This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft File: qWpTYQ2O9mShJ1txquq7KFEEwk8.mft (raw, json) Hash identifier: b03AavGib/596S8dfj5NlKVhfyqfIeVjyYXcfVALKHY= Subject key identifier: 04:17:E0:F8:BC:04:5E:9C:A0:87:AE:ED:7B:BF:9B:6F:8A:7C:02:5B Authority key identifier: A9:6A:53:61:0D:8E:F6:64:A1:27:5B:71:AA:EA:BB:28:51:04:C2:4F Certificate issuer: /CN=a96a53610d8ef664a1275b71aaeabb285104c24f Certificate serial: 019B59761D31574BD3B0B06358A040C780ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft Manifest number: 1793 Signing time: Fri 26 Dec 2025 07:01:11 +0000 Manifest this update: Fri 26 Dec 2025 07:01:11 +0000 Manifest next update: Sat 27 Dec 2025 07:01:11 +0000 Files and hashes: 1: qWpTYQ2O9mShJ1txquq7KFEEwk8.crl (hash: iK9eM+jmfqO/oOecaLPvsGUkEebKAkif1/ZAcxEsdz0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:1d:31:57:4b:d3:b0:b0:63:58:a0:40:c7:80:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a96a53610d8ef664a1275b71aaeabb285104c24f Validity Not Before: Dec 26 07:01:11 2025 GMT Not After : Dec 27 07:01:11 2025 GMT Subject: CN=0417e0f8bc045e9ca087aeed7bbf9b6f8a7c025b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:fc:47:2d:e4:38:c4:cd:95:1a:10:b1:fe:82: a9:7e:9d:99:da:17:93:b4:95:cb:af:5a:b7:5e:22: b7:51:06:b4:27:54:cb:5b:8e:d4:08:c9:42:07:8d: d1:86:c8:32:43:d1:bc:7a:5a:a5:e9:45:f5:69:30: d1:a2:02:0e:70:ca:70:f6:33:14:35:3d:86:f0:b2: da:b1:1a:12:56:a8:cd:29:1c:ee:bd:ac:09:cf:55: 75:af:bf:cf:86:73:72:03:c5:cf:66:fb:b3:98:57: 0d:00:2f:4b:35:2f:a5:7d:7a:7f:a4:18:25:c7:a4: e4:52:8f:21:ca:ad:88:0d:0f:1e:2d:ea:a1:50:e5: b1:0e:9c:7f:b7:17:f8:2e:24:ba:28:04:f1:d3:03: f6:cc:80:13:d6:af:22:60:7b:39:62:06:4f:f6:d7: f7:fb:f0:c1:f5:60:18:3c:ed:b4:56:60:97:73:1e: 8c:9c:87:47:0a:80:a1:b6:cb:cb:4d:a4:88:1f:2f: 67:ee:a5:92:0e:bb:57:03:58:21:e5:bd:f9:90:5a: f8:cf:1e:cd:31:49:4f:9a:dd:a7:b7:a8:70:eb:63: fb:37:a7:68:88:b7:be:4e:34:1f:28:4e:a1:57:23: cc:ef:91:cc:e3:ad:1c:82:42:52:f0:f6:45:1c:62: df:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:17:E0:F8:BC:04:5E:9C:A0:87:AE:ED:7B:BF:9B:6F:8A:7C:02:5B X509v3 Authority Key Identifier: keyid:A9:6A:53:61:0D:8E:F6:64:A1:27:5B:71:AA:EA:BB:28:51:04:C2:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:18:c8:d8:15:85:ad:7b:ed:27:3b:c4:9f:14:27:2f:ed:bf: 5f:87:d4:b0:af:83:c8:80:42:2c:1c:f9:de:2c:46:77:d7:67: f4:c5:37:44:23:e6:3f:7a:11:e4:7f:69:30:2a:81:ff:51:01: 07:47:6d:3e:1b:d8:c1:b4:20:31:57:ac:bb:8e:18:cb:d2:d1: 2f:b4:38:53:d9:f6:49:78:90:23:f0:c6:99:a0:0c:d0:ff:3f: 0a:51:b6:3b:db:50:62:fb:31:71:a1:ba:cf:48:ef:a9:b5:ba: 88:e4:c4:a4:73:0c:aa:dc:ee:d4:86:b4:f8:a6:d9:d9:72:34: 5c:d6:c1:a1:8d:8f:b5:97:f8:4c:fb:90:2c:9c:5d:87:42:78: 73:8e:87:82:ba:db:26:7b:67:23:10:68:2d:44:8d:a6:5f:28: d7:0f:de:5b:94:87:84:3e:9e:1c:cd:cd:e0:f8:94:c6:37:8a: 84:4a:4e:50:db:03:6e:35:f3:03:50:82:6c:f3:2c:03:aa:8b: 4f:8f:8c:c7:7d:f4:2f:4c:d8:24:17:1a:68:77:84:92:b1:61: ce:2c:ce:0f:da:58:86:19:38:f4:25:11:cf:6f:3d:a3:71:4e: 5c:cd:3d:f8:f1:e7:83:9c:3f:62:c9:08:3b:34:a7:bc:96:37: 80:bf:0b:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdh0xV0vTsLBjWKBAx4DtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5NmE1MzYxMGQ4ZWY2NjRhMTI3NWI3MWFhZWFiYjI4NTEw NGMyNGYwHhcNMjUxMjI2MDcwMTExWhcNMjUxMjI3MDcwMTExWjAzMTEwLwYDVQQD EygwNDE3ZTBmOGJjMDQ1ZTljYTA4N2FlZWQ3YmJmOWI2ZjhhN2MwMjViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlvxHLeQ4xM2VGhCx/oKpfp2Z2heT tJXLr1q3XiK3UQa0J1TLW47UCMlCB43RhsgyQ9G8elql6UX1aTDRogIOcMpw9jMU NT2G8LLasRoSVqjNKRzuvawJz1V1r7/PhnNyA8XPZvuzmFcNAC9LNS+lfXp/pBgl x6TkUo8hyq2IDQ8eLeqhUOWxDpx/txf4LiS6KATx0wP2zIAT1q8iYHs5YgZP9tf3 +/DB9WAYPO20VmCXcx6MnIdHCoChtsvLTaSIHy9n7qWSDrtXA1gh5b35kFr4zx7N MUlPmt2nt6hw62P7N6doiLe+TjQfKE6hVyPM75HM460cgkJS8PZFHGLf/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAQX4Pi8BF6coIeu7Xu/m2+KfAJbMB8GA1UdIwQY MBaAFKlqU2ENjvZkoSdbcarquyhRBMJPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVdwVFlRMk85bVNoSjF0eHF1cTdLRkVFd2s4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi81YTAxN2MtYTNkYy00NGNmLWI4MGUt YTIxMTE3NWMwNWUwLzEvcVdwVFlRMk85bVNoSjF0eHF1cTdLRkVFd2s4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi81YTAxN2MtYTNkYy00NGNmLWI4MGUtYTIxMTE3NWMwNWUw LzEvcVdwVFlRMk85bVNoSjF0eHF1cTdLRkVFd2s4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgxjI2BWF rXvtJzvEnxQnL+2/X4fUsK+DyIBCLBz53ixGd9dn9MU3RCPmP3oR5H9pMCqB/1EB B0dtPhvYwbQgMVesu44Yy9LRL7Q4U9n2SXiQI/DGmaAM0P8/ClG2O9tQYvsxcaG6 z0jvqbW6iOTEpHMMqtzu1Ia0+KbZ2XI0XNbBoY2PtZf4TPuQLJxdh0J4c46Hgrrb JntnIxBoLUSNpl8o1w/eW5SHhD6eHM3N4PiUxjeKhEpOUNsDbjXzA1CCbPMsA6qL T4+Mx330L0zYJBcaaHeEkrFhzizOD9pYhhk49CURz289o3FOXM09+PHng5w/YskI OzSnvJY3gL8L4w== -----END CERTIFICATE-----Generated at Fri Dec 26 15:47:17 2025 by rpki-client