This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft File: Q8FllZZq-wus8deTfyRdagUiIaM.mft (raw, json) Hash identifier: dOpYLIfbqtaZQm0e4fL8Aq3BfKHyNkIjIRbWsVC8am4= Subject key identifier: F4:C9:8C:7A:1D:50:97:7D:AE:A7:63:2D:EB:73:68:8C:55:29:BE:E8 Authority key identifier: 43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3 Certificate issuer: /CN=43c16595966afb0bacf1d7937f245d6a052221a3 Certificate serial: 019B0B24392F6E0FE75265520F350CEFB391 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft Manifest number: 1771 Signing time: Thu 11 Dec 2025 02:01:21 +0000 Manifest this update: Thu 11 Dec 2025 02:01:21 +0000 Manifest next update: Fri 12 Dec 2025 02:01:21 +0000 Files and hashes: 1: 52v68hN6UT4PPJjjqq1uuE_KUSs.roa (hash: /ZapQrg7UEXSt0NcWwZ+kj+0zgSiaiRBd7g+qhPDHBg=) 2: 8S9ibO6esCTeLY2sD14WhmMZOvI.roa (hash: bmTNDF41Sq+c7Se/EWf8YA8iGIHNg20TI2zfC/lGrO0=) 3: Q8FllZZq-wus8deTfyRdagUiIaM.crl (hash: g+vG2kidKZ5H7zRvECtZt+cjyWwtxZg8eMHWsEV+nOY=) 4: WvCj9VbsFj7fqJOx6tk2wit_WpE.roa (hash: /cLe2CDT0v+6sDR4E14KbBpNPCZZWPI/9CgtItdZn+0=) 5: a5Civ4TQY8vU2rue9PuRjdGc5Mc.roa (hash: QP4yk7Jx/AL7wrs9Y5ybfTghTEkjk/U3Nsn5OFbBsqk=) 6: gqvKWohVcj0Z7jlOtSMQwdCwp3g.roa (hash: hvyUYeos7vf6+TZ2NgvLPFstgzyNO3xqXZO7/gB/Dow=) 7: i6WUIDE1FurqyNNZ1EYEHsIVqvc.roa (hash: n8PwD1+DrWnTVld/M9MqGCrSY8HTEouEds18pHnIKJc=) 8: wcgpIPyLYXjF-mxVtLsqKcIhJUw.roa (hash: fPxLKa63iRiB09wOZmOOW+AEuYUUjId9x8Px9btJcDE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 23:21:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0b:24:39:2f:6e:0f:e7:52:65:52:0f:35:0c:ef:b3:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43c16595966afb0bacf1d7937f245d6a052221a3 Validity Not Before: Dec 11 02:01:21 2025 GMT Not After : Dec 12 02:01:21 2025 GMT Subject: CN=f4c98c7a1d50977daea7632deb73688c5529bee8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:4e:40:82:bf:56:56:e1:36:35:2a:6f:25:81: 08:c8:70:43:7b:50:52:16:5e:b6:ba:e6:d3:7f:62: c3:fb:1a:f0:58:bb:9e:5e:51:82:40:2d:1d:07:a0: 59:28:d5:4e:97:21:fd:6f:f1:c0:2a:e9:fd:77:58: 88:9b:9f:3b:dc:be:29:ba:1d:ac:2d:46:4c:41:60: 00:54:62:fa:bf:04:3f:7f:3e:ef:aa:f4:36:02:2e: 07:87:6b:fc:3a:09:80:17:c3:16:91:47:8c:95:b9: 83:e1:66:8c:83:e9:61:6c:45:1a:c2:99:7c:60:c1: 92:29:fc:3e:c2:89:e8:6f:c9:ed:6a:8c:a3:cc:cf: 60:b1:38:71:bf:e3:85:a0:75:e4:48:bc:26:20:2f: f0:71:af:ed:ec:c8:a4:d7:71:ab:e9:a6:fe:52:cc: 41:40:6e:0f:40:b5:60:c1:8a:ae:73:db:a1:fe:7d: 44:dd:f5:84:c3:34:7b:ef:d1:f0:0b:4d:c8:5b:fa: 0e:39:ee:a5:b5:cb:64:b1:9a:c5:fe:ff:53:af:6f: fd:6b:50:88:4a:43:6d:53:c5:3e:a6:37:19:7f:e7: 61:89:56:b9:56:82:9c:26:7a:75:b0:61:b6:f3:65: 15:6d:59:cf:e3:5f:ed:42:7d:89:0b:93:4f:a7:26: 16:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C9:8C:7A:1D:50:97:7D:AE:A7:63:2D:EB:73:68:8C:55:29:BE:E8 X509v3 Authority Key Identifier: keyid:43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:04:60:f3:22:dc:87:2d:68:bf:ce:fd:ca:14:c9:14:4e:70: b5:c7:9e:71:df:f0:f5:9a:a2:a3:6c:69:73:0e:8d:a7:ce:ad: a2:e7:41:af:39:62:0c:19:6c:11:74:e5:ba:0e:32:33:93:65: 37:22:0e:6f:c0:21:6e:d1:fc:e1:47:24:c4:bc:4d:0d:db:f1: 8c:3a:f5:46:97:ad:ef:ef:60:21:0a:27:42:81:af:81:b2:53: f3:19:2d:99:10:86:ac:38:05:01:f3:ed:20:08:f4:f9:b9:a0: e4:30:b8:18:d7:f5:89:94:60:1e:86:2e:2b:07:38:fb:bf:db: 99:32:7e:7c:0c:aa:7f:56:f8:eb:e9:87:d8:b7:48:35:f6:6b: dc:4c:d1:2e:e5:76:68:ec:af:f1:4d:62:b6:5c:4e:48:c1:45: c2:58:a1:96:f6:54:55:d5:79:e8:71:65:c7:b7:ab:7c:f2:38: 80:2b:23:ff:29:16:27:17:c1:86:94:55:94:0a:60:8d:18:25: 91:e7:39:c9:6f:e4:a8:d1:0c:e9:1f:ca:7b:1c:6e:ff:76:b0: 97:eb:77:65:dd:34:ed:38:93:cd:84:6a:46:e6:75:ff:39:36: 62:5b:ed:64:22:e9:b3:b5:42:cd:4b:82:da:ef:d1:da:c7:64: cc:26:d0:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsLJDkvbg/nUmVSDzUM77ORMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzYzE2NTk1OTY2YWZiMGJhY2YxZDc5MzdmMjQ1ZDZhMDUy MjIxYTMwHhcNMjUxMjExMDIwMTIxWhcNMjUxMjEyMDIwMTIxWjAzMTEwLwYDVQQD EyhmNGM5OGM3YTFkNTA5NzdkYWVhNzYzMmRlYjczNjg4YzU1MjliZWU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5U5Agr9WVuE2NSpvJYEIyHBDe1BS Fl62uubTf2LD+xrwWLueXlGCQC0dB6BZKNVOlyH9b/HAKun9d1iIm5873L4puh2s LUZMQWAAVGL6vwQ/fz7vqvQ2Ai4Hh2v8OgmAF8MWkUeMlbmD4WaMg+lhbEUawpl8 YMGSKfw+wonob8ntaoyjzM9gsThxv+OFoHXkSLwmIC/wca/t7Mik13Gr6ab+UsxB QG4PQLVgwYquc9uh/n1E3fWEwzR779HwC03IW/oOOe6ltctksZrF/v9Tr2/9a1CI SkNtU8U+pjcZf+dhiVa5VoKcJnp1sGG282UVbVnP41/tQn2JC5NPpyYWXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPTJjHodUJd9rqdjLetzaIxVKb7oMB8GA1UdIwQY MBaAFEPBZZWWavsLrPHXk38kXWoFIiGjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9kOTI5MTktOTYyYi00NDhkLTk4ZGIt NTk5MGVhNThlMDMwLzEvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS9kOTI5MTktOTYyYi00NDhkLTk4ZGItNTk5MGVhNThlMDMw LzEvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQARg8yLc hy1ov879yhTJFE5wtceecd/w9Zqio2xpcw6Np86toudBrzliDBlsEXTlug4yM5Nl NyIOb8AhbtH84UckxLxNDdvxjDr1Rpet7+9gIQonQoGvgbJT8xktmRCGrDgFAfPt IAj0+bmg5DC4GNf1iZRgHoYuKwc4+7/bmTJ+fAyqf1b46+mH2LdINfZr3EzRLuV2 aOyv8U1itlxOSMFFwlihlvZUVdV56HFlx7erfPI4gCsj/ykWJxfBhpRVlApgjRgl kec5yW/kqNEM6R/Kexxu/3awl+t3Zd007TiTzYRqRuZ1/zk2YlvtZCLps7VCzUuC 2u/R2sdkzCbQzg== -----END CERTIFICATE-----Generated at Thu Dec 11 07:44:38 2025 by rpki-client