This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft File: 0xQt8vZwlAzPWksnoNDJh-zIhlY.mft (raw, json) Hash identifier: 1zLY1M+v9a8yOWzXcFWkhzhe1LdWXIV452BqwPkJwT8= Subject key identifier: 3D:7D:1D:B2:2B:49:8F:FB:D9:98:74:64:C7:74:5C:DB:6E:37:AA:4E Authority key identifier: D3:14:2D:F2:F6:70:94:0C:CF:5A:4B:27:A0:D0:C9:87:EC:C8:86:56 Certificate issuer: /CN=d3142df2f670940ccf5a4b27a0d0c987ecc88656 Certificate serial: 019B52611BDE413CFA28A7836405D4C8E171 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0xQt8vZwlAzPWksnoNDJh-zIhlY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft Manifest number: 04A4 Signing time: Wed 24 Dec 2025 22:00:54 +0000 Manifest this update: Wed 24 Dec 2025 22:00:54 +0000 Manifest next update: Thu 25 Dec 2025 22:00:54 +0000 Files and hashes: 1: 0xQt8vZwlAzPWksnoNDJh-zIhlY.crl (hash: biwqRdkwsyROi28EcoLHhDC2sJtODXNuVQiZVkdynMI=) 2: DxWkaJkNeo1GnfX8PTB6m_7NDo8.roa (hash: 1C13Qsc+uAlJmXy/kak788lVFXMyWIaA+AZiv7RcjGk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.crl rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft rsync://rpki.ripe.net/repository/DEFAULT/0xQt8vZwlAzPWksnoNDJh-zIhlY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:52:61:1b:de:41:3c:fa:28:a7:83:64:05:d4:c8:e1:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3142df2f670940ccf5a4b27a0d0c987ecc88656 Validity Not Before: Dec 24 22:00:54 2025 GMT Not After : Dec 25 22:00:54 2025 GMT Subject: CN=3d7d1db22b498ffbd9987464c7745cdb6e37aa4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6e:8f:cd:82:31:33:ac:f8:81:8c:38:3d:3d: 26:8f:16:b5:07:28:cc:59:96:2f:4c:06:da:b7:84: 1e:07:ea:73:e9:26:55:58:f7:ed:83:60:47:a6:36: e5:61:b8:33:3e:f1:5c:09:57:21:7e:c0:eb:d9:8f: f1:71:7b:12:e3:44:3d:e5:c1:8f:80:cc:81:a7:f1: 17:65:7e:27:f1:a1:d9:3c:94:bb:5d:03:7b:94:70: db:f5:0f:92:59:05:84:ce:3d:14:25:3d:1a:e9:e6: b8:76:6c:c9:d1:88:9e:71:4b:8e:b4:1a:87:be:08: 9b:f2:a9:41:11:dc:40:f9:2e:27:5e:2d:09:af:52: 21:94:f8:ba:59:d5:45:1d:b9:74:b9:72:50:43:0a: 06:e5:cc:81:a9:6f:0f:bc:e8:54:c1:2b:9e:55:0f: 2e:73:de:cf:65:26:1a:e8:58:f4:41:83:5c:93:c3: 46:72:c3:f6:53:f6:55:c8:67:45:1c:f4:58:34:7a: 22:e0:8b:2c:6d:a5:5b:45:2c:29:d0:1f:67:16:af: ee:be:0a:57:fd:c5:ac:8a:a6:3d:16:92:1c:b6:80: 42:81:55:70:44:cf:97:ab:8a:ce:e4:13:c0:57:05: 7e:8d:64:73:59:4f:2a:3b:ee:fb:b9:0a:de:d3:dd: fc:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:7D:1D:B2:2B:49:8F:FB:D9:98:74:64:C7:74:5C:DB:6E:37:AA:4E X509v3 Authority Key Identifier: keyid:D3:14:2D:F2:F6:70:94:0C:CF:5A:4B:27:A0:D0:C9:87:EC:C8:86:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0xQt8vZwlAzPWksnoNDJh-zIhlY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cf:97:77:a4:fa:d7:d5:ee:00:2a:f9:1b:81:7c:48:26:61:ed: 9a:0d:3f:2d:b2:9f:b3:9c:aa:5d:0d:84:0f:31:38:5f:88:e0: d9:bc:62:1d:30:e9:a4:c1:7f:02:fd:09:c1:7a:75:c2:d9:39: 29:48:0b:8e:8d:63:6d:f4:43:32:ee:45:8b:01:a8:55:16:e7: 01:0f:14:42:46:66:de:c1:46:86:aa:2f:7b:c0:9d:71:7f:2e: 9f:e5:5f:3e:5a:4f:a3:5f:14:59:02:18:0e:0b:22:fe:4e:26: 94:cc:ab:61:ea:b7:fb:94:3b:39:38:6e:4b:3a:4c:3b:d4:b9: e6:cc:f1:1d:3a:f3:a7:d6:df:26:bb:80:d6:c5:58:2a:7d:49: 61:5a:d5:9e:fb:d0:ba:6a:87:8d:db:e4:49:1b:25:1f:50:7b: 46:98:da:1d:38:50:cc:52:30:1a:c9:dc:cf:e6:54:d7:df:b9: 7d:0e:e3:be:fe:5f:c1:e4:f0:c3:ea:75:92:eb:4d:87:ae:ab: 66:b7:e8:c7:9e:c0:07:29:00:88:e5:6e:40:89:14:75:4b:d4: 9e:cb:23:f4:92:55:6e:fa:90:9c:ab:82:c1:f5:d1:aa:eb:c7: 86:6b:20:af:94:ec:a1:55:84:d0:03:6c:08:e9:01:b0:c7:cf: 4e:44:44:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtSYRveQTz6KKeDZAXUyOFxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzMTQyZGYyZjY3MDk0MGNjZjVhNGIyN2EwZDBjOTg3ZWNj ODg2NTYwHhcNMjUxMjI0MjIwMDU0WhcNMjUxMjI1MjIwMDU0WjAzMTEwLwYDVQQD EygzZDdkMWRiMjJiNDk4ZmZiZDk5ODc0NjRjNzc0NWNkYjZlMzdhYTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1W6PzYIxM6z4gYw4PT0mjxa1ByjM WZYvTAbat4QeB+pz6SZVWPftg2BHpjblYbgzPvFcCVchfsDr2Y/xcXsS40Q95cGP gMyBp/EXZX4n8aHZPJS7XQN7lHDb9Q+SWQWEzj0UJT0a6ea4dmzJ0YiecUuOtBqH vgib8qlBEdxA+S4nXi0Jr1IhlPi6WdVFHbl0uXJQQwoG5cyBqW8PvOhUwSueVQ8u c97PZSYa6Fj0QYNck8NGcsP2U/ZVyGdFHPRYNHoi4IssbaVbRSwp0B9nFq/uvgpX /cWsiqY9FpIctoBCgVVwRM+Xq4rO5BPAVwV+jWRzWU8qO+77uQre0938nwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD19HbIrSY/72Zh0ZMd0XNtuN6pOMB8GA1UdIwQY MBaAFNMULfL2cJQMz1pLJ6DQyYfsyIZWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHhRdDh2WndsQXpQV2tzbm9OREpoLXpJaGxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9lYzM5YmUtZTIyNy00YTJkLWI0YjIt NjMyY2FlZWY0NTg0LzEvMHhRdDh2WndsQXpQV2tzbm9OREpoLXpJaGxZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC9lYzM5YmUtZTIyNy00YTJkLWI0YjItNjMyY2FlZWY0NTg0 LzEvMHhRdDh2WndsQXpQV2tzbm9OREpoLXpJaGxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAz5d3pPrX 1e4AKvkbgXxIJmHtmg0/LbKfs5yqXQ2EDzE4X4jg2bxiHTDppMF/Av0JwXp1wtk5 KUgLjo1jbfRDMu5FiwGoVRbnAQ8UQkZm3sFGhqove8CdcX8un+VfPlpPo18UWQIY Dgsi/k4mlMyrYeq3+5Q7OThuSzpMO9S55szxHTrzp9bfJruA1sVYKn1JYVrVnvvQ umqHjdvkSRslH1B7RpjaHThQzFIwGsncz+ZU19+5fQ7jvv5fweTww+p1kutNh66r Zrfox57ABykAiOVuQIkUdUvUnssj9JJVbvqQnKuCwfXRquvHhmsgr5TsoVWE0ANs COkBsMfPTkREYQ== -----END CERTIFICATE-----Generated at Thu Dec 25 02:40:23 2025 by rpki-client