This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft File: 1QliA1xelRATygZwylaeefjWPBU.mft (raw, json) Hash identifier: u3R+XGOlflQDeUSKU0FqwfhCHwbbEejfeyKKmfv+tpc= Subject key identifier: 89:2B:DE:FC:40:2C:B9:16:45:FB:0D:D3:22:01:93:7C:37:D2:6E:9B Authority key identifier: D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15 Certificate issuer: /CN=d50962035c5e951013ca0670ca569e79f8d63c15 Certificate serial: 019B3F11579FFA0AA5D4022C4E7DA1CB55A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft Manifest number: 1255 Signing time: Sun 21 Dec 2025 04:00:59 +0000 Manifest this update: Sun 21 Dec 2025 04:00:59 +0000 Manifest next update: Mon 22 Dec 2025 04:00:59 +0000 Files and hashes: 1: 1QliA1xelRATygZwylaeefjWPBU.crl (hash: 0HuQDQd2qJ3HJTRjc44TDCUVGc6GCHUIHHnuDpFJzvY=) 2: QgExJsLM6ckB_bwe9qRnk4o5HhA.roa (hash: P6xf+cz+/i4pkIjOYnliYy5pmyQWXuehaFAXXoyCR5k=) 3: fD4OezRM4UrasrKKJ10uGn5_Qug.roa (hash: +HiHjgUZa5Xei+THiDncnTXYzPCxqbbX0ahPYM7QsZE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:11:57:9f:fa:0a:a5:d4:02:2c:4e:7d:a1:cb:55:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d50962035c5e951013ca0670ca569e79f8d63c15 Validity Not Before: Dec 21 04:00:59 2025 GMT Not After : Dec 22 04:00:59 2025 GMT Subject: CN=892bdefc402cb91645fb0dd32201937c37d26e9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:d6:7e:7d:2f:9e:33:60:67:74:49:97:f9:55: 42:64:f7:84:ff:91:76:9f:18:c5:4f:c7:eb:7f:60: 28:ed:96:aa:da:41:4f:ba:12:d3:ea:7c:cb:11:3a: e1:bb:8c:a2:06:81:ac:07:fe:aa:41:9a:ba:83:3a: 41:d9:d3:66:9e:7b:d3:ca:d3:74:ae:db:28:51:8a: ee:67:a4:e2:7a:61:8e:f1:0b:9a:03:45:bc:2a:57: a6:93:de:3e:0e:40:2a:50:36:d1:8e:4c:47:5e:22: ec:71:3b:da:3f:3c:cd:e0:96:86:32:11:6c:3c:a2: 4f:20:bf:fd:c4:c5:ed:af:41:57:f7:19:30:fd:6f: b3:ab:da:8d:24:83:bd:f0:9e:04:ab:ed:6b:9d:bb: eb:cf:43:89:28:6f:eb:e6:ab:33:2b:98:16:36:b8: 72:9d:25:e7:63:46:cd:61:80:cc:99:2f:6a:ea:34: a4:89:f8:b5:a4:a1:a0:80:af:d9:ed:93:8c:93:19: 51:e8:1a:45:b5:cf:f1:d4:bc:7f:11:92:26:43:7b: d0:e0:7f:64:cc:7c:7c:06:0f:58:e7:e9:ef:d3:a2: 00:ce:30:ec:4f:ab:95:ee:19:9e:a7:38:99:03:b6: a9:8b:fc:b9:b5:57:ea:82:78:eb:11:b2:d6:05:8e: 22:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:2B:DE:FC:40:2C:B9:16:45:FB:0D:D3:22:01:93:7C:37:D2:6E:9B X509v3 Authority Key Identifier: keyid:D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:fe:88:86:14:58:0d:b9:b2:44:93:e1:b9:5d:98:ae:89:14: d9:db:29:d2:4a:ff:ed:0b:87:25:d1:f3:9f:48:6e:42:fe:89: 10:79:06:17:f2:a0:85:51:3f:c3:09:ec:b2:bf:ed:2b:03:14: 56:e1:0b:b7:2a:00:83:6e:6e:18:1e:b5:fc:de:17:b1:68:12: 80:12:cf:b4:bc:3b:9b:24:f1:09:d1:df:9b:30:c1:bb:01:ed: 35:e5:10:34:c7:9e:56:ac:7c:91:d0:a8:c0:80:9d:e5:5a:fa: 65:8b:84:67:41:1d:98:21:27:ed:42:8b:f7:2c:5c:82:b2:e4: 56:f3:06:ec:eb:5d:f8:1a:d5:fa:7d:44:66:11:c1:0e:00:4e: 26:34:4f:6b:f8:c8:41:3c:38:bd:ed:39:1f:0d:48:b3:45:c8: 09:d8:e1:5a:d2:13:5c:9d:fd:0e:49:24:c7:31:22:91:45:f6: 6f:0c:4c:bc:c7:62:f7:1f:55:52:3a:b7:f6:3c:fe:8e:af:6f: c4:2b:af:46:a9:68:47:55:ab:2d:68:c4:87:fb:96:57:5e:ab: 2a:3f:bc:8f:46:f7:4f:27:a7:4e:49:d3:1f:b7:ce:ec:5f:14: 34:d1:c4:14:d2:e2:b9:f6:86:5d:46:b7:8e:59:ed:15:db:b4: fe:58:70:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/EVef+gql1AIsTn2hy1WpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1MDk2MjAzNWM1ZTk1MTAxM2NhMDY3MGNhNTY5ZTc5Zjhk NjNjMTUwHhcNMjUxMjIxMDQwMDU5WhcNMjUxMjIyMDQwMDU5WjAzMTEwLwYDVQQD Eyg4OTJiZGVmYzQwMmNiOTE2NDVmYjBkZDMyMjAxOTM3YzM3ZDI2ZTliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiNZ+fS+eM2BndEmX+VVCZPeE/5F2 nxjFT8frf2Ao7Zaq2kFPuhLT6nzLETrhu4yiBoGsB/6qQZq6gzpB2dNmnnvTytN0 rtsoUYruZ6TiemGO8QuaA0W8Klemk94+DkAqUDbRjkxHXiLscTvaPzzN4JaGMhFs PKJPIL/9xMXtr0FX9xkw/W+zq9qNJIO98J4Eq+1rnbvrz0OJKG/r5qszK5gWNrhy nSXnY0bNYYDMmS9q6jSkifi1pKGggK/Z7ZOMkxlR6BpFtc/x1Lx/EZImQ3vQ4H9k zHx8Bg9Y5+nv06IAzjDsT6uV7hmepziZA7api/y5tVfqgnjrEbLWBY4iyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIkr3vxALLkWRfsN0yIBk3w30m6bMB8GA1UdIwQY MBaAFNUJYgNcXpUQE8oGcMpWnnn41jwVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVFsaUExeGVsUkFUeWdad3lsYWVlZmpXUEJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9kNGU4ZTktMGQ0Ny00MTliLWIzZTIt MDU0YTM2MzExNWY1LzEvMVFsaUExeGVsUkFUeWdad3lsYWVlZmpXUEJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC9kNGU4ZTktMGQ0Ny00MTliLWIzZTItMDU0YTM2MzExNWY1 LzEvMVFsaUExeGVsUkFUeWdad3lsYWVlZmpXUEJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeP6IhhRY DbmyRJPhuV2YrokU2dsp0kr/7QuHJdHzn0huQv6JEHkGF/KghVE/wwnssr/tKwMU VuELtyoAg25uGB61/N4XsWgSgBLPtLw7myTxCdHfmzDBuwHtNeUQNMeeVqx8kdCo wICd5Vr6ZYuEZ0EdmCEn7UKL9yxcgrLkVvMG7Otd+BrV+n1EZhHBDgBOJjRPa/jI QTw4ve05Hw1Is0XICdjhWtITXJ39DkkkxzEikUX2bwxMvMdi9x9VUjq39jz+jq9v xCuvRqloR1WrLWjEh/uWV16rKj+8j0b3TyenTknTH7fO7F8UNNHEFNLiufaGXUa3 jlntFdu0/lhwpg== -----END CERTIFICATE-----Generated at Sun Dec 21 11:26:30 2025 by rpki-client