This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/ac0b0a-2e83-469d-b89b-326808eccccc/1/QpeJWSkM6bssG1thREOEQVta-tY.mft File: QpeJWSkM6bssG1thREOEQVta-tY.mft (raw, json) Hash identifier: jf2Bu3Is7CaiQYG/rJfiOMfkH49j2eJTs5Ns4FNVB4o= Subject key identifier: 86:54:39:76:04:81:D1:C9:DB:57:B2:5E:E6:1A:37:43:54:F2:C2:27 Authority key identifier: 42:97:89:59:29:0C:E9:BB:2C:1B:5B:61:44:43:84:41:5B:5A:FA:D6 Certificate issuer: /CN=42978959290ce9bb2c1b5b61444384415b5afad6 Certificate serial: 019B66FB7A276530F4C92278A2A48E18DF6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpeJWSkM6bssG1thREOEQVta-tY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/ac0b0a-2e83-469d-b89b-326808eccccc/1/QpeJWSkM6bssG1thREOEQVta-tY.mft Manifest number: 179A Signing time: Sun 28 Dec 2025 22:01:55 +0000 Manifest this update: Sun 28 Dec 2025 22:01:55 +0000 Manifest next update: Mon 29 Dec 2025 22:01:55 +0000 Files and hashes: 1: QpeJWSkM6bssG1thREOEQVta-tY.crl (hash: Dhok9jPi6XENyVuNTBBz12J42dMuCTDHyzOnTtoGo+Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/ac0b0a-2e83-469d-b89b-326808eccccc/1/QpeJWSkM6bssG1thREOEQVta-tY.crl rsync://rpki.ripe.net/repository/DEFAULT/33/ac0b0a-2e83-469d-b89b-326808eccccc/1/QpeJWSkM6bssG1thREOEQVta-tY.mft rsync://rpki.ripe.net/repository/DEFAULT/QpeJWSkM6bssG1thREOEQVta-tY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 20:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:66:fb:7a:27:65:30:f4:c9:22:78:a2:a4:8e:18:df:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42978959290ce9bb2c1b5b61444384415b5afad6 Validity Not Before: Dec 28 22:01:55 2025 GMT Not After : Dec 29 22:01:55 2025 GMT Subject: CN=865439760481d1c9db57b25ee61a374354f2c227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:06:3c:2a:04:92:0a:c2:02:23:60:c9:ff:39: 75:c0:96:e8:38:0a:63:e1:01:f0:aa:04:97:6c:d9: 68:8b:d2:24:00:b2:b3:6c:4a:77:2c:8e:b5:25:2b: 95:6d:e1:49:98:ff:a5:63:a8:84:cc:f3:90:70:22: 43:e8:2b:60:b1:94:42:c6:b5:a7:3d:f7:4a:27:2d: a8:01:62:f1:5c:31:85:fc:0a:5c:f0:15:17:ef:01: 4a:f9:ad:1f:ac:23:43:e4:ba:24:b0:de:60:a9:88: 69:35:07:ba:ca:c9:4f:03:33:fb:0f:6d:ed:1d:33: a5:6b:75:09:ab:ec:46:d0:1f:91:ba:20:64:8a:ea: da:4e:96:12:b8:7f:05:8b:66:cf:31:7a:8c:88:69: e9:34:d4:2f:a7:81:15:32:63:da:58:06:32:58:5b: f0:e9:2b:29:c5:55:17:2d:13:d7:d4:8c:5f:d0:ec: d7:cc:d0:85:8f:d7:c2:1b:d6:96:49:d6:53:4b:48: 28:ba:6b:71:c0:73:ca:db:4b:ae:e5:e1:0f:d7:5f: 0e:8d:6f:e9:91:4f:30:14:e4:55:ba:59:c9:00:fa: e9:3c:bf:4e:75:10:f0:63:8c:35:de:be:18:4f:c0: 87:66:d2:49:cf:f4:59:5e:f1:63:3e:12:ea:b4:4f: 4b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:54:39:76:04:81:D1:C9:DB:57:B2:5E:E6:1A:37:43:54:F2:C2:27 X509v3 Authority Key Identifier: keyid:42:97:89:59:29:0C:E9:BB:2C:1B:5B:61:44:43:84:41:5B:5A:FA:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpeJWSkM6bssG1thREOEQVta-tY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/ac0b0a-2e83-469d-b89b-326808eccccc/1/QpeJWSkM6bssG1thREOEQVta-tY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/ac0b0a-2e83-469d-b89b-326808eccccc/1/QpeJWSkM6bssG1thREOEQVta-tY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:eb:44:6c:86:b1:f0:05:6b:1f:f9:95:1a:ab:91:69:63:da: dd:08:c3:03:0d:5b:a9:c2:08:b1:3c:a5:86:e5:3a:4c:75:74: 8a:dd:72:b4:56:3c:42:7a:e5:5a:8e:da:0f:21:e4:5a:ec:82: a2:3c:d2:11:48:24:3b:5c:0c:f6:b6:73:52:9e:a8:c9:b1:25: ff:a6:e5:98:88:3e:a3:27:c0:c6:a4:cc:08:1e:3d:de:07:47: 9a:fb:ff:d9:62:64:7b:c9:9a:d7:a2:7e:1f:ba:2a:07:b6:c6: 72:55:d0:df:4b:d5:58:37:ee:66:6e:72:5c:b7:34:b7:f0:16: 5a:ca:b6:0d:db:b3:7e:36:4c:93:40:f9:4f:26:9c:db:c3:6b: 51:51:5c:e1:78:63:a9:b7:d8:c1:29:82:71:d8:14:cf:73:31: 54:27:b9:78:35:a6:e0:b1:d8:41:b6:f7:63:7e:e9:d0:2e:3a: f3:2c:05:53:46:86:fa:f5:57:9a:2f:e4:14:b0:97:75:0c:dc: 5b:d1:cc:2c:8d:05:f8:8b:4e:2a:b4:02:ba:b5:51:25:c5:a3: 4f:39:9d:11:0f:98:13:49:9b:07:ac:a7:14:9a:a9:f6:74:3d: ee:62:26:c6:fa:41:1c:07:26:d5:92:92:4a:31:f2:e9:ad:15: ed:14:7e:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtm+3onZTD0ySJ4oqSOGN9sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyOTc4OTU5MjkwY2U5YmIyYzFiNWI2MTQ0NDM4NDQxNWI1 YWZhZDYwHhcNMjUxMjI4MjIwMTU1WhcNMjUxMjI5MjIwMTU1WjAzMTEwLwYDVQQD Eyg4NjU0Mzk3NjA0ODFkMWM5ZGI1N2IyNWVlNjFhMzc0MzU0ZjJjMjI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswY8KgSSCsICI2DJ/zl1wJboOApj 4QHwqgSXbNloi9IkALKzbEp3LI61JSuVbeFJmP+lY6iEzPOQcCJD6CtgsZRCxrWn PfdKJy2oAWLxXDGF/Apc8BUX7wFK+a0frCND5LoksN5gqYhpNQe6yslPAzP7D23t HTOla3UJq+xG0B+RuiBkiuraTpYSuH8Fi2bPMXqMiGnpNNQvp4EVMmPaWAYyWFvw 6SspxVUXLRPX1Ixf0OzXzNCFj9fCG9aWSdZTS0goumtxwHPK20uu5eEP118OjW/p kU8wFORVulnJAPrpPL9OdRDwY4w13r4YT8CHZtJJz/RZXvFjPhLqtE9LKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIZUOXYEgdHJ21eyXuYaN0NU8sInMB8GA1UdIwQY MBaAFEKXiVkpDOm7LBtbYURDhEFbWvrWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXBlSldTa002YnNzRzF0aFJFT0VRVnRhLXRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9hYzBiMGEtMmU4My00NjlkLWI4OWIt MzI2ODA4ZWNjY2NjLzEvUXBlSldTa002YnNzRzF0aFJFT0VRVnRhLXRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy9hYzBiMGEtMmU4My00NjlkLWI4OWItMzI2ODA4ZWNjY2Nj LzEvUXBlSldTa002YnNzRzF0aFJFT0VRVnRhLXRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgutEbIax 8AVrH/mVGquRaWPa3QjDAw1bqcIIsTylhuU6THV0it1ytFY8QnrlWo7aDyHkWuyC ojzSEUgkO1wM9rZzUp6oybEl/6blmIg+oyfAxqTMCB493gdHmvv/2WJke8ma16J+ H7oqB7bGclXQ30vVWDfuZm5yXLc0t/AWWsq2DduzfjZMk0D5Tyac28NrUVFc4Xhj qbfYwSmCcdgUz3MxVCe5eDWm4LHYQbb3Y37p0C468ywFU0aG+vVXmi/kFLCXdQzc W9HMLI0F+ItOKrQCurVRJcWjTzmdEQ+YE0mbB6ynFJqp9nQ97mImxvpBHAcm1ZKS SjHy6a0V7RR+nQ== -----END CERTIFICATE-----Generated at Sun Dec 28 23:27:46 2025 by rpki-client