This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft File: fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft (raw, json) Hash identifier: jRLIYa81sbFfatp/uc8UwBf/Z0wtz4BzS9GNVjety/c= Subject key identifier: 0C:FD:AB:3D:E6:57:C8:6B:F4:F8:7F:5F:02:2A:C7:A1:6B:B3:24:10 Authority key identifier: 7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C Certificate issuer: /CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c Certificate serial: 019B0E5B80B8A636B9E655707C91357023F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft Manifest number: 1702 Signing time: Thu 11 Dec 2025 17:00:36 +0000 Manifest this update: Thu 11 Dec 2025 17:00:36 +0000 Manifest next update: Fri 12 Dec 2025 17:00:36 +0000 Files and hashes: 1: UkqG3VMYAz9uABWF42sKAydGWoA.roa (hash: /dg3EZ5BvktCoE6vyv9z5Q4gql01gT6XeimrmuNAS5k=) 2: fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl (hash: DGR4T2ITj0SOHCWy9JgqJrGZ5JiIRoL0f7lsL7X2X0k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:5b:80:b8:a6:36:b9:e6:55:70:7c:91:35:70:23:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c Validity Not Before: Dec 11 17:00:36 2025 GMT Not After : Dec 12 17:00:36 2025 GMT Subject: CN=0cfdab3de657c86bf4f87f5f022ac7a16bb32410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:29:b4:f9:0d:c1:f2:55:f2:5e:be:f1:75:72: fc:ad:41:71:17:6f:f0:16:5e:74:cd:f1:97:67:a6: 35:2a:41:ba:3b:df:36:e7:f8:0a:40:04:a9:41:52: 1f:c7:56:38:28:fb:ca:2c:69:47:08:0a:85:a6:f1: 4b:23:79:66:11:63:87:e7:ec:4b:ab:ea:2d:9a:f0: b5:64:40:0d:3b:35:31:74:4b:63:e5:0a:95:7e:ce: 49:3e:f4:f2:60:8a:26:da:b6:12:8f:a4:0f:f6:31: 37:ca:ae:91:64:1c:fd:52:21:2e:ca:c9:06:62:b5: 11:64:6a:e1:8b:08:87:6a:85:a3:e6:69:a6:09:1f: f4:dd:36:78:d8:b9:19:91:d6:75:f5:9b:10:6c:e2: 8b:54:5b:c5:6c:04:cf:00:62:03:13:7f:29:25:84: b2:26:de:b3:f6:9a:cb:56:22:2a:3b:4b:b3:08:7e: 51:4d:d2:9e:66:b8:b2:c7:0a:1e:db:14:5a:ca:a3: 91:c8:ba:83:21:a0:77:45:82:0b:e9:cb:db:e6:5f: d5:7d:bc:44:60:86:67:07:25:04:fe:4b:51:6d:a3: 1f:3d:18:6a:c6:d0:5e:ec:69:62:1e:ca:ee:c6:e5: 42:82:f4:1d:df:92:6c:75:11:fc:a5:65:5d:9e:75: b4:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:FD:AB:3D:E6:57:C8:6B:F4:F8:7F:5F:02:2A:C7:A1:6B:B3:24:10 X509v3 Authority Key Identifier: keyid:7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:44:cf:60:ed:a9:47:ad:5e:36:d1:d4:63:a0:95:95:6e:ec: 81:c1:00:5b:86:93:9f:57:b6:e3:12:30:53:db:15:69:fd:a9: e0:b4:05:3b:97:ec:1b:6c:85:b5:1d:3d:c2:89:f9:85:86:73: c4:c7:e2:59:f1:4d:9e:7b:86:c0:8f:5c:3e:2f:fe:6b:3f:43: 7d:9a:ce:01:ae:80:46:f4:d0:8e:21:64:9f:df:3d:5b:f0:e2: 91:ab:8c:d4:d3:1f:72:ee:29:c7:cc:eb:16:f5:42:ae:56:01: d5:38:04:81:36:55:19:3f:7a:f8:48:ea:a9:5f:57:66:03:f8: f9:2c:61:21:65:9c:41:5d:86:6b:92:69:b7:87:a0:13:c5:62: e4:93:a0:90:c3:c9:55:cc:89:df:14:ee:c7:3c:a3:0f:64:91: e3:c8:eb:ac:7e:8f:f3:fa:fe:31:52:2c:06:bc:a5:e9:aa:46: 86:68:b8:04:06:52:ba:12:d2:8c:d8:16:6d:8a:9e:77:30:b8: f5:31:64:30:7a:e2:2d:a2:d5:b4:90:25:f6:93:16:0d:bd:48: ed:b1:6a:8f:b9:4a:06:6e:b0:f8:66:7d:df:7d:dc:0f:6d:9c: 73:2d:e7:da:4e:a9:79:a5:f6:3b:ca:e4:62:2e:a3:89:b1:7a: 02:d1:16:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOW4C4pja55lVwfJE1cCP2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkMDFhNWQ5MGRjM2E4MzZjZWI2MzgxZWZjNzUzNGUxMjlm NDNhNGMwHhcNMjUxMjExMTcwMDM2WhcNMjUxMjEyMTcwMDM2WjAzMTEwLwYDVQQD EygwY2ZkYWIzZGU2NTdjODZiZjRmODdmNWYwMjJhYzdhMTZiYjMyNDEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsym0+Q3B8lXyXr7xdXL8rUFxF2/w Fl50zfGXZ6Y1KkG6O9825/gKQASpQVIfx1Y4KPvKLGlHCAqFpvFLI3lmEWOH5+xL q+otmvC1ZEANOzUxdEtj5QqVfs5JPvTyYIom2rYSj6QP9jE3yq6RZBz9UiEuyskG YrURZGrhiwiHaoWj5mmmCR/03TZ42LkZkdZ19ZsQbOKLVFvFbATPAGIDE38pJYSy Jt6z9prLViIqO0uzCH5RTdKeZriyxwoe2xRayqORyLqDIaB3RYIL6cvb5l/VfbxE YIZnByUE/ktRbaMfPRhqxtBe7GliHsruxuVCgvQd35JsdRH8pWVdnnW0TwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAz9qz3mV8hr9Ph/XwIqx6FrsyQQMB8GA1UdIwQY MBaAFH0BpdkNw6g2zrY4Hvx1NOEp9DpMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZlFHbDJRM0RxRGJPdGpnZV9IVTA0U24wT2t3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8yMWIwMDctYTA4Ni00MzEyLTlkMjMt NjJmNjY2NDczYjIxLzEvZlFHbDJRM0RxRGJPdGpnZV9IVTA0U24wT2t3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi8yMWIwMDctYTA4Ni00MzEyLTlkMjMtNjJmNjY2NDczYjIx LzEvZlFHbDJRM0RxRGJPdGpnZV9IVTA0U24wT2t3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFETPYO2p R61eNtHUY6CVlW7sgcEAW4aTn1e24xIwU9sVaf2p4LQFO5fsG2yFtR09won5hYZz xMfiWfFNnnuGwI9cPi/+az9DfZrOAa6ARvTQjiFkn989W/DikauM1NMfcu4px8zr FvVCrlYB1TgEgTZVGT96+EjqqV9XZgP4+SxhIWWcQV2Ga5Jpt4egE8Vi5JOgkMPJ VcyJ3xTuxzyjD2SR48jrrH6P8/r+MVIsBryl6apGhmi4BAZSuhLSjNgWbYqedzC4 9TFkMHriLaLVtJAl9pMWDb1I7bFqj7lKBm6w+GZ9333cD22ccy3n2k6peaX2O8rk Yi6jibF6AtEW7w== -----END CERTIFICATE-----Generated at Thu Dec 11 23:13:18 2025 by rpki-client