This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft File: QWkOI5DpC72N5AIYrSIeCTvM7L8.mft (raw, json) Hash identifier: UQr1X44OhPGMK/MbLu7zjkHg8Uo1/iwknHBN/RX0Nmo= Subject key identifier: 35:0F:17:86:CF:95:DC:19:2F:D6:10:85:EE:F0:FB:A9:FD:1A:99:D1 Authority key identifier: 41:69:0E:23:90:E9:0B:BD:8D:E4:02:18:AD:22:1E:09:3B:CC:EC:BF Certificate issuer: /CN=41690e2390e90bbd8de40218ad221e093bccecbf Certificate serial: 019B6731A9276B8CEF709913A520DA46C14C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QWkOI5DpC72N5AIYrSIeCTvM7L8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft Manifest number: 179D Signing time: Sun 28 Dec 2025 23:01:06 +0000 Manifest this update: Sun 28 Dec 2025 23:01:06 +0000 Manifest next update: Mon 29 Dec 2025 23:01:06 +0000 Files and hashes: 1: QWkOI5DpC72N5AIYrSIeCTvM7L8.crl (hash: pbTTcDIG/EPfrlAQVHEa1C+wEpQSkG7duWkLPyqC5sE=) 2: nsNEVxRNRAqK4M0HqDeGc01kd4k.roa (hash: u9cSwFwr5XiNLEjBeMMlXHN1pLGlDX3Y3bL8f/eEp3g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.crl rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft rsync://rpki.ripe.net/repository/DEFAULT/QWkOI5DpC72N5AIYrSIeCTvM7L8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 20:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:67:31:a9:27:6b:8c:ef:70:99:13:a5:20:da:46:c1:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41690e2390e90bbd8de40218ad221e093bccecbf Validity Not Before: Dec 28 23:01:06 2025 GMT Not After : Dec 29 23:01:06 2025 GMT Subject: CN=350f1786cf95dc192fd61085eef0fba9fd1a99d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5b:16:e8:ba:e3:39:b8:d7:90:f7:78:e8:ef: 65:92:4c:5a:35:b2:9b:9a:77:43:83:9d:40:81:3f: ea:32:16:c8:bd:9c:d0:4b:cf:9c:79:84:eb:85:dd: 26:0c:d8:44:4e:17:f8:82:43:2b:15:6f:4a:8b:e4: 9a:ae:f8:27:12:5f:5d:c8:5a:1f:31:fb:72:b1:38: 4e:cb:82:d1:ab:b2:ff:a4:9b:95:dd:f1:9a:5a:01: f4:1f:01:58:6e:0e:40:1a:3f:79:5c:da:e3:14:3c: 76:1d:1b:9b:04:7a:e1:5a:db:23:a5:05:f5:06:ff: b6:b4:38:ca:03:bb:e2:97:de:2a:a9:85:dd:83:98: af:a4:50:67:de:1b:12:5d:4b:3e:8f:6a:f8:c1:be: c0:e1:25:48:72:4c:a2:18:a3:72:77:c5:aa:0f:a5: 30:88:b2:76:da:c2:52:a5:c3:92:14:17:e9:38:c8: 8a:e9:00:c9:f3:76:6d:3f:9e:60:d8:da:c2:95:7b: d8:78:4a:25:44:5e:e8:85:0c:2a:65:7e:81:df:3b: 3d:ae:8b:3b:98:69:b9:29:db:5c:80:a1:8c:7f:9a: 8d:ac:20:c4:ab:1a:37:1c:05:25:3f:a3:e3:20:b3: c9:6c:c6:f2:8d:7b:e8:d0:1e:15:7a:66:6a:15:1e: 49:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:0F:17:86:CF:95:DC:19:2F:D6:10:85:EE:F0:FB:A9:FD:1A:99:D1 X509v3 Authority Key Identifier: keyid:41:69:0E:23:90:E9:0B:BD:8D:E4:02:18:AD:22:1E:09:3B:CC:EC:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QWkOI5DpC72N5AIYrSIeCTvM7L8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:5a:c6:4f:c8:d4:e9:12:33:7f:6e:bc:9f:f8:74:a9:eb:00: 5e:ce:dc:1d:2e:69:bf:cd:19:eb:8f:42:c2:b0:69:4c:c2:b6: d2:c5:c3:27:78:63:3c:b8:e4:77:76:0c:b0:d9:5f:c9:b4:25: 8f:57:71:61:37:c7:ba:16:f4:aa:0f:65:c2:e5:c2:a6:41:90: 64:4f:dc:e4:09:2d:04:3a:e5:bc:c9:34:60:c7:e8:04:fe:b2: e0:ca:8d:06:1c:17:be:1d:76:64:13:5f:37:1a:0b:bb:0b:f0: 4e:98:ad:68:96:7d:b8:63:ab:db:e3:85:ba:67:15:53:e1:6e: a6:48:c4:93:e4:f7:23:d2:f8:df:4c:dc:b4:a5:9b:7c:a1:63: 09:b1:08:df:ea:75:3e:d6:06:b0:ec:bc:8a:b8:c1:7e:15:07: da:ff:86:74:55:5e:eb:de:f5:a3:0c:26:6f:a0:78:5a:ba:04: 90:a1:ec:6c:8e:dd:45:95:3b:7e:81:2e:d6:96:c0:5b:7f:04: f8:23:a5:20:87:58:02:63:7d:83:b5:26:32:ae:b3:56:74:73: af:9f:ac:13:48:cf:98:8d:77:cc:1f:94:d4:10:db:88:6d:e6: 92:4a:5d:4d:4b:8f:a4:47:ed:a7:83:aa:6c:d6:c8:fb:b2:bf: 4b:76:ea:0e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtnMakna4zvcJkTpSDaRsFMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxNjkwZTIzOTBlOTBiYmQ4ZGU0MDIxOGFkMjIxZTA5M2Jj Y2VjYmYwHhcNMjUxMjI4MjMwMTA2WhcNMjUxMjI5MjMwMTA2WjAzMTEwLwYDVQQD EygzNTBmMTc4NmNmOTVkYzE5MmZkNjEwODVlZWYwZmJhOWZkMWE5OWQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVsW6LrjObjXkPd46O9lkkxaNbKb mndDg51AgT/qMhbIvZzQS8+ceYTrhd0mDNhEThf4gkMrFW9Ki+SarvgnEl9dyFof MftysThOy4LRq7L/pJuV3fGaWgH0HwFYbg5AGj95XNrjFDx2HRubBHrhWtsjpQX1 Bv+2tDjKA7vil94qqYXdg5ivpFBn3hsSXUs+j2r4wb7A4SVIckyiGKNyd8WqD6Uw iLJ22sJSpcOSFBfpOMiK6QDJ83ZtP55g2NrClXvYeEolRF7ohQwqZX6B3zs9ros7 mGm5KdtcgKGMf5qNrCDEqxo3HAUlP6PjILPJbMbyjXvo0B4VemZqFR5JewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDUPF4bPldwZL9YQhe7w+6n9GpnRMB8GA1UdIwQY MBaAFEFpDiOQ6Qu9jeQCGK0iHgk7zOy/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVdrT0k1RHBDNzJONUFJWXJTSWVDVHZNN0w4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC8yODg0YWEtMGNjYi00OWYyLTkwYzUt MzM4NWQ5YmYxZDgwLzEvUVdrT0k1RHBDNzJONUFJWXJTSWVDVHZNN0w4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC8yODg0YWEtMGNjYi00OWYyLTkwYzUtMzM4NWQ5YmYxZDgw LzEvUVdrT0k1RHBDNzJONUFJWXJTSWVDVHZNN0w4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOlrGT8jU 6RIzf268n/h0qesAXs7cHS5pv80Z649CwrBpTMK20sXDJ3hjPLjkd3YMsNlfybQl j1dxYTfHuhb0qg9lwuXCpkGQZE/c5AktBDrlvMk0YMfoBP6y4MqNBhwXvh12ZBNf NxoLuwvwTpitaJZ9uGOr2+OFumcVU+FupkjEk+T3I9L430zctKWbfKFjCbEI3+p1 PtYGsOy8irjBfhUH2v+GdFVe6971owwmb6B4WroEkKHsbI7dRZU7foEu1pbAW38E +COlIIdYAmN9g7UmMq6zVnRzr5+sE0jPmI13zB+U1BDbiG3mkkpdTUuPpEftp4Oq bNbI+7K/S3bqDg== -----END CERTIFICATE-----Generated at Mon Dec 29 03:27:31 2025 by rpki-client