This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/926b57-cc12-48fc-b996-92a4be85c11d/1/SQtgyL0tnQHwq1ocTApT4dczn2U.mft File: SQtgyL0tnQHwq1ocTApT4dczn2U.mft (raw, json) Hash identifier: gi2DM/I1LuUYYBHH14WLbpG/sOkHtgY5Lb2F2ZVwbPk= Subject key identifier: 69:D2:B9:C9:1E:CA:9A:FD:11:D1:91:F7:E5:2B:DA:E3:75:86:A8:5D Authority key identifier: 49:0B:60:C8:BD:2D:9D:01:F0:AB:5A:1C:4C:0A:53:E1:D7:33:9F:65 Certificate issuer: /CN=490b60c8bd2d9d01f0ab5a1c4c0a53e1d7339f65 Certificate serial: 019B405B79F6C780C7488D0D5BB4F24382CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQtgyL0tnQHwq1ocTApT4dczn2U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/926b57-cc12-48fc-b996-92a4be85c11d/1/SQtgyL0tnQHwq1ocTApT4dczn2U.mft Manifest number: 1371 Signing time: Sun 21 Dec 2025 10:01:35 +0000 Manifest this update: Sun 21 Dec 2025 10:01:35 +0000 Manifest next update: Mon 22 Dec 2025 10:01:35 +0000 Files and hashes: 1: SQtgyL0tnQHwq1ocTApT4dczn2U.crl (hash: Ot/aSe5nK1coD8KxOvI/+/JX9hcIyVpswziJAvSeqfQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/926b57-cc12-48fc-b996-92a4be85c11d/1/SQtgyL0tnQHwq1ocTApT4dczn2U.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/926b57-cc12-48fc-b996-92a4be85c11d/1/SQtgyL0tnQHwq1ocTApT4dczn2U.mft rsync://rpki.ripe.net/repository/DEFAULT/SQtgyL0tnQHwq1ocTApT4dczn2U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:5b:79:f6:c7:80:c7:48:8d:0d:5b:b4:f2:43:82:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=490b60c8bd2d9d01f0ab5a1c4c0a53e1d7339f65 Validity Not Before: Dec 21 10:01:35 2025 GMT Not After : Dec 22 10:01:35 2025 GMT Subject: CN=69d2b9c91eca9afd11d191f7e52bdae37586a85d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:7b:5c:e9:6c:34:5d:9c:55:d4:3d:8f:86:36: e1:31:60:6c:fb:06:6e:84:5c:cb:43:28:39:b6:a2: a2:1c:9c:68:65:9a:3e:48:f0:62:29:6e:7e:fc:97: 62:cc:1a:9d:45:b2:c4:7b:61:f7:6c:a8:48:8b:a6: 44:51:37:ce:10:04:db:06:9e:94:95:09:5a:45:46: d3:a4:47:6a:30:ee:8b:e8:6b:ac:e2:b8:27:d6:c0: 8c:eb:cb:0d:15:8a:35:8c:bf:ee:38:a6:be:02:48: 5c:0c:ac:71:64:cf:74:e5:32:12:12:e7:33:94:01: 30:b8:89:2a:ce:24:e8:96:1e:8f:58:47:6a:3f:88: 98:c3:8d:c3:bb:09:dd:c0:da:4c:cd:01:25:a0:87: 26:4e:dd:da:e0:e5:d8:bf:ab:3e:49:8e:0b:db:d7: 2a:5b:65:d6:1a:2f:2f:be:e7:6b:32:22:5c:81:1e: 7b:65:8c:bd:5b:05:5d:4e:1d:08:79:e3:dc:4a:12: e5:a6:50:d3:b9:52:79:ef:63:18:b5:ef:ad:a2:0d: 56:1d:93:22:df:4b:d1:7a:df:05:d0:cc:d2:31:0b: 69:53:b7:35:1e:9d:68:68:eb:70:c0:45:dd:68:0f: f5:b6:ce:9f:ee:e8:44:04:a8:36:89:ca:2c:66:17: df:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:D2:B9:C9:1E:CA:9A:FD:11:D1:91:F7:E5:2B:DA:E3:75:86:A8:5D X509v3 Authority Key Identifier: keyid:49:0B:60:C8:BD:2D:9D:01:F0:AB:5A:1C:4C:0A:53:E1:D7:33:9F:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQtgyL0tnQHwq1ocTApT4dczn2U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/926b57-cc12-48fc-b996-92a4be85c11d/1/SQtgyL0tnQHwq1ocTApT4dczn2U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/926b57-cc12-48fc-b996-92a4be85c11d/1/SQtgyL0tnQHwq1ocTApT4dczn2U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:1b:9b:18:84:67:c3:44:41:b7:ba:d2:cc:20:f7:f2:0e:90: c9:96:4f:5e:3f:dd:e9:28:f2:c1:00:e0:45:cb:94:da:ca:3a: f7:b1:5f:48:6b:0b:5e:f6:df:9c:c2:a5:09:9e:ad:be:b9:93: 50:24:a1:23:51:bb:6f:bd:13:70:8e:d1:c4:92:16:5f:dd:c8: 3b:55:e3:e8:81:9d:95:ce:9a:5e:1b:4e:1f:79:b3:a9:3b:5d: ad:0b:3b:1d:51:5a:c2:8f:1f:ca:41:bf:ce:9d:1f:71:d7:6b: e2:19:db:5e:40:67:46:2d:f6:76:da:2a:00:53:00:19:30:cf: 1c:6a:7b:55:61:0f:88:50:a8:17:44:0a:5e:19:9c:71:40:14: 3b:8d:62:40:a1:a2:56:dd:db:c0:b1:02:39:78:51:d3:8a:7f: e6:c4:15:e6:13:6e:6e:68:a7:10:78:d2:ff:76:7a:41:3b:74: fe:fc:73:27:10:63:41:13:a9:d5:94:5f:b0:1a:dc:cf:fb:8c: 59:f9:4e:37:9d:99:3e:c5:9c:17:83:1e:e9:34:63:e4:45:d1: 39:39:20:c1:22:77:f0:8c:6a:f1:21:c8:a5:e0:51:7b:10:56: 13:3a:ea:2c:63:2a:e9:67:3a:f4:1f:38:f3:6c:67:f9:0c:b4: e1:04:7d:02 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAW3n2x4DHSI0NW7TyQ4LMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5MGI2MGM4YmQyZDlkMDFmMGFiNWExYzRjMGE1M2UxZDcz MzlmNjUwHhcNMjUxMjIxMTAwMTM1WhcNMjUxMjIyMTAwMTM1WjAzMTEwLwYDVQQD Eyg2OWQyYjljOTFlY2E5YWZkMTFkMTkxZjdlNTJiZGFlMzc1ODZhODVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA63tc6Ww0XZxV1D2PhjbhMWBs+wZu hFzLQyg5tqKiHJxoZZo+SPBiKW5+/JdizBqdRbLEe2H3bKhIi6ZEUTfOEATbBp6U lQlaRUbTpEdqMO6L6Gus4rgn1sCM68sNFYo1jL/uOKa+AkhcDKxxZM905TISEucz lAEwuIkqziTolh6PWEdqP4iYw43DuwndwNpMzQEloIcmTt3a4OXYv6s+SY4L29cq W2XWGi8vvudrMiJcgR57ZYy9WwVdTh0IeePcShLlplDTuVJ572MYte+tog1WHZMi 30vRet8F0MzSMQtpU7c1Hp1oaOtwwEXdaA/1ts6f7uhEBKg2icosZhff9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGnSuckeypr9EdGR9+Ur2uN1hqhdMB8GA1UdIwQY MBaAFEkLYMi9LZ0B8KtaHEwKU+HXM59lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1F0Z3lMMHRuUUh3cTFvY1RBcFQ0ZGN6bjJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy85MjZiNTctY2MxMi00OGZjLWI5OTYt OTJhNGJlODVjMTFkLzEvU1F0Z3lMMHRuUUh3cTFvY1RBcFQ0ZGN6bjJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy85MjZiNTctY2MxMi00OGZjLWI5OTYtOTJhNGJlODVjMTFk LzEvU1F0Z3lMMHRuUUh3cTFvY1RBcFQ0ZGN6bjJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiBubGIRn w0RBt7rSzCD38g6QyZZPXj/d6SjywQDgRcuU2so697FfSGsLXvbfnMKlCZ6tvrmT UCShI1G7b70TcI7RxJIWX93IO1Xj6IGdlc6aXhtOH3mzqTtdrQs7HVFawo8fykG/ zp0fcddr4hnbXkBnRi32dtoqAFMAGTDPHGp7VWEPiFCoF0QKXhmccUAUO41iQKGi Vt3bwLECOXhR04p/5sQV5hNubminEHjS/3Z6QTt0/vxzJxBjQROp1ZRfsBrcz/uM WflON52ZPsWcF4Me6TRj5EXROTkgwSJ38Ixq8SHIpeBRexBWEzrqLGMq6Wc69B84 82xn+Qy04QR9Ag== -----END CERTIFICATE-----Generated at Sun Dec 21 13:51:38 2025 by rpki-client