This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft File: 1qcbToaUQX67vPYmi5yPljFwsfE.mft (raw, json) Hash identifier: O2WdmiiZjP/rkovEozhugAsrKfSbASJA310VpaKsQz0= Subject key identifier: 3A:8A:A6:36:79:F8:8A:2B:4F:62:FB:10:C7:7A:98:9A:3F:90:30:EC Authority key identifier: D6:A7:1B:4E:86:94:41:7E:BB:BC:F6:26:8B:9C:8F:96:31:70:B1:F1 Certificate issuer: /CN=d6a71b4e8694417ebbbcf6268b9c8f963170b1f1 Certificate serial: 019B25BF27A89F6DED5A0A334A7F882E56C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1qcbToaUQX67vPYmi5yPljFwsfE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft Manifest number: 0750 Signing time: Tue 16 Dec 2025 06:00:43 +0000 Manifest this update: Tue 16 Dec 2025 06:00:43 +0000 Manifest next update: Wed 17 Dec 2025 06:00:43 +0000 Files and hashes: 1: 1qcbToaUQX67vPYmi5yPljFwsfE.crl (hash: kqhL5YYt/ADlLfWafeeyx41mGpAUp4/DBLHpRl4js4Y=) 2: cPWanhkOF5JFf7ndWQEsgDaOym4.roa (hash: hNMT1d2ZHlvJJQiGYjNYvL4LotmJH6VgqTxIxCqCmaw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft rsync://rpki.ripe.net/repository/DEFAULT/1qcbToaUQX67vPYmi5yPljFwsfE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 06:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:bf:27:a8:9f:6d:ed:5a:0a:33:4a:7f:88:2e:56:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d6a71b4e8694417ebbbcf6268b9c8f963170b1f1 Validity Not Before: Dec 16 06:00:43 2025 GMT Not After : Dec 17 06:00:43 2025 GMT Subject: CN=3a8aa63679f88a2b4f62fb10c77a989a3f9030ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d9:04:84:24:d9:b6:8e:b2:fe:43:9d:93:66: b8:84:5c:82:1d:0a:fd:23:24:0b:fd:09:d7:d9:38: 08:69:8d:00:3e:2f:c7:8d:bf:04:17:93:19:50:23: e4:9d:7b:d9:95:7d:58:44:59:5f:4c:43:f5:06:e9: a1:41:d5:93:e9:8e:bb:9a:48:09:b7:bf:a5:03:29: 1e:84:33:68:16:e2:52:84:66:32:b4:02:42:35:87: fe:70:30:5b:2d:5d:0f:21:93:9d:58:91:43:87:80: 16:63:68:62:72:5e:ad:4c:0b:87:e2:10:0d:3f:72: f9:3f:e4:47:f9:09:d6:da:0e:8a:9e:09:b5:da:ed: cc:67:a1:40:e1:99:fc:97:d8:b7:41:84:ad:d0:d6: 73:e6:45:b2:bc:20:52:57:82:b9:70:de:64:73:8b: f0:df:9e:17:37:d8:a1:54:fa:84:a6:a9:08:d2:2b: 2d:6d:11:fb:b6:75:cd:ce:9e:7d:ce:2b:94:95:07: 10:2c:c0:70:4f:40:8a:65:f3:94:47:49:0c:f5:ee: 2b:e1:e9:be:6f:4e:6a:a8:28:ce:51:01:63:1d:f8: a8:e8:df:56:8b:7a:4a:e7:eb:cb:eb:ab:53:ea:07: 9b:5a:49:48:07:e6:e1:00:9f:e4:c1:cb:93:45:ae: c3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:8A:A6:36:79:F8:8A:2B:4F:62:FB:10:C7:7A:98:9A:3F:90:30:EC X509v3 Authority Key Identifier: keyid:D6:A7:1B:4E:86:94:41:7E:BB:BC:F6:26:8B:9C:8F:96:31:70:B1:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1qcbToaUQX67vPYmi5yPljFwsfE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:7b:89:84:02:d8:cd:6c:87:c3:63:b4:af:ee:bf:31:4f:cb: ff:d6:69:8e:09:28:21:fb:17:32:9b:97:24:81:3f:e7:5d:59: 91:72:86:d6:37:e3:65:f9:54:17:34:21:94:f7:d8:50:ac:22: 8d:94:df:10:dd:85:00:4a:aa:55:8e:4d:96:21:6a:cf:9e:a8: ff:fd:0a:b8:12:be:83:ff:95:ce:db:d3:6b:a6:a1:91:5a:6d: 4b:bf:8d:f4:a1:ce:55:1b:70:14:19:f6:87:48:ba:24:80:c4: 5d:75:13:ad:05:80:c9:80:2e:76:ed:60:ff:e3:3d:6a:5f:5d: bd:28:84:22:c3:da:e2:0c:df:0d:17:fb:2d:cf:c4:fb:40:fb: dc:11:16:40:8e:96:78:25:7f:99:43:e0:a5:89:1b:2b:49:3c: 5c:48:32:46:f6:a0:db:8f:dd:60:88:bd:3c:54:0c:76:59:40: d1:86:28:c4:df:58:1d:13:74:e7:61:09:cd:63:21:79:77:08: 43:fe:5d:df:46:76:cb:ac:90:e8:70:ea:74:50:a8:df:7a:28: 2b:9c:3d:ba:95:42:58:3a:56:cc:d1:34:b9:46:4e:ee:74:42: 90:7f:e9:65:35:8c:69:75:bd:86:44:08:f9:c3:cc:63:d8:50: 5b:cc:14:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZslvyeon23tWgozSn+ILlbAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2YTcxYjRlODY5NDQxN2ViYmJjZjYyNjhiOWM4Zjk2MzE3 MGIxZjEwHhcNMjUxMjE2MDYwMDQzWhcNMjUxMjE3MDYwMDQzWjAzMTEwLwYDVQQD EygzYThhYTYzNjc5Zjg4YTJiNGY2MmZiMTBjNzdhOTg5YTNmOTAzMGVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsdkEhCTZto6y/kOdk2a4hFyCHQr9 IyQL/QnX2TgIaY0APi/Hjb8EF5MZUCPknXvZlX1YRFlfTEP1BumhQdWT6Y67mkgJ t7+lAykehDNoFuJShGYytAJCNYf+cDBbLV0PIZOdWJFDh4AWY2hicl6tTAuH4hAN P3L5P+RH+QnW2g6Kngm12u3MZ6FA4Zn8l9i3QYSt0NZz5kWyvCBSV4K5cN5kc4vw 354XN9ihVPqEpqkI0istbRH7tnXNzp59ziuUlQcQLMBwT0CKZfOUR0kM9e4r4em+ b05qqCjOUQFjHfio6N9Wi3pK5+vL66tT6gebWklIB+bhAJ/kwcuTRa7DTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDqKpjZ5+IorT2L7EMd6mJo/kDDsMB8GA1UdIwQY MBaAFNanG06GlEF+u7z2Joucj5YxcLHxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMXFjYlRvYVVRWDY3dlBZbWk1eVBsakZ3c2ZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy83NmE0NjMtMDczMi00OTdhLTk0OGQt MjkzMTEwNGM1ZjdhLzEvMXFjYlRvYVVRWDY3dlBZbWk1eVBsakZ3c2ZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy83NmE0NjMtMDczMi00OTdhLTk0OGQtMjkzMTEwNGM1Zjdh LzEvMXFjYlRvYVVRWDY3dlBZbWk1eVBsakZ3c2ZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB3uJhALY zWyHw2O0r+6/MU/L/9ZpjgkoIfsXMpuXJIE/511ZkXKG1jfjZflUFzQhlPfYUKwi jZTfEN2FAEqqVY5NliFqz56o//0KuBK+g/+VztvTa6ahkVptS7+N9KHOVRtwFBn2 h0i6JIDEXXUTrQWAyYAudu1g/+M9al9dvSiEIsPa4gzfDRf7Lc/E+0D73BEWQI6W eCV/mUPgpYkbK0k8XEgyRvag24/dYIi9PFQMdllA0YYoxN9YHRN052EJzWMheXcI Q/5d30Z2y6yQ6HDqdFCo33ooK5w9upVCWDpWzNE0uUZO7nRCkH/pZTWMaXW9hkQI +cPMY9hQW8wU4Q== -----END CERTIFICATE-----Generated at Tue Dec 16 12:14:49 2025 by rpki-client