This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft File: Q94YPxSj8k-bhtBE-HcphoC1Ers.mft (raw, json) Hash identifier: NXottVKZO3aZ7X0ume04aMp50MMiI65AvrXoDgG/RnE= Subject key identifier: 6D:1A:0B:CD:82:02:8A:08:38:94:D9:51:6E:65:64:7A:CA:05:FC:50 Authority key identifier: 43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB Certificate issuer: /CN=43de183f14a3f24f9b86d044f877298680b512bb Certificate serial: 019B5260CE7626409486E71F87FFA7471F34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft Manifest number: 05FD Signing time: Wed 24 Dec 2025 22:00:34 +0000 Manifest this update: Wed 24 Dec 2025 22:00:34 +0000 Manifest next update: Thu 25 Dec 2025 22:00:34 +0000 Files and hashes: 1: Q94YPxSj8k-bhtBE-HcphoC1Ers.crl (hash: fqllKaSAqjFSEwYE7UdAchQlWTSjMFDweY+OCjs4LHA=) 2: Ry5ogaq6xel6bb_wfpnNMOgHoYY.asa (hash: bj382q+fQvCb8yK5gj2+0feyLhrIoXjHwjxqqTWqDdI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:52:60:ce:76:26:40:94:86:e7:1f:87:ff:a7:47:1f:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43de183f14a3f24f9b86d044f877298680b512bb Validity Not Before: Dec 24 22:00:34 2025 GMT Not After : Dec 25 22:00:34 2025 GMT Subject: CN=6d1a0bcd82028a083894d9516e65647aca05fc50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1a:e0:e9:f0:e3:11:e3:e8:6f:f0:ad:75:44: dc:dd:b2:52:3b:a1:ae:28:36:27:ed:a1:35:41:53: 01:e9:7b:a8:a8:25:46:10:22:ba:9b:14:87:e9:fd: 65:04:be:f6:9b:3a:f4:e1:e5:79:93:03:50:8a:b9: fd:3e:e3:c7:4c:53:a9:a9:ac:7b:30:30:f6:f6:af: 23:15:ce:e0:68:7b:fc:53:0f:b8:c9:d5:c5:e7:67: 73:3b:e4:f9:e0:cd:a6:97:64:e1:59:1d:74:8c:9e: a1:07:91:97:bf:e4:11:86:6d:d2:5b:5c:f0:fd:3f: 4a:48:05:e0:bb:ce:be:29:cb:8c:b2:63:8c:80:16: 86:9b:37:6f:49:c6:91:5e:a8:b2:ca:c8:7b:69:89: ba:d6:06:5d:33:33:84:aa:c1:32:df:07:a3:45:e3: 19:32:5c:d3:63:1b:c7:f5:64:78:50:fd:11:f5:49: 6b:c4:e6:d7:70:33:46:78:f8:0c:6d:40:92:1f:bb: c4:24:e0:9d:bd:38:a8:c1:20:fb:c1:3a:00:77:d3: 46:88:8b:d8:e5:82:8f:e5:07:f1:f3:ab:8b:f2:30: 1c:e9:fd:e0:41:7b:c9:f4:1e:7e:70:7d:e6:15:8d: 93:32:b3:f1:1f:0d:84:34:51:a9:3e:61:32:f6:d7: c4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:1A:0B:CD:82:02:8A:08:38:94:D9:51:6E:65:64:7A:CA:05:FC:50 X509v3 Authority Key Identifier: keyid:43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:97:15:64:e6:11:ee:d1:25:68:88:55:8d:bd:5b:39:66:77: 33:94:b2:4f:27:22:3c:54:41:b0:0e:c4:7b:f4:97:f8:77:b7: 20:a3:a3:22:fd:e7:04:06:e5:6a:21:f6:b5:44:e2:b2:9b:ad: 40:8b:b6:b2:54:60:89:3d:55:9f:e2:ea:e0:64:9d:48:51:77: 6e:c1:d7:4b:6a:9a:6b:00:e6:2f:25:16:2a:82:3f:84:48:38: 13:2f:21:de:05:c0:fc:27:14:95:73:82:79:d2:0a:5c:b3:e0: 19:fd:b3:8d:f4:d5:48:7f:03:27:af:97:09:d6:9d:5d:f6:03: fa:97:e5:39:d7:89:0f:19:55:2e:78:04:3a:27:4e:5f:f5:72: c3:d1:3d:5b:b8:07:55:90:ac:3f:f4:af:aa:0e:c9:f4:f0:0d: 8f:67:a5:a7:07:2a:3d:3b:b3:14:d8:c8:90:35:fd:5b:24:21: fc:28:f0:aa:f4:f4:0a:d0:b1:fb:2a:6e:a7:57:2c:4c:a1:b6: 28:0a:53:7a:8f:aa:4a:13:32:50:45:76:a1:6d:25:f7:03:6b: 85:96:ed:73:4f:47:41:f6:e9:5c:7a:95:9f:7d:9c:a5:5b:bf: 16:9b:fc:f8:38:53:f7:d2:ed:2b:af:6f:ec:2c:39:eb:9c:74: 55:92:cd:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtSYM52JkCUhucfh/+nRx80MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzZGUxODNmMTRhM2YyNGY5Yjg2ZDA0NGY4NzcyOTg2ODBi NTEyYmIwHhcNMjUxMjI0MjIwMDM0WhcNMjUxMjI1MjIwMDM0WjAzMTEwLwYDVQQD Eyg2ZDFhMGJjZDgyMDI4YTA4Mzg5NGQ5NTE2ZTY1NjQ3YWNhMDVmYzUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxrg6fDjEePob/CtdUTc3bJSO6Gu KDYn7aE1QVMB6XuoqCVGECK6mxSH6f1lBL72mzr04eV5kwNQirn9PuPHTFOpqax7 MDD29q8jFc7gaHv8Uw+4ydXF52dzO+T54M2ml2ThWR10jJ6hB5GXv+QRhm3SW1zw /T9KSAXgu86+KcuMsmOMgBaGmzdvScaRXqiyysh7aYm61gZdMzOEqsEy3wejReMZ MlzTYxvH9WR4UP0R9UlrxObXcDNGePgMbUCSH7vEJOCdvTiowSD7wToAd9NGiIvY 5YKP5Qfx86uL8jAc6f3gQXvJ9B5+cH3mFY2TMrPxHw2ENFGpPmEy9tfEwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG0aC82CAooIOJTZUW5lZHrKBfxQMB8GA1UdIwQY MBaAFEPeGD8Uo/JPm4bQRPh3KYaAtRK7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTk0WVB4U2o4ay1iaHRCRS1IY3Bob0MxRXJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9lMmQ4ZmUtMDFmMS00YzU2LTkxZjgt ZGVkNzQzMTQ3ZDU4LzEvUTk0WVB4U2o4ay1iaHRCRS1IY3Bob0MxRXJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9lMmQ4ZmUtMDFmMS00YzU2LTkxZjgtZGVkNzQzMTQ3ZDU4 LzEvUTk0WVB4U2o4ay1iaHRCRS1IY3Bob0MxRXJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMJcVZOYR 7tElaIhVjb1bOWZ3M5SyTyciPFRBsA7Ee/SX+He3IKOjIv3nBAblaiH2tUTisput QIu2slRgiT1Vn+Lq4GSdSFF3bsHXS2qaawDmLyUWKoI/hEg4Ey8h3gXA/CcUlXOC edIKXLPgGf2zjfTVSH8DJ6+XCdadXfYD+pflOdeJDxlVLngEOidOX/Vyw9E9W7gH VZCsP/Svqg7J9PANj2elpwcqPTuzFNjIkDX9WyQh/CjwqvT0CtCx+ypup1csTKG2 KApTeo+qShMyUEV2oW0l9wNrhZbtc09HQfbpXHqVn32cpVu/Fpv8+DhT99LtK69v 7Cw565x0VZLNpw== -----END CERTIFICATE-----Generated at Thu Dec 25 03:27:41 2025 by rpki-client