This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/51e7f6-f4fb-4ea0-8ddf-be5a0ffb8ca5/1/QqjNSXm8XdMbENe3GFDvEurDz7U.mft File: QqjNSXm8XdMbENe3GFDvEurDz7U.mft (raw, json) Hash identifier: gfQX4/0FXW1tpovOL9o/Ji9AwCSMxnfYdlGa6j7AJPk= Subject key identifier: 48:3A:33:71:5D:8C:B7:1F:05:8F:2F:66:B7:BD:4B:8A:0D:8C:2A:23 Authority key identifier: 42:A8:CD:49:79:BC:5D:D3:1B:10:D7:B7:18:50:EF:12:EA:C3:CF:B5 Certificate issuer: /CN=42a8cd4979bc5dd31b10d7b71850ef12eac3cfb5 Certificate serial: 019B2A09B5A1937896F4A327E820E7AB43E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QqjNSXm8XdMbENe3GFDvEurDz7U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/51e7f6-f4fb-4ea0-8ddf-be5a0ffb8ca5/1/QqjNSXm8XdMbENe3GFDvEurDz7U.mft Manifest number: 0509 Signing time: Wed 17 Dec 2025 02:00:37 +0000 Manifest this update: Wed 17 Dec 2025 02:00:37 +0000 Manifest next update: Thu 18 Dec 2025 02:00:37 +0000 Files and hashes: 1: QqjNSXm8XdMbENe3GFDvEurDz7U.crl (hash: 6r/uUX2nUeVSHZT7RwbFEmUL2r1tSdg0+ZBBUgmWh44=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/51e7f6-f4fb-4ea0-8ddf-be5a0ffb8ca5/1/QqjNSXm8XdMbENe3GFDvEurDz7U.crl rsync://rpki.ripe.net/repository/DEFAULT/21/51e7f6-f4fb-4ea0-8ddf-be5a0ffb8ca5/1/QqjNSXm8XdMbENe3GFDvEurDz7U.mft rsync://rpki.ripe.net/repository/DEFAULT/QqjNSXm8XdMbENe3GFDvEurDz7U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2a:09:b5:a1:93:78:96:f4:a3:27:e8:20:e7:ab:43:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42a8cd4979bc5dd31b10d7b71850ef12eac3cfb5 Validity Not Before: Dec 17 02:00:37 2025 GMT Not After : Dec 18 02:00:37 2025 GMT Subject: CN=483a33715d8cb71f058f2f66b7bd4b8a0d8c2a23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ad:e2:55:4d:2f:ab:05:f0:c7:2b:77:db:b1: c9:f8:fc:6a:44:92:1f:8c:4c:df:1d:f9:3b:06:82: 6b:68:54:87:70:8e:5a:13:54:00:16:12:da:2b:9a: a0:40:fe:23:89:1c:6f:dc:bd:7f:8b:9f:19:f6:a4: 4e:95:8d:4d:89:7c:21:f2:aa:fa:22:e5:f8:7e:5d: c9:d2:15:9f:6c:80:46:f7:0b:66:8a:b4:8a:40:c6: 8d:01:ef:d2:6c:d2:54:46:c1:af:62:d5:0c:2b:46: 87:34:16:4e:57:ca:4a:a4:30:10:a8:42:73:e8:e8: 5e:85:5e:2c:a5:11:1c:d2:96:dd:86:e9:8f:a1:fa: cc:71:b6:23:49:dd:92:a0:3a:ed:a4:ef:44:1c:ba: a9:9c:27:5c:f2:c1:20:fc:8f:2c:ad:37:76:72:89: 0a:ee:94:3c:47:8d:f5:0d:18:49:47:fd:cf:c5:31: de:39:b5:a7:34:0a:c0:1c:25:1b:e9:cf:7e:92:36: dd:0f:aa:65:fe:da:70:9e:aa:85:94:8f:be:fe:3a: c8:2c:ce:e0:23:13:0e:65:21:3c:5a:c6:c2:c7:ee: 4f:7a:6f:29:50:af:09:d1:2a:f6:08:79:7c:8b:6e: fa:cf:20:5e:47:10:c5:65:ef:ef:f1:5f:2c:a0:93: 44:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:3A:33:71:5D:8C:B7:1F:05:8F:2F:66:B7:BD:4B:8A:0D:8C:2A:23 X509v3 Authority Key Identifier: keyid:42:A8:CD:49:79:BC:5D:D3:1B:10:D7:B7:18:50:EF:12:EA:C3:CF:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QqjNSXm8XdMbENe3GFDvEurDz7U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/51e7f6-f4fb-4ea0-8ddf-be5a0ffb8ca5/1/QqjNSXm8XdMbENe3GFDvEurDz7U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/51e7f6-f4fb-4ea0-8ddf-be5a0ffb8ca5/1/QqjNSXm8XdMbENe3GFDvEurDz7U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:cd:13:f1:c5:1f:ec:82:3c:89:b3:6f:d5:d1:76:12:c0:41: 64:15:48:82:64:d1:42:44:67:f0:bd:d5:d9:51:5a:a9:30:84: 5d:b1:ea:73:bf:70:27:a7:dd:e2:15:22:88:fe:83:13:4f:02: 1a:a0:c1:59:9a:61:b6:b8:25:0e:0c:2c:6d:8d:bf:5d:93:31: dc:37:4e:48:00:72:d2:8a:30:80:14:ca:d9:57:6a:4e:be:c5: 04:01:27:a9:a8:e6:e7:5a:ce:b9:6b:bd:1f:5d:32:dc:bb:f9: 77:ea:89:d4:a2:47:83:e0:6b:07:d8:be:7e:2b:ca:36:38:e0: 8c:4f:b2:e0:64:cc:85:fc:be:05:c0:ec:ba:11:1d:6a:41:9c: d4:38:4a:df:97:ef:40:f5:17:f1:09:db:01:b5:19:48:d9:c8: c6:a6:ef:c5:9a:e7:e2:86:94:e2:6c:91:36:be:9f:0b:09:ba: 6e:e2:25:f4:b0:0d:cb:3c:86:a8:a0:2e:64:8e:22:30:25:aa: 7d:29:17:a4:a6:c9:b8:25:b4:52:27:bb:27:a9:ca:0b:31:af: 70:a1:fa:9e:98:55:12:07:37:30:5c:85:24:1c:1f:ca:44:53: 06:65:01:ab:cc:50:e1:99:e0:9c:ef:46:14:66:db:ba:71:db: 25:39:3c:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsqCbWhk3iW9KMn6CDnq0PkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyYThjZDQ5NzliYzVkZDMxYjEwZDdiNzE4NTBlZjEyZWFj M2NmYjUwHhcNMjUxMjE3MDIwMDM3WhcNMjUxMjE4MDIwMDM3WjAzMTEwLwYDVQQD Eyg0ODNhMzM3MTVkOGNiNzFmMDU4ZjJmNjZiN2JkNGI4YTBkOGMyYTIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt63iVU0vqwXwxyt327HJ+PxqRJIf jEzfHfk7BoJraFSHcI5aE1QAFhLaK5qgQP4jiRxv3L1/i58Z9qROlY1NiXwh8qr6 IuX4fl3J0hWfbIBG9wtmirSKQMaNAe/SbNJURsGvYtUMK0aHNBZOV8pKpDAQqEJz 6OhehV4spREc0pbdhumPofrMcbYjSd2SoDrtpO9EHLqpnCdc8sEg/I8srTd2cokK 7pQ8R431DRhJR/3PxTHeObWnNArAHCUb6c9+kjbdD6pl/tpwnqqFlI++/jrILM7g IxMOZSE8WsbCx+5Pem8pUK8J0Sr2CHl8i276zyBeRxDFZe/v8V8soJNE1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEg6M3FdjLcfBY8vZre9S4oNjCojMB8GA1UdIwQY MBaAFEKozUl5vF3TGxDXtxhQ7xLqw8+1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXFqTlNYbThYZE1iRU5lM0dGRHZFdXJEejdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS81MWU3ZjYtZjRmYi00ZWEwLThkZGYt YmU1YTBmZmI4Y2E1LzEvUXFqTlNYbThYZE1iRU5lM0dGRHZFdXJEejdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS81MWU3ZjYtZjRmYi00ZWEwLThkZGYtYmU1YTBmZmI4Y2E1 LzEvUXFqTlNYbThYZE1iRU5lM0dGRHZFdXJEejdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhc0T8cUf 7II8ibNv1dF2EsBBZBVIgmTRQkRn8L3V2VFaqTCEXbHqc79wJ6fd4hUiiP6DE08C GqDBWZphtrglDgwsbY2/XZMx3DdOSABy0oowgBTK2VdqTr7FBAEnqajm51rOuWu9 H10y3Lv5d+qJ1KJHg+BrB9i+fivKNjjgjE+y4GTMhfy+BcDsuhEdakGc1DhK35fv QPUX8QnbAbUZSNnIxqbvxZrn4oaU4myRNr6fCwm6buIl9LANyzyGqKAuZI4iMCWq fSkXpKbJuCW0Uie7J6nKCzGvcKH6nphVEgc3MFyFJBwfykRTBmUBq8xQ4ZngnO9G FGbbunHbJTk86g== -----END CERTIFICATE-----Generated at Wed Dec 17 09:43:57 2025 by rpki-client