This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft File: qqbmeSWCHkuHnIA-wKUiRflnOtA.mft (raw, json) Hash identifier: wVJlq2PT7WqBfoEP0tLYc7/cHnKSlH4di88JbziUPPE= Subject key identifier: 40:C8:09:97:C8:CA:03:CC:A7:10:95:BE:89:D0:F1:57:FA:7C:24:B4 Authority key identifier: AA:A6:E6:79:25:82:1E:4B:87:9C:80:3E:C0:A5:22:45:F9:67:3A:D0 Certificate issuer: /CN=aaa6e67925821e4b879c803ec0a52245f9673ad0 Certificate serial: 019AF352415D986822D21704E0852D6A52E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qqbmeSWCHkuHnIA-wKUiRflnOtA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft Manifest number: 0504 Signing time: Sat 06 Dec 2025 11:00:45 +0000 Manifest this update: Sat 06 Dec 2025 11:00:45 +0000 Manifest next update: Sun 07 Dec 2025 11:00:45 +0000 Files and hashes: 1: qqbmeSWCHkuHnIA-wKUiRflnOtA.crl (hash: bArBx9pETaTFx5OUxCTNA4wO1S7wjW135XNnCjNKZrE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.crl rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft rsync://rpki.ripe.net/repository/DEFAULT/qqbmeSWCHkuHnIA-wKUiRflnOtA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:41:5d:98:68:22:d2:17:04:e0:85:2d:6a:52:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aaa6e67925821e4b879c803ec0a52245f9673ad0 Validity Not Before: Dec 6 11:00:45 2025 GMT Not After : Dec 7 11:00:45 2025 GMT Subject: CN=40c80997c8ca03cca71095be89d0f157fa7c24b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:66:7f:3c:6c:95:a1:ea:0b:b2:0a:07:a5:da: 2f:88:00:58:1e:77:98:1e:18:e5:33:09:23:0c:e8: da:dc:32:1c:21:ef:94:0c:00:bd:fc:ed:5f:64:0b: 88:51:90:7b:18:5a:c8:61:e2:fb:16:d4:f0:21:e8: 78:53:b2:a5:d8:05:bf:75:92:9d:44:10:ff:0b:83: 06:a2:b7:13:35:4a:07:6a:83:dd:3f:dc:80:8c:4b: 95:ea:c3:53:2a:01:52:af:6b:3e:84:b0:97:db:35: 21:b8:78:25:4e:b6:04:38:9e:2c:4c:50:a3:f1:31: 83:11:f1:f9:b2:00:33:27:5f:22:3f:3c:f2:ae:aa: a3:d2:2c:da:75:03:5a:3d:fe:d5:9e:e0:8b:10:19: a3:d1:20:00:8e:d0:e3:d4:fe:25:91:a8:fc:24:50: b1:de:75:b1:cc:80:ec:0c:96:0e:ad:3b:a1:2c:87: e9:3b:2f:71:cc:4e:02:8c:c5:22:ee:4c:9b:04:d5: a5:fd:65:96:9e:98:75:38:a1:89:36:37:20:b4:73: b5:f7:55:c2:13:72:18:cf:c6:d3:33:49:f1:81:b4: 15:57:ab:57:35:c5:b0:2c:87:18:ef:63:af:96:f3: f4:11:c5:d5:60:04:38:d8:c5:bf:03:aa:9f:bd:5a: b9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:C8:09:97:C8:CA:03:CC:A7:10:95:BE:89:D0:F1:57:FA:7C:24:B4 X509v3 Authority Key Identifier: keyid:AA:A6:E6:79:25:82:1E:4B:87:9C:80:3E:C0:A5:22:45:F9:67:3A:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqbmeSWCHkuHnIA-wKUiRflnOtA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:26:97:bc:eb:15:97:57:d6:0f:c9:3a:2d:0a:c3:11:a8:56: 77:8e:4d:74:ee:8c:00:99:49:4d:e5:27:13:3a:4d:9f:6c:a0: 03:b1:05:34:18:36:cf:2b:11:e5:d6:dc:61:5a:f9:46:ad:57: 5c:b6:13:87:ac:8b:a4:14:56:eb:2d:33:d6:85:62:77:90:50: 39:42:e3:6a:7e:a6:70:d1:bf:e4:e2:34:bb:af:02:5b:37:e3: de:60:2d:16:d7:03:bf:ab:f7:1d:c8:d3:40:7c:a4:a6:89:f6: 04:17:eb:78:b6:c3:f8:d3:45:23:79:1c:40:4e:b5:b0:3e:d8: dd:cf:0f:3e:4b:b4:45:88:90:81:ed:19:3a:3e:bc:56:b4:9d: 3a:3e:5e:65:43:62:56:d5:b9:fa:6d:d8:0c:49:b4:55:32:4b: 62:f6:8d:b8:3b:10:04:6c:8c:a3:6b:78:cb:11:39:44:d3:f6: 49:88:ad:58:12:0c:ed:1b:69:7f:af:54:ed:08:84:ba:98:5f: 3b:df:cc:14:e5:21:f6:4b:5c:bb:86:d3:0f:c2:c4:29:e2:dd: 9a:f7:68:82:fd:42:d5:80:77:4b:28:cd:e8:4b:0e:e0:b5:25: 20:3d:94:68:ad:b2:e2:1d:1c:7d:b3:a2:19:1b:fd:f3:a2:4e: 1c:2f:a0:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUkFdmGgi0hcE4IUtalLlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhYTZlNjc5MjU4MjFlNGI4NzljODAzZWMwYTUyMjQ1Zjk2 NzNhZDAwHhcNMjUxMjA2MTEwMDQ1WhcNMjUxMjA3MTEwMDQ1WjAzMTEwLwYDVQQD Eyg0MGM4MDk5N2M4Y2EwM2NjYTcxMDk1YmU4OWQwZjE1N2ZhN2MyNGI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxWZ/PGyVoeoLsgoHpdoviABYHneY HhjlMwkjDOja3DIcIe+UDAC9/O1fZAuIUZB7GFrIYeL7FtTwIeh4U7Kl2AW/dZKd RBD/C4MGorcTNUoHaoPdP9yAjEuV6sNTKgFSr2s+hLCX2zUhuHglTrYEOJ4sTFCj 8TGDEfH5sgAzJ18iPzzyrqqj0izadQNaPf7VnuCLEBmj0SAAjtDj1P4lkaj8JFCx 3nWxzIDsDJYOrTuhLIfpOy9xzE4CjMUi7kybBNWl/WWWnph1OKGJNjcgtHO191XC E3IYz8bTM0nxgbQVV6tXNcWwLIcY72OvlvP0EcXVYAQ42MW/A6qfvVq5WwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEDICZfIygPMpxCVvonQ8Vf6fCS0MB8GA1UdIwQY MBaAFKqm5nklgh5Lh5yAPsClIkX5ZzrQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXFibWVTV0NIa3VIbklBLXdLVWlSZmxuT3RBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy82NGFlNWEtODYyMi00NWUyLTkzMjct NTEyZjU2NWFjMDExLzEvcXFibWVTV0NIa3VIbklBLXdLVWlSZmxuT3RBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy82NGFlNWEtODYyMi00NWUyLTkzMjctNTEyZjU2NWFjMDEx LzEvcXFibWVTV0NIa3VIbklBLXdLVWlSZmxuT3RBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbyaXvOsV l1fWD8k6LQrDEahWd45NdO6MAJlJTeUnEzpNn2ygA7EFNBg2zysR5dbcYVr5Rq1X XLYTh6yLpBRW6y0z1oVid5BQOULjan6mcNG/5OI0u68CWzfj3mAtFtcDv6v3HcjT QHykpon2BBfreLbD+NNFI3kcQE61sD7Y3c8PPku0RYiQge0ZOj68VrSdOj5eZUNi VtW5+m3YDEm0VTJLYvaNuDsQBGyMo2t4yxE5RNP2SYitWBIM7Rtpf69U7QiEuphf O9/MFOUh9ktcu4bTD8LEKeLdmvdogv1C1YB3SyjN6EsO4LUlID2UaK2y4h0cfbOi GRv986JOHC+gwA== -----END CERTIFICATE-----Generated at Sat Dec 6 17:46:19 2025 by rpki-client