This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft File: 1QibzgjFXapXtPOjyQcPs5GFPM8.mft (raw, json) Hash identifier: sPxYPNAIG9mN0u+vWmuuBjeFQSHEPpO0ZvpzbvJoGKM= Subject key identifier: C0:4F:95:C2:1B:BA:30:59:3D:F2:74:4D:12:26:A0:C6:BC:16:1A:EA Authority key identifier: D5:08:9B:CE:08:C5:5D:AA:57:B4:F3:A3:C9:07:0F:B3:91:85:3C:CF Certificate issuer: /CN=d5089bce08c55daa57b4f3a3c9070fb391853ccf Certificate serial: 019AF051A62F6E36122053808CECB22D20FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft Manifest number: 0C35 Signing time: Fri 05 Dec 2025 21:01:13 +0000 Manifest this update: Fri 05 Dec 2025 21:01:13 +0000 Manifest next update: Sat 06 Dec 2025 21:01:13 +0000 Files and hashes: 1: 1QibzgjFXapXtPOjyQcPs5GFPM8.crl (hash: N1zrktGNLwOoTKMwXMLzYrrYd/BRHVYDVjaagD8WpwM=) 2: Vf8IRTOjd5EHRik_XU5SL231JR0.roa (hash: pdMIDPOwO8DUN6tctG8DJMO1R37Vl0PhbVyMv6IZEJE=) 3: x75CgHaNcNlIrskWea67UxRrM1c.roa (hash: xJt3cVolGlaYguNEQZsOwCLANVkSIZwIfqNsviXM16Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 17:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:51:a6:2f:6e:36:12:20:53:80:8c:ec:b2:2d:20:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d5089bce08c55daa57b4f3a3c9070fb391853ccf Validity Not Before: Dec 5 21:01:13 2025 GMT Not After : Dec 6 21:01:13 2025 GMT Subject: CN=c04f95c21bba30593df2744d1226a0c6bc161aea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:8e:0d:ec:3f:90:a8:ad:cc:70:75:2e:cb:0b: 12:98:59:01:e5:75:71:1d:42:a1:6e:a8:31:a3:f9: c7:b0:80:30:47:bc:4c:ed:cb:8f:e2:52:7a:b9:fb: 1c:35:31:a4:ff:1f:d2:e9:c2:c8:fe:0a:99:10:b8: d2:3c:48:a8:c9:72:28:23:4a:c3:be:c8:54:6f:9b: de:78:3a:28:40:22:c0:74:c4:d5:af:4c:bf:ee:81: ab:64:21:03:c7:a4:b3:dc:d1:89:08:ec:04:05:2e: 7f:b6:95:70:2d:ab:9f:4f:ef:5e:c3:b9:21:21:c8: 5a:b9:e8:c4:af:91:98:17:3c:02:33:ad:36:98:d5: b7:16:31:12:16:df:21:af:88:70:31:eb:45:8c:c0: de:02:14:07:1b:3e:ea:f1:ee:d9:8a:0c:48:2d:b5: af:cd:c9:e9:33:02:4d:0f:a6:11:70:f0:9a:56:0f: a5:f8:af:41:4e:43:46:53:cd:5b:08:ec:df:16:c8: ca:29:6b:72:65:21:f1:2b:12:c9:c3:55:0e:68:ed: 3d:f8:e2:2d:45:2c:a2:32:05:af:5d:58:04:d4:b8: 17:ab:ce:16:7a:22:21:f7:f0:f4:ad:66:e3:f6:12: f2:e2:7d:ba:44:07:69:07:5f:6a:ba:42:7a:60:01: 60:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:4F:95:C2:1B:BA:30:59:3D:F2:74:4D:12:26:A0:C6:BC:16:1A:EA X509v3 Authority Key Identifier: keyid:D5:08:9B:CE:08:C5:5D:AA:57:B4:F3:A3:C9:07:0F:B3:91:85:3C:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:ac:9f:2d:8a:16:aa:6a:a0:92:2e:71:86:75:ff:39:ae:44: 4f:ab:06:ca:98:34:ef:62:39:95:67:b8:fe:f6:f5:03:ef:06: b0:e0:63:aa:e2:71:78:63:2f:45:bb:89:93:fc:89:52:d9:54: d4:3d:2c:f1:b2:76:7a:57:a8:85:10:f3:c5:0c:d3:29:2b:2f: 5d:47:55:9a:f8:c5:7c:95:44:83:0b:e0:41:ed:ac:ca:7b:58: 36:79:57:5c:81:45:6f:7b:a6:b6:f0:83:a4:7b:96:de:d6:21: a9:ad:30:a7:05:e5:53:25:9f:3c:66:bb:c1:09:c5:25:2f:ee: 9f:ce:7c:19:f8:e5:f1:b5:e2:5e:c7:e8:bf:dc:24:7e:9e:6d: 72:17:b7:17:2b:98:06:20:ec:11:ad:82:58:26:8b:98:fb:c0: 71:b2:de:a9:f6:ca:50:f9:fe:a5:ed:81:f2:44:f1:33:ea:82: 4c:ce:60:30:99:fa:d4:a0:bf:49:0c:ff:0d:64:f6:1a:61:8e: 60:c0:23:b2:2a:dc:68:e6:0f:6d:cd:a8:f2:bc:fe:d6:b7:aa: 2a:ec:96:76:bb:ae:6d:31:bd:d8:e5:f9:5a:ff:2f:0c:a7:67: 12:85:d9:54:1a:f5:61:05:1f:30:7c:f1:05:04:d9:7e:8f:84: 9d:0b:3d:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwUaYvbjYSIFOAjOyyLSD6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1MDg5YmNlMDhjNTVkYWE1N2I0ZjNhM2M5MDcwZmIzOTE4 NTNjY2YwHhcNMjUxMjA1MjEwMTEzWhcNMjUxMjA2MjEwMTEzWjAzMTEwLwYDVQQD EyhjMDRmOTVjMjFiYmEzMDU5M2RmMjc0NGQxMjI2YTBjNmJjMTYxYWVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8o4N7D+QqK3McHUuywsSmFkB5XVx HUKhbqgxo/nHsIAwR7xM7cuP4lJ6ufscNTGk/x/S6cLI/gqZELjSPEioyXIoI0rD vshUb5veeDooQCLAdMTVr0y/7oGrZCEDx6Sz3NGJCOwEBS5/tpVwLaufT+9ew7kh IchauejEr5GYFzwCM602mNW3FjESFt8hr4hwMetFjMDeAhQHGz7q8e7ZigxILbWv zcnpMwJND6YRcPCaVg+l+K9BTkNGU81bCOzfFsjKKWtyZSHxKxLJw1UOaO09+OIt RSyiMgWvXVgE1LgXq84WeiIh9/D0rWbj9hLy4n26RAdpB19qukJ6YAFgZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMBPlcIbujBZPfJ0TRImoMa8FhrqMB8GA1UdIwQY MBaAFNUIm84IxV2qV7Tzo8kHD7ORhTzPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVFpYnpnakZYYXBYdFBPanlRY1BzNUdGUE04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy8wMmZkZTctZDMyNi00M2RlLTg1MjAt NmQ3MWZlMTNkNjFkLzEvMVFpYnpnakZYYXBYdFBPanlRY1BzNUdGUE04Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy8wMmZkZTctZDMyNi00M2RlLTg1MjAtNmQ3MWZlMTNkNjFk LzEvMVFpYnpnakZYYXBYdFBPanlRY1BzNUdGUE04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsayfLYoW qmqgki5xhnX/Oa5ET6sGypg072I5lWe4/vb1A+8GsOBjquJxeGMvRbuJk/yJUtlU 1D0s8bJ2eleohRDzxQzTKSsvXUdVmvjFfJVEgwvgQe2syntYNnlXXIFFb3umtvCD pHuW3tYhqa0wpwXlUyWfPGa7wQnFJS/un858Gfjl8bXiXsfov9wkfp5tche3FyuY BiDsEa2CWCaLmPvAcbLeqfbKUPn+pe2B8kTxM+qCTM5gMJn61KC/SQz/DWT2GmGO YMAjsircaOYPbc2o8rz+1reqKuyWdruubTG92OX5Wv8vDKdnEoXZVBr1YQUfMHzx BQTZfo+EnQs93A== -----END CERTIFICATE-----Generated at Fri Dec 5 23:04:52 2025 by rpki-client