBEVUp3WTZWZk9ESU5yeURjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlfyRU8XC BdNXluGWLFdv61CaNX+ere3IopsZvRGO+Uz5F9QqRv28hhR5fUL3PMtUP73wR5Fj R4SFUWkTLnDOa4mpdgBO8RwrqrwvFgurbXFehoI3ue80mPAlBeWHBR7HCPt3Hvhl i+TAdRYzlUaXJjouqv1RIex5KFZWgcj85WAZGc5wG9f4ltrd8TFRM4Urrzxlr6Rg 2ryV2ohWish9nWKxEd5r9z1s7IdAIE2xPod/ma5u4LPaXkYIrIvg5kbD30zU4YKJ rq/3Q/XB7Yg3U7GkHyEQtPkqW9t/0BJLfHmp2R23DULn21f3shjwK4NSDaL9A1Kf gEulWGMJaYC6FA== -----END CERTIFICATE-----Generated at Sat Dec 13 19:15:55 2025 by rpki-client