This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft File: RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft (raw, json) Hash identifier: 36uDabiAAfizFzNDJJlNlfBjIzeEAzQENmot6cI7Fwo= Subject key identifier: 9A:7C:4B:96:30:C9:3E:E6:D0:56:3B:71:0E:E8:92:9F:87:51:6D:B0 Authority key identifier: 45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE Certificate issuer: /CN=4501e85c0025c4ae29528058e232d737c2f495ce Certificate serial: 019B589A30D61EA749BCFEADBA4DF2247495 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft Manifest number: 03F8 Signing time: Fri 26 Dec 2025 03:00:58 +0000 Manifest this update: Fri 26 Dec 2025 03:00:58 +0000 Manifest next update: Sat 27 Dec 2025 03:00:58 +0000 Files and hashes: 1: RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl (hash: 26f9xJiRlAaPkxlVHKV2AfA4SxQzefG0BH9N/A5hmZQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 03:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:58:9a:30:d6:1e:a7:49:bc:fe:ad:ba:4d:f2:24:74:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4501e85c0025c4ae29528058e232d737c2f495ce Validity Not Before: Dec 26 03:00:58 2025 GMT Not After : Dec 27 03:00:58 2025 GMT Subject: CN=9a7c4b9630c93ee6d0563b710ee8929f87516db0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3d:aa:cc:de:95:25:86:d7:3f:0e:66:85:0d: 40:4f:21:9f:3a:b6:41:13:0d:7d:a7:c5:0f:a8:92: 80:40:f7:89:aa:69:00:90:04:d5:24:a3:27:68:92: fa:2c:ee:17:f0:cf:a4:bf:fa:d9:73:a4:d5:7b:62: e7:c7:d8:b5:40:7b:71:58:f2:b9:6d:10:5e:6f:b1: 8a:1a:1f:57:d0:b0:40:20:98:c6:f1:1f:67:98:27: 6f:4d:74:43:2e:a1:d6:42:62:5b:83:e7:fd:bd:57: 3f:2c:6a:82:99:1b:12:50:66:6f:ad:82:c5:e3:53: 90:5e:9c:97:61:b6:5f:db:55:d6:e8:97:97:b5:23: 15:d1:42:14:44:ba:59:b3:32:6b:90:15:e3:e8:1a: f6:4c:3a:b7:5c:06:cc:b3:c4:c9:38:fb:42:66:af: f7:51:64:87:69:74:68:21:37:01:cb:b3:47:6d:aa: 4b:d6:65:9b:e0:f4:cc:a1:2a:8c:80:d6:f6:54:44: b3:ba:17:97:8b:1b:76:9d:ce:35:d0:97:17:fc:84: 1d:31:8c:f1:47:b3:38:77:a2:21:05:2e:31:1f:08: e3:15:f6:0e:b2:d7:9f:05:85:89:2d:64:68:d3:18: 4b:7d:09:de:4a:2d:ff:b9:ab:7e:0c:ab:c1:4f:10: 06:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:7C:4B:96:30:C9:3E:E6:D0:56:3B:71:0E:E8:92:9F:87:51:6D:B0 X509v3 Authority Key Identifier: keyid:45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:7c:d7:23:f8:c3:55:ff:90:d0:41:c2:a2:8c:8c:fa:11:78: 3d:f2:9e:1e:83:8a:7f:21:0a:31:69:43:82:57:fb:d9:8e:84: 1d:13:56:bd:de:61:76:bd:25:2a:8b:47:2b:c7:09:59:83:9b: 5b:2a:b2:b5:f7:a0:3b:7a:bf:bf:71:ae:49:5a:9e:a2:62:38: 02:81:67:19:d9:d2:73:5b:c7:64:27:6d:fa:78:e0:47:86:68: a2:d0:be:eb:21:69:ed:bf:2a:b1:f3:bd:10:13:06:8c:f4:5b: 86:0f:01:e7:4f:f7:c9:9a:69:81:14:f2:4b:db:75:73:68:18: 33:09:22:fb:3f:0a:62:05:f6:1d:ac:e0:04:bc:5e:b3:87:57: e9:44:2b:87:b5:25:87:7c:ad:76:95:aa:dd:4a:2d:8e:25:9d: c0:04:1d:53:0a:58:a9:31:d9:f8:d8:75:9f:ec:db:da:31:54: 63:63:3a:49:36:5b:6d:d3:32:2e:8c:f9:58:fe:f0:cd:34:20: 49:68:e7:bd:81:d5:90:ae:1f:4a:cb:d8:83:17:69:d7:2d:b5: 79:7b:85:78:47:c0:b0:1a:89:8e:1e:06:c9:b1:ad:6e:f1:f7: 0a:d3:5d:c1:6c:85:9b:04:27:ea:c7:3e:f3:69:59:33:41:83: c4:75:ad:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtYmjDWHqdJvP6tuk3yJHSVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1MDFlODVjMDAyNWM0YWUyOTUyODA1OGUyMzJkNzM3YzJm NDk1Y2UwHhcNMjUxMjI2MDMwMDU4WhcNMjUxMjI3MDMwMDU4WjAzMTEwLwYDVQQD Eyg5YTdjNGI5NjMwYzkzZWU2ZDA1NjNiNzEwZWU4OTI5Zjg3NTE2ZGIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwD2qzN6VJYbXPw5mhQ1ATyGfOrZB Ew19p8UPqJKAQPeJqmkAkATVJKMnaJL6LO4X8M+kv/rZc6TVe2Lnx9i1QHtxWPK5 bRBeb7GKGh9X0LBAIJjG8R9nmCdvTXRDLqHWQmJbg+f9vVc/LGqCmRsSUGZvrYLF 41OQXpyXYbZf21XW6JeXtSMV0UIURLpZszJrkBXj6Br2TDq3XAbMs8TJOPtCZq/3 UWSHaXRoITcBy7NHbapL1mWb4PTMoSqMgNb2VESzuheXixt2nc410JcX/IQdMYzx R7M4d6IhBS4xHwjjFfYOstefBYWJLWRo0xhLfQneSi3/uat+DKvBTxAGtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJp8S5YwyT7m0FY7cQ7okp+HUW2wMB8GA1UdIwQY MBaAFEUB6FwAJcSuKVKAWOIy1zfC9JXOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlFIb1hBQWx4SzRwVW9CWTRqTFhOOEwwbGM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9kM2U4YTgtNThlZi00NjMwLWJmMzUt Y2VlNjQxOTU1MzNjLzEvUlFIb1hBQWx4SzRwVW9CWTRqTFhOOEwwbGM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC9kM2U4YTgtNThlZi00NjMwLWJmMzUtY2VlNjQxOTU1MzNj LzEvUlFIb1hBQWx4SzRwVW9CWTRqTFhOOEwwbGM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnnzXI/jD Vf+Q0EHCooyM+hF4PfKeHoOKfyEKMWlDglf72Y6EHRNWvd5hdr0lKotHK8cJWYOb WyqytfegO3q/v3GuSVqeomI4AoFnGdnSc1vHZCdt+njgR4ZootC+6yFp7b8qsfO9 EBMGjPRbhg8B50/3yZppgRTyS9t1c2gYMwki+z8KYgX2HazgBLxes4dX6UQrh7Ul h3ytdpWq3UotjiWdwAQdUwpYqTHZ+Nh1n+zb2jFUY2M6STZbbdMyLoz5WP7wzTQg SWjnvYHVkK4fSsvYgxdp1y21eXuFeEfAsBqJjh4GybGtbvH3CtNdwWyFmwQn6sc+ 82lZM0GDxHWtVA== -----END CERTIFICATE-----Generated at Fri Dec 26 07:48:14 2025 by rpki-client