This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft File: QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json) Hash identifier: lBOzJyc3GfgYfptRrXJYgtLCc26Rdk5Xy4UXIccYX5E= Subject key identifier: 93:95:7E:74:17:82:C5:A0:88:FC:FF:EB:CE:2A:F7:CB:CB:52:34:06 Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3 Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3 Certificate serial: 019B3BD9603B3C6E520F044A61EC29D7C59A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft Manifest number: 178F Signing time: Sat 20 Dec 2025 13:01:00 +0000 Manifest this update: Sat 20 Dec 2025 13:01:00 +0000 Manifest next update: Sun 21 Dec 2025 13:01:00 +0000 Files and hashes: 1: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: APz5li+GyQDi0qIEfRk+Ol8Iq05X+Nq0YUXGaiRwylI=) 2: YqDxs-OvuVQHWefybCF_NO3X2LQ.roa (hash: T8m4+98qGxOiuFkFF1AHlHH+ajIR7QgNJlfbjXDXJ94=) 3: tc90ntWAEd82qK0_CS7-3-Q6s0Y.roa (hash: 0mZz7plH7Kh9tzG5C0loWt280MVfKoBtrgSHIPS0Ry4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:d9:60:3b:3c:6e:52:0f:04:4a:61:ec:29:d7:c5:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3 Validity Not Before: Dec 20 13:01:00 2025 GMT Not After : Dec 21 13:01:00 2025 GMT Subject: CN=93957e741782c5a088fcffebce2af7cbcb523406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:00:86:51:6c:f5:73:e7:32:85:8e:43:85:4a: 50:f8:33:ea:06:1f:f9:3a:93:73:65:95:6f:d8:43: 93:a4:a6:9b:a4:fc:3e:00:eb:86:06:ed:ab:d6:09: bf:da:1c:1b:86:7c:1b:1e:34:66:5f:2f:52:df:a5: 7a:94:51:ff:f5:28:73:1d:7d:c1:16:fa:e4:e1:52: ec:41:04:64:43:b4:90:3e:bb:ed:fe:00:98:4b:fe: fd:d6:ba:87:f9:08:ff:d4:fe:db:f4:c1:84:c3:b5: b5:9b:27:e5:cf:75:76:49:45:a3:d0:ba:d8:ca:74: 41:57:c7:02:e0:91:c1:1d:df:e2:c3:b6:a8:a4:2e: 18:b7:de:62:12:d8:63:3f:88:ed:eb:c1:95:41:ca: 85:f3:6d:f1:be:31:13:9d:96:0b:b9:f5:e5:f4:a9: 93:20:b4:78:0f:c6:63:17:5e:7a:a2:dc:a5:c5:46: 5d:0b:39:a9:82:30:3f:28:0a:16:6d:f7:e7:3b:8b: 29:7c:ab:10:e7:38:a9:41:6a:26:ab:12:94:e8:03: e5:54:bf:75:49:1c:16:13:dd:dc:1c:bc:eb:b6:1a: 7b:56:47:55:12:5e:a5:26:45:92:ad:df:2e:53:3b: 19:2f:95:c6:0d:99:74:79:c4:af:8a:77:fc:42:bf: a8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:95:7E:74:17:82:C5:A0:88:FC:FF:EB:CE:2A:F7:CB:CB:52:34:06 X509v3 Authority Key Identifier: keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:05:35:a6:48:05:7e:14:24:9f:da:30:3a:46:2a:e1:42:95: 5a:fe:8e:46:e1:7a:ee:d1:68:fd:2d:d1:97:79:51:84:c4:42: 1d:af:31:98:78:6d:c5:5c:9b:ef:c1:8c:b4:64:df:a4:c2:4b: 70:79:ea:fd:eb:a4:bf:51:0d:e2:6f:f0:40:34:2c:8f:b6:3c: 70:c0:17:a0:87:58:ad:d0:af:0b:b4:18:5d:e5:e6:35:ec:88: dc:5f:1f:46:96:c5:5f:36:01:37:75:54:d6:42:07:cf:33:b1: 65:c1:c4:a4:95:68:ad:16:d2:b8:9b:9e:60:b5:7c:95:b2:ad: 18:ca:e7:14:fa:6e:67:f0:f4:19:cb:7e:0a:27:d2:8e:7e:b7: 8a:ae:bb:33:eb:a9:13:49:96:1a:a7:40:2d:9b:11:e0:4d:18: 25:c7:9c:ec:4d:27:ed:eb:13:f8:2a:da:ae:75:2c:13:f9:2d: 2e:d9:d5:49:97:6d:49:21:84:fe:6a:0b:de:52:21:1f:92:71: db:93:28:d1:1e:8a:0f:8b:13:b3:b5:f8:32:80:7b:c0:84:99: af:96:c1:57:fa:4e:c7:05:40:cc:c4:c8:86:50:71:a2:60:ce: 7c:7f:e3:90:89:02:22:3d:12:a3:2e:31:2e:72:59:20:14:63: 5f:f0:b7:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs72WA7PG5SDwRKYewp18WaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyMWJhZTk4OTg5OGQ5NDAyNDI0YWFkYWZiYjQ3YzNhNmQ0 YzI1YjMwHhcNMjUxMjIwMTMwMTAwWhcNMjUxMjIxMTMwMTAwWjAzMTEwLwYDVQQD Eyg5Mzk1N2U3NDE3ODJjNWEwODhmY2ZmZWJjZTJhZjdjYmNiNTIzNDA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyACGUWz1c+cyhY5DhUpQ+DPqBh/5 OpNzZZVv2EOTpKabpPw+AOuGBu2r1gm/2hwbhnwbHjRmXy9S36V6lFH/9ShzHX3B Fvrk4VLsQQRkQ7SQPrvt/gCYS/791rqH+Qj/1P7b9MGEw7W1myflz3V2SUWj0LrY ynRBV8cC4JHBHd/iw7aopC4Yt95iEthjP4jt68GVQcqF823xvjETnZYLufXl9KmT ILR4D8ZjF156otylxUZdCzmpgjA/KAoWbffnO4spfKsQ5zipQWomqxKU6APlVL91 SRwWE93cHLzrthp7VkdVEl6lJkWSrd8uUzsZL5XGDZl0ecSvinf8Qr+oSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJOVfnQXgsWgiPz/684q98vLUjQGMB8GA1UdIwQY MBaAFEIbrpiYmNlAJCSq2vu0fDptTCWzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWh1dW1KaVkyVUFrSktyYS03UjhPbTFNSmJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iMzRjYjAtMmY3MS00ZjU5LWJkNWUt NjdlZmNiM2Q4NmZlLzEvUWh1dW1KaVkyVUFrSktyYS03UjhPbTFNSmJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS9iMzRjYjAtMmY3MS00ZjU5LWJkNWUtNjdlZmNiM2Q4NmZl LzEvUWh1dW1KaVkyVUFrSktyYS03UjhPbTFNSmJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgwU1pkgF fhQkn9owOkYq4UKVWv6ORuF67tFo/S3Rl3lRhMRCHa8xmHhtxVyb78GMtGTfpMJL cHnq/eukv1EN4m/wQDQsj7Y8cMAXoIdYrdCvC7QYXeXmNeyI3F8fRpbFXzYBN3VU 1kIHzzOxZcHEpJVorRbSuJueYLV8lbKtGMrnFPpuZ/D0Gct+CifSjn63iq67M+up E0mWGqdALZsR4E0YJcec7E0n7esT+CrarnUsE/ktLtnVSZdtSSGE/moL3lIhH5Jx 25Mo0R6KD4sTs7X4MoB7wISZr5bBV/pOxwVAzMTIhlBxomDOfH/jkIkCIj0Soy4x LnJZIBRjX/C3fw== -----END CERTIFICATE-----Generated at Sat Dec 20 16:01:44 2025 by rpki-client