This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft File: qS25uA37nJVniwfvLJU9YxB_X2I.mft (raw, json) Hash identifier: bu7cPH7OVbhdAq9RfmTJxLGl0RJELQV3v6blPgipXZ8= Subject key identifier: DA:D2:12:7C:8C:D2:CC:F9:5A:45:F6:0B:FE:69:32:23:15:F6:E0:C7 Authority key identifier: A9:2D:B9:B8:0D:FB:9C:95:67:8B:07:EF:2C:95:3D:63:10:7F:5F:62 Certificate issuer: /CN=a92db9b80dfb9c95678b07ef2c953d63107f5f62 Certificate serial: 019B60535705A732E97D7DACB9536A33A72B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft Manifest number: 09FB Signing time: Sat 27 Dec 2025 15:00:32 +0000 Manifest this update: Sat 27 Dec 2025 15:00:32 +0000 Manifest next update: Sun 28 Dec 2025 15:00:32 +0000 Files and hashes: 1: qS25uA37nJVniwfvLJU9YxB_X2I.crl (hash: wQx9Nsrb5OammtW/WJkeLkhne2t/jdPzOmuof70swgU=) 2: u2PcO0qxdpMSmR6nWgSSQ3nTHEM.roa (hash: hawJL7X7ALdqooYTS/10qneIqHecH3wASpMJDU35WRY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.crl rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:60:53:57:05:a7:32:e9:7d:7d:ac:b9:53:6a:33:a7:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a92db9b80dfb9c95678b07ef2c953d63107f5f62 Validity Not Before: Dec 27 15:00:32 2025 GMT Not After : Dec 28 15:00:32 2025 GMT Subject: CN=dad2127c8cd2ccf95a45f60bfe69322315f6e0c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6d:13:44:b1:06:db:bb:84:fa:cc:2c:38:35: b0:93:6d:a0:0a:21:f6:19:7f:7b:7c:7a:3a:c0:a3: c1:4d:ca:93:6f:cb:07:53:67:6d:dd:b5:72:e4:3f: 27:18:85:c6:9e:b5:07:b7:16:1a:84:5f:68:e9:21: 03:9b:e3:0c:b0:13:ff:30:77:4e:4e:37:e1:95:08: 69:98:ca:c0:22:7b:f6:8a:b0:4a:42:fd:3d:4e:1a: 57:9e:4b:16:86:39:ca:d1:99:a0:4f:82:5a:5d:84: b9:b0:54:3b:28:c7:97:19:08:19:4f:af:d6:7d:0d: 5c:36:a7:96:dd:4f:8a:9c:b7:d4:02:79:19:8f:ef: 36:0f:be:60:19:97:47:08:db:e0:b5:e5:38:44:40: 66:d5:86:a0:20:c8:47:40:8a:08:ce:77:81:0c:6d: 19:d7:5d:7c:e2:8f:0f:53:3b:be:ce:79:2e:41:c6: c4:8e:99:e9:53:5a:b7:d3:b9:bc:a0:95:b1:06:de: 7c:00:10:77:6f:8a:9f:59:d5:1b:df:b4:75:cf:0e: c5:30:a2:36:1b:84:ca:63:83:6f:c0:7b:22:9f:8c: 83:05:9c:a9:47:fd:bb:28:ce:e9:84:b5:d3:99:10: 0d:0a:e9:e4:65:59:fd:50:f4:0b:3f:68:a4:f4:6d: 5e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:D2:12:7C:8C:D2:CC:F9:5A:45:F6:0B:FE:69:32:23:15:F6:E0:C7 X509v3 Authority Key Identifier: keyid:A9:2D:B9:B8:0D:FB:9C:95:67:8B:07:EF:2C:95:3D:63:10:7F:5F:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:cd:24:b1:59:59:f0:a3:50:cd:cf:1b:60:62:57:0a:1f:be: 19:8d:95:ca:c0:11:99:28:8a:e9:03:d4:5b:a4:ef:66:64:fd: 3f:1c:26:a3:9d:ae:c2:97:2c:58:87:db:61:f6:ba:e6:b0:b1: db:76:fa:ef:12:fa:f7:97:b1:91:8d:9a:47:98:39:d0:a1:37: ec:fc:ad:b4:fc:b5:f6:d3:88:14:aa:b7:39:30:25:3e:8b:76: 1e:23:22:98:77:bc:bd:4f:09:55:0e:7f:60:72:f6:f8:82:59: aa:98:14:48:c7:e9:87:bd:cd:ed:c4:d8:bb:f1:53:41:ea:f7: 86:8e:47:b7:ff:69:e9:f5:bc:00:94:ec:d9:b4:e9:0d:b1:e8: a0:c6:1e:85:2f:97:69:d8:33:50:33:4a:55:fe:eb:62:4a:9b: b6:65:97:ba:80:6f:2e:ae:9d:f0:58:61:f0:54:e7:0f:7f:dd: b9:dc:9d:49:d7:2f:90:da:9c:26:cb:ed:2b:44:42:66:d1:60: c8:ec:b3:ad:aa:ce:ff:d2:aa:1a:10:73:49:79:72:34:cc:36: 51:1f:8d:89:51:fa:d6:6c:2d:c1:70:c4:55:e4:b5:16:cb:4b: cf:35:c6:d2:f9:67:eb:4e:36:9a:9d:cf:56:57:a5:21:6d:50: 7c:13:6b:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtgU1cFpzLpfX2suVNqM6crMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5MmRiOWI4MGRmYjljOTU2NzhiMDdlZjJjOTUzZDYzMTA3 ZjVmNjIwHhcNMjUxMjI3MTUwMDMyWhcNMjUxMjI4MTUwMDMyWjAzMTEwLwYDVQQD EyhkYWQyMTI3YzhjZDJjY2Y5NWE0NWY2MGJmZTY5MzIyMzE1ZjZlMGM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsW0TRLEG27uE+swsODWwk22gCiH2 GX97fHo6wKPBTcqTb8sHU2dt3bVy5D8nGIXGnrUHtxYahF9o6SEDm+MMsBP/MHdO TjfhlQhpmMrAInv2irBKQv09ThpXnksWhjnK0ZmgT4JaXYS5sFQ7KMeXGQgZT6/W fQ1cNqeW3U+KnLfUAnkZj+82D75gGZdHCNvgteU4REBm1YagIMhHQIoIzneBDG0Z 11184o8PUzu+znkuQcbEjpnpU1q307m8oJWxBt58ABB3b4qfWdUb37R1zw7FMKI2 G4TKY4NvwHsin4yDBZypR/27KM7phLXTmRANCunkZVn9UPQLP2ik9G1eOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNrSEnyM0sz5WkX2C/5pMiMV9uDHMB8GA1UdIwQY MBaAFKktubgN+5yVZ4sH7yyVPWMQf19iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVMyNXVBMzduSlZuaXdmdkxKVTlZeEJfWDJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC80MmIzYmItMTkzNS00NzhiLWEzMDIt Y2I3YTVmZDFhYzQ3LzEvcVMyNXVBMzduSlZuaXdmdkxKVTlZeEJfWDJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC80MmIzYmItMTkzNS00NzhiLWEzMDItY2I3YTVmZDFhYzQ3 LzEvcVMyNXVBMzduSlZuaXdmdkxKVTlZeEJfWDJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPs0ksVlZ 8KNQzc8bYGJXCh++GY2VysARmSiK6QPUW6TvZmT9Pxwmo52uwpcsWIfbYfa65rCx 23b67xL695exkY2aR5g50KE37PyttPy19tOIFKq3OTAlPot2HiMimHe8vU8JVQ5/ YHL2+IJZqpgUSMfph73N7cTYu/FTQer3ho5Ht/9p6fW8AJTs2bTpDbHooMYehS+X adgzUDNKVf7rYkqbtmWXuoBvLq6d8Fhh8FTnD3/dudydSdcvkNqcJsvtK0RCZtFg yOyzrarO/9KqGhBzSXlyNMw2UR+NiVH61mwtwXDEVeS1FstLzzXG0vln6042mp3P VlelIW1QfBNr2g== -----END CERTIFICATE-----Generated at Sat Dec 27 17:49:16 2025 by rpki-client