This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft File: QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft (raw, json) Hash identifier: Q4T44gsXLTHHNqKEeT37P/HgCnr+IEmvB4flEPdWmnA= Subject key identifier: 83:E0:59:57:02:5D:A1:41:80:80:B5:80:AA:4C:80:2F:FD:4E:ED:F1 Authority key identifier: 42:43:2A:31:9F:54:B0:58:37:2F:D3:25:28:EA:E5:1F:C9:0C:15:B2 Certificate issuer: /CN=42432a319f54b058372fd32528eae51fc90c15b2 Certificate serial: 019B2175B6E5A3CEAFF3FAB4CD9C1349EA7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft Manifest number: 0428 Signing time: Mon 15 Dec 2025 10:02:01 +0000 Manifest this update: Mon 15 Dec 2025 10:02:01 +0000 Manifest next update: Tue 16 Dec 2025 10:02:01 +0000 Files and hashes: 1: Fg4gfGthOyzcFXfxEYyjwrss7as.roa (hash: mWUv12QovIjIHXpuDNAMlgedx6+BQ3vMWaiHrsA7+3A=) 2: Q5e6g1WUMRG4cL4aNZtJqqD_-yo.roa (hash: T3aZ91YVxRUkDJ96e4vMqo7oCynEMTZ2Xb8h0pZbGMo=) 3: QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl (hash: /v0B5Yk6D6MpqbQvBOV16omQyNdIn2AgZEgoWx2PEYc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 10:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:75:b6:e5:a3:ce:af:f3:fa:b4:cd:9c:13:49:ea:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42432a319f54b058372fd32528eae51fc90c15b2 Validity Not Before: Dec 15 10:02:01 2025 GMT Not After : Dec 16 10:02:01 2025 GMT Subject: CN=83e05957025da1418080b580aa4c802ffd4eedf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:50:53:ad:7c:5d:9d:7e:3d:72:4e:16:90:c4: 86:54:18:72:7d:23:ec:bb:d1:a4:73:88:10:f7:6b: cb:69:6c:e3:09:f5:06:08:b9:87:a0:80:5f:d2:5b: 7b:81:73:a4:bf:ca:e2:c4:01:0f:e7:3e:70:41:9d: 6b:12:bf:94:49:ec:9a:c0:59:7c:25:9a:a9:b8:fe: e9:9c:f6:bf:d3:17:55:57:7f:70:42:c8:b0:40:ab: 25:44:50:f3:98:51:cb:7f:88:7e:82:9e:e1:9b:95: 36:d5:46:22:3d:7a:d8:4b:27:f7:37:f3:b6:fe:aa: 40:65:29:78:5b:94:4d:f7:52:50:09:61:42:3f:15: fa:e9:5a:17:ab:c1:0f:4a:34:42:4f:50:64:1a:e9: ac:5c:7f:9a:b4:81:28:2d:91:73:3e:fb:7a:c2:c0: 38:8f:c9:cc:1a:a8:d6:9c:ba:4d:67:ee:2b:a0:93: 1d:85:73:e4:54:75:b8:03:65:fc:e8:a6:a3:28:41: f5:cf:72:90:4a:28:df:05:b1:d2:4c:57:b7:f1:54: ed:ad:95:5b:b5:38:5d:e8:aa:53:1a:8e:f7:48:4f: 8c:49:a0:7b:c2:85:38:ea:14:ad:b3:26:68:70:08: c5:d8:97:2e:8b:7e:da:00:03:94:3d:9f:48:f2:2e: 32:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:E0:59:57:02:5D:A1:41:80:80:B5:80:AA:4C:80:2F:FD:4E:ED:F1 X509v3 Authority Key Identifier: keyid:42:43:2A:31:9F:54:B0:58:37:2F:D3:25:28:EA:E5:1F:C9:0C:15:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:37:32:09:a4:0d:b3:30:01:2f:8a:af:a1:89:7f:51:3e:ad: b1:e1:11:08:ac:21:74:38:22:42:98:10:a4:6e:4c:6f:6b:51: 8d:23:6f:b4:23:72:c5:a0:b7:2a:63:d1:2c:50:27:69:ea:18: 5b:36:b7:03:65:be:ed:a6:13:04:df:37:2b:89:c8:f7:ef:b8: cd:18:4c:de:25:33:ee:79:79:1e:96:3e:c5:5d:ca:69:be:7d: d5:c0:8e:69:d9:a5:be:7b:98:5a:e1:c8:63:3c:c9:e2:8e:e4: 86:4d:b7:6c:04:c5:5f:bb:42:52:76:67:a5:3a:c3:3a:1b:4a: ce:34:b4:6a:c7:97:20:09:af:ec:fa:8c:15:de:41:f5:64:56: ee:e3:29:0e:1d:11:bd:a3:6a:b9:cd:aa:ee:94:d2:7b:f3:30: a5:7a:40:bc:0f:10:a2:0c:c4:ab:e0:7c:9a:9a:d6:9a:5a:d1: 98:65:49:a0:54:53:38:03:56:41:ed:96:35:60:04:c3:92:50: f1:cb:94:54:ce:31:4d:b4:59:3f:8c:7f:4c:4f:83:2e:f0:bb: e6:6b:f5:47:ff:53:f6:c2:71:3b:1c:53:03:70:6b:e1:2e:92: 73:9d:d3:cb:c4:18:63:70:91:b8:0a:04:9b:93:ec:b6:4f:e0: 51:dc:fd:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZshdbblo86v8/q0zZwTSep/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyNDMyYTMxOWY1NGIwNTgzNzJmZDMyNTI4ZWFlNTFmYzkw YzE1YjIwHhcNMjUxMjE1MTAwMjAxWhcNMjUxMjE2MTAwMjAxWjAzMTEwLwYDVQQD Eyg4M2UwNTk1NzAyNWRhMTQxODA4MGI1ODBhYTRjODAyZmZkNGVlZGYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1BTrXxdnX49ck4WkMSGVBhyfSPs u9Gkc4gQ92vLaWzjCfUGCLmHoIBf0lt7gXOkv8rixAEP5z5wQZ1rEr+USeyawFl8 JZqpuP7pnPa/0xdVV39wQsiwQKslRFDzmFHLf4h+gp7hm5U21UYiPXrYSyf3N/O2 /qpAZSl4W5RN91JQCWFCPxX66VoXq8EPSjRCT1BkGumsXH+atIEoLZFzPvt6wsA4 j8nMGqjWnLpNZ+4roJMdhXPkVHW4A2X86KajKEH1z3KQSijfBbHSTFe38VTtrZVb tThd6KpTGo73SE+MSaB7woU46hStsyZocAjF2Jcui37aAAOUPZ9I8i4yFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIPgWVcCXaFBgIC1gKpMgC/9Tu3xMB8GA1UdIwQY MBaAFEJDKjGfVLBYNy/TJSjq5R/JDBWyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWtNcU1aOVVzRmczTDlNbEtPcmxIOGtNRmJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS83YWI3OWMtOWRmZi00YTVkLWFlODMt MTMxZGMyYmEyZWM4LzEvUWtNcU1aOVVzRmczTDlNbEtPcmxIOGtNRmJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS83YWI3OWMtOWRmZi00YTVkLWFlODMtMTMxZGMyYmEyZWM4 LzEvUWtNcU1aOVVzRmczTDlNbEtPcmxIOGtNRmJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGTcyCaQN szABL4qvoYl/UT6tseERCKwhdDgiQpgQpG5Mb2tRjSNvtCNyxaC3KmPRLFAnaeoY Wza3A2W+7aYTBN83K4nI9++4zRhM3iUz7nl5HpY+xV3Kab591cCOadmlvnuYWuHI YzzJ4o7khk23bATFX7tCUnZnpTrDOhtKzjS0aseXIAmv7PqMFd5B9WRW7uMpDh0R vaNquc2q7pTSe/MwpXpAvA8QogzEq+B8mprWmlrRmGVJoFRTOANWQe2WNWAEw5JQ 8cuUVM4xTbRZP4x/TE+DLvC75mv1R/9T9sJxOxxTA3Br4S6Sc53Ty8QYY3CRuAoE m5Pstk/gUdz9wQ== -----END CERTIFICATE-----Generated at Mon Dec 15 20:08:22 2025 by rpki-client