This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft File: Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft (raw, json) Hash identifier: yX1hibciqOCW2RIg6h4ruRH9umCGbZrMQmE4LvuyrHs= Subject key identifier: 87:E5:B7:69:4E:ED:F3:0C:BC:51:0C:51:BF:11:37:77:25:84:85:56 Authority key identifier: 42:4F:D1:A3:A0:25:8D:CC:A6:7F:C9:DD:DB:F4:E3:61:57:E6:A7:16 Certificate issuer: /CN=424fd1a3a0258dcca67fc9dddbf4e36157e6a716 Certificate serial: 019B3CECBEC054B4658526B0BA5395AEA1B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft Manifest number: 1788 Signing time: Sat 20 Dec 2025 18:01:46 +0000 Manifest this update: Sat 20 Dec 2025 18:01:46 +0000 Manifest next update: Sun 21 Dec 2025 18:01:46 +0000 Files and hashes: 1: 83F_Jp7hhNkTyKzmQu0uAqQ-Hug.roa (hash: /GIKVjlq0TkCjqFIvHfnkG7+yghgu5kkQctxwrpV6qw=) 2: Qk_Ro6Aljcymf8nd2_TjYVfmpxY.crl (hash: Ikb3D89mAsJIO57qZ3YAGeltD87BYbScSJVPNnWmkng=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.crl rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft rsync://rpki.ripe.net/repository/DEFAULT/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:ec:be:c0:54:b4:65:85:26:b0:ba:53:95:ae:a1:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=424fd1a3a0258dcca67fc9dddbf4e36157e6a716 Validity Not Before: Dec 20 18:01:46 2025 GMT Not After : Dec 21 18:01:46 2025 GMT Subject: CN=87e5b7694eedf30cbc510c51bf11377725848556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:23:30:ea:07:6f:7b:02:04:7b:79:50:eb:15: 8f:18:e9:19:d7:33:8a:4a:6c:38:41:79:72:96:ba: 82:97:68:0d:e5:00:2e:cd:cd:25:e1:0f:f5:56:70: 0e:0e:ff:21:8f:ce:a5:dc:0e:6a:af:9e:dd:fb:d7: 69:a7:7b:e4:f1:bc:2c:3a:ad:61:e0:16:af:b3:f8: e2:bf:d2:db:d0:14:5c:fc:b5:15:d6:81:48:eb:6c: 08:1d:08:7c:5b:47:f6:1c:94:29:44:3e:ff:55:61: e4:c4:bb:9d:d0:fd:82:d2:9d:26:c9:ef:a5:f4:d2: 2a:c7:2d:9d:98:16:1a:73:67:27:ee:17:88:b3:92: f8:8f:fb:02:8f:a3:04:ea:09:19:7d:a3:d8:5d:67: e3:1f:5b:ce:fe:83:1f:c6:fa:57:66:ca:62:10:a4: 5a:71:12:5a:de:1f:14:5b:c7:e0:bb:e1:b8:8a:b8: 7e:34:5f:bd:22:df:12:31:0d:b8:41:1d:24:4d:5d: fb:10:09:74:66:f7:4e:22:c0:51:97:88:80:b4:bf: f9:a3:a7:24:86:e5:9b:4f:65:53:64:ed:e4:ac:85: d0:70:4a:63:43:42:b1:4f:cb:95:84:e6:87:db:d0: 47:a9:89:74:a7:f6:fa:f7:5f:a9:f6:05:f1:3a:da: 4b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:E5:B7:69:4E:ED:F3:0C:BC:51:0C:51:BF:11:37:77:25:84:85:56 X509v3 Authority Key Identifier: keyid:42:4F:D1:A3:A0:25:8D:CC:A6:7F:C9:DD:DB:F4:E3:61:57:E6:A7:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:9e:63:31:4a:80:1d:ec:7c:cf:8a:7f:f6:57:9c:01:05:e6: 54:07:43:4c:18:12:44:57:73:bd:a7:7a:49:fc:e7:6d:27:e7: 6c:6f:10:d9:68:55:33:f3:02:bb:bb:13:f4:e7:0c:1e:9e:be: c9:71:9f:ef:b3:9d:d4:07:9d:bc:b1:be:7b:82:4a:dd:7e:d7: 5c:9f:4f:1a:cf:05:77:1b:da:09:fd:7b:c2:33:4e:8f:39:02: e9:15:5b:28:1a:52:97:b8:12:c1:a9:8d:7e:5b:07:ea:db:65: 9c:55:f9:20:77:9a:fc:ca:37:44:09:87:31:8c:bd:68:f0:f8: 2b:4d:45:2d:8e:9e:ad:0b:4b:b2:8b:8c:33:66:39:a0:bc:ad: 2e:44:8a:1d:ff:3d:23:1d:c0:01:b8:ca:0b:a2:0e:a7:d0:0a: e2:cd:b5:91:42:b5:f8:24:dd:ae:3e:62:b5:44:23:de:e9:f1: d3:13:00:cf:57:de:ee:b7:90:8e:e2:dd:c9:fd:18:72:5a:1f: 92:f6:07:8f:d6:af:9f:29:ec:86:55:84:4b:55:55:b1:fe:76: dd:be:6a:ca:00:ca:11:e4:65:43:9b:27:53:93:91:31:f4:41: 0e:8a:a7:15:be:cf:ff:61:1a:3c:1e:32:09:b3:d8:a8:8c:e2: ca:d2:ba:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs87L7AVLRlhSawulOVrqG0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyNGZkMWEzYTAyNThkY2NhNjdmYzlkZGRiZjRlMzYxNTdl NmE3MTYwHhcNMjUxMjIwMTgwMTQ2WhcNMjUxMjIxMTgwMTQ2WjAzMTEwLwYDVQQD Eyg4N2U1Yjc2OTRlZWRmMzBjYmM1MTBjNTFiZjExMzc3NzI1ODQ4NTU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9yMw6gdvewIEe3lQ6xWPGOkZ1zOK Smw4QXlylrqCl2gN5QAuzc0l4Q/1VnAODv8hj86l3A5qr57d+9dpp3vk8bwsOq1h 4Bavs/jiv9Lb0BRc/LUV1oFI62wIHQh8W0f2HJQpRD7/VWHkxLud0P2C0p0mye+l 9NIqxy2dmBYac2cn7heIs5L4j/sCj6ME6gkZfaPYXWfjH1vO/oMfxvpXZspiEKRa cRJa3h8UW8fgu+G4irh+NF+9It8SMQ24QR0kTV37EAl0ZvdOIsBRl4iAtL/5o6ck huWbT2VTZO3krIXQcEpjQ0KxT8uVhOaH29BHqYl0p/b691+p9gXxOtpLvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIflt2lO7fMMvFEMUb8RN3clhIVWMB8GA1UdIwQY MBaAFEJP0aOgJY3Mpn/J3dv042FX5qcWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWtfUm82QWxqY3ltZjhuZDJfVGpZVmZtcHhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS85MTM3NTItYjhkYy00ZGZmLTg2Njct NzQ3YjBlNTdhYjVlLzEvUWtfUm82QWxqY3ltZjhuZDJfVGpZVmZtcHhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS85MTM3NTItYjhkYy00ZGZmLTg2NjctNzQ3YjBlNTdhYjVl LzEvUWtfUm82QWxqY3ltZjhuZDJfVGpZVmZtcHhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgZ5jMUqA Hex8z4p/9lecAQXmVAdDTBgSRFdzvad6SfznbSfnbG8Q2WhVM/MCu7sT9OcMHp6+ yXGf77Od1AedvLG+e4JK3X7XXJ9PGs8FdxvaCf17wjNOjzkC6RVbKBpSl7gSwamN flsH6ttlnFX5IHea/Mo3RAmHMYy9aPD4K01FLY6erQtLsouMM2Y5oLytLkSKHf89 Ix3AAbjKC6IOp9AK4s21kUK1+CTdrj5itUQj3unx0xMAz1fe7reQjuLdyf0Yclof kvYHj9avnynshlWES1VVsf523b5qygDKEeRlQ5snU5ORMfRBDoqnFb7P/2EaPB4y CbPYqIziytK63w== -----END CERTIFICATE-----Generated at Sat Dec 20 19:51:49 2025 by rpki-client