This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft File: SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft (raw, json) Hash identifier: mzp2MLDJ9n3EHpTxD6mISVbvEdzt+FIwbfQ/aSWdsi4= Subject key identifier: 33:F8:BD:70:89:7D:01:99:8A:5D:AA:23:A1:2F:9B:89:72:49:49:D2 Authority key identifier: 49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05 Certificate issuer: /CN=490db999ca4ce287c5c92ab167a500902259bb05 Certificate serial: 019B3F7F60B6F9C6AE06CEF2A12B41513A09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft Manifest number: 178B Signing time: Sun 21 Dec 2025 06:01:10 +0000 Manifest this update: Sun 21 Dec 2025 06:01:10 +0000 Manifest next update: Mon 22 Dec 2025 06:01:10 +0000 Files and hashes: 1: CqiCeQuNX5qYQWUphyM9iUBKOh4.roa (hash: RxNADbHHkDaXqyxPAae3UN8wvqfkoDaWlyxd0mzE4zw=) 2: SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl (hash: pbTsRGLji8f5NAq2W/0Bo2dv0jDM+oOrgbH8M6hkWbo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:7f:60:b6:f9:c6:ae:06:ce:f2:a1:2b:41:51:3a:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=490db999ca4ce287c5c92ab167a500902259bb05 Validity Not Before: Dec 21 06:01:10 2025 GMT Not After : Dec 22 06:01:10 2025 GMT Subject: CN=33f8bd70897d01998a5daa23a12f9b89724949d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b9:57:7f:9b:88:42:de:6d:7e:46:18:a6:06: 77:6b:2c:ce:b1:e5:33:7a:27:d3:96:ba:62:46:20: 60:e1:c1:4e:57:c6:00:3d:44:69:9f:0c:86:72:93: c1:4b:3d:13:3e:33:b2:db:b7:11:c0:a3:11:69:ca: 4e:5d:0b:01:18:a2:25:49:59:89:e8:87:19:06:1c: 9a:df:4c:18:ed:c6:53:d2:e1:20:e6:9b:d3:d9:81: f3:ad:75:5f:5b:f0:cc:85:05:52:66:88:8e:70:7b: f1:0b:d7:a7:ff:c2:fd:5a:41:93:9f:ad:79:5b:7c: 6b:23:c0:4c:c6:11:da:88:43:fc:5d:b6:16:15:ac: 7b:b7:c6:2b:a6:b6:cf:f8:d6:3e:dd:84:3f:2c:88: c6:28:d5:83:c1:b8:b8:50:87:97:93:3a:8b:87:32: 00:dd:ed:b0:5a:98:8e:3c:8e:c3:c8:2c:70:28:3c: fd:d2:b8:3f:cb:04:9f:45:5e:22:4c:5c:ab:62:31: ff:83:ae:3f:5b:4e:86:ae:c1:d9:c4:8a:a4:bc:27: 28:3d:b5:a3:f1:33:42:cb:91:b1:a0:4a:6a:2e:1f: e1:a2:b5:55:5c:cf:88:07:34:ad:e3:58:b2:3f:1f: 57:bb:5b:90:dd:42:3c:8f:57:74:77:35:39:45:b5: bc:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:F8:BD:70:89:7D:01:99:8A:5D:AA:23:A1:2F:9B:89:72:49:49:D2 X509v3 Authority Key Identifier: keyid:49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:ec:0c:82:eb:e5:06:be:88:16:8d:c2:7c:79:31:b7:b8:82: 0f:d8:4e:fc:ba:63:08:4f:c9:e2:94:82:70:81:dc:8e:8a:90: e5:99:a4:f5:6e:c5:95:33:54:f4:fd:6b:de:91:68:5f:1b:76: f8:57:69:68:1d:a7:a1:6f:30:59:83:63:b5:bb:5a:f6:0a:b4: 82:a0:7e:a3:ff:d6:3b:5e:93:68:67:9a:c9:1e:44:b6:78:47: 90:d5:b7:a2:47:58:d4:35:f2:3a:8b:e7:44:58:6e:76:6a:e2: 17:2a:f7:46:1d:54:2a:79:b9:0c:ae:fc:f0:88:ff:96:f7:bb: 6d:9e:d3:1b:1f:95:6f:2e:fc:98:de:a4:84:a6:fb:46:5b:ab: a1:eb:88:62:9a:be:64:3d:0e:b9:38:7f:3f:4e:a3:cd:a4:e5: 49:a5:2d:7a:ad:b9:4d:30:e2:dc:aa:05:d0:16:ed:0d:be:9e: 73:d2:69:fd:f1:31:5e:34:61:4c:5f:4e:b1:3b:b3:f1:80:d8: 3c:ae:05:b6:5d:23:ca:d5:3b:eb:61:07:a0:3e:28:d5:a4:86: bd:11:81:14:b7:58:75:d7:57:e5:81:40:dd:ca:19:b4:a9:a4: c6:78:06:57:ca:d2:81:d0:50:6a:55:86:55:55:dd:f8:2d:56: db:e8:e9:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/f2C2+cauBs7yoStBUToJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5MGRiOTk5Y2E0Y2UyODdjNWM5MmFiMTY3YTUwMDkwMjI1 OWJiMDUwHhcNMjUxMjIxMDYwMTEwWhcNMjUxMjIyMDYwMTEwWjAzMTEwLwYDVQQD EygzM2Y4YmQ3MDg5N2QwMTk5OGE1ZGFhMjNhMTJmOWI4OTcyNDk0OWQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1blXf5uIQt5tfkYYpgZ3ayzOseUz eifTlrpiRiBg4cFOV8YAPURpnwyGcpPBSz0TPjOy27cRwKMRacpOXQsBGKIlSVmJ 6IcZBhya30wY7cZT0uEg5pvT2YHzrXVfW/DMhQVSZoiOcHvxC9en/8L9WkGTn615 W3xrI8BMxhHaiEP8XbYWFax7t8YrprbP+NY+3YQ/LIjGKNWDwbi4UIeXkzqLhzIA 3e2wWpiOPI7DyCxwKDz90rg/ywSfRV4iTFyrYjH/g64/W06GrsHZxIqkvCcoPbWj 8TNCy5GxoEpqLh/horVVXM+IBzSt41iyPx9Xu1uQ3UI8j1d0dzU5RbW87wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDP4vXCJfQGZil2qI6Evm4lySUnSMB8GA1UdIwQY MBaAFEkNuZnKTOKHxckqsWelAJAiWbsFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1EyNW1jcE00b2ZGeVNxeFo2VUFrQ0padXdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni82ZjcxZjMtNjM5OS00OTEzLWI5OGUt OThlMjVlMDQ2OTA4LzEvU1EyNW1jcE00b2ZGeVNxeFo2VUFrQ0padXdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni82ZjcxZjMtNjM5OS00OTEzLWI5OGUtOThlMjVlMDQ2OTA4 LzEvU1EyNW1jcE00b2ZGeVNxeFo2VUFrQ0padXdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUOwMguvl Br6IFo3CfHkxt7iCD9hO/LpjCE/J4pSCcIHcjoqQ5Zmk9W7FlTNU9P1r3pFoXxt2 +FdpaB2noW8wWYNjtbta9gq0gqB+o//WO16TaGeayR5EtnhHkNW3okdY1DXyOovn RFhudmriFyr3Rh1UKnm5DK788Ij/lve7bZ7TGx+Vby78mN6khKb7RluroeuIYpq+ ZD0OuTh/P06jzaTlSaUteq25TTDi3KoF0BbtDb6ec9Jp/fExXjRhTF9OsTuz8YDY PK4Ftl0jytU762EHoD4o1aSGvRGBFLdYdddX5YFA3coZtKmkxngGV8rSgdBQalWG VVXd+C1W2+jpEA== -----END CERTIFICATE-----Generated at Sun Dec 21 10:34:14 2025 by rpki-client