This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft File: 1-qWsXSKtkHinLhNplihyR-nx4TE.mft (raw, json) Hash identifier: qiLaw5KolyITf4x1mvqc55HM7zdqUUVFR3d9fth7U3M= Subject key identifier: DC:25:42:28:3D:11:A9:5E:9D:F8:42:B0:E9:CC:57:BE:2D:F8:C2:20 Authority key identifier: FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31 Certificate issuer: /CN=faa5ac5d22ad9078a72e136996287247e9f1e131 Certificate serial: 019B2106D4C979A908F102A173A79DBC936C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft Manifest number: 12A7 Signing time: Mon 15 Dec 2025 08:00:54 +0000 Manifest this update: Mon 15 Dec 2025 08:00:54 +0000 Manifest next update: Tue 16 Dec 2025 08:00:54 +0000 Files and hashes: 1: 1-qWsXSKtkHinLhNplihyR-nx4TE.crl (hash: htrD4iwIhbBehAUUqMlqy4TdB1ZK0/JOx6VoNwMmFxk=) 2: NhnMYjAslLVa-AUlcKz__rn95zo.roa (hash: tZEX0EAU3kMvQjAQCJnIAbh87GSUNy8524Ozv2q7nvE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:06:d4:c9:79:a9:08:f1:02:a1:73:a7:9d:bc:93:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=faa5ac5d22ad9078a72e136996287247e9f1e131 Validity Not Before: Dec 15 08:00:54 2025 GMT Not After : Dec 16 08:00:54 2025 GMT Subject: CN=dc2542283d11a95e9df842b0e9cc57be2df8c220 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:44:9d:ee:3e:4e:c3:a1:da:a1:22:37:38:8c: 51:2b:a1:41:0e:94:86:f3:a6:79:0c:f0:ab:0b:50: 5b:2b:e5:e4:f1:f9:f7:f2:b4:71:41:d5:a7:61:4e: 4d:a1:dd:9f:eb:40:eb:1c:ef:9f:05:d8:13:38:be: d5:52:a0:9a:8f:b8:64:96:99:93:43:a0:bf:46:55: 1f:9b:d4:bb:c7:1b:0d:98:ad:26:0c:f2:99:84:90: 33:68:3b:53:11:fd:48:72:5d:d3:9f:58:36:0b:ff: 9e:c3:50:fe:b6:8c:be:4e:9d:e8:e2:00:50:9c:6b: e7:46:91:ae:86:ff:0f:8c:75:79:76:b6:8e:37:c2: 44:11:03:cf:73:bd:82:c4:fd:cc:d9:ba:70:7d:25: f7:8e:9b:db:ea:16:d7:ef:00:1b:98:d6:a1:3d:64: 26:ba:e2:8e:36:56:45:68:39:1b:44:00:38:35:e0: c6:14:9f:a6:9c:4d:5a:e1:13:3e:12:20:55:6e:e0: d2:fc:15:fd:ea:e4:02:7a:dd:7e:79:44:b9:76:54: ba:3c:aa:59:fc:e3:32:bd:78:a8:7f:27:04:71:c3: f3:37:1f:7f:3d:14:7b:2c:22:90:65:8d:db:3d:b5: b6:15:7f:66:47:71:cb:50:3e:2f:b6:e4:09:68:52: 00:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:25:42:28:3D:11:A9:5E:9D:F8:42:B0:E9:CC:57:BE:2D:F8:C2:20 X509v3 Authority Key Identifier: keyid:FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:fb:43:69:78:3b:68:6d:be:c4:43:5a:7c:d2:fd:08:c0:17: b7:e1:01:c2:45:bb:fa:e0:cd:81:4c:d1:26:5f:b7:a6:0a:4d: 91:45:3a:c2:09:1e:96:a8:74:62:83:ce:5f:9b:1f:8e:14:dc: 76:0a:5c:c3:e4:da:e9:e3:f3:52:6c:d5:a0:87:45:96:f5:54: b4:a0:1d:e8:42:b5:63:15:b2:a4:40:17:92:7d:32:a5:06:38: a0:08:ad:51:b6:1b:27:41:a2:5e:4f:dd:33:10:82:57:ea:de: e3:0b:fd:7b:43:28:28:09:dc:f0:c6:09:6b:c6:c6:c2:d3:3f: 72:ee:4a:31:d1:ba:c7:7a:9e:e2:80:2a:90:ff:50:99:bc:f6: c2:32:c3:9f:b0:84:a0:b8:d7:ed:98:99:c7:ee:ec:69:da:6d: b6:fe:b6:75:b7:44:9f:b6:f4:94:e3:b3:2f:1b:81:5f:d5:4d: 34:65:b0:10:12:00:da:35:92:66:04:f3:47:fe:52:ca:8b:6f: d6:4c:cf:f8:45:e5:9d:b2:7e:47:4a:78:e6:47:26:66:bb:79: 81:bc:e0:ac:53:2a:90:c3:36:88:4a:1f:f2:59:8d:78:bc:b1: fb:24:11:f0:ac:8c:45:a5:a7:a3:14:3c:7f:8e:b2:87:48:e7: 93:eb:59:9c -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZshBtTJeakI8QKhc6edvJNsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhYTVhYzVkMjJhZDkwNzhhNzJlMTM2OTk2Mjg3MjQ3ZTlm MWUxMzEwHhcNMjUxMjE1MDgwMDU0WhcNMjUxMjE2MDgwMDU0WjAzMTEwLwYDVQQD EyhkYzI1NDIyODNkMTFhOTVlOWRmODQyYjBlOWNjNTdiZTJkZjhjMjIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsESd7j5Ow6HaoSI3OIxRK6FBDpSG 86Z5DPCrC1BbK+Xk8fn38rRxQdWnYU5Nod2f60DrHO+fBdgTOL7VUqCaj7hklpmT Q6C/RlUfm9S7xxsNmK0mDPKZhJAzaDtTEf1Icl3Tn1g2C/+ew1D+toy+Tp3o4gBQ nGvnRpGuhv8PjHV5draON8JEEQPPc72CxP3M2bpwfSX3jpvb6hbX7wAbmNahPWQm uuKONlZFaDkbRAA4NeDGFJ+mnE1a4RM+EiBVbuDS/BX96uQCet1+eUS5dlS6PKpZ /OMyvXiofycEccPzNx9/PRR7LCKQZY3bPbW2FX9mR3HLUD4vtuQJaFIAHQIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFNwlQig9EalenfhCsOnMV74t+MIgMB8GA1UdIwQY MBaAFPqlrF0irZB4py4TaZYockfp8eExMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1xV3NYU0t0a0hpbkxoTnBsaWh5Ui1ueDRURS5jZXIw gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjkvYjU1YzA0LTZkNGEtNDk0OS1hYWE4 LTZlZTFhNzAwYjIxOS8xLzEtcVdzWFNLdGtIaW5MaE5wbGloeVItbng0VEUubWZ0 MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np dG9yeS9ERUZBVUxUL2Y5L2I1NWMwNC02ZDRhLTQ5NDktYWFhOC02ZWUxYTcwMGIy MTkvMS8xLXFXc1hTS3RrSGluTGhOcGxpaHlSLW54NFRFLmNybDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbPtD aXg7aG2+xENafNL9CMAXt+EBwkW7+uDNgUzRJl+3pgpNkUU6wgkelqh0YoPOX5sf jhTcdgpcw+Ta6ePzUmzVoIdFlvVUtKAd6EK1YxWypEAXkn0ypQY4oAitUbYbJ0Gi Xk/dMxCCV+re4wv9e0MoKAnc8MYJa8bGwtM/cu5KMdG6x3qe4oAqkP9Qmbz2wjLD n7CEoLjX7ZiZx+7sadpttv62dbdEn7b0lOOzLxuBX9VNNGWwEBIA2jWSZgTzR/5S yotv1kzP+EXlnbJ+R0p45kcmZrt5gbzgrFMqkMM2iEof8lmNeLyx+yQR8KyMRaWn oxQ8f46yh0jnk+tZnA== -----END CERTIFICATE-----Generated at Mon Dec 15 12:08:26 2025 by rpki-client