This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft File: Q4T2-m3sztVXioWlHgvWVwHqNOw.mft (raw, json) Hash identifier: wKiHmbdz7a7xjTEHC//gk2nAIXfVrcRa604iub5xfzs= Subject key identifier: 06:D3:00:D6:5D:A2:4D:A1:1B:97:1E:5A:69:F5:2D:E2:38:02:92:46 Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec Certificate serial: 019B6C211D3FC65196F14FB4EDB4579E7FE7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft Manifest number: 17B4 Signing time: Mon 29 Dec 2025 22:01:08 +0000 Manifest this update: Mon 29 Dec 2025 22:01:08 +0000 Manifest next update: Tue 30 Dec 2025 22:01:08 +0000 Files and hashes: 1: 29wssqErvKQtR_9f6uK-OYzddNM.roa (hash: Bh05SYc8VBmf4zaIv99zE5UZHb6fBJqOGBDvempbpVM=) 2: 6ydkCTIO-cNnh8Hv2Ok88IlcHaI.roa (hash: wLv2JoucZBkU56L2p9pXvAWsrjbYGSWjGCERyhVvXsw=) 3: AN-DGU807Zi1GLozE0Ye6tyK7Ic.roa (hash: +/Pg+LZh0oTnlaPXWDZsXPiFa0OXAsSR/g5vgnMvqME=) 4: N0dUKPrjFoc0y8MW0LZVdnxSnBI.roa (hash: GOCzo5+8biESJ82NDr0uRyIZsN+18Kfk+tP9JYURZW4=) 5: Q4T2-m3sztVXioWlHgvWVwHqNOw.crl (hash: qpmF7A5mnf6PiXmUT8Tme2azWnpxN405AF0JskGcI64=) 6: akr2zEciBp0bAf10VTnQBF8A5hE.roa (hash: SJfaT9rqeoFgX5bxM6d8wxAKVaMpQ7a7c0aJKadx3yo=) 7: maXcZQ7N2y2_afrzV1oMNjT4O7g.roa (hash: D+pc8oR4WM9Y/chv55U8MqOsuEcIXejdvRWZ+f3Pszg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 22:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6c:21:1d:3f:c6:51:96:f1:4f:b4:ed:b4:57:9e:7f:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec Validity Not Before: Dec 29 22:01:08 2025 GMT Not After : Dec 30 22:01:08 2025 GMT Subject: CN=06d300d65da24da11b971e5a69f52de238029246 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:bf:37:23:96:26:0f:8e:c2:df:95:87:ee:8f: 41:30:26:98:31:5d:f0:7d:b3:e0:00:52:3c:ae:6b: 4c:40:48:02:12:1e:f4:7e:da:f4:59:34:ef:56:d3: 9f:ea:e9:a1:99:18:79:fb:71:8c:e7:e5:6e:97:66: b8:c3:03:a5:79:25:3b:57:37:29:8d:84:04:ca:f3: 6d:4e:e9:55:c3:61:38:1a:ac:20:44:99:0b:72:53: f7:74:0b:af:49:67:25:ba:56:32:2e:eb:a7:5b:83: cc:15:75:f8:7d:b4:0c:55:99:08:e3:13:51:13:01: a4:e7:89:2a:45:49:40:5a:4c:10:95:ff:69:36:00: db:59:ae:c0:af:ec:be:d3:a1:e0:25:73:f5:96:72: 50:09:3b:2b:12:51:af:de:b1:d1:55:10:0a:ed:71: 74:79:3a:2a:01:58:d2:77:f2:6d:ad:02:45:79:ec: 4a:c2:65:1f:24:3b:94:2e:24:0d:3f:48:a5:2c:72: cb:6c:9c:d4:12:8e:df:54:2a:84:2f:ac:44:9a:d5: ee:9c:5c:ed:29:14:6b:bc:3e:83:60:fd:ed:1d:60: 99:7f:5c:2d:a0:e9:66:fa:80:f4:f9:18:87:ce:52: be:cb:f8:3d:96:28:ec:8f:64:0c:34:54:ff:ca:c8: a4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:D3:00:D6:5D:A2:4D:A1:1B:97:1E:5A:69:F5:2D:E2:38:02:92:46 X509v3 Authority Key Identifier: keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:9a:d8:b0:6e:a1:92:33:4d:18:c0:02:17:58:b5:c5:15:e8: 5d:ff:1f:a1:ca:ee:14:45:60:54:ed:03:30:21:4b:da:c5:4f: 3e:d0:ba:02:a1:0d:c7:7d:cb:7d:a6:62:f3:cf:36:04:82:0f: f6:ee:97:22:25:7e:64:4d:08:fb:8c:39:bd:52:7e:c4:c6:1d: 3a:4b:de:fe:ec:9b:52:25:d3:b1:a8:a7:ba:26:50:89:62:8d: 85:bb:1f:e6:97:cc:b4:ea:8a:e3:45:c6:e1:00:90:56:ac:41: 72:89:94:fd:ac:3f:b8:05:0f:a5:af:07:a4:3c:8f:f5:da:40: b4:ce:40:a2:73:af:bd:e3:d3:8f:32:d1:ce:8e:5e:c9:84:a0: 50:b6:e6:d0:eb:fe:f3:5c:3e:8f:2a:5f:16:c8:22:cd:8c:4c: 1e:13:2d:ce:d0:88:7d:e5:f1:32:d9:bb:ea:13:e7:d7:a9:fc: 16:a3:79:fe:cd:f6:14:43:aa:26:32:6c:f2:2f:90:28:8f:f0: 20:24:58:58:34:5c:93:81:bc:39:a3:4f:cc:2c:58:94:80:f7: de:4d:8c:df:d7:32:11:de:ce:2c:ab:93:88:ab:43:b6:7d:e3: 11:1a:76:28:23:2d:1e:b9:16:eb:2b:f6:f6:4a:bb:56:f5:d1: 71:3f:a6:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtsIR0/xlGW8U+07bRXnn/nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzODRmNmZhNmRlY2NlZDU1NzhhODVhNTFlMGJkNjU3MDFl YTM0ZWMwHhcNMjUxMjI5MjIwMTA4WhcNMjUxMjMwMjIwMTA4WjAzMTEwLwYDVQQD EygwNmQzMDBkNjVkYTI0ZGExMWI5NzFlNWE2OWY1MmRlMjM4MDI5MjQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjb83I5YmD47C35WH7o9BMCaYMV3w fbPgAFI8rmtMQEgCEh70ftr0WTTvVtOf6umhmRh5+3GM5+Vul2a4wwOleSU7Vzcp jYQEyvNtTulVw2E4GqwgRJkLclP3dAuvSWclulYyLuunW4PMFXX4fbQMVZkI4xNR EwGk54kqRUlAWkwQlf9pNgDbWa7Ar+y+06HgJXP1lnJQCTsrElGv3rHRVRAK7XF0 eToqAVjSd/JtrQJFeexKwmUfJDuULiQNP0ilLHLLbJzUEo7fVCqEL6xEmtXunFzt KRRrvD6DYP3tHWCZf1wtoOlm+oD0+RiHzlK+y/g9lijsj2QMNFT/ysikCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAbTANZdok2hG5ceWmn1LeI4ApJGMB8GA1UdIwQY MBaAFEOE9vpt7M7VV4qFpR4L1lcB6jTsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMt MWIxM2JkNDU2NmE1LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMtMWIxM2JkNDU2NmE1 LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ5rYsG6h kjNNGMACF1i1xRXoXf8focruFEVgVO0DMCFL2sVPPtC6AqENx33LfaZi8882BIIP 9u6XIiV+ZE0I+4w5vVJ+xMYdOkve/uybUiXTsainuiZQiWKNhbsf5pfMtOqK40XG 4QCQVqxBcomU/aw/uAUPpa8HpDyP9dpAtM5AonOvvePTjzLRzo5eyYSgULbm0Ov+ 81w+jypfFsgizYxMHhMtztCIfeXxMtm76hPn16n8FqN5/s32FEOqJjJs8i+QKI/w ICRYWDRck4G8OaNPzCxYlID33k2M39cyEd7OLKuTiKtDtn3jERp2KCMtHrkW6yv2 9kq7VvXRcT+mfQ== -----END CERTIFICATE-----Generated at Tue Dec 30 07:07:48 2025 by rpki-client