This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft File: Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft (raw, json) Hash identifier: YtD7l3VuOOTTvo/ciY+X8Vx758RSrSaH5f2lVkE+myY= Subject key identifier: A3:88:10:9B:26:18:B7:4C:2B:F5:C3:21:A3:77:6A:5E:72:4F:3B:C6 Authority key identifier: 42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50 Certificate issuer: /CN=427df95ee10a2ad4eaf082dfac159838b37d3450 Certificate serial: 019B34C4FC90B7166B8A4E663AAF96130274 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft Manifest number: 07DB Signing time: Fri 19 Dec 2025 04:01:23 +0000 Manifest this update: Fri 19 Dec 2025 04:01:23 +0000 Manifest next update: Sat 20 Dec 2025 04:01:23 +0000 Files and hashes: 1: BR-wwst0Mwoj4cW4aMMLkST0T08.roa (hash: KhuoTa1EwW+NDwJopflLn+SOxpsU8qTU0jm6Bsplu/Y=) 2: Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl (hash: KiO45WMcWHGxUdFOovuxWcp28GaNR0blkpJlyhxFN8o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c4:fc:90:b7:16:6b:8a:4e:66:3a:af:96:13:02:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=427df95ee10a2ad4eaf082dfac159838b37d3450 Validity Not Before: Dec 19 04:01:23 2025 GMT Not After : Dec 20 04:01:23 2025 GMT Subject: CN=a388109b2618b74c2bf5c321a3776a5e724f3bc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:d6:fd:b2:0a:d9:5d:28:11:85:9e:ee:2c:e1: c0:ea:5c:2e:64:10:32:9d:ff:24:90:f0:a0:08:aa: 81:18:53:50:06:9c:f0:03:9b:ed:07:a1:d8:2c:7f: 96:be:5a:76:69:3b:8a:8b:47:9b:a2:5d:8e:c0:54: 64:12:e4:1f:dc:cb:59:0c:f8:cc:f8:f3:46:ef:11: 2a:af:21:1a:bf:0b:25:72:d9:27:52:7f:9c:d0:52: 7c:57:9a:93:9a:d9:fb:92:81:a1:77:a5:fb:ff:3b: df:96:2e:61:86:ff:e9:0c:22:55:2b:23:8e:41:a4: c7:5d:fd:a2:bc:16:bd:77:a2:a9:6d:50:e7:dd:0c: 9e:72:0d:be:8f:1a:51:15:23:2d:15:e7:e8:75:bb: 9d:0b:24:8c:74:9e:3a:d3:ff:f8:75:eb:a0:e5:23: 38:7b:58:41:17:c3:c1:3f:d6:2c:60:5e:fd:f1:b8: 85:d2:94:7b:a4:bb:de:49:37:1e:b9:60:c5:84:82: 73:2b:20:b2:34:e4:bd:25:a7:f4:9b:17:08:21:a9: 49:af:10:5f:45:c5:4b:53:ea:69:3f:1c:b4:5d:1d: 00:45:86:5d:dd:08:a3:3e:40:e9:66:ae:10:db:6e: c6:3d:8e:1a:57:14:6b:0b:7d:fe:de:21:9d:0b:c9: ba:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:88:10:9B:26:18:B7:4C:2B:F5:C3:21:A3:77:6A:5E:72:4F:3B:C6 X509v3 Authority Key Identifier: keyid:42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:3e:40:18:47:93:eb:20:c6:5a:7d:3b:73:99:50:ba:17:eb: 65:96:cc:4d:1d:bf:15:9f:89:b4:91:b8:c7:83:82:e1:10:8c: f7:4c:8a:ca:ce:95:a3:50:b8:ff:b1:15:e6:2c:29:c8:29:14: ef:49:96:60:fd:69:67:b4:94:4c:3b:54:90:7d:d0:68:fd:c0: bf:b1:e6:ac:59:9a:05:7d:73:ce:58:47:67:ab:cf:ee:0e:0d: e9:6f:7f:6a:99:dd:86:83:88:f2:92:6f:69:c3:91:ed:97:f6: 4d:b9:c6:e9:a2:1a:39:0c:b9:02:d6:ff:1c:09:1c:b3:e7:b9: 31:a2:5e:f7:fa:da:01:8a:5a:ce:76:b8:f8:87:91:c6:b8:43: 76:d4:73:a3:91:2e:5b:3f:6e:fd:c3:d1:de:0a:9a:d4:74:d9: be:15:7f:e0:92:77:05:99:0f:59:3e:cc:e3:ad:4d:45:de:14: 11:11:e9:f1:fe:da:b6:05:cf:6b:8e:41:9c:ce:be:1d:42:e0: ac:22:e0:e3:59:48:65:74:61:37:21:fe:33:68:45:23:43:1f: 34:2f:e8:33:71:15:8e:c5:a1:77:09:d4:2e:73:f0:32:22:c1: 68:11:3a:a4:a5:5e:67:88:4c:cc:3b:62:4f:c7:21:e2:eb:b9: c6:d5:14:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xPyQtxZrik5mOq+WEwJ0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyN2RmOTVlZTEwYTJhZDRlYWYwODJkZmFjMTU5ODM4YjM3 ZDM0NTAwHhcNMjUxMjE5MDQwMTIzWhcNMjUxMjIwMDQwMTIzWjAzMTEwLwYDVQQD EyhhMzg4MTA5YjI2MThiNzRjMmJmNWMzMjFhMzc3NmE1ZTcyNGYzYmM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAktb9sgrZXSgRhZ7uLOHA6lwuZBAy nf8kkPCgCKqBGFNQBpzwA5vtB6HYLH+Wvlp2aTuKi0ebol2OwFRkEuQf3MtZDPjM +PNG7xEqryEavwslctknUn+c0FJ8V5qTmtn7koGhd6X7/zvfli5hhv/pDCJVKyOO QaTHXf2ivBa9d6KpbVDn3Qyecg2+jxpRFSMtFefodbudCySMdJ460//4deug5SM4 e1hBF8PBP9YsYF798biF0pR7pLveSTceuWDFhIJzKyCyNOS9Jaf0mxcIIalJrxBf RcVLU+ppPxy0XR0ARYZd3QijPkDpZq4Q227GPY4aVxRrC33+3iGdC8m6HwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKOIEJsmGLdMK/XDIaN3al5yTzvGMB8GA1UdIwQY MBaAFEJ9+V7hCirU6vCC36wVmDizfTRQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC80YTMwNjgtZWE5ZC00OTY2LWJlNTUt Nzk0M2Q5YTc5YmQyLzEvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC80YTMwNjgtZWE5ZC00OTY2LWJlNTUtNzk0M2Q5YTc5YmQy LzEvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoz5AGEeT 6yDGWn07c5lQuhfrZZbMTR2/FZ+JtJG4x4OC4RCM90yKys6Vo1C4/7EV5iwpyCkU 70mWYP1pZ7SUTDtUkH3QaP3Av7HmrFmaBX1zzlhHZ6vP7g4N6W9/apndhoOI8pJv acOR7Zf2TbnG6aIaOQy5Atb/HAkcs+e5MaJe9/raAYpazna4+IeRxrhDdtRzo5Eu Wz9u/cPR3gqa1HTZvhV/4JJ3BZkPWT7M461NRd4UERHp8f7atgXPa45BnM6+HULg rCLg41lIZXRhNyH+M2hFI0MfNC/oM3EVjsWhdwnULnPwMiLBaBE6pKVeZ4hMzDti T8ch4uu5xtUUJw== -----END CERTIFICATE-----Generated at Fri Dec 19 05:32:01 2025 by rpki-client