This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft File: q2TJrlviZApf1pRYanBMo0wgh78.mft (raw, json) Hash identifier: GzAdQlyZOG1PmFT9P/PD7naIRciNJMsn5v3GGZU6R3E= Subject key identifier: 6D:0B:BB:3F:C0:C3:44:2E:F5:E3:92:1D:29:54:95:D6:5E:EA:DE:C0 Authority key identifier: AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF Certificate issuer: /CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf Certificate serial: 019B4438C29402377B2982A203C9DE5B1D18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft Manifest number: 178D Signing time: Mon 22 Dec 2025 04:02:08 +0000 Manifest this update: Mon 22 Dec 2025 04:02:08 +0000 Manifest next update: Tue 23 Dec 2025 04:02:08 +0000 Files and hashes: 1: JLsWf4ypDqy3C3Vznf4c_jhkWzQ.roa (hash: W+Y7OMJT6eANPHdTBze3RK40F6OnPRrXmssah9nRki0=) 2: q2TJrlviZApf1pRYanBMo0wgh78.crl (hash: K7GMNPdQ6HvdDTnZPD9/kFEY200wni2Fnti4cuJnNb8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.crl rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 04:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:38:c2:94:02:37:7b:29:82:a2:03:c9:de:5b:1d:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf Validity Not Before: Dec 22 04:02:08 2025 GMT Not After : Dec 23 04:02:08 2025 GMT Subject: CN=6d0bbb3fc0c3442ef5e3921d295495d65eeadec0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:52:7e:94:61:0b:98:b1:c9:81:d4:50:ad:d3: ee:e1:6c:f0:e4:26:c8:b6:6b:d0:80:85:1f:f3:12: 32:27:b3:bd:25:1e:4e:be:48:be:45:3a:fd:03:15: 32:01:3f:59:a6:4b:16:27:67:e1:8a:72:55:d4:6d: ac:e1:12:84:61:cb:42:49:44:2d:15:c9:57:7e:b6: 16:1c:d6:b3:b9:81:6b:c2:9a:99:4c:95:a1:11:a8: ce:18:30:fb:41:7e:13:02:cc:14:e5:d1:30:41:0f: f9:56:72:9d:29:ca:6a:60:93:8e:5d:33:ea:c4:f1: 31:66:81:1a:25:8c:eb:1b:02:48:da:92:1e:7e:30: 67:63:d1:9d:94:3d:eb:ab:e2:aa:77:0a:37:2f:2a: 26:88:93:6e:80:5a:46:64:b9:9d:4c:f6:2a:3f:ba: 96:79:05:34:01:2f:84:fe:4f:1a:5b:e8:52:0a:c5: d6:81:bb:74:a4:21:45:bd:56:8a:9a:83:00:ad:76: 76:cf:cc:45:5c:6e:ea:01:d0:05:20:94:d9:4e:8d: ab:bf:7e:24:47:52:16:0b:14:f0:e3:ed:7c:25:b9: 9f:01:6a:2c:1b:cb:86:fe:41:cb:70:9b:53:df:37: 37:6c:db:00:a9:33:bc:c4:0a:8b:68:60:71:0e:fa: 53:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:0B:BB:3F:C0:C3:44:2E:F5:E3:92:1D:29:54:95:D6:5E:EA:DE:C0 X509v3 Authority Key Identifier: keyid:AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:e0:79:57:60:16:8f:d5:67:7d:9f:d3:a6:b4:a7:12:fc:fd: 93:dc:2e:c1:94:47:03:8a:4c:4a:de:8e:7f:1e:24:69:6e:cd: a4:e4:9e:90:3f:1c:32:9e:c8:9a:01:d5:15:86:2e:f7:b9:98: a3:8a:41:f2:a3:15:b5:a1:55:7e:1d:3d:6d:a3:3e:79:83:7c: 46:5e:04:2e:b3:6d:1c:7e:c6:d8:9a:cf:7a:84:de:e4:76:f1: e9:6f:e4:5a:ea:11:b2:ad:c9:08:d0:e8:b0:7b:70:4d:4d:ed: 52:e6:15:b6:01:bc:75:c1:81:5a:e2:74:a5:14:99:71:fd:9c: 08:16:de:5f:ba:c2:80:79:34:26:01:4e:30:a0:6e:1f:09:11: e1:5a:5d:b6:c5:f8:8e:5b:47:e4:c4:4f:d0:6d:95:7e:f1:49: 10:81:2f:b0:aa:9f:40:5d:58:57:6d:7b:3b:45:33:06:06:01: f4:63:43:7a:24:57:4b:07:5f:d0:21:d4:2d:fb:0a:8e:07:b0: 78:4f:69:3f:90:24:1a:b8:94:18:d6:94:b3:62:14:10:6f:a4: e7:4f:82:c3:ae:63:85:f3:4d:b1:bb:0e:87:0d:dc:69:5f:88: ec:eb:05:37:32:74:f6:6a:ae:32:d2:5a:ef:d8:0c:be:c0:65: 03:51:e0:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEOMKUAjd7KYKiA8neWx0YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiNjRjOWFlNWJlMjY0MGE1ZmQ2OTQ1ODZhNzA0Y2EzNGMy MDg3YmYwHhcNMjUxMjIyMDQwMjA4WhcNMjUxMjIzMDQwMjA4WjAzMTEwLwYDVQQD Eyg2ZDBiYmIzZmMwYzM0NDJlZjVlMzkyMWQyOTU0OTVkNjVlZWFkZWMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAllJ+lGELmLHJgdRQrdPu4Wzw5CbI tmvQgIUf8xIyJ7O9JR5Ovki+RTr9AxUyAT9ZpksWJ2fhinJV1G2s4RKEYctCSUQt FclXfrYWHNazuYFrwpqZTJWhEajOGDD7QX4TAswU5dEwQQ/5VnKdKcpqYJOOXTPq xPExZoEaJYzrGwJI2pIefjBnY9GdlD3rq+Kqdwo3LyomiJNugFpGZLmdTPYqP7qW eQU0AS+E/k8aW+hSCsXWgbt0pCFFvVaKmoMArXZ2z8xFXG7qAdAFIJTZTo2rv34k R1IWCxTw4+18JbmfAWosG8uG/kHLcJtT3zc3bNsAqTO8xAqLaGBxDvpTDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG0Luz/Aw0Qu9eOSHSlUldZe6t7AMB8GA1UdIwQY MBaAFKtkya5b4mQKX9aUWGpwTKNMIIe/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTJUSnJsdmlaQXBmMXBSWWFuQk1vMHdnaDc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9jNTVjYmMtZTQzZC00MGNiLTg0NGYt MzFjNTEzN2VjMzhhLzEvcTJUSnJsdmlaQXBmMXBSWWFuQk1vMHdnaDc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC9jNTVjYmMtZTQzZC00MGNiLTg0NGYtMzFjNTEzN2VjMzhh LzEvcTJUSnJsdmlaQXBmMXBSWWFuQk1vMHdnaDc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPuB5V2AW j9VnfZ/TprSnEvz9k9wuwZRHA4pMSt6Ofx4kaW7NpOSekD8cMp7ImgHVFYYu97mY o4pB8qMVtaFVfh09baM+eYN8Rl4ELrNtHH7G2JrPeoTe5Hbx6W/kWuoRsq3JCNDo sHtwTU3tUuYVtgG8dcGBWuJ0pRSZcf2cCBbeX7rCgHk0JgFOMKBuHwkR4VpdtsX4 jltH5MRP0G2VfvFJEIEvsKqfQF1YV217O0UzBgYB9GNDeiRXSwdf0CHULfsKjgew eE9pP5AkGriUGNaUs2IUEG+k50+Cw65jhfNNsbsOhw3caV+I7OsFNzJ09mquMtJa 79gMvsBlA1Hgfg== -----END CERTIFICATE-----Generated at Mon Dec 22 13:59:13 2025 by rpki-client