This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft File: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft (raw, json) Hash identifier: kx+qYVvxKxUU3vdplIzIu63zqTV2+89cWayiSZe1gvc= Subject key identifier: 6C:F9:F3:78:71:84:33:23:DA:68:76:65:BA:03:02:99:F3:25:1B:3D Authority key identifier: A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C Certificate issuer: /CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c Certificate serial: 019B416D3DDA780730C45079583EAE79F9A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft Manifest number: 178B Signing time: Sun 21 Dec 2025 15:00:36 +0000 Manifest this update: Sun 21 Dec 2025 15:00:36 +0000 Manifest next update: Mon 22 Dec 2025 15:00:36 +0000 Files and hashes: 1: KE4XnKQhqPguqlRYcxIoqo981UE.roa (hash: az71zExo8C/1i/65qlceZGsCGShh0tDnt7kF10fzzW0=) 2: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl (hash: zX+uMUSQoCzm1/pb47yIfoUzLTy5fZuFS6cUnX6tc/c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:6d:3d:da:78:07:30:c4:50:79:58:3e:ae:79:f9:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c Validity Not Before: Dec 21 15:00:36 2025 GMT Not After : Dec 22 15:00:36 2025 GMT Subject: CN=6cf9f37871843323da687665ba030299f3251b3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6e:c2:9e:b0:a5:32:ac:b7:fa:dd:a5:ff:e0: 9b:b4:d6:63:30:17:82:2a:f3:aa:df:96:59:7b:9e: b0:27:bc:3f:c4:47:69:4d:88:7c:42:10:60:d5:67: 38:95:d0:84:db:2b:1a:17:ec:2e:c4:4d:d7:1d:65: ba:be:38:ed:e1:57:76:28:19:73:64:8c:67:1b:2f: e5:cf:81:fc:b1:ff:50:5a:be:3d:aa:30:6f:93:81: ac:8c:24:84:54:77:c3:87:52:d3:f8:63:8c:b4:cf: 05:69:ba:1a:e2:c7:6d:2f:30:bf:ba:d9:d7:b0:73: 48:3e:4c:9e:59:98:21:10:d4:b7:fd:02:8d:f2:bc: 27:22:ff:94:f4:64:09:36:66:55:a3:8c:c3:ba:d6: 19:04:9e:c6:5e:5a:13:e7:6d:1e:20:2e:9e:3b:91: 40:cd:77:ed:97:10:33:e8:f9:fc:b1:c5:e8:b0:3a: 13:b6:8b:7b:03:e6:30:b0:58:aa:df:01:55:03:b2: 80:ed:be:f4:99:85:1c:cf:50:7f:f6:55:c5:6e:0c: 96:a7:22:0c:03:ad:13:5f:3b:0c:ba:e1:3e:7e:fb: e5:66:18:6c:01:ad:38:f6:08:1d:17:30:78:c4:30: df:33:18:ca:50:10:5c:1a:98:11:c7:56:4d:8d:04: 4a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:F9:F3:78:71:84:33:23:DA:68:76:65:BA:03:02:99:F3:25:1B:3D X509v3 Authority Key Identifier: keyid:A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:1a:52:62:f9:9c:a5:74:de:d1:85:36:69:8f:15:f9:82:36: 66:63:51:90:ed:cf:90:ae:64:f9:4f:c4:42:53:f4:86:9d:93: 0c:4b:b2:f1:35:4c:c1:6a:f7:2c:a7:ff:f7:ba:86:66:dd:4e: c6:4d:2c:71:ed:22:3f:22:95:22:e2:1f:f5:f1:40:b1:1b:b6: bf:53:ed:91:94:3f:45:aa:df:1b:eb:12:27:cc:18:4a:ed:3b: 88:ad:31:5e:db:c7:0f:94:b7:aa:10:24:e2:20:f9:be:a9:9a: 90:f1:e5:f6:60:a2:75:78:97:f8:8a:a9:77:59:f9:9f:f5:f8: a2:8b:fa:bb:e6:0d:23:ef:ec:3c:57:11:c0:e7:be:19:9e:83: 95:20:e2:ea:79:b0:01:a8:79:70:2b:2e:04:f0:f3:9d:db:e8: 4a:8d:85:e4:4b:f5:b9:32:9a:2f:4d:d3:10:7d:8a:9c:c4:7a: 5a:0d:a3:6a:fe:47:4b:61:d0:a5:28:c1:f8:44:73:da:27:0c: 90:22:72:a4:a4:d7:d2:40:00:d4:3c:0a:61:c9:73:29:0c:79: d1:f8:7c:fe:a3:c2:d2:3b:fe:97:51:1e:14:ff:3f:a0:18:90: 54:6c:7e:e7:9d:b8:56:d5:bc:62:38:35:78:0a:19:84:b4:19: 69:a2:25:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBbT3aeAcwxFB5WD6uefmoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5OGU1OTQzYzM1NWQ0OGMwMDRlNmJmNGEzYjZjZGI4YzMw YWRjNGMwHhcNMjUxMjIxMTUwMDM2WhcNMjUxMjIyMTUwMDM2WjAzMTEwLwYDVQQD Eyg2Y2Y5ZjM3ODcxODQzMzIzZGE2ODc2NjViYTAzMDI5OWYzMjUxYjNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuG7CnrClMqy3+t2l/+CbtNZjMBeC KvOq35ZZe56wJ7w/xEdpTYh8QhBg1Wc4ldCE2ysaF+wuxE3XHWW6vjjt4Vd2KBlz ZIxnGy/lz4H8sf9QWr49qjBvk4GsjCSEVHfDh1LT+GOMtM8Faboa4sdtLzC/utnX sHNIPkyeWZghENS3/QKN8rwnIv+U9GQJNmZVo4zDutYZBJ7GXloT520eIC6eO5FA zXftlxAz6Pn8scXosDoTtot7A+YwsFiq3wFVA7KA7b70mYUcz1B/9lXFbgyWpyIM A60TXzsMuuE+fvvlZhhsAa049ggdFzB4xDDfMxjKUBBcGpgRx1ZNjQRKuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGz583hxhDMj2mh2ZboDApnzJRs9MB8GA1UdIwQY MBaAFKmOWUPDVdSMAE5r9KO2zbjDCtxMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVk1WlE4TlYxSXdBVG12MG83Yk51TU1LM0V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9jZDkyY2QtN2ZlMy00MjIzLTgzNTAt M2M3NzNhNmM0MmY5LzEvcVk1WlE4TlYxSXdBVG12MG83Yk51TU1LM0V3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy9jZDkyY2QtN2ZlMy00MjIzLTgzNTAtM2M3NzNhNmM0MmY5 LzEvcVk1WlE4TlYxSXdBVG12MG83Yk51TU1LM0V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADhpSYvmc pXTe0YU2aY8V+YI2ZmNRkO3PkK5k+U/EQlP0hp2TDEuy8TVMwWr3LKf/97qGZt1O xk0sce0iPyKVIuIf9fFAsRu2v1PtkZQ/RarfG+sSJ8wYSu07iK0xXtvHD5S3qhAk 4iD5vqmakPHl9mCidXiX+Iqpd1n5n/X4oov6u+YNI+/sPFcRwOe+GZ6DlSDi6nmw Aah5cCsuBPDzndvoSo2F5Ev1uTKaL03TEH2KnMR6Wg2jav5HS2HQpSjB+ERz2icM kCJypKTX0kAA1DwKYclzKQx50fh8/qPC0jv+l1EeFP8/oBiQVGx+5524VtW8Yjg1 eAoZhLQZaaIlaQ== -----END CERTIFICATE-----Generated at Sun Dec 21 22:29:37 2025 by rpki-client