This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft File: QgOHyUE02aCP_TJjCWdwOtxYK2w.mft (raw, json) Hash identifier: 8NdFeU/+CGU39IJUkZf+F5bAwiJmKQAn40Ucxe5I+SM= Subject key identifier: 9E:C3:98:16:7F:20:8B:46:3E:1D:35:1C:3B:EA:89:6A:B8:DD:1E:1C Authority key identifier: 42:03:87:C9:41:34:D9:A0:8F:FD:32:63:09:67:70:3A:DC:58:2B:6C Certificate issuer: /CN=420387c94134d9a08ffd32630967703adc582b6c Certificate serial: 019B30E90806EDA590EA4275C7A5DA5C3469 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft Manifest number: 0EA3 Signing time: Thu 18 Dec 2025 10:02:16 +0000 Manifest this update: Thu 18 Dec 2025 10:02:16 +0000 Manifest next update: Fri 19 Dec 2025 10:02:16 +0000 Files and hashes: 1: LYrINpBkGiqMBKci7kDEkT4clMM.roa (hash: rpmajg0c6Lkm2tGH4aWf1gD3QwFb6C9vHxZey3xWrlo=) 2: QgOHyUE02aCP_TJjCWdwOtxYK2w.crl (hash: zq5+Ci2qxKjGB9v/5jxpPaqsPWlW13Z2ZgUVc3b5zEY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:e9:08:06:ed:a5:90:ea:42:75:c7:a5:da:5c:34:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=420387c94134d9a08ffd32630967703adc582b6c Validity Not Before: Dec 18 10:02:16 2025 GMT Not After : Dec 19 10:02:16 2025 GMT Subject: CN=9ec398167f208b463e1d351c3bea896ab8dd1e1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e7:64:71:4f:90:64:ee:32:47:b0:5e:54:5f: 78:ec:75:32:a5:19:74:b9:c5:89:38:41:a9:d9:ce: 01:81:42:89:46:1e:0b:f7:21:65:22:c8:ff:62:07: 46:c1:ad:1b:43:9b:31:84:28:6a:af:64:d5:49:2a: 1e:76:3b:47:00:a6:b5:3e:de:0d:b6:a5:59:4e:4b: 8a:69:0e:60:86:46:8b:e9:7a:f5:97:4e:98:23:7e: b1:0d:2b:ec:f0:50:47:f1:51:05:c6:50:1a:ed:82: 4e:36:9d:c7:4c:6e:8e:a4:20:84:14:22:80:cd:91: 2b:b3:b4:5f:e1:23:6c:5a:9b:63:01:6c:97:5c:8b: 3a:4f:17:ad:75:ff:62:c8:cd:2d:80:74:be:9c:c2: 75:c2:d0:66:65:d6:86:b9:ad:2e:43:68:ed:18:e2: 7b:a8:c5:f8:92:c0:b2:ca:89:bb:99:44:86:d8:bf: a2:72:c8:85:01:87:e0:7d:34:db:e6:fb:08:e6:c5: 7b:5f:19:e8:90:7b:24:df:e5:19:3d:61:b5:ed:09: 49:cd:9e:ea:87:18:ef:df:4e:b4:f4:f1:27:e7:0c: db:e6:d1:2f:f9:10:45:74:a9:be:a5:13:e2:88:fe: 50:8c:04:28:76:0d:db:e4:e4:88:06:11:26:07:f8: 59:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:C3:98:16:7F:20:8B:46:3E:1D:35:1C:3B:EA:89:6A:B8:DD:1E:1C X509v3 Authority Key Identifier: keyid:42:03:87:C9:41:34:D9:A0:8F:FD:32:63:09:67:70:3A:DC:58:2B:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:2d:e0:9b:5e:8d:74:82:26:5a:95:cf:11:3d:27:06:64:f2: 7e:78:8f:5e:1a:bf:b5:a4:29:3c:ab:ef:13:6b:15:14:7d:7b: f2:be:dc:d7:98:c0:b6:28:e6:ae:50:b0:ef:c1:bf:ac:9f:ac: 30:86:12:5d:bc:22:d5:b6:4c:74:b4:a1:db:cc:d7:9e:34:f9: 05:3d:a6:41:68:d3:bd:a3:25:f9:1a:3b:36:e5:3d:04:0c:2a: 90:97:5a:30:a4:df:2b:f7:98:52:04:56:97:31:fb:55:35:cb: e4:ad:63:b1:bb:3f:49:20:0f:0b:7c:dc:26:4c:01:29:43:d0: 50:d0:98:2b:bc:cb:5a:5c:21:7f:a5:7e:b0:be:81:a0:53:1d: 57:db:14:09:fa:2f:94:ce:ad:39:dd:3c:07:16:82:2c:bc:c1: 74:96:d0:f1:bf:98:63:a7:fb:4c:5b:d4:4f:f3:99:c1:0a:77: a0:97:0f:e1:5a:c1:70:5c:67:41:61:79:d9:dd:24:5e:92:6a: 18:a3:76:09:78:be:33:50:94:64:aa:ed:df:b9:0e:8c:d7:a3: 0a:6a:76:f6:5c:a9:d1:81:bb:c5:15:b1:7f:59:fc:4f:29:42: d0:f4:33:47:04:a1:a3:13:ff:be:f2:78:29:95:50:2e:53:a8: 01:75:ad:eb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsw6QgG7aWQ6kJ1x6XaXDRpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyMDM4N2M5NDEzNGQ5YTA4ZmZkMzI2MzA5Njc3MDNhZGM1 ODJiNmMwHhcNMjUxMjE4MTAwMjE2WhcNMjUxMjE5MTAwMjE2WjAzMTEwLwYDVQQD Eyg5ZWMzOTgxNjdmMjA4YjQ2M2UxZDM1MWMzYmVhODk2YWI4ZGQxZTFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAludkcU+QZO4yR7BeVF947HUypRl0 ucWJOEGp2c4BgUKJRh4L9yFlIsj/YgdGwa0bQ5sxhChqr2TVSSoedjtHAKa1Pt4N tqVZTkuKaQ5ghkaL6Xr1l06YI36xDSvs8FBH8VEFxlAa7YJONp3HTG6OpCCEFCKA zZErs7Rf4SNsWptjAWyXXIs6Txetdf9iyM0tgHS+nMJ1wtBmZdaGua0uQ2jtGOJ7 qMX4ksCyyom7mUSG2L+icsiFAYfgfTTb5vsI5sV7XxnokHsk3+UZPWG17QlJzZ7q hxjv30609PEn5wzb5tEv+RBFdKm+pRPiiP5QjAQodg3b5OSIBhEmB/hZswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ7DmBZ/IItGPh01HDvqiWq43R4cMB8GA1UdIwQY MBaAFEIDh8lBNNmgj/0yYwlncDrcWCtsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWdPSHlVRTAyYUNQX1RKakNXZHdPdHhZSzJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9hMzhhODctMDE1OS00OTBlLWI2OWMt Mzc2ZjRiNGQ5ZGE2LzEvUWdPSHlVRTAyYUNQX1RKakNXZHdPdHhZSzJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy9hMzhhODctMDE1OS00OTBlLWI2OWMtMzc2ZjRiNGQ5ZGE2 LzEvUWdPSHlVRTAyYUNQX1RKakNXZHdPdHhZSzJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARy3gm16N dIImWpXPET0nBmTyfniPXhq/taQpPKvvE2sVFH178r7c15jAtijmrlCw78G/rJ+s MIYSXbwi1bZMdLSh28zXnjT5BT2mQWjTvaMl+Ro7NuU9BAwqkJdaMKTfK/eYUgRW lzH7VTXL5K1jsbs/SSAPC3zcJkwBKUPQUNCYK7zLWlwhf6V+sL6BoFMdV9sUCfov lM6tOd08BxaCLLzBdJbQ8b+YY6f7TFvUT/OZwQp3oJcP4VrBcFxnQWF52d0kXpJq GKN2CXi+M1CUZKrt37kOjNejCmp29lyp0YG7xRWxf1n8TylC0PQzRwShoxP/vvJ4 KZVQLlOoAXWt6w== -----END CERTIFICATE-----Generated at Thu Dec 18 12:42:28 2025 by rpki-client