This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.mft File: qVLQ0mZVc4WDaqt64_3O1Mp0rYk.mft (raw, json) Hash identifier: OQKz0gtSEuNGyQgzBuscaNhL60uWRzb8A9pcAS5VmFo= Subject key identifier: 49:63:36:64:D4:80:B3:C9:E2:32:FD:DE:C6:86:1E:72:A9:73:35:08 Authority key identifier: A9:52:D0:D2:66:55:73:85:83:6A:AB:7A:E3:FD:CE:D4:CA:74:AD:89 Certificate issuer: /CN=a952d0d266557385836aab7ae3fdced4ca74ad89 Certificate serial: 019B47021536D9BEFBFA6166A825772AD0FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.mft Manifest number: 0B33 Signing time: Mon 22 Dec 2025 17:01:17 +0000 Manifest this update: Mon 22 Dec 2025 17:01:17 +0000 Manifest next update: Tue 23 Dec 2025 17:01:17 +0000 Files and hashes: 1: 0QN5Ofx6WwMbvcTiOoejeiVWFBY.roa (hash: k+6IIDKqJuYMt9/EhXM2bPBbRQ5u5Kv99iIIWzz5/2A=) 2: 1-SuDyMrxWXM7X2VtIVu9aGgRI9Y.roa (hash: 18EMBTikkSXkhqeBREgORyh2My5yAHMuFmHNML82Td4=) 3: WajP5tLioaX2Ro2cswqvvjdGPQM.roa (hash: sEIrgpW5WhiY7JBDfxS8K7V3ujO4klv15fpTFTGiTlE=) 4: qVLQ0mZVc4WDaqt64_3O1Mp0rYk.crl (hash: DI155dZq9MCWkjYelbAI/prQ2G0bS/9s0CLPMjsHy5E=) 5: w6nRqqLinLORL7W_fsNehh2pePE.roa (hash: hnUVitPfz7Hljib/HgZzf6AtllwvuxtgqDf0jZ0Pk10=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.mft rsync://rpki.ripe.net/repository/DEFAULT/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 15:30:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:47:02:15:36:d9:be:fb:fa:61:66:a8:25:77:2a:d0:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a952d0d266557385836aab7ae3fdced4ca74ad89 Validity Not Before: Dec 22 17:01:17 2025 GMT Not After : Dec 23 17:01:17 2025 GMT Subject: CN=49633664d480b3c9e232fddec6861e72a9733508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:93:0e:03:cd:45:7b:c8:19:01:20:0d:b4:f9: 77:14:b2:1b:83:a0:7c:8a:ea:43:d6:6a:6a:d4:75: d8:eb:53:b0:4a:44:4d:6a:ef:ce:fe:f9:ae:07:a7: 2a:c0:24:64:dd:6d:d7:33:3f:47:ed:29:ee:03:87: 7e:f2:88:4d:f7:b3:aa:86:0b:2e:2a:27:8b:ae:02: c2:43:47:a6:0f:04:b1:ff:f0:5b:e1:72:eb:19:c1: 47:2c:9b:bb:99:3b:f4:88:e0:e9:24:73:51:48:15: 99:98:fc:2f:4f:58:d1:35:f2:35:1c:b2:62:d0:88: 01:a7:8f:c3:2a:f1:78:97:0d:19:7c:77:f1:5e:37: 8a:da:60:e4:bc:7a:76:bf:98:b1:d2:aa:c9:3f:7d: 43:e6:0f:4a:64:0b:6f:0b:f6:9e:9a:13:3b:22:14: 8b:84:d4:f1:ee:28:e2:49:d5:a7:7f:0b:22:4c:44: 38:b1:eb:32:74:6d:f3:83:d2:e3:bf:e2:52:41:e0: a9:ad:80:3b:ae:7f:32:77:97:08:d7:a8:52:06:bf: a4:49:2e:bc:ea:fa:02:d5:64:3e:3a:e0:61:c3:b5: 98:77:f4:ff:b4:ff:0c:4f:53:af:78:bc:9b:10:71: 68:17:8f:7e:7c:6b:c4:2a:71:52:b7:32:f7:ee:a6: 5b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:63:36:64:D4:80:B3:C9:E2:32:FD:DE:C6:86:1E:72:A9:73:35:08 X509v3 Authority Key Identifier: keyid:A9:52:D0:D2:66:55:73:85:83:6A:AB:7A:E3:FD:CE:D4:CA:74:AD:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cb:41:4f:31:69:c9:7d:cb:52:e6:eb:1e:09:f2:25:84:66:84: 13:44:33:94:e4:db:1f:17:2b:c1:bb:3a:a9:3f:d1:8e:28:20: 5f:8c:d9:82:81:b4:af:9a:78:68:f8:ba:e3:b9:5d:ad:57:07: bc:86:26:0a:e4:ea:d5:34:26:be:06:20:51:01:1d:86:e1:fc: 8a:7e:67:6d:e7:d2:3d:29:e2:c9:e0:3e:5e:05:d4:62:87:96: 46:47:1f:cf:68:d5:cd:89:5f:61:3b:81:30:a9:89:c7:dd:1f: 35:95:2b:cc:ef:8a:20:73:9a:94:e6:f8:20:fc:1a:9e:46:d7: ba:f5:65:93:88:f5:a8:35:74:4a:52:19:1c:b0:71:97:6b:13: d1:b1:23:84:29:3b:44:43:d8:b2:6d:89:45:2b:f3:08:17:d7: 3c:73:60:57:91:4c:e3:5c:39:83:3d:7e:9c:3c:25:c8:53:40: 4e:ae:2e:e1:57:64:05:2d:e5:e5:d2:20:c6:09:63:9f:11:33: 94:e3:ba:28:cd:a9:69:57:1e:eb:9b:e5:98:8f:1e:84:d4:6f: c6:24:4f:ec:66:f0:39:cd:3d:5d:63:53:4b:c9:c3:88:b3:76: dc:c1:cb:73:c5:41:fc:ef:59:a0:55:3c:37:ec:0f:e5:cc:50: 36:1e:f1:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtHAhU22b77+mFmqCV3KtD/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5NTJkMGQyNjY1NTczODU4MzZhYWI3YWUzZmRjZWQ0Y2E3 NGFkODkwHhcNMjUxMjIyMTcwMTE3WhcNMjUxMjIzMTcwMTE3WjAzMTEwLwYDVQQD Eyg0OTYzMzY2NGQ0ODBiM2M5ZTIzMmZkZGVjNjg2MWU3MmE5NzMzNTA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZMOA81Fe8gZASANtPl3FLIbg6B8 iupD1mpq1HXY61OwSkRNau/O/vmuB6cqwCRk3W3XMz9H7SnuA4d+8ohN97Oqhgsu KieLrgLCQ0emDwSx//Bb4XLrGcFHLJu7mTv0iODpJHNRSBWZmPwvT1jRNfI1HLJi 0IgBp4/DKvF4lw0ZfHfxXjeK2mDkvHp2v5ix0qrJP31D5g9KZAtvC/aemhM7IhSL hNTx7ijiSdWnfwsiTEQ4sesydG3zg9Ljv+JSQeCprYA7rn8yd5cI16hSBr+kSS68 6voC1WQ+OuBhw7WYd/T/tP8MT1OveLybEHFoF49+fGvEKnFStzL37qZb1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEljNmTUgLPJ4jL93saGHnKpczUIMB8GA1UdIwQY MBaAFKlS0NJmVXOFg2qreuP9ztTKdK2JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVZMUTBtWlZjNFdEYXF0NjRfM08xTXAwcllrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8yNzBhOTEtY2JmZC00NTAzLWI5NjAt NGMyMWE1MDVmMzQ2LzEvcVZMUTBtWlZjNFdEYXF0NjRfM08xTXAwcllrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi8yNzBhOTEtY2JmZC00NTAzLWI5NjAtNGMyMWE1MDVmMzQ2 LzEvcVZMUTBtWlZjNFdEYXF0NjRfM08xTXAwcllrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAy0FPMWnJ fctS5useCfIlhGaEE0QzlOTbHxcrwbs6qT/RjiggX4zZgoG0r5p4aPi647ldrVcH vIYmCuTq1TQmvgYgUQEdhuH8in5nbefSPSniyeA+XgXUYoeWRkcfz2jVzYlfYTuB MKmJx90fNZUrzO+KIHOalOb4IPwankbXuvVlk4j1qDV0SlIZHLBxl2sT0bEjhCk7 REPYsm2JRSvzCBfXPHNgV5FM41w5gz1+nDwlyFNATq4u4VdkBS3l5dIgxgljnxEz lOO6KM2paVce65vlmI8ehNRvxiRP7GbwOc09XWNTS8nDiLN23MHLc8VB/O9ZoFU8 N+wP5cxQNh7xnA== -----END CERTIFICATE-----Generated at Mon Dec 22 20:48:18 2025 by rpki-client