This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft File: qS25uA37nJVniwfvLJU9YxB_X2I.mft (raw, json) Hash identifier: LhukyVY+hsIFwf4VuPQ7zdiDyXsUiGJKZZSU58+tAgU= Subject key identifier: 92:10:24:86:55:B1:4C:08:1A:ED:98:30:A4:4E:9F:13:BF:62:71:41 Authority key identifier: A9:2D:B9:B8:0D:FB:9C:95:67:8B:07:EF:2C:95:3D:63:10:7F:5F:62 Certificate issuer: /CN=a92db9b80dfb9c95678b07ef2c953d63107f5f62 Certificate serial: 019B37C5E1E02B6922AA5C4319FA811214E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft Manifest number: 09E6 Signing time: Fri 19 Dec 2025 18:01:13 +0000 Manifest this update: Fri 19 Dec 2025 18:01:13 +0000 Manifest next update: Sat 20 Dec 2025 18:01:13 +0000 Files and hashes: 1: qS25uA37nJVniwfvLJU9YxB_X2I.crl (hash: /nbjuL1cCW0Zr9wmsZ3P+S/MymVFTd5wk/pSqZ8O58Y=) 2: u2PcO0qxdpMSmR6nWgSSQ3nTHEM.roa (hash: hawJL7X7ALdqooYTS/10qneIqHecH3wASpMJDU35WRY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.crl rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:c5:e1:e0:2b:69:22:aa:5c:43:19:fa:81:12:14:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a92db9b80dfb9c95678b07ef2c953d63107f5f62 Validity Not Before: Dec 19 18:01:13 2025 GMT Not After : Dec 20 18:01:13 2025 GMT Subject: CN=9210248655b14c081aed9830a44e9f13bf627141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:33:8c:d6:b9:17:1d:c1:c6:8f:26:a0:f5:cf: 11:2e:12:a3:52:2d:c9:35:c7:c9:aa:0c:92:68:e4: 55:7b:ed:04:60:54:b7:9b:ae:1f:dd:2b:3e:08:a9: 44:7d:39:a6:b6:dc:99:29:60:e0:06:2a:bc:64:c2: 0e:ef:03:b4:1e:d2:23:1f:03:65:15:db:8c:06:74: 76:15:e9:12:cb:39:3d:92:05:68:1a:2b:cd:06:4b: 94:ee:9b:d2:ac:e7:ab:93:f7:98:dc:d1:17:68:a5: 06:cc:1e:6b:08:db:f4:38:b8:34:e9:91:be:b3:55: 4b:2f:8e:71:c8:f1:de:7d:4c:e3:ff:b0:ad:b9:6a: 89:21:88:e9:27:61:fa:e6:de:cd:8f:63:cf:b1:4d: 92:8e:de:de:41:0e:39:72:b1:2b:71:f7:ca:b8:88: 95:19:49:63:48:35:4e:16:e0:df:5b:67:bb:db:55: 2d:12:30:ae:65:d7:3f:b2:d0:b2:fa:58:e3:6f:0b: c4:8f:6b:d5:f5:74:9b:4c:9d:2d:ed:f0:17:b3:35: 8c:9d:4b:d5:36:50:d8:88:e9:c3:05:c0:76:fe:64: 8d:5d:4c:39:e7:66:b4:ed:08:95:5e:1b:ef:b9:4d: 8d:71:bb:7c:c9:c7:72:0e:e7:8b:0f:1e:8e:c1:6c: f5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:10:24:86:55:B1:4C:08:1A:ED:98:30:A4:4E:9F:13:BF:62:71:41 X509v3 Authority Key Identifier: keyid:A9:2D:B9:B8:0D:FB:9C:95:67:8B:07:EF:2C:95:3D:63:10:7F:5F:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:00:17:8e:06:59:43:74:73:74:bf:71:4f:e3:bd:12:c3:b3: 95:7d:33:0d:cc:35:10:5d:f5:0e:9f:03:02:f6:27:6a:08:08: 10:79:75:c6:30:e5:66:77:53:fe:07:25:ad:34:f7:c9:1f:f1: da:d6:a6:5b:01:18:ee:df:e4:6c:10:39:7a:3c:dd:2c:16:76: ec:2e:68:11:dd:61:4d:ee:10:32:0f:38:f0:80:38:cb:2b:16: d4:68:60:01:a0:02:66:96:b8:18:96:1f:88:31:3b:0d:5d:34: 0c:d9:6d:dc:2a:68:e6:98:84:17:4f:66:c9:da:fb:bf:a4:8b: e9:98:c0:10:c9:bd:a9:89:9b:94:84:4a:d9:04:33:8f:ac:cf: 5a:94:1d:e6:a8:2a:7c:f7:8c:ac:5f:4c:55:38:ab:83:ba:46: bd:76:cc:d5:32:b8:ed:c1:e1:3e:99:c7:2a:36:ab:68:69:00: 53:b4:3b:03:af:4a:2b:a9:38:0f:a6:41:cd:7e:13:9b:5a:73: 3a:95:80:03:c3:8e:2f:0b:d6:48:07:77:47:b7:8a:1e:11:47: 31:ff:4f:3b:76:c4:a9:c8:b4:4f:81:fb:bf:a8:0d:18:82:5d: 11:36:ae:b5:be:64:8e:3e:57:d1:e1:73:96:82:8c:b9:78:a1: a8:b2:6f:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3xeHgK2kiqlxDGfqBEhTkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5MmRiOWI4MGRmYjljOTU2NzhiMDdlZjJjOTUzZDYzMTA3 ZjVmNjIwHhcNMjUxMjE5MTgwMTEzWhcNMjUxMjIwMTgwMTEzWjAzMTEwLwYDVQQD Eyg5MjEwMjQ4NjU1YjE0YzA4MWFlZDk4MzBhNDRlOWYxM2JmNjI3MTQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3zOM1rkXHcHGjyag9c8RLhKjUi3J NcfJqgySaORVe+0EYFS3m64f3Ss+CKlEfTmmttyZKWDgBiq8ZMIO7wO0HtIjHwNl FduMBnR2FekSyzk9kgVoGivNBkuU7pvSrOerk/eY3NEXaKUGzB5rCNv0OLg06ZG+ s1VLL45xyPHefUzj/7CtuWqJIYjpJ2H65t7Nj2PPsU2Sjt7eQQ45crErcffKuIiV GUljSDVOFuDfW2e721UtEjCuZdc/stCy+ljjbwvEj2vV9XSbTJ0t7fAXszWMnUvV NlDYiOnDBcB2/mSNXUw552a07QiVXhvvuU2Ncbt8ycdyDueLDx6OwWz12wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJIQJIZVsUwIGu2YMKROnxO/YnFBMB8GA1UdIwQY MBaAFKktubgN+5yVZ4sH7yyVPWMQf19iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVMyNXVBMzduSlZuaXdmdkxKVTlZeEJfWDJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC80MmIzYmItMTkzNS00NzhiLWEzMDIt Y2I3YTVmZDFhYzQ3LzEvcVMyNXVBMzduSlZuaXdmdkxKVTlZeEJfWDJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC80MmIzYmItMTkzNS00NzhiLWEzMDItY2I3YTVmZDFhYzQ3 LzEvcVMyNXVBMzduSlZuaXdmdkxKVTlZeEJfWDJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUgAXjgZZ Q3RzdL9xT+O9EsOzlX0zDcw1EF31Dp8DAvYnaggIEHl1xjDlZndT/gclrTT3yR/x 2tamWwEY7t/kbBA5ejzdLBZ27C5oEd1hTe4QMg848IA4yysW1GhgAaACZpa4GJYf iDE7DV00DNlt3Cpo5piEF09mydr7v6SL6ZjAEMm9qYmblIRK2QQzj6zPWpQd5qgq fPeMrF9MVTirg7pGvXbM1TK47cHhPpnHKjaraGkAU7Q7A69KK6k4D6ZBzX4Tm1pz OpWAA8OOLwvWSAd3R7eKHhFHMf9PO3bEqci0T4H7v6gNGIJdETautb5kjj5X0eFz loKMuXihqLJvgA== -----END CERTIFICATE-----Generated at Fri Dec 19 22:08:13 2025 by rpki-client