This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft File: qoXGfyIwng2EwwtUJSlyUyhgUVE.mft (raw, json) Hash identifier: VI0eOpluueerqpnWdOO6aH20hECMkqktOtWGyPClZqw= Subject key identifier: 44:A9:4A:BB:91:C5:9E:81:7F:F5:FB:56:57:79:9F:E7:29:38:5A:63 Authority key identifier: AA:85:C6:7F:22:30:9E:0D:84:C3:0B:54:25:29:72:53:28:60:51:51 Certificate issuer: /CN=aa85c67f22309e0d84c30b542529725328605151 Certificate serial: 019B4A035A58CF1D406A29DA6787A014DED1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft Manifest number: 0E10 Signing time: Tue 23 Dec 2025 07:01:32 +0000 Manifest this update: Tue 23 Dec 2025 07:01:32 +0000 Manifest next update: Wed 24 Dec 2025 07:01:32 +0000 Files and hashes: 1: U6h0E3CpWcLE4IcpdPD5N0_flWE.roa (hash: /MeOIU5IzJfeECJ9wAs+zMCbOflzuiKPgRuM31+tyrU=) 2: qoXGfyIwng2EwwtUJSlyUyhgUVE.crl (hash: kDVxphMHh8KwHaYj1v5YfHIj7VlMSxQVG1MXtzL3X4g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.crl rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 07:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:03:5a:58:cf:1d:40:6a:29:da:67:87:a0:14:de:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa85c67f22309e0d84c30b542529725328605151 Validity Not Before: Dec 23 07:01:32 2025 GMT Not After : Dec 24 07:01:32 2025 GMT Subject: CN=44a94abb91c59e817ff5fb5657799fe729385a63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:67:b5:e1:51:e7:bb:0e:30:37:8e:6a:7c:43: b1:71:eb:86:be:90:ad:a7:a7:49:c1:74:09:1d:17: ed:7a:52:63:4b:91:6c:03:9c:de:52:09:db:50:31: 24:e7:6f:3c:53:5a:2a:4a:2d:d0:20:d8:b6:e4:e7: f7:26:55:75:7a:d4:88:5a:ef:57:7f:30:20:34:d3: e9:df:44:d3:1b:45:db:1d:79:bf:76:a7:a3:be:04: 1a:47:d7:d2:04:54:46:ea:52:03:13:32:bd:4f:f5: f0:a0:4d:27:83:52:54:30:ec:bb:01:c7:9e:67:2e: f0:68:8c:11:07:7b:f0:6d:69:46:27:cd:75:35:71: ed:6a:1f:e4:36:ee:55:3d:9f:9a:bd:c3:cc:c5:23: 9a:9d:af:8b:31:51:e1:f3:94:ee:e1:d0:24:f4:bb: 21:24:c1:ab:f3:54:22:0b:8a:aa:ac:0e:c5:b3:ab: c6:ee:dc:bd:e0:5e:ae:a7:a1:5a:11:2f:84:07:9a: 6b:3a:6f:ca:3f:4d:ee:fa:48:16:17:31:5c:e1:8a: 5b:e8:a1:88:1a:cb:e7:72:fd:5d:ec:b1:ec:10:53: a3:c1:4e:12:c0:11:30:c5:b9:13:90:3f:8f:5a:96: c6:52:7e:cd:a6:b7:56:d8:da:1b:6c:b5:8a:7d:f5: 5e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:A9:4A:BB:91:C5:9E:81:7F:F5:FB:56:57:79:9F:E7:29:38:5A:63 X509v3 Authority Key Identifier: keyid:AA:85:C6:7F:22:30:9E:0D:84:C3:0B:54:25:29:72:53:28:60:51:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:cd:e2:b5:06:2d:a2:f8:a6:d9:26:9a:57:fb:e5:e6:f4:a3: e9:98:cd:46:80:da:b7:1a:c4:4d:d7:6c:42:d9:d7:08:fe:6c: 09:29:fa:28:fc:7a:75:41:59:b0:df:38:2a:03:b1:4d:89:b5: e0:f8:9a:48:36:02:32:f0:8c:98:7b:c3:59:4b:0b:11:ab:15: 7c:bb:06:08:b0:fb:af:43:d5:f0:d9:7f:5b:bb:7d:75:82:04: 58:8a:18:1a:78:d3:9b:a9:fd:35:89:92:c7:ef:32:07:4a:f2: 6b:95:ee:be:42:56:ca:e1:e4:61:4e:94:70:f0:c9:ef:48:16: d6:34:f7:0e:24:4e:c2:e7:6b:cf:cb:7f:21:be:9d:fc:04:0e: 8f:79:0e:e4:72:90:35:70:15:e6:62:75:04:92:5c:84:1e:c5: cb:68:ab:d7:a8:f1:b8:53:48:bf:5e:3d:08:e3:9b:c1:b5:61: 4f:be:ad:b9:ff:3c:e3:50:6b:dd:68:d0:08:3c:40:25:b3:9b: 01:96:5b:7a:cb:65:bb:56:24:90:a7:3f:60:19:03:d2:8a:b7: 03:1c:fe:ec:97:e7:95:81:e9:60:55:e3:72:62:95:38:b9:52: 86:3d:40:b7:77:fb:3a:42:a4:b5:d5:28:a9:e1:3f:a3:ba:7f: fe:19:6f:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtKA1pYzx1AainaZ4egFN7RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhODVjNjdmMjIzMDllMGQ4NGMzMGI1NDI1Mjk3MjUzMjg2 MDUxNTEwHhcNMjUxMjIzMDcwMTMyWhcNMjUxMjI0MDcwMTMyWjAzMTEwLwYDVQQD Eyg0NGE5NGFiYjkxYzU5ZTgxN2ZmNWZiNTY1Nzc5OWZlNzI5Mzg1YTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Ge14VHnuw4wN45qfEOxceuGvpCt p6dJwXQJHRftelJjS5FsA5zeUgnbUDEk5288U1oqSi3QINi25Of3JlV1etSIWu9X fzAgNNPp30TTG0XbHXm/dqejvgQaR9fSBFRG6lIDEzK9T/XwoE0ng1JUMOy7Acee Zy7waIwRB3vwbWlGJ811NXHtah/kNu5VPZ+avcPMxSOana+LMVHh85Tu4dAk9Lsh JMGr81QiC4qqrA7Fs6vG7ty94F6up6FaES+EB5prOm/KP03u+kgWFzFc4Ypb6KGI Gsvncv1d7LHsEFOjwU4SwBEwxbkTkD+PWpbGUn7NprdW2NobbLWKffVerwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFESpSruRxZ6Bf/X7Vld5n+cpOFpjMB8GA1UdIwQY MBaAFKqFxn8iMJ4NhMMLVCUpclMoYFFRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcW9YR2Z5SXduZzJFd3d0VUpTbHlVeWhnVVZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9lNzkyMDItYWNhYi00YjFhLTk5MmIt MmEyZWQ0NWUyNzEyLzEvcW9YR2Z5SXduZzJFd3d0VUpTbHlVeWhnVVZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9lNzkyMDItYWNhYi00YjFhLTk5MmItMmEyZWQ0NWUyNzEy LzEvcW9YR2Z5SXduZzJFd3d0VUpTbHlVeWhnVVZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhM3itQYt ovim2SaaV/vl5vSj6ZjNRoDatxrETddsQtnXCP5sCSn6KPx6dUFZsN84KgOxTYm1 4PiaSDYCMvCMmHvDWUsLEasVfLsGCLD7r0PV8Nl/W7t9dYIEWIoYGnjTm6n9NYmS x+8yB0rya5XuvkJWyuHkYU6UcPDJ70gW1jT3DiROwudrz8t/Ib6d/AQOj3kO5HKQ NXAV5mJ1BJJchB7Fy2ir16jxuFNIv149COObwbVhT76tuf8841Br3WjQCDxAJbOb AZZbestlu1YkkKc/YBkD0oq3Axz+7JfnlYHpYFXjcmKVOLlShj1At3f7OkKktdUo qeE/o7p//hlvAw== -----END CERTIFICATE-----Generated at Tue Dec 23 14:31:40 2025 by rpki-client