This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft File: Q4T2-m3sztVXioWlHgvWVwHqNOw.mft (raw, json) Hash identifier: Ukd/tMCvboETtFgRJydTJCUF5d9hMzQnFT58M9fZTaE= Subject key identifier: BD:79:1E:6E:03:9B:E1:68:96:9A:A5:7E:16:51:A3:E1:20:F8:9D:39 Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec Certificate serial: 019B3BD98710C749886469C48DE43DD75584 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft Manifest number: 179B Signing time: Sat 20 Dec 2025 13:01:10 +0000 Manifest this update: Sat 20 Dec 2025 13:01:10 +0000 Manifest next update: Sun 21 Dec 2025 13:01:10 +0000 Files and hashes: 1: 29wssqErvKQtR_9f6uK-OYzddNM.roa (hash: Bh05SYc8VBmf4zaIv99zE5UZHb6fBJqOGBDvempbpVM=) 2: 6ydkCTIO-cNnh8Hv2Ok88IlcHaI.roa (hash: wLv2JoucZBkU56L2p9pXvAWsrjbYGSWjGCERyhVvXsw=) 3: AN-DGU807Zi1GLozE0Ye6tyK7Ic.roa (hash: +/Pg+LZh0oTnlaPXWDZsXPiFa0OXAsSR/g5vgnMvqME=) 4: N0dUKPrjFoc0y8MW0LZVdnxSnBI.roa (hash: GOCzo5+8biESJ82NDr0uRyIZsN+18Kfk+tP9JYURZW4=) 5: Q4T2-m3sztVXioWlHgvWVwHqNOw.crl (hash: qJR+HFzVhWrMrW7xEFPRdldwN5HA1Y27d5E7X0+FDCk=) 6: akr2zEciBp0bAf10VTnQBF8A5hE.roa (hash: SJfaT9rqeoFgX5bxM6d8wxAKVaMpQ7a7c0aJKadx3yo=) 7: maXcZQ7N2y2_afrzV1oMNjT4O7g.roa (hash: D+pc8oR4WM9Y/chv55U8MqOsuEcIXejdvRWZ+f3Pszg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:d9:87:10:c7:49:88:64:69:c4:8d:e4:3d:d7:55:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec Validity Not Before: Dec 20 13:01:10 2025 GMT Not After : Dec 21 13:01:10 2025 GMT Subject: CN=bd791e6e039be168969aa57e1651a3e120f89d39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:67:bd:b6:8f:1e:0c:0e:9f:38:02:d3:41:c4: 34:11:4b:3c:69:01:96:a3:3c:fe:18:01:7d:4a:b7: ad:41:bd:3e:0c:77:05:01:c1:b7:37:d5:83:10:c4: 0d:9c:64:f0:37:a4:41:39:5d:db:b8:cc:a1:7e:52: b7:65:85:a8:3f:89:6f:1a:9c:e9:5b:bc:c4:e5:bb: c5:76:df:2b:d7:93:6f:9b:30:7f:fa:56:62:90:45: 95:52:18:a8:18:0b:93:e6:14:5d:2a:c1:2a:72:c0: 15:ca:98:9f:da:22:8a:d3:8d:9f:dc:5e:02:04:a7: e6:35:52:63:b0:9e:96:d7:d8:70:b6:95:a6:82:5c: d6:ee:d6:e6:eb:e1:3d:c2:d0:2d:d3:56:43:42:68: 1b:1a:30:f9:ce:77:ac:49:fb:f4:51:50:a2:68:9a: 3f:8a:88:0f:49:22:99:05:9f:48:97:70:b4:5b:f9: 2f:12:c9:b6:c6:e8:43:cf:ef:4f:47:a0:ee:0f:68: 82:c2:0d:4c:31:ca:29:47:be:40:94:d0:d1:12:8a: 6c:ef:39:39:31:a6:32:17:8a:00:6e:cc:59:78:2c: be:b6:f9:c1:91:40:eb:52:f3:df:85:b1:2c:ff:0c: b6:23:3d:93:11:69:f4:8a:51:64:40:b3:6d:8c:ce: c5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:79:1E:6E:03:9B:E1:68:96:9A:A5:7E:16:51:A3:E1:20:F8:9D:39 X509v3 Authority Key Identifier: keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:77:2c:0e:2a:1f:1b:00:a0:e0:0c:b4:b4:77:f1:b9:ae:98: cb:6c:4e:a2:ec:db:30:88:1b:57:d5:45:e2:e8:6d:6f:e5:f2: c1:e1:a6:a6:ed:51:70:c4:93:a4:3e:3a:59:0d:a7:e3:ac:36: 14:e4:68:86:dc:9f:d4:29:52:58:3d:fe:0f:f6:31:2b:16:9b: 86:3d:5e:a5:8c:ee:52:f6:d0:c6:69:91:6d:f1:0e:05:93:d7: f9:2c:cd:bc:10:95:c1:f7:d3:fb:a2:74:f4:d6:2e:4b:75:5c: ae:73:ea:da:c7:99:69:5e:f9:4a:01:66:88:87:76:5a:a1:37: 13:3c:56:ad:7a:7f:e9:e2:cd:c3:f3:cd:c5:b9:60:e5:37:b5: 7a:c0:32:01:64:f5:a8:9e:1c:ca:a7:2a:e6:4c:89:4a:ac:20: 82:55:f0:f4:96:89:cc:c0:1c:ba:e7:58:89:72:e8:fb:b2:23: cf:16:c6:f2:d9:99:54:b0:56:aa:cc:c3:7a:8f:6e:90:63:29: 0a:64:d5:b4:40:2d:85:e2:83:fa:08:54:61:c6:47:77:01:3d: 35:b5:6f:cb:e0:25:83:9a:0d:57:80:1d:42:7f:b9:e4:e2:65: b3:98:00:db:20:53:3a:e3:f4:46:ea:50:0c:73:52:0d:64:a8: 8c:11:84:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs72YcQx0mIZGnEjeQ911WEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzODRmNmZhNmRlY2NlZDU1NzhhODVhNTFlMGJkNjU3MDFl YTM0ZWMwHhcNMjUxMjIwMTMwMTEwWhcNMjUxMjIxMTMwMTEwWjAzMTEwLwYDVQQD EyhiZDc5MWU2ZTAzOWJlMTY4OTY5YWE1N2UxNjUxYTNlMTIwZjg5ZDM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAome9to8eDA6fOALTQcQ0EUs8aQGW ozz+GAF9SretQb0+DHcFAcG3N9WDEMQNnGTwN6RBOV3buMyhflK3ZYWoP4lvGpzp W7zE5bvFdt8r15NvmzB/+lZikEWVUhioGAuT5hRdKsEqcsAVypif2iKK042f3F4C BKfmNVJjsJ6W19hwtpWmglzW7tbm6+E9wtAt01ZDQmgbGjD5znesSfv0UVCiaJo/ iogPSSKZBZ9Il3C0W/kvEsm2xuhDz+9PR6DuD2iCwg1MMcopR75AlNDREops7zk5 MaYyF4oAbsxZeCy+tvnBkUDrUvPfhbEs/wy2Iz2TEWn0ilFkQLNtjM7FcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL15Hm4Dm+FolpqlfhZRo+Eg+J05MB8GA1UdIwQY MBaAFEOE9vpt7M7VV4qFpR4L1lcB6jTsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMt MWIxM2JkNDU2NmE1LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMtMWIxM2JkNDU2NmE1 LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANXcsDiof GwCg4Ay0tHfxua6Yy2xOouzbMIgbV9VF4uhtb+XyweGmpu1RcMSTpD46WQ2n46w2 FORohtyf1ClSWD3+D/YxKxabhj1epYzuUvbQxmmRbfEOBZPX+SzNvBCVwffT+6J0 9NYuS3VcrnPq2seZaV75SgFmiId2WqE3EzxWrXp/6eLNw/PNxblg5Te1esAyAWT1 qJ4cyqcq5kyJSqwgglXw9JaJzMAcuudYiXLo+7IjzxbG8tmZVLBWqszDeo9ukGMp CmTVtEAtheKD+ghUYcZHdwE9NbVvy+Alg5oNV4AdQn+55OJls5gA2yBTOuP0RupQ DHNSDWSojBGEqw== -----END CERTIFICATE-----Generated at Sat Dec 20 18:09:02 2025 by rpki-client