This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft File: qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft (raw, json) Hash identifier: WZKcjwm3bl4FotEPgOtaW0TSZpYG/R5T+ilrBTosCdc= Subject key identifier: ED:7E:D5:A2:69:B3:77:9F:32:07:1B:62:9F:6C:A8:90:6F:86:A8:6B Authority key identifier: A8:22:07:FD:50:C4:5E:96:F2:82:5E:C7:72:CF:6B:8D:EA:3D:FC:B0 Certificate issuer: /CN=a82207fd50c45e96f2825ec772cf6b8dea3dfcb0 Certificate serial: 019B12A6C3424BD2CE8D5A6669E1E5D13066 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qCIH_VDEXpbygl7Hcs9rjeo9_LA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft Manifest number: 06AE Signing time: Fri 12 Dec 2025 13:01:17 +0000 Manifest this update: Fri 12 Dec 2025 13:01:17 +0000 Manifest next update: Sat 13 Dec 2025 13:01:17 +0000 Files and hashes: 1: gHCDIdhOuUpwW3kY6kopG285_k0.roa (hash: 5xiT0kgNZs49N5lk+a3OABaCYPVOiGuQ90iKWrfQblE=) 2: qCIH_VDEXpbygl7Hcs9rjeo9_LA.crl (hash: dtFPZf9MpDePSCOPuICNMdSKuqhkjiDcHzfAN1iykw8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft rsync://rpki.ripe.net/repository/DEFAULT/qCIH_VDEXpbygl7Hcs9rjeo9_LA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:a6:c3:42:4b:d2:ce:8d:5a:66:69:e1:e5:d1:30:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a82207fd50c45e96f2825ec772cf6b8dea3dfcb0 Validity Not Before: Dec 12 13:01:17 2025 GMT Not After : Dec 13 13:01:17 2025 GMT Subject: CN=ed7ed5a269b3779f32071b629f6ca8906f86a86b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e1:70:fd:cf:cf:4d:86:f7:f9:d4:21:dc:61: 61:cb:99:72:dd:fb:be:45:18:ff:10:bb:52:88:7c: 24:5a:b8:d9:d9:9e:72:69:f2:b2:4e:e2:9a:2d:d0: f6:50:41:c2:73:3f:52:dd:29:f9:17:4c:01:aa:7e: 18:56:83:37:0d:86:8b:65:7b:a1:2a:86:e5:04:cb: 66:b2:0b:74:90:5c:33:68:ba:d5:ea:c4:98:e1:04: 50:2a:9d:3a:27:6f:ea:c5:94:44:f4:04:08:c9:64: 43:ee:c4:16:06:f1:e5:f0:e4:22:3e:1d:b2:34:5e: e1:11:d6:3b:b1:79:e0:a9:fe:43:9b:61:b8:7b:a9: 51:47:76:03:59:7f:be:15:f0:d8:58:6a:45:2c:10: 80:fb:ed:1d:fd:ce:66:d0:43:df:96:75:c9:6c:ed: 55:f1:f0:db:6e:d9:37:3d:23:ca:0e:3a:40:bd:57: 11:f7:17:ca:34:37:9b:93:db:c6:66:29:54:37:6c: 85:07:7a:68:87:34:4b:fc:b1:d9:f2:96:38:d5:24: 15:c2:4d:f4:49:25:42:e0:74:2f:04:ef:4b:bb:1e: 3c:a7:db:6a:82:32:3b:d1:b8:8b:46:19:b3:81:38: 3f:ab:be:80:b5:7d:86:87:c9:39:4b:d4:b0:6f:4c: 69:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:7E:D5:A2:69:B3:77:9F:32:07:1B:62:9F:6C:A8:90:6F:86:A8:6B X509v3 Authority Key Identifier: keyid:A8:22:07:FD:50:C4:5E:96:F2:82:5E:C7:72:CF:6B:8D:EA:3D:FC:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qCIH_VDEXpbygl7Hcs9rjeo9_LA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aa8e43-6df0-47ef-adc5-30bdd2fe05b1/1/qCIH_VDEXpbygl7Hcs9rjeo9_LA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:04:1a:21:8e:75:d7:c4:29:7e:5b:51:44:6e:07:0a:91:53: 9a:23:c4:3a:05:96:28:9f:58:37:74:9d:79:45:7f:6e:61:7e: 54:38:1d:0d:c8:3a:c7:d9:8c:dc:fb:fa:11:b5:d1:16:05:23: d1:3d:64:6f:93:9e:e8:ce:bc:22:06:88:51:2a:80:2e:01:74: 42:66:3c:ae:ae:a3:45:53:0e:2d:e8:6c:96:e3:ee:dd:74:cc: 1b:86:72:c1:29:61:f7:d6:82:a7:1f:b9:27:d1:bc:25:f5:53: 11:c7:04:27:43:22:57:e0:a8:9e:d6:a0:ce:28:06:99:d4:51: 55:8f:c4:c5:53:25:81:04:b3:ea:8e:43:b7:00:08:8e:ca:d6: df:fc:ea:6e:f9:60:1f:69:38:87:15:d0:b2:9e:6c:fc:7d:f8: 59:02:a4:92:fb:a4:a0:af:9e:e6:41:69:b8:7c:7b:01:bb:ec: 8d:b2:36:d2:4a:2e:8a:07:0e:89:c6:49:99:ce:a4:0a:d0:29: 56:11:9e:20:a4:98:f4:65:9c:48:6a:f5:24:35:e3:91:a2:5e: 95:be:de:35:fc:70:d9:b5:27:08:24:fe:5a:10:2b:a3:f5:a1: 2b:bd:3f:81:6f:f7:b5:63:7d:7b:01:40:f8:45:40:87:24:79: 6d:40:02:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsSpsNCS9LOjVpmaeHl0TBmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4MjIwN2ZkNTBjNDVlOTZmMjgyNWVjNzcyY2Y2YjhkZWEz ZGZjYjAwHhcNMjUxMjEyMTMwMTE3WhcNMjUxMjEzMTMwMTE3WjAzMTEwLwYDVQQD EyhlZDdlZDVhMjY5YjM3NzlmMzIwNzFiNjI5ZjZjYTg5MDZmODZhODZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+Fw/c/PTYb3+dQh3GFhy5ly3fu+ RRj/ELtSiHwkWrjZ2Z5yafKyTuKaLdD2UEHCcz9S3Sn5F0wBqn4YVoM3DYaLZXuh KoblBMtmsgt0kFwzaLrV6sSY4QRQKp06J2/qxZRE9AQIyWRD7sQWBvHl8OQiPh2y NF7hEdY7sXngqf5Dm2G4e6lRR3YDWX++FfDYWGpFLBCA++0d/c5m0EPflnXJbO1V 8fDbbtk3PSPKDjpAvVcR9xfKNDebk9vGZilUN2yFB3pohzRL/LHZ8pY41SQVwk30 SSVC4HQvBO9Lux48p9tqgjI70biLRhmzgTg/q76AtX2Gh8k5S9Swb0xp/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO1+1aJps3efMgcbYp9sqJBvhqhrMB8GA1UdIwQY MBaAFKgiB/1QxF6W8oJex3LPa43qPfywMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUNJSF9WREVYcGJ5Z2w3SGNzOXJqZW85X0xBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9hYThlNDMtNmRmMC00N2VmLWFkYzUt MzBiZGQyZmUwNWIxLzEvcUNJSF9WREVYcGJ5Z2w3SGNzOXJqZW85X0xBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy9hYThlNDMtNmRmMC00N2VmLWFkYzUtMzBiZGQyZmUwNWIx LzEvcUNJSF9WREVYcGJ5Z2w3SGNzOXJqZW85X0xBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASwQaIY51 18QpfltRRG4HCpFTmiPEOgWWKJ9YN3SdeUV/bmF+VDgdDcg6x9mM3Pv6EbXRFgUj 0T1kb5Oe6M68IgaIUSqALgF0QmY8rq6jRVMOLehsluPu3XTMG4ZywSlh99aCpx+5 J9G8JfVTEccEJ0MiV+ContagzigGmdRRVY/ExVMlgQSz6o5DtwAIjsrW3/zqbvlg H2k4hxXQsp5s/H34WQKkkvukoK+e5kFpuHx7AbvsjbI20kouigcOicZJmc6kCtAp VhGeIKSY9GWcSGr1JDXjkaJelb7eNfxw2bUnCCT+WhAro/WhK70/gW/3tWN9ewFA +EVAhyR5bUACNg== -----END CERTIFICATE-----Generated at Fri Dec 12 17:10:12 2025 by rpki-client