This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft File: Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft (raw, json) Hash identifier: 4KN4frzfq2EcGFtPcvfmEz5JvN1pVdNMGgZQtfkbEJ0= Subject key identifier: D2:BD:6D:91:F9:4B:0D:95:79:6B:F5:7C:31:A8:3F:F4:EC:DD:18:0F Authority key identifier: 43:67:54:7D:85:1E:3C:D7:76:CD:33:29:0B:24:54:AC:C0:E8:51:BB Certificate issuer: /CN=4367547d851e3cd776cd33290b2454acc0e851bb Certificate serial: 019B4438688665C7F87A32CA0CBCB6A29270 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2dUfYUePNd2zTMpCyRUrMDoUbs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft Manifest number: 0414 Signing time: Mon 22 Dec 2025 04:01:46 +0000 Manifest this update: Mon 22 Dec 2025 04:01:46 +0000 Manifest next update: Tue 23 Dec 2025 04:01:46 +0000 Files and hashes: 1: Q2dUfYUePNd2zTMpCyRUrMDoUbs.crl (hash: HVVDT2K5c6PtdA/vU1I3GcMUyJpjx9IcjEtEGS2xLZ4=) 2: upaHuTNxbV8mQ-zLRwrgVtkGsmY.roa (hash: sKbR8/VdnyYU5WVgCkow2npUXtpJF6ZJXDD7UHW/B2o=) 3: xvG96kRnwdG7PR_lGfPJHrdMaV4.roa (hash: pffhMvPKQ6cwuLRh2l4tkaNr9f/bxq1LdIavJf6VGcE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.crl rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft rsync://rpki.ripe.net/repository/DEFAULT/Q2dUfYUePNd2zTMpCyRUrMDoUbs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 04:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:38:68:86:65:c7:f8:7a:32:ca:0c:bc:b6:a2:92:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4367547d851e3cd776cd33290b2454acc0e851bb Validity Not Before: Dec 22 04:01:46 2025 GMT Not After : Dec 23 04:01:46 2025 GMT Subject: CN=d2bd6d91f94b0d95796bf57c31a83ff4ecdd180f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:5d:15:d5:58:14:09:14:d7:11:59:e5:be:77: 2c:f3:42:95:1c:c1:c0:ae:d0:47:0a:5b:40:b3:4e: 9d:c2:da:a1:f1:22:47:31:72:3e:43:18:9d:2c:34: 2f:ee:57:1a:ea:0c:36:21:3f:86:c9:a3:e4:ae:26: de:be:d6:37:3d:63:83:e2:5a:ce:75:37:8b:70:0d: b2:7e:18:d7:96:04:77:fd:a4:9c:96:9b:90:d8:55: ed:69:8f:ff:2c:a3:c9:08:74:d3:b3:04:eb:d9:c5: 77:96:9e:5e:54:6f:4e:e9:88:a0:09:99:b0:4a:cf: dd:5d:ab:3c:b2:b4:23:f1:b8:cc:80:b1:26:82:d7: 4b:15:9e:28:56:b3:58:6f:e6:2d:23:cb:6d:cd:5e: 01:c5:b2:1a:70:a7:d4:a8:58:41:cb:de:93:c6:d2: d3:8f:5c:cb:b5:ca:e0:ca:00:5c:5a:61:1e:5a:1b: 28:00:1f:c9:d8:06:a6:1f:91:5e:24:87:e5:6b:52: 6c:6d:de:84:ec:cc:6c:86:c8:fe:dc:b3:fd:db:61: 27:7a:79:72:2e:3c:7d:34:48:f4:9e:ef:c7:0f:3a: ee:6d:3e:5c:12:19:09:cb:6b:0f:a8:66:2f:c9:ea: 9e:c7:91:76:bd:5f:b1:ec:df:a4:7e:bc:32:af:c9: 66:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:BD:6D:91:F9:4B:0D:95:79:6B:F5:7C:31:A8:3F:F4:EC:DD:18:0F X509v3 Authority Key Identifier: keyid:43:67:54:7D:85:1E:3C:D7:76:CD:33:29:0B:24:54:AC:C0:E8:51:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2dUfYUePNd2zTMpCyRUrMDoUbs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:d4:2a:88:00:73:c5:64:22:11:79:9b:a8:78:99:51:44:fb: 43:ca:c8:03:3a:da:dc:7f:0c:3d:30:e0:84:ac:9d:b8:9d:42: 13:81:4c:ee:68:1e:f0:fa:25:c9:b4:14:96:b2:cd:4f:78:87: 61:72:d5:0f:47:ed:3e:21:2e:2b:27:52:e9:a7:47:ca:84:1f: 0f:9f:b2:b4:37:6b:12:07:55:cc:db:d2:13:0d:e4:7a:37:b6: 1b:68:2d:fd:d8:ec:3b:22:44:98:ee:01:9f:f5:b3:3c:c7:48: 50:6e:b5:fa:7b:92:88:cd:9a:f7:5d:03:e6:f1:fb:17:85:71: 33:37:3d:d4:a4:07:9e:65:5b:6e:a6:d2:58:30:8f:1f:3a:a5: d2:de:33:9f:eb:37:3a:90:c7:dd:4b:fc:48:9f:2a:b7:f1:5d: 23:7e:c8:2f:0e:54:b2:ce:ff:5e:70:3b:3a:83:7f:15:04:86: 24:ab:6d:cb:bc:48:f2:9c:b3:af:8c:36:ce:00:ce:bf:bc:28: 72:67:29:f3:8e:a1:66:09:ee:cf:8d:95:c0:89:3c:8b:4a:d3: fc:36:51:a3:7f:a1:07:e3:55:7f:a3:71:db:a8:04:5c:68:43: 53:34:8c:a9:e8:b0:b8:29:b2:02:24:30:e7:45:bb:c3:bc:00: e0:cf:e6:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEOGiGZcf4ejLKDLy2opJwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNjc1NDdkODUxZTNjZDc3NmNkMzMyOTBiMjQ1NGFjYzBl ODUxYmIwHhcNMjUxMjIyMDQwMTQ2WhcNMjUxMjIzMDQwMTQ2WjAzMTEwLwYDVQQD EyhkMmJkNmQ5MWY5NGIwZDk1Nzk2YmY1N2MzMWE4M2ZmNGVjZGQxODBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoF0V1VgUCRTXEVnlvncs80KVHMHA rtBHCltAs06dwtqh8SJHMXI+QxidLDQv7lca6gw2IT+GyaPkribevtY3PWOD4lrO dTeLcA2yfhjXlgR3/aSclpuQ2FXtaY//LKPJCHTTswTr2cV3lp5eVG9O6YigCZmw Ss/dXas8srQj8bjMgLEmgtdLFZ4oVrNYb+YtI8ttzV4BxbIacKfUqFhBy96TxtLT j1zLtcrgygBcWmEeWhsoAB/J2AamH5FeJIfla1Jsbd6E7Mxshsj+3LP922Enenly Ljx9NEj0nu/HDzrubT5cEhkJy2sPqGYvyeqex5F2vV+x7N+kfrwyr8lmGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNK9bZH5Sw2VeWv1fDGoP/Ts3RgPMB8GA1UdIwQY MBaAFENnVH2FHjzXds0zKQskVKzA6FG7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTJkVWZZVWVQTmQyelRNcEN5UlVyTURvVWJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi84NzRjODUtOWU3ZC00YWNlLTk1OGYt ZGFiN2YwYzhkMjQwLzEvUTJkVWZZVWVQTmQyelRNcEN5UlVyTURvVWJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi84NzRjODUtOWU3ZC00YWNlLTk1OGYtZGFiN2YwYzhkMjQw LzEvUTJkVWZZVWVQTmQyelRNcEN5UlVyTURvVWJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAedQqiABz xWQiEXmbqHiZUUT7Q8rIAzra3H8MPTDghKyduJ1CE4FM7mge8PolybQUlrLNT3iH YXLVD0ftPiEuKydS6adHyoQfD5+ytDdrEgdVzNvSEw3keje2G2gt/djsOyJEmO4B n/WzPMdIUG61+nuSiM2a910D5vH7F4VxMzc91KQHnmVbbqbSWDCPHzql0t4zn+s3 OpDH3Uv8SJ8qt/FdI37ILw5Uss7/XnA7OoN/FQSGJKtty7xI8pyzr4w2zgDOv7wo cmcp846hZgnuz42VwIk8i0rT/DZRo3+hB+NVf6Nx26gEXGhDUzSMqeiwuCmyAiQw 50W7w7wA4M/mkA== -----END CERTIFICATE-----Generated at Mon Dec 22 14:18:39 2025 by rpki-client