This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft File: QEPj9wJFibliregc9EVjBvTTXmg.mft (raw, json) Hash identifier: hiex5SgOSv5k+0OZvJTJbeoXlvbW05/nkz7YxPM28jk= Subject key identifier: 1E:B7:C8:9B:A6:DE:7B:60:D1:3A:CB:94:3B:5B:16:B1:43:95:7F:E7 Authority key identifier: 40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68 Certificate issuer: /CN=4043e3f7024589b962ade81cf4456306f4d35e68 Certificate serial: 019B3CEBC937A4D524AAB5777D1319631A37 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft Manifest number: 146F Signing time: Sat 20 Dec 2025 18:00:43 +0000 Manifest this update: Sat 20 Dec 2025 18:00:43 +0000 Manifest next update: Sun 21 Dec 2025 18:00:43 +0000 Files and hashes: 1: 7347cFurkIFVNRTShqXtdTwOLOA.roa (hash: 81GL5pa945jQA5j8/X64fsQyRv+u1Eyr3yERMPF2bKE=) 2: QEPj9wJFibliregc9EVjBvTTXmg.crl (hash: eEKpchVXH4AOFdeK7EG0xgHfkr8cV67AVcGRz1xIduQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:eb:c9:37:a4:d5:24:aa:b5:77:7d:13:19:63:1a:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4043e3f7024589b962ade81cf4456306f4d35e68 Validity Not Before: Dec 20 18:00:43 2025 GMT Not After : Dec 21 18:00:43 2025 GMT Subject: CN=1eb7c89ba6de7b60d13acb943b5b16b143957fe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0b:83:f9:08:f4:b4:01:6d:60:81:49:a8:3e: 9f:6b:ca:9f:c5:0f:9b:33:a3:e6:23:fb:33:d1:f8: fc:53:3c:0f:51:dd:66:97:12:b5:17:93:af:89:19: ad:eb:c1:70:60:41:37:af:74:8d:8f:bd:79:1e:22: ff:77:61:19:4a:ae:b0:fa:04:8c:4b:32:dd:6b:1f: 86:c5:28:52:b0:d2:b6:d1:e0:c2:e2:ca:f2:b5:9a: b9:ba:b7:08:24:f8:88:1d:a0:38:93:34:6e:43:56: ed:ca:40:1c:8b:7a:8e:e8:b4:9d:06:cb:8a:4a:7e: c7:b2:ed:05:ea:54:c5:f3:65:b5:a6:7f:1e:47:a6: 0e:49:9c:69:d9:46:1f:21:59:63:69:10:8d:ba:17: c2:17:01:29:21:a2:d2:2e:f5:92:63:d8:92:cd:96: 8e:3b:95:c2:29:cb:8c:fa:fb:88:f8:1f:4a:94:6d: 53:81:d6:9f:e2:86:53:a1:c6:4f:05:8c:d6:d4:73: 55:28:0d:e7:41:e3:29:f1:9f:85:45:a2:b9:2d:31: 6f:28:5b:af:d2:f0:90:71:b9:59:6f:17:ee:03:c3: 5e:19:f1:08:86:26:60:86:f7:5d:d1:25:be:fa:b4: 88:75:58:4a:f7:31:cd:2f:73:a8:f0:81:c6:92:38: c2:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B7:C8:9B:A6:DE:7B:60:D1:3A:CB:94:3B:5B:16:B1:43:95:7F:E7 X509v3 Authority Key Identifier: keyid:40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:c3:78:7e:7e:f0:4f:48:c1:60:24:4c:e1:21:45:4c:4e:b1: 8a:45:38:4f:31:b5:69:02:38:cb:a5:0e:f4:a5:21:54:be:0d: 44:8c:b9:72:fd:ba:5c:78:09:a8:ea:20:4d:5b:46:88:87:2d: 40:1a:5f:aa:68:9e:0a:99:a0:fc:49:43:24:5f:43:9c:92:52: 84:cf:d6:c2:59:29:fd:9c:cd:be:af:dd:6b:fa:ea:69:9e:87: a6:6d:85:cb:19:8f:33:1c:f3:3d:ca:78:cf:50:f9:0b:f0:43: 8d:b5:78:83:52:b7:91:35:8b:e0:9e:f8:fa:6b:06:b2:4d:8a: 65:91:b3:0c:99:3f:55:46:d3:fb:87:98:97:fe:c5:8f:33:fa: 11:bc:bf:b2:f8:0d:e0:ed:a4:0d:ef:dd:e6:e6:2d:7f:e8:e7: c2:d3:9b:a9:67:f5:3b:62:b8:ee:94:c4:d8:27:6d:bf:1f:b9: e3:b2:53:57:a4:60:b9:eb:38:87:a9:2e:d4:22:8a:9f:11:d1: 35:e6:c3:99:19:da:d7:e8:d1:7d:93:44:bd:ca:c8:0a:0d:c8: 38:11:b1:42:ea:e4:22:67:20:25:44:3e:ac:cd:45:45:b7:fc: 10:fc:bb:6e:f5:a8:c7:c5:38:e3:98:71:1f:68:70:4e:59:9c: 20:b1:bd:f6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs868k3pNUkqrV3fRMZYxo3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwNDNlM2Y3MDI0NTg5Yjk2MmFkZTgxY2Y0NDU2MzA2ZjRk MzVlNjgwHhcNMjUxMjIwMTgwMDQzWhcNMjUxMjIxMTgwMDQzWjAzMTEwLwYDVQQD EygxZWI3Yzg5YmE2ZGU3YjYwZDEzYWNiOTQzYjViMTZiMTQzOTU3ZmU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0AuD+Qj0tAFtYIFJqD6fa8qfxQ+b M6PmI/sz0fj8UzwPUd1mlxK1F5OviRmt68FwYEE3r3SNj715HiL/d2EZSq6w+gSM SzLdax+GxShSsNK20eDC4srytZq5urcIJPiIHaA4kzRuQ1btykAci3qO6LSdBsuK Sn7Hsu0F6lTF82W1pn8eR6YOSZxp2UYfIVljaRCNuhfCFwEpIaLSLvWSY9iSzZaO O5XCKcuM+vuI+B9KlG1Tgdaf4oZTocZPBYzW1HNVKA3nQeMp8Z+FRaK5LTFvKFuv 0vCQcblZbxfuA8NeGfEIhiZghvdd0SW++rSIdVhK9zHNL3Oo8IHGkjjCiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB63yJum3ntg0TrLlDtbFrFDlX/nMB8GA1UdIwQY MBaAFEBD4/cCRYm5Yq3oHPRFYwb0015oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUVQajl3SkZpYmxpcmVnYzlFVmpCdlRUWG1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9jZTE1MzctMzg5Mi00Njg0LWE2NWUt OGVmODg4N2UyZDFjLzEvUUVQajl3SkZpYmxpcmVnYzlFVmpCdlRUWG1nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS9jZTE1MzctMzg5Mi00Njg0LWE2NWUtOGVmODg4N2UyZDFj LzEvUUVQajl3SkZpYmxpcmVnYzlFVmpCdlRUWG1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIsN4fn7w T0jBYCRM4SFFTE6xikU4TzG1aQI4y6UO9KUhVL4NRIy5cv26XHgJqOogTVtGiIct QBpfqmieCpmg/ElDJF9DnJJShM/Wwlkp/ZzNvq/da/rqaZ6Hpm2FyxmPMxzzPcp4 z1D5C/BDjbV4g1K3kTWL4J74+msGsk2KZZGzDJk/VUbT+4eYl/7FjzP6Eby/svgN 4O2kDe/d5uYtf+jnwtObqWf1O2K47pTE2Cdtvx+547JTV6Rgues4h6ku1CKKnxHR NebDmRna1+jRfZNEvcrICg3IOBGxQurkImcgJUQ+rM1FRbf8EPy7bvWox8U445hx H2hwTlmcILG99g== -----END CERTIFICATE-----Generated at Sat Dec 20 23:13:41 2025 by rpki-client