This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json) Hash identifier: dqD+4+XDDqP83hStPYLPr1LCfk0OfNEfFngTatkUUwk= Subject key identifier: F8:60:14:E4:74:65:8C:87:0C:50:1C:13:5B:18:13:F8:1D:CA:24:4D Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08 Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08 Certificate serial: 019B567479D148A9801F3F445E66E7ED6C8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft Manifest number: 070B Signing time: Thu 25 Dec 2025 17:00:32 +0000 Manifest this update: Thu 25 Dec 2025 17:00:32 +0000 Manifest next update: Fri 26 Dec 2025 17:00:32 +0000 Files and hashes: 1: 7maLWxU6IkDM2FmAqNdy7l2m8vA.roa (hash: hXSJo4W1y0TIt55yVm6o0sEdz9TFsi3M02ghZ52Dqcs=) 2: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: D2cqduh0nuX3Teac7HDTbu49EFnczteyz/BXzucjmn4=) 3: qf1_Wz1js3xh5T6fOQssL748W8Y.roa (hash: LIiJDjtWI/OSM/oOUeypQGPeFD9dNyCQffUSuaGgb/s=) 4: uhoFt9UL3_6UT-K7hdXHNLEPe6w.roa (hash: ABkAtvRZwRy7ibQa3d8iTzWCloU1O/vDLYDZwO5edyc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 12:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:56:74:79:d1:48:a9:80:1f:3f:44:5e:66:e7:ed:6c:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08 Validity Not Before: Dec 25 17:00:32 2025 GMT Not After : Dec 26 17:00:32 2025 GMT Subject: CN=f86014e474658c870c501c135b1813f81dca244d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2c:50:62:7b:a3:8b:cf:c0:d5:50:90:b1:fd: ff:27:23:49:7c:c2:48:5e:3a:d4:78:98:3f:32:0c: 21:af:54:16:80:ef:03:58:05:ed:19:9d:00:99:79: 89:87:ec:e2:e9:16:21:d9:38:03:25:db:eb:db:59: 77:38:19:10:c9:da:c2:55:98:b6:fc:2d:0e:74:62: aa:49:01:bd:6e:06:58:90:35:08:07:fd:b8:21:13: cb:2f:5e:a1:97:da:e3:4b:8d:b3:de:5b:8c:6d:ee: a7:6a:c2:1d:76:e5:16:38:ac:41:ad:5f:88:45:a3: f6:03:45:64:70:8e:2f:1a:73:73:4d:cb:af:2a:c8: 26:8b:23:28:1b:b3:5b:2c:3a:f2:9d:cd:e1:05:dd: 01:5c:83:ff:68:16:25:8b:e4:52:fe:b3:3d:f9:f6: f0:a7:3f:98:fe:a5:0e:d8:7d:fb:61:07:3a:bc:f3: 58:13:c8:15:0c:6d:14:b6:03:01:7b:8b:4f:96:49: c9:e1:4c:65:12:e7:fe:6f:ca:92:3c:11:12:55:1e: b4:96:ab:ce:df:54:cc:aa:fe:9b:52:12:52:8a:51: 57:2c:99:7e:00:81:f1:dc:44:06:44:89:14:f3:04: 20:c0:18:fa:5d:95:ae:53:8a:e1:2c:3f:08:e6:09: 88:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:60:14:E4:74:65:8C:87:0C:50:1C:13:5B:18:13:F8:1D:CA:24:4D X509v3 Authority Key Identifier: keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:50:37:9b:f6:e1:68:3e:7c:90:f7:bd:f2:ca:48:35:37:26: 82:cf:80:e9:14:f2:f9:1d:8b:a0:ab:a2:3a:ab:69:b2:9e:fa: 29:65:a0:11:6b:b6:f4:22:82:c6:1a:2b:92:ad:37:6c:21:4e: 31:f4:43:8c:6e:cf:ca:d0:56:50:f5:b1:c5:13:ee:7f:83:86: 59:99:16:9e:64:02:a5:06:e0:27:c7:50:85:1c:4f:98:33:06: 2f:39:b4:5d:9e:1c:3c:f5:e9:5e:09:dd:d2:ad:ee:bc:6e:15: 3d:9d:34:18:fb:b5:f8:02:f8:cd:d6:59:4e:57:ca:0b:da:24: 79:32:b7:3e:df:a4:7d:7f:fe:50:8f:56:52:fa:00:f7:15:1b: 0e:27:e8:56:0d:ab:91:d3:0f:7e:16:29:10:cd:59:b4:aa:d8: 30:c2:ef:62:26:05:2b:4b:b7:b5:b6:cd:41:8f:bb:cf:50:1b: 41:18:cb:71:2b:46:be:57:5c:94:86:53:c7:0c:f4:30:99:02: 28:61:0d:8a:5e:07:bb:29:6b:43:01:7f:6f:4d:53:89:35:44: 02:3c:a4:4b:e2:24:23:f9:45:71:ba:d7:d0:cf:59:f7:c0:54: 5a:f8:f0:6b:01:a5:0a:9a:93:1e:5a:a7:4c:d1:0a:e4:1e:3d: fc:c5:3c:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtWdHnRSKmAHz9EXmbn7WyOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MDg1ZmM1MzRjMTNlMDg4MmUyNjBhODk1ZjNjZjBjNTU0 M2VmMDgwHhcNMjUxMjI1MTcwMDMyWhcNMjUxMjI2MTcwMDMyWjAzMTEwLwYDVQQD EyhmODYwMTRlNDc0NjU4Yzg3MGM1MDFjMTM1YjE4MTNmODFkY2EyNDRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCxQYnuji8/A1VCQsf3/JyNJfMJI XjrUeJg/Mgwhr1QWgO8DWAXtGZ0AmXmJh+zi6RYh2TgDJdvr21l3OBkQydrCVZi2 /C0OdGKqSQG9bgZYkDUIB/24IRPLL16hl9rjS42z3luMbe6nasIdduUWOKxBrV+I RaP2A0VkcI4vGnNzTcuvKsgmiyMoG7NbLDrync3hBd0BXIP/aBYli+RS/rM9+fbw pz+Y/qUO2H37YQc6vPNYE8gVDG0UtgMBe4tPlknJ4UxlEuf+b8qSPBESVR60lqvO 31TMqv6bUhJSilFXLJl+AIHx3EQGRIkU8wQgwBj6XZWuU4rhLD8I5gmIswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPhgFOR0ZYyHDFAcE1sYE/gdyiRNMB8GA1UdIwQY MBaAFCkIX8U0wT4IguJgqJXzzwxVQ+8IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWIt YzMyOTcxMjllNGQzLzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWItYzMyOTcxMjllNGQz LzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiFA3m/bh aD58kPe98spINTcmgs+A6RTy+R2LoKuiOqtpsp76KWWgEWu29CKCxhorkq03bCFO MfRDjG7PytBWUPWxxRPuf4OGWZkWnmQCpQbgJ8dQhRxPmDMGLzm0XZ4cPPXpXgnd 0q3uvG4VPZ00GPu1+AL4zdZZTlfKC9okeTK3Pt+kfX/+UI9WUvoA9xUbDifoVg2r kdMPfhYpEM1ZtKrYMMLvYiYFK0u3tbbNQY+7z1AbQRjLcStGvldclIZTxwz0MJkC KGENil4HuylrQwF/b01TiTVEAjykS+IkI/lFcbrX0M9Z98BUWvjwawGlCpqTHlqn TNEK5B49/MU8bg== -----END CERTIFICATE-----Generated at Thu Dec 25 21:25:17 2025 by rpki-client