This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft File: 2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft (raw, json) Hash identifier: 89WfOfo9Bki17G0tykKqho4i4fMY3c/4M1THvhA+bD8= Subject key identifier: 43:AD:9A:5B:62:0C:F4:DF:3F:33:DB:FC:42:E4:E5:0F:46:D3:EE:5E Authority key identifier: D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77 Certificate issuer: /CN=d90482763070955e7ea87e2ca37b891b864b2577 Certificate serial: 019B6DA17EEF6EE11DD136A05C90EBC4E07C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft Manifest number: 05AD Signing time: Tue 30 Dec 2025 05:00:58 +0000 Manifest this update: Tue 30 Dec 2025 05:00:58 +0000 Manifest next update: Wed 31 Dec 2025 05:00:58 +0000 Files and hashes: 1: 2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl (hash: bsmf8rZDwExDddTndJZMEELZLN8xuKj0dhl3qw2sWXw=) 2: kZsXR7fR0Ou_RuvSVexqd7WF5Zw.roa (hash: VeB6BvnRbCRLPDDkoYsxbMM4NdMeIicaUa0njjeL7mg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6d:a1:7e:ef:6e:e1:1d:d1:36:a0:5c:90:eb:c4:e0:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d90482763070955e7ea87e2ca37b891b864b2577 Validity Not Before: Dec 30 05:00:58 2025 GMT Not After : Dec 31 05:00:58 2025 GMT Subject: CN=43ad9a5b620cf4df3f33dbfc42e4e50f46d3ee5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b5:8e:9d:5a:85:57:3c:84:64:92:da:b5:24: d0:4d:60:da:26:93:27:6b:1b:f4:92:04:1f:ef:09: e2:07:85:b1:12:1f:a1:f8:7c:90:48:fc:22:68:99: ed:73:f0:57:a6:79:c7:9b:07:be:df:66:b3:5e:b9: dc:0c:9e:ab:ed:96:ae:cf:86:5c:c0:62:3b:d9:b5: 3f:c1:c3:1e:2f:ac:b5:48:a9:73:9a:9c:95:c6:32: f2:c7:8e:ba:1d:40:61:78:9c:1f:49:6b:43:86:1d: f6:a6:4d:c8:7b:ca:de:61:23:70:40:09:20:0b:15: 84:5b:64:a6:96:57:ba:4c:bf:79:51:67:ab:fc:0e: 37:f3:a4:d5:6e:68:79:73:55:41:01:3c:ee:bb:37: 19:36:29:82:96:f6:0b:4d:36:f7:4e:41:f8:e6:f2: 33:31:e2:78:8f:ea:cc:95:64:a1:3a:7e:3e:12:41: 2d:04:ba:db:89:f4:2c:9d:4b:58:e6:5e:75:c7:5f: 88:7f:ae:2f:cd:aa:f6:f9:09:74:68:96:6d:8d:93: df:86:0d:0c:2c:18:bf:79:e5:54:a3:3b:ea:91:d3: 21:45:a4:1d:30:93:3c:42:72:90:d9:4f:39:ca:a8: c9:34:2a:f2:78:df:c4:7e:ff:05:90:4d:07:f4:4c: 76:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:AD:9A:5B:62:0C:F4:DF:3F:33:DB:FC:42:E4:E5:0F:46:D3:EE:5E X509v3 Authority Key Identifier: keyid:D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:e6:82:0b:28:fb:1d:a5:fc:91:6a:33:29:f8:48:84:4b:c8: 7c:1c:cd:73:45:45:f8:98:9a:71:53:2b:8a:7d:e4:46:01:a4: 18:30:14:5b:90:47:e8:28:66:51:52:62:4d:e3:22:62:c9:b6: 85:34:63:8c:6e:bc:cb:a6:b5:6f:a5:98:18:40:76:ac:1e:14: 2a:9f:01:39:f9:2e:89:34:4d:aa:bf:d1:10:10:b7:75:14:ea: b9:6d:6b:d7:08:7e:04:bf:36:ae:9b:32:19:05:b3:26:7f:47: 55:55:d1:b7:b2:38:7c:a0:fe:4b:e3:1f:b4:79:53:3a:52:85: 35:e8:5f:f1:9c:96:7c:bb:ac:97:a1:fa:b8:9f:c5:eb:09:cb: 53:90:28:e9:be:82:c1:9f:f3:f3:b7:61:95:62:ec:0f:86:36: 70:ff:70:8f:5d:de:c4:2d:05:13:13:af:1a:2d:f1:f6:00:42: b3:0d:d2:ae:86:54:30:6b:bd:6d:71:e6:51:21:6b:a4:56:c4: 00:ef:a6:ec:06:67:6a:46:0c:5f:a3:1b:1b:44:13:b7:53:d4: 34:2c:ed:79:e1:33:90:e2:0b:2a:ca:90:8d:6c:27:c5:a7:f1: bc:f9:52:39:73:b2:a0:0c:4a:8d:26:f1:21:10:f4:a9:95:a0: 32:5e:2c:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZttoX7vbuEd0TagXJDrxOB8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MDQ4Mjc2MzA3MDk1NWU3ZWE4N2UyY2EzN2I4OTFiODY0 YjI1NzcwHhcNMjUxMjMwMDUwMDU4WhcNMjUxMjMxMDUwMDU4WjAzMTEwLwYDVQQD Eyg0M2FkOWE1YjYyMGNmNGRmM2YzM2RiZmM0MmU0ZTUwZjQ2ZDNlZTVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3LWOnVqFVzyEZJLatSTQTWDaJpMn axv0kgQf7wniB4WxEh+h+HyQSPwiaJntc/BXpnnHmwe+32azXrncDJ6r7Zauz4Zc wGI72bU/wcMeL6y1SKlzmpyVxjLyx466HUBheJwfSWtDhh32pk3Ie8reYSNwQAkg CxWEW2Smlle6TL95UWer/A4386TVbmh5c1VBATzuuzcZNimClvYLTTb3TkH45vIz MeJ4j+rMlWShOn4+EkEtBLrbifQsnUtY5l51x1+If64vzar2+Ql0aJZtjZPfhg0M LBi/eeVUozvqkdMhRaQdMJM8QnKQ2U85yqjJNCryeN/Efv8FkE0H9Ex2dwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEOtmltiDPTfPzPb/ELk5Q9G0+5eMB8GA1UdIwQY MBaAFNkEgnYwcJVefqh+LKN7iRuGSyV3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlFTQ2RqQndsVjUtcUg0c28zdUpHNFpMSlhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC85NGMyYmItZTgwYS00ZjJjLTgyMDgt YTliMjc2Njc3M2FhLzEvMlFTQ2RqQndsVjUtcUg0c28zdUpHNFpMSlhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC85NGMyYmItZTgwYS00ZjJjLTgyMDgtYTliMjc2Njc3M2Fh LzEvMlFTQ2RqQndsVjUtcUg0c28zdUpHNFpMSlhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtOaCCyj7 HaX8kWozKfhIhEvIfBzNc0VF+JiacVMrin3kRgGkGDAUW5BH6ChmUVJiTeMiYsm2 hTRjjG68y6a1b6WYGEB2rB4UKp8BOfkuiTRNqr/REBC3dRTquW1r1wh+BL82rpsy GQWzJn9HVVXRt7I4fKD+S+MftHlTOlKFNehf8ZyWfLusl6H6uJ/F6wnLU5Ao6b6C wZ/z87dhlWLsD4Y2cP9wj13exC0FExOvGi3x9gBCsw3SroZUMGu9bXHmUSFrpFbE AO+m7AZnakYMX6MbG0QTt1PUNCzteeEzkOILKsqQjWwnxafxvPlSOXOyoAxKjSbx IRD0qZWgMl4scg== -----END CERTIFICATE-----Generated at Tue Dec 30 09:40:46 2025 by rpki-client