This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft File: qHxnPzWntwWmtCTTORT6OS07li4.mft (raw, json) Hash identifier: JPGnQqWokTbKScRMPVPiLTM+xWQtx9qbDsQlSQMkYJw= Subject key identifier: 11:B8:E9:99:46:D3:01:9C:78:B6:16:C0:35:65:0D:B2:DA:56:0A:94 Authority key identifier: A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E Certificate issuer: /CN=a87c673f35a7b705a6b424d33914fa392d3b962e Certificate serial: 019B2B53BC28260C66560A9A7DA796E64437 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft Manifest number: 09FA Signing time: Wed 17 Dec 2025 08:01:06 +0000 Manifest this update: Wed 17 Dec 2025 08:01:06 +0000 Manifest next update: Thu 18 Dec 2025 08:01:06 +0000 Files and hashes: 1: Eax-YG047Te5n0m45RUjhbrR1oI.roa (hash: iDlk1T+vVuMTMOmIBdx2Kl0rk1EldiQCxibfcQYd5i0=) 2: qHxnPzWntwWmtCTTORT6OS07li4.crl (hash: 4Y39bqJRbI75IXX7cNryklEwu1SotpbtLnEHi4w/+FM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.crl rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 08:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:53:bc:28:26:0c:66:56:0a:9a:7d:a7:96:e6:44:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a87c673f35a7b705a6b424d33914fa392d3b962e Validity Not Before: Dec 17 08:01:06 2025 GMT Not After : Dec 18 08:01:06 2025 GMT Subject: CN=11b8e99946d3019c78b616c035650db2da560a94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ca:21:da:a3:3d:79:89:bf:8b:6b:f9:b1:d2: 58:ec:16:e0:97:4d:52:48:ee:8e:50:be:e5:35:8c: c3:9b:b9:18:1b:73:ab:c2:a4:d8:c6:89:7b:5b:f4: d1:68:72:ec:49:1f:6c:42:22:20:c4:78:dc:12:c5: a5:11:2f:2f:29:6f:71:6d:40:4d:18:57:a8:48:40: 5e:af:91:9b:d4:da:a4:a9:8b:00:ed:25:bd:96:6d: b0:0e:67:b2:9a:b7:e3:7c:f3:17:f7:18:5c:39:d1: 7b:5d:96:e0:03:c3:6e:ee:18:2a:e9:53:6b:fc:b5: 97:ec:88:db:74:67:ec:d1:e2:2c:fc:49:ef:ba:f2: 0d:2c:96:7b:e1:e3:eb:57:96:d1:70:c6:96:cf:90: 5b:72:e3:64:90:9f:12:4d:eb:2a:96:ab:5e:8e:56: 63:25:a5:bc:5b:d5:d2:a6:bb:bd:e2:4d:fd:df:8c: a4:f2:f7:51:a6:11:fd:66:a2:9e:55:3c:01:0e:ba: 63:5b:fe:00:66:e5:7b:4c:7b:1d:dc:52:b3:3f:c1: 37:90:56:ba:23:cd:e5:28:67:88:7f:0e:0f:f7:6e: 22:89:df:db:ab:f0:6f:59:87:dd:71:c3:d7:6c:f4: fc:2b:0c:47:b1:28:1d:8b:15:91:c5:3e:e2:b1:ba: 8b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B8:E9:99:46:D3:01:9C:78:B6:16:C0:35:65:0D:B2:DA:56:0A:94 X509v3 Authority Key Identifier: keyid:A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:ab:de:44:13:fb:83:19:f4:2d:bd:2e:46:db:78:89:b6:9c: a4:e2:9c:76:d2:78:e2:d5:8e:94:bd:6e:43:b7:43:c1:11:8f: 51:cb:1a:5e:df:e6:3f:6e:b1:2d:85:db:8e:f8:5d:c2:fc:04: 42:59:d9:d0:a5:61:ec:f6:ac:85:8a:17:2f:eb:b5:cb:d7:f6: e4:e8:6e:62:e2:d1:a9:10:ba:a3:d6:63:89:1f:e4:a8:14:7e: 65:72:92:52:30:c9:2e:d5:4a:87:09:ae:c3:f3:e1:34:c3:4c: 5f:32:d4:9a:a1:1b:80:da:eb:fa:2f:d6:5d:0f:b9:7d:5e:5f: 2e:5e:ef:6a:91:d3:2b:08:59:b0:38:97:c9:47:0c:4b:65:eb: c8:29:27:08:46:06:a4:b0:be:25:27:f9:c6:c3:d3:f3:b5:68: 28:c5:92:5b:ea:19:ef:27:3b:be:2f:b7:4e:98:03:45:df:2c: 73:ef:b8:33:20:0f:6c:c9:8c:35:04:fd:8d:a7:02:d3:6a:d9: 97:49:f6:3c:f0:2a:d8:eb:e8:03:fd:d5:bf:c2:36:ff:3c:71: 9b:ed:55:f1:b9:75:87:02:ea:5d:42:c9:61:e1:11:1a:88:cc: 28:1d:2b:37:ba:27:2c:b9:e8:ad:0d:20:a0:69:75:41:f8:f9: 4c:fa:f2:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrU7woJgxmVgqafaeW5kQ3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4N2M2NzNmMzVhN2I3MDVhNmI0MjRkMzM5MTRmYTM5MmQz Yjk2MmUwHhcNMjUxMjE3MDgwMTA2WhcNMjUxMjE4MDgwMTA2WjAzMTEwLwYDVQQD EygxMWI4ZTk5OTQ2ZDMwMTljNzhiNjE2YzAzNTY1MGRiMmRhNTYwYTk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcoh2qM9eYm/i2v5sdJY7Bbgl01S SO6OUL7lNYzDm7kYG3OrwqTYxol7W/TRaHLsSR9sQiIgxHjcEsWlES8vKW9xbUBN GFeoSEBer5Gb1NqkqYsA7SW9lm2wDmeymrfjfPMX9xhcOdF7XZbgA8Nu7hgq6VNr /LWX7IjbdGfs0eIs/EnvuvINLJZ74ePrV5bRcMaWz5BbcuNkkJ8STesqlqtejlZj JaW8W9XSpru94k3934yk8vdRphH9ZqKeVTwBDrpjW/4AZuV7THsd3FKzP8E3kFa6 I83lKGeIfw4P924iid/bq/BvWYfdccPXbPT8KwxHsSgdixWRxT7isbqLHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBG46ZlG0wGceLYWwDVlDbLaVgqUMB8GA1UdIwQY MBaAFKh8Zz81p7cFprQk0zkU+jktO5YuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUh4blB6V250d1dtdENUVE9SVDZPUzA3bGk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9hYTFhZjQtOTI1Ni00NmM4LWFiMDIt OTRlNjQ3MjYyMTYwLzEvcUh4blB6V250d1dtdENUVE9SVDZPUzA3bGk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9hYTFhZjQtOTI1Ni00NmM4LWFiMDItOTRlNjQ3MjYyMTYw LzEvcUh4blB6V250d1dtdENUVE9SVDZPUzA3bGk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAqveRBP7 gxn0Lb0uRtt4ibacpOKcdtJ44tWOlL1uQ7dDwRGPUcsaXt/mP26xLYXbjvhdwvwE QlnZ0KVh7PashYoXL+u1y9f25OhuYuLRqRC6o9ZjiR/kqBR+ZXKSUjDJLtVKhwmu w/PhNMNMXzLUmqEbgNrr+i/WXQ+5fV5fLl7vapHTKwhZsDiXyUcMS2XryCknCEYG pLC+JSf5xsPT87VoKMWSW+oZ7yc7vi+3TpgDRd8sc++4MyAPbMmMNQT9jacC02rZ l0n2PPAq2OvoA/3Vv8I2/zxxm+1V8bl1hwLqXULJYeERGojMKB0rN7onLLnorQ0g oGl1Qfj5TPrySA== -----END CERTIFICATE-----Generated at Wed Dec 17 16:47:08 2025 by rpki-client