This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/926b57-cc12-48fc-b996-92a4be85c11d/1/SQtgyL0tnQHwq1ocTApT4dczn2U.mft File: SQtgyL0tnQHwq1ocTApT4dczn2U.mft (raw, json) Hash identifier: 43b5c5K99oy8eh+mXVlZHxHEVUl76WlS4YXiyFiESJQ= Subject key identifier: 00:5C:3C:BE:81:6B:55:76:9B:83:7F:DE:70:93:22:21:39:A1:FA:C9 Authority key identifier: 49:0B:60:C8:BD:2D:9D:01:F0:AB:5A:1C:4C:0A:53:E1:D7:33:9F:65 Certificate issuer: /CN=490b60c8bd2d9d01f0ab5a1c4c0a53e1d7339f65 Certificate serial: 019B21757FCBC47F1CA4CA48A06BD273497E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQtgyL0tnQHwq1ocTApT4dczn2U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/926b57-cc12-48fc-b996-92a4be85c11d/1/SQtgyL0tnQHwq1ocTApT4dczn2U.mft Manifest number: 1361 Signing time: Mon 15 Dec 2025 10:01:47 +0000 Manifest this update: Mon 15 Dec 2025 10:01:47 +0000 Manifest next update: Tue 16 Dec 2025 10:01:47 +0000 Files and hashes: 1: SQtgyL0tnQHwq1ocTApT4dczn2U.crl (hash: 69Tmm7ReYSFJyBfQxcQauTyqEVkhMasuIrM7rHfGWDQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/926b57-cc12-48fc-b996-92a4be85c11d/1/SQtgyL0tnQHwq1ocTApT4dczn2U.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/926b57-cc12-48fc-b996-92a4be85c11d/1/SQtgyL0tnQHwq1ocTApT4dczn2U.mft rsync://rpki.ripe.net/repository/DEFAULT/SQtgyL0tnQHwq1ocTApT4dczn2U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 10:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:75:7f:cb:c4:7f:1c:a4:ca:48:a0:6b:d2:73:49:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=490b60c8bd2d9d01f0ab5a1c4c0a53e1d7339f65 Validity Not Before: Dec 15 10:01:47 2025 GMT Not After : Dec 16 10:01:47 2025 GMT Subject: CN=005c3cbe816b55769b837fde7093222139a1fac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:1a:19:e4:10:20:b2:96:52:4c:17:3f:b3:d0: 53:cc:ff:f4:4b:b1:58:99:a7:66:be:46:de:95:10: 77:72:aa:26:91:c8:06:df:92:51:90:82:35:2a:4b: fe:d0:8b:7b:a1:6d:b4:a1:18:66:6e:d8:8c:0a:09: 78:cf:a0:b5:1e:54:03:89:87:d5:78:c8:ae:ae:c3: e7:3e:f6:05:54:e1:fc:85:e1:ab:c9:47:03:02:76: a1:62:27:e2:1d:49:4c:00:17:ea:70:d4:80:87:99: 2d:af:b9:12:b7:57:c2:7f:bd:3c:9e:4d:41:37:0e: 47:09:28:b1:27:90:23:f9:9c:bf:27:ad:c9:45:14: aa:43:54:e2:50:ff:5e:50:f0:aa:8c:58:62:79:81: 5a:21:84:8a:63:38:a2:82:62:a3:85:4c:b1:7f:6e: 08:fc:31:a2:95:50:d3:48:56:46:e9:fb:b9:5c:c3: 1a:7f:51:9f:58:d1:d2:bf:ae:4c:9e:de:10:cd:c8: 85:6c:73:92:9e:5a:a6:53:2d:4c:df:a5:c0:68:86: 5a:a3:4c:49:b1:e9:64:f5:ab:30:ae:6e:a3:dd:57: ae:0f:43:c8:b9:13:12:37:16:e6:30:c7:eb:fb:89: 44:53:9b:70:94:9a:7a:c3:fd:90:6b:fb:29:41:c1: ee:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:5C:3C:BE:81:6B:55:76:9B:83:7F:DE:70:93:22:21:39:A1:FA:C9 X509v3 Authority Key Identifier: keyid:49:0B:60:C8:BD:2D:9D:01:F0:AB:5A:1C:4C:0A:53:E1:D7:33:9F:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQtgyL0tnQHwq1ocTApT4dczn2U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/926b57-cc12-48fc-b996-92a4be85c11d/1/SQtgyL0tnQHwq1ocTApT4dczn2U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/926b57-cc12-48fc-b996-92a4be85c11d/1/SQtgyL0tnQHwq1ocTApT4dczn2U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:6a:51:01:98:10:51:41:71:0b:c2:ec:cb:0f:db:e7:36:a7: a8:32:e0:b2:ae:fb:63:3f:6c:cb:65:a8:af:70:33:71:fc:4a: ea:4a:74:ff:8d:a1:0b:b5:91:6a:73:90:9c:bd:1a:a3:05:8f: 06:bb:4a:7e:79:a3:63:60:f3:6b:39:30:5d:ae:0f:42:16:bc: 32:12:4b:62:c0:8b:60:06:a6:b8:9e:29:2f:35:48:a3:42:e4: 1b:f3:4a:99:51:fa:1e:ef:3b:8b:12:6e:52:dd:47:64:8f:54: d0:a7:8e:be:9e:ff:b6:6f:42:88:1d:d9:89:bd:9b:ed:0f:f7: 84:84:78:aa:13:b9:dd:97:2a:09:bc:f1:40:c5:14:bb:c4:b4: 27:9b:e5:c8:e3:1c:67:9a:ac:4b:6c:24:9d:08:51:f8:d0:d6: 68:df:ec:f5:91:b1:d4:93:c4:99:61:8f:9d:fc:c5:52:8b:51: cf:ed:29:37:39:f8:07:fc:d0:34:ac:35:e1:f5:10:16:1e:b7: 55:58:e4:39:f6:9a:67:97:f9:e4:25:c8:16:db:93:b7:37:97: 1f:82:74:c2:14:ad:3f:86:0d:ba:a3:e2:68:98:4a:7b:c4:b1: cd:40:03:7e:d9:ac:60:4d:31:96:68:55:69:5d:c3:0a:e5:8f: cf:c2:f3:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZshdX/LxH8cpMpIoGvSc0l+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5MGI2MGM4YmQyZDlkMDFmMGFiNWExYzRjMGE1M2UxZDcz MzlmNjUwHhcNMjUxMjE1MTAwMTQ3WhcNMjUxMjE2MTAwMTQ3WjAzMTEwLwYDVQQD EygwMDVjM2NiZTgxNmI1NTc2OWI4MzdmZGU3MDkzMjIyMTM5YTFmYWM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6hoZ5BAgspZSTBc/s9BTzP/0S7FY madmvkbelRB3cqomkcgG35JRkII1Kkv+0It7oW20oRhmbtiMCgl4z6C1HlQDiYfV eMiursPnPvYFVOH8heGryUcDAnahYifiHUlMABfqcNSAh5ktr7kSt1fCf708nk1B Nw5HCSixJ5Aj+Zy/J63JRRSqQ1TiUP9eUPCqjFhieYFaIYSKYziigmKjhUyxf24I /DGilVDTSFZG6fu5XMMaf1GfWNHSv65Mnt4QzciFbHOSnlqmUy1M36XAaIZao0xJ selk9aswrm6j3VeuD0PIuRMSNxbmMMfr+4lEU5twlJp6w/2Qa/spQcHuawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFABcPL6Ba1V2m4N/3nCTIiE5ofrJMB8GA1UdIwQY MBaAFEkLYMi9LZ0B8KtaHEwKU+HXM59lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1F0Z3lMMHRuUUh3cTFvY1RBcFQ0ZGN6bjJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy85MjZiNTctY2MxMi00OGZjLWI5OTYt OTJhNGJlODVjMTFkLzEvU1F0Z3lMMHRuUUh3cTFvY1RBcFQ0ZGN6bjJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy85MjZiNTctY2MxMi00OGZjLWI5OTYtOTJhNGJlODVjMTFk LzEvU1F0Z3lMMHRuUUh3cTFvY1RBcFQ0ZGN6bjJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgGpRAZgQ UUFxC8Lsyw/b5zanqDLgsq77Yz9sy2Wor3AzcfxK6kp0/42hC7WRanOQnL0aowWP BrtKfnmjY2DzazkwXa4PQha8MhJLYsCLYAamuJ4pLzVIo0LkG/NKmVH6Hu87ixJu Ut1HZI9U0KeOvp7/tm9CiB3Zib2b7Q/3hIR4qhO53ZcqCbzxQMUUu8S0J5vlyOMc Z5qsS2wknQhR+NDWaN/s9ZGx1JPEmWGPnfzFUotRz+0pNzn4B/zQNKw14fUQFh63 VVjkOfaaZ5f55CXIFtuTtzeXH4J0whStP4YNuqPiaJhKe8SxzUADftmsYE0xlmhV aV3DCuWPz8LzpQ== -----END CERTIFICATE-----Generated at Mon Dec 15 16:54:57 2025 by rpki-client