This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft File: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft (raw, json) Hash identifier: 3jxF3Ij6cKmvcXeXdp22GRB5+RFEb0fBO696iaTz9Y0= Subject key identifier: E7:9C:41:5E:7B:60:6B:06:A9:B3:DC:9A:38:B6:3F:79:2D:20:A3:2D Authority key identifier: 41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16 Certificate issuer: /CN=41f73670ac161f4b56679c49da8b489b60bf0b16 Certificate serial: 019B3C7FBD1DA6BD0A8387EBF95406E86D38 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft Manifest number: 1610 Signing time: Sat 20 Dec 2025 16:02:42 +0000 Manifest this update: Sat 20 Dec 2025 16:02:42 +0000 Manifest next update: Sun 21 Dec 2025 16:02:42 +0000 Files and hashes: 1: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl (hash: LUlauBHYO80O9ul8PpT25WR0vPlbn/tmodJ05Svh/Bk=) 2: tCKYdWD2hSQqFlBHMS87DdwFA_c.roa (hash: P2KIjX/YYHmksRirKKz2Fd1xnQFo0kzJQbDUVFG/Ics=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:7f:bd:1d:a6:bd:0a:83:87:eb:f9:54:06:e8:6d:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41f73670ac161f4b56679c49da8b489b60bf0b16 Validity Not Before: Dec 20 16:02:42 2025 GMT Not After : Dec 21 16:02:42 2025 GMT Subject: CN=e79c415e7b606b06a9b3dc9a38b63f792d20a32d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e4:e6:a5:e0:23:4f:3a:72:b2:8b:ac:9d:2e: 16:b6:33:c7:ef:3e:28:f0:af:5f:53:14:7a:0e:84: 92:75:87:4c:d6:e6:f2:a9:64:f5:8e:42:14:da:2c: aa:bd:b7:b3:d6:50:9d:df:c3:d8:06:0a:76:09:bc: 53:89:36:68:ba:b2:87:d1:5b:60:d3:2a:f6:49:7b: af:6c:63:95:19:75:75:46:41:68:99:dd:03:aa:9c: 81:79:ea:85:1c:1d:d0:16:bf:7d:a2:0c:14:72:44: 7d:6c:dd:b8:93:7d:00:9d:3a:a9:c4:a4:6b:cb:36: 08:f4:9f:b5:e4:e8:ca:66:b9:f4:99:b4:28:a5:c4: 1c:8e:d5:65:af:83:92:13:1d:78:ad:de:9a:f6:5c: fa:00:69:ec:9d:7c:bb:29:07:8e:7e:ac:23:11:63: 54:c6:7d:6c:06:a8:42:06:3f:87:db:d6:52:3f:16: 29:39:bc:b0:74:26:47:7e:27:07:41:79:6f:f8:fd: 0c:7f:fc:f6:a0:24:9d:69:90:f1:91:8f:15:60:e7: b7:24:81:ce:a6:32:7a:84:1a:8c:ab:50:17:c0:69: 95:f7:fe:01:5c:05:f0:64:ea:06:34:65:4f:76:98: 11:24:2a:a1:50:ec:d5:4f:f5:41:e8:fc:a3:5e:6f: 8b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:9C:41:5E:7B:60:6B:06:A9:B3:DC:9A:38:B6:3F:79:2D:20:A3:2D X509v3 Authority Key Identifier: keyid:41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:84:34:ba:cc:f7:f2:32:b5:b6:2d:05:21:fa:76:53:e2:01: ed:57:ef:72:b1:ee:1d:41:07:f5:ab:64:97:6a:b9:48:5f:b9: f8:57:c9:f5:85:ed:4b:6f:f1:ae:bd:4d:62:75:f5:4c:65:99: 5e:f1:63:f9:b0:af:85:0b:a4:b4:85:2d:6a:22:e6:18:0e:aa: 81:83:b8:4a:06:9f:58:5b:83:a7:3c:b4:c4:f4:5a:66:c5:0a: 2c:9c:f3:e7:8d:75:00:d9:7d:f5:e0:39:d9:d0:fb:a2:a7:14: b0:31:13:ba:b2:5f:18:94:12:39:8a:09:b0:96:8d:8d:db:7d: bd:90:c2:ee:dd:bb:a4:7c:b8:13:f0:c8:48:7d:1d:84:a2:b3: 61:c0:e0:3b:7e:83:b1:e1:ed:90:6a:72:89:d9:0e:71:1e:e3: 0e:99:2e:db:2d:3c:26:85:ca:84:20:53:da:06:77:22:29:36: 1a:37:cf:fb:3d:0c:f3:01:2b:7a:0d:13:06:62:a2:e1:85:2e: 20:5d:07:71:b7:94:a1:cd:97:0b:bb:35:78:10:97:a1:5e:ac: a2:93:4f:05:e0:08:08:2a:cb:39:23:4d:cc:f9:9b:8d:48:c8: e1:eb:fe:26:32:7f:2c:51:59:03:83:44:58:a1:d2:d2:91:1e: 09:00:d2:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8f70dpr0Kg4fr+VQG6G04MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxZjczNjcwYWMxNjFmNGI1NjY3OWM0OWRhOGI0ODliNjBi ZjBiMTYwHhcNMjUxMjIwMTYwMjQyWhcNMjUxMjIxMTYwMjQyWjAzMTEwLwYDVQQD EyhlNzljNDE1ZTdiNjA2YjA2YTliM2RjOWEzOGI2M2Y3OTJkMjBhMzJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+TmpeAjTzpysousnS4WtjPH7z4o 8K9fUxR6DoSSdYdM1ubyqWT1jkIU2iyqvbez1lCd38PYBgp2CbxTiTZourKH0Vtg 0yr2SXuvbGOVGXV1RkFomd0DqpyBeeqFHB3QFr99ogwUckR9bN24k30AnTqpxKRr yzYI9J+15OjKZrn0mbQopcQcjtVlr4OSEx14rd6a9lz6AGnsnXy7KQeOfqwjEWNU xn1sBqhCBj+H29ZSPxYpObywdCZHficHQXlv+P0Mf/z2oCSdaZDxkY8VYOe3JIHO pjJ6hBqMq1AXwGmV9/4BXAXwZOoGNGVPdpgRJCqhUOzVT/VB6PyjXm+LAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOecQV57YGsGqbPcmji2P3ktIKMtMB8GA1UdIwQY MBaAFEH3NnCsFh9LVmecSdqLSJtgvwsWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWZjMmNLd1dIMHRXWjV4SjJvdEltMkNfQ3hZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9jMzEwMzMtZTdhZS00YWIxLWFmNDkt Mjk2MTgzODdiYTI2LzEvUWZjMmNLd1dIMHRXWjV4SjJvdEltMkNfQ3hZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS9jMzEwMzMtZTdhZS00YWIxLWFmNDktMjk2MTgzODdiYTI2 LzEvUWZjMmNLd1dIMHRXWjV4SjJvdEltMkNfQ3hZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASIQ0usz3 8jK1ti0FIfp2U+IB7VfvcrHuHUEH9atkl2q5SF+5+FfJ9YXtS2/xrr1NYnX1TGWZ XvFj+bCvhQuktIUtaiLmGA6qgYO4SgafWFuDpzy0xPRaZsUKLJzz5411ANl99eA5 2dD7oqcUsDETurJfGJQSOYoJsJaNjdt9vZDC7t27pHy4E/DISH0dhKKzYcDgO36D seHtkGpyidkOcR7jDpku2y08JoXKhCBT2gZ3Iik2GjfP+z0M8wEreg0TBmKi4YUu IF0HcbeUoc2XC7s1eBCXoV6sopNPBeAICCrLOSNNzPmbjUjI4ev+JjJ/LFFZA4NE WKHS0pEeCQDSHg== -----END CERTIFICATE-----Generated at Sat Dec 20 21:58:00 2025 by rpki-client