This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft File: 1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft (raw, json) Hash identifier: Dl5xw8UWR8lYE+OmwMReXKns6XbnnuakDqMaMxorTb8= Subject key identifier: 72:84:37:29:FB:79:94:E0:3A:63:29:13:0F:86:18:94:FA:DB:89:4F Authority key identifier: D5:06:97:94:36:76:39:9A:C5:CA:C6:A3:E4:76:54:5A:F0:DF:49:DD Certificate issuer: /CN=d50697943676399ac5cac6a3e476545af0df49dd Certificate serial: 019B3A91680A69EA692182D2D9579039880B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft Manifest number: 09CF Signing time: Sat 20 Dec 2025 07:02:46 +0000 Manifest this update: Sat 20 Dec 2025 07:02:46 +0000 Manifest next update: Sun 21 Dec 2025 07:02:46 +0000 Files and hashes: 1: 1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl (hash: GSyMovZ4eZKcXyS06gjZ+XzbHkoMlDloFl3Wc6TMqzA=) 2: BoO9SwQEMHsLwB3D3d0QdThU64M.roa (hash: xEZ0t9PxPtT9JsjJCaQCvAAhYcQDNvD5JhyTg8dedDI=) 3: HUjG5wlXIs_S_8BTLmPoqHtpE_8.roa (hash: n0+Gv3Td1KV66vO7s/EA+fLLoF/hxd3hZyfSfNcw3NA=) 4: UNVV8q9mxHzj40ukB0dOp3qehFE.roa (hash: BXbVtWFAEKhtBygy5e3mBPkEaoCOBDieBmzKaOr8eAc=) 5: i9UroOeG3v0LQXKmV9ahi8I0w0c.roa (hash: WzgmOp30C9OQ/f6QU939qr7xdVO2Usi3fvlLxJ7jHeY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 07:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:91:68:0a:69:ea:69:21:82:d2:d9:57:90:39:88:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d50697943676399ac5cac6a3e476545af0df49dd Validity Not Before: Dec 20 07:02:46 2025 GMT Not After : Dec 21 07:02:46 2025 GMT Subject: CN=72843729fb7994e03a6329130f861894fadb894f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ec:56:2f:dc:dd:86:7e:81:0c:75:d4:7c:2c: ae:69:2a:6f:9c:ba:d4:87:f5:7b:a7:2c:e1:d5:2b: fc:16:83:fd:62:03:e4:20:92:10:aa:df:56:3c:b8: c2:fc:02:77:3c:82:2b:43:1c:18:65:19:e7:6f:83: 50:bb:2e:ab:f9:62:7b:e8:e1:37:e8:8f:5d:64:30: c6:39:9f:34:60:97:bc:6e:62:bb:35:2e:c1:0e:ed: c4:6c:75:9e:d8:6f:9e:1b:06:18:3c:22:35:21:65: 88:68:11:9a:9d:d9:05:24:2e:4f:fb:1a:ad:b3:fa: 41:50:87:30:3f:f8:b6:fc:ae:80:08:8e:b0:30:d5: 90:db:61:c0:67:df:91:02:14:ca:54:22:22:60:48: a0:85:61:f3:65:fd:cf:5b:16:e5:3f:e4:3b:f5:76: 3f:62:99:21:fc:2a:05:d7:ee:60:fd:b4:27:87:e4: 61:50:10:a4:33:a5:2d:e5:01:53:88:31:b6:57:b3: d0:6e:27:03:75:83:f2:51:2b:1d:c7:bf:14:bb:53: a4:f1:42:73:35:1f:3f:76:3c:68:63:f8:77:9e:9c: f3:55:f6:fa:0b:90:33:f5:a4:22:d3:8d:06:30:3a: 26:05:2e:13:15:3d:40:7e:b1:28:50:4b:83:1e:57: d8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:84:37:29:FB:79:94:E0:3A:63:29:13:0F:86:18:94:FA:DB:89:4F X509v3 Authority Key Identifier: keyid:D5:06:97:94:36:76:39:9A:C5:CA:C6:A3:E4:76:54:5A:F0:DF:49:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:db:c1:dd:e2:f8:6c:c5:0a:e9:c9:f9:66:68:7a:7b:cf:61: 72:9c:75:7b:0a:5e:d8:78:60:ff:4b:04:6a:35:06:b9:12:d1: 4d:c0:1a:db:6b:d3:c8:8b:53:39:fa:52:f7:6a:5d:a9:cb:b3: b1:67:a1:a6:99:1d:16:0f:44:b5:a1:a0:2f:cc:93:4a:92:3a: 1c:12:d8:d3:6e:4f:0c:52:08:bd:95:6d:e5:85:41:8d:df:cb: 6b:b8:ff:20:da:f6:d5:7f:42:f3:45:3f:a1:6e:71:65:71:51: b3:4f:be:16:d3:a2:d1:27:05:af:87:33:b5:6a:cb:b1:78:47: 3c:58:aa:d5:08:8d:24:d3:fd:42:ae:8f:41:b2:94:4a:17:f9: 85:57:93:4d:df:8a:7f:d0:86:bf:92:1f:15:46:2c:0d:d7:b1: ae:4c:38:2c:69:cf:d4:b8:97:ab:15:dc:69:32:35:df:b5:16: 32:92:6c:7f:9e:1d:0a:c5:2e:7e:d2:fa:fe:e9:ec:4a:86:22: 7a:80:f8:39:2a:35:b9:31:94:b9:a8:4b:88:56:64:6c:fd:a4: 0e:ce:36:44:24:48:76:88:a5:74:ba:dd:46:f3:28:c7:2e:4a: a6:47:23:75:0a:e7:41:04:78:52:ed:dc:47:dd:60:70:34:d3: ee:80:af:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6kWgKaeppIYLS2VeQOYgLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1MDY5Nzk0MzY3NjM5OWFjNWNhYzZhM2U0NzY1NDVhZjBk ZjQ5ZGQwHhcNMjUxMjIwMDcwMjQ2WhcNMjUxMjIxMDcwMjQ2WjAzMTEwLwYDVQQD Eyg3Mjg0MzcyOWZiNzk5NGUwM2E2MzI5MTMwZjg2MTg5NGZhZGI4OTRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv+xWL9zdhn6BDHXUfCyuaSpvnLrU h/V7pyzh1Sv8FoP9YgPkIJIQqt9WPLjC/AJ3PIIrQxwYZRnnb4NQuy6r+WJ76OE3 6I9dZDDGOZ80YJe8bmK7NS7BDu3EbHWe2G+eGwYYPCI1IWWIaBGandkFJC5P+xqt s/pBUIcwP/i2/K6ACI6wMNWQ22HAZ9+RAhTKVCIiYEighWHzZf3PWxblP+Q79XY/ Ypkh/CoF1+5g/bQnh+RhUBCkM6Ut5QFTiDG2V7PQbicDdYPyUSsdx78Uu1Ok8UJz NR8/djxoY/h3npzzVfb6C5Az9aQi040GMDomBS4TFT1AfrEoUEuDHlfYjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHKENyn7eZTgOmMpEw+GGJT624lPMB8GA1UdIwQY MBaAFNUGl5Q2djmaxcrGo+R2VFrw30ndMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVFhWGxEWjJPWnJGeXNhajVIWlVXdkRmU2QwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS81ZjZhZmYtMTNiYi00ZGI4LTk1N2Yt OGQyM2FjNWNiNTAyLzEvMVFhWGxEWjJPWnJGeXNhajVIWlVXdkRmU2QwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS81ZjZhZmYtMTNiYi00ZGI4LTk1N2YtOGQyM2FjNWNiNTAy LzEvMVFhWGxEWjJPWnJGeXNhajVIWlVXdkRmU2QwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGdvB3eL4 bMUK6cn5Zmh6e89hcpx1ewpe2Hhg/0sEajUGuRLRTcAa22vTyItTOfpS92pdqcuz sWehppkdFg9EtaGgL8yTSpI6HBLY025PDFIIvZVt5YVBjd/La7j/INr21X9C80U/ oW5xZXFRs0++FtOi0ScFr4cztWrLsXhHPFiq1QiNJNP9Qq6PQbKUShf5hVeTTd+K f9CGv5IfFUYsDdexrkw4LGnP1LiXqxXcaTI137UWMpJsf54dCsUuftL6/unsSoYi eoD4OSo1uTGUuahLiFZkbP2kDs42RCRIdoildLrdRvMoxy5KpkcjdQrnQQR4Uu3c R91gcDTT7oCvSA== -----END CERTIFICATE-----Generated at Sat Dec 20 15:06:27 2025 by rpki-client