This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft File: QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft (raw, json) Hash identifier: CLNhxXT4We93eIJ3nbNFyp5Rn1nTA892glU5/DjQOKg= Subject key identifier: C5:D2:7C:D8:FB:83:72:85:A6:99:5A:55:8A:2A:9D:F2:3C:2F:37:18 Authority key identifier: 42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7 Certificate issuer: /CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7 Certificate serial: 019B60C197E4A68976151087F01582A6CEA0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft Manifest number: 179A Signing time: Sat 27 Dec 2025 17:00:58 +0000 Manifest this update: Sat 27 Dec 2025 17:00:58 +0000 Manifest next update: Sun 28 Dec 2025 17:00:58 +0000 Files and hashes: 1: QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl (hash: uYx9T7P4AbCHG6cWXwXnPOVhL9e+sI/QoUy8QNIarjU=) 2: rjvci4lVGCr57ADE7C3M4Mib4mk.roa (hash: yRKI8JSBUthmJegOInkpPYFyfDjZ1t7SRsTNJhUbFjo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 15:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:60:c1:97:e4:a6:89:76:15:10:87:f0:15:82:a6:ce:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7 Validity Not Before: Dec 27 17:00:58 2025 GMT Not After : Dec 28 17:00:58 2025 GMT Subject: CN=c5d27cd8fb837285a6995a558a2a9df23c2f3718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1a:09:17:ed:20:04:f1:5b:b7:e3:67:ef:05: 33:6b:65:f0:e8:8a:ac:f1:d3:bb:c1:72:a3:ca:af: 45:eb:88:73:a8:44:18:04:2c:5b:25:bd:b6:be:75: 43:c6:57:2e:e6:31:7c:e1:9d:11:70:b0:55:b1:22: 92:7b:8a:16:88:7f:4d:52:48:f8:46:5b:af:cd:bc: 49:59:24:c4:83:96:34:50:14:42:b7:2e:5f:1b:4b: a2:62:d6:e3:4d:31:e3:2f:2b:10:7a:0f:f1:c9:16: d8:2c:c1:50:d8:9f:ab:c0:09:c8:9d:02:f5:ef:23: cf:b2:82:3c:cc:bf:b9:c5:7c:6b:4b:84:e1:7a:a6: 0d:60:e3:a9:e4:13:02:ec:ca:b7:2d:11:60:d4:18: d1:91:8e:d3:ad:73:e3:a2:ec:0a:64:f7:85:7c:69: 42:21:1f:06:bc:6d:e6:36:ae:6a:a7:4e:d9:18:32: 22:4e:d2:0b:c6:69:c0:df:03:c1:fd:05:70:f9:55: a5:b7:aa:49:aa:05:f2:ec:49:7d:e7:23:67:8b:0f: 35:d4:e8:9b:c7:d6:48:d4:64:7c:96:a6:03:1a:b2: 61:dd:ff:e8:70:be:9f:d4:50:18:14:a6:29:46:ff: f0:00:55:72:ba:70:06:ca:38:1c:01:12:78:f5:76: fa:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:D2:7C:D8:FB:83:72:85:A6:99:5A:55:8A:2A:9D:F2:3C:2F:37:18 X509v3 Authority Key Identifier: keyid:42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:05:d0:0c:c6:0d:74:dc:fc:09:26:60:0d:31:1b:1f:bc:f8: db:10:0c:2b:0f:f6:64:3d:9f:ad:85:6b:eb:5a:45:e7:a2:02: 5c:94:80:35:07:ad:71:bf:b1:65:1e:c4:d6:2f:c6:c9:8a:3f: dd:34:f5:fb:2a:eb:95:2f:47:c5:1c:1c:68:99:d7:82:ca:4f: 40:b9:5a:ba:50:6c:47:cf:db:22:d2:5b:78:d1:32:aa:97:dd: a8:51:9d:29:db:5b:30:ba:d5:4e:35:3f:a5:e7:41:da:eb:aa: 2f:7a:28:21:ed:4a:2f:9d:38:8c:6b:b1:b9:2b:65:58:80:04: 64:bb:ab:e7:ea:77:ce:89:dd:75:5b:10:8e:eb:c7:cd:e3:68: b3:03:13:f3:f0:de:da:a2:19:c6:f0:f1:00:64:85:52:f2:9d: a9:32:8a:b9:e0:bf:38:90:c0:18:7d:73:d7:77:82:88:8f:8c: cb:3f:fc:92:ba:ea:b7:2b:ee:28:89:38:0f:a6:b5:dc:61:b7: c8:aa:21:20:08:30:1c:46:87:ed:24:22:89:be:1b:c1:7d:22: 51:4c:95:07:58:48:5e:f4:03:41:30:2c:dd:2b:00:19:eb:c4: 88:de:f1:3d:49:57:4d:fb:b2:66:82:98:fc:79:c9:bc:f2:59: d1:8d:c3:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtgwZfkpol2FRCH8BWCps6gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyMWI0Y2Q0MGJhZTQ3ZDQ4ZjUxYzljY2NjNjA3Y2NlNTdj ZTAwZjcwHhcNMjUxMjI3MTcwMDU4WhcNMjUxMjI4MTcwMDU4WjAzMTEwLwYDVQQD EyhjNWQyN2NkOGZiODM3Mjg1YTY5OTVhNTU4YTJhOWRmMjNjMmYzNzE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnRoJF+0gBPFbt+Nn7wUza2Xw6Iqs 8dO7wXKjyq9F64hzqEQYBCxbJb22vnVDxlcu5jF84Z0RcLBVsSKSe4oWiH9NUkj4 RluvzbxJWSTEg5Y0UBRCty5fG0uiYtbjTTHjLysQeg/xyRbYLMFQ2J+rwAnInQL1 7yPPsoI8zL+5xXxrS4TheqYNYOOp5BMC7Mq3LRFg1BjRkY7TrXPjouwKZPeFfGlC IR8GvG3mNq5qp07ZGDIiTtILxmnA3wPB/QVw+VWlt6pJqgXy7El95yNniw811Oib x9ZI1GR8lqYDGrJh3f/ocL6f1FAYFKYpRv/wAFVyunAGyjgcARJ49Xb6GwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMXSfNj7g3KFpplaVYoqnfI8LzcYMB8GA1UdIwQY MBaAFEIbTNQLrkfUj1HJzMxgfM5XzgD3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWh0TTFBdXVSOVNQVWNuTXpHQjh6bGZPQVBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi84NTEzY2QtYWFjNy00NjZkLWEwMzEt ODRjY2YzNDIwMjg2LzEvUWh0TTFBdXVSOVNQVWNuTXpHQjh6bGZPQVBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi84NTEzY2QtYWFjNy00NjZkLWEwMzEtODRjY2YzNDIwMjg2 LzEvUWh0TTFBdXVSOVNQVWNuTXpHQjh6bGZPQVBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWAXQDMYN dNz8CSZgDTEbH7z42xAMKw/2ZD2frYVr61pF56ICXJSANQetcb+xZR7E1i/GyYo/ 3TT1+yrrlS9HxRwcaJnXgspPQLlaulBsR8/bItJbeNEyqpfdqFGdKdtbMLrVTjU/ pedB2uuqL3ooIe1KL504jGuxuStlWIAEZLur5+p3zonddVsQjuvHzeNoswMT8/De 2qIZxvDxAGSFUvKdqTKKueC/OJDAGH1z13eCiI+Myz/8krrqtyvuKIk4D6a13GG3 yKohIAgwHEaH7SQiib4bwX0iUUyVB1hIXvQDQTAs3SsAGevEiN7xPUlXTfuyZoKY /HnJvPJZ0Y3DDw== -----END CERTIFICATE-----Generated at Sat Dec 27 21:02:34 2025 by rpki-client