This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft File: QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft (raw, json) Hash identifier: +Dapsq1gNYh4JZ/S/jaJDPu9VPyjcNiMrYgWeCKobVE= Subject key identifier: 47:40:7D:1B:DE:93:AD:95:86:43:CF:22:04:3E:95:E0:01:0C:11:3A Authority key identifier: 40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C Certificate issuer: /CN=40cf69cca2c86e194754788edcd88e352ed4e11c Certificate serial: 019AF2765F67FBAFC912BC8BA320B04E6B64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft Manifest number: 0D7F Signing time: Sat 06 Dec 2025 07:00:35 +0000 Manifest this update: Sat 06 Dec 2025 07:00:35 +0000 Manifest next update: Sun 07 Dec 2025 07:00:35 +0000 Files and hashes: 1: QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl (hash: aChiznvCLo+BdAChpJtZ/9xjW3ZJ6bRe365C9qVIdYg=) 2: vfjUIsx7CDVuZMrXZKkgTFoznUI.roa (hash: kc2fyWr6FJL7rTi0mPaMQj4eZbP6Y0dyJoouX+alOvk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:5f:67:fb:af:c9:12:bc:8b:a3:20:b0:4e:6b:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40cf69cca2c86e194754788edcd88e352ed4e11c Validity Not Before: Dec 6 07:00:35 2025 GMT Not After : Dec 7 07:00:35 2025 GMT Subject: CN=47407d1bde93ad958643cf22043e95e0010c113a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:81:7e:76:89:16:6a:ae:50:4d:5d:1b:4a:f0: 13:78:2e:0b:e0:b2:63:5a:9d:5b:89:4c:10:73:35: 05:f4:2f:ec:a7:33:21:7c:60:3c:f1:e4:bf:4e:02: bd:d5:c7:f1:c9:26:70:fe:04:91:6d:36:a8:cb:75: c7:74:ac:79:3b:1a:55:4c:e5:b8:00:19:a7:d8:2c: b2:8f:06:c0:3f:c5:46:05:c7:ae:af:70:a3:fb:19: 51:41:47:8e:c6:7a:d4:37:4a:41:48:d5:b1:f5:6c: 2b:12:30:7a:1b:9e:fe:95:a3:f0:d6:12:fd:d3:97: c7:d1:d4:e9:7c:f0:12:98:c9:f8:d8:2b:47:2a:1b: 76:bb:b7:7b:7e:c4:07:9f:21:92:6f:a8:3b:db:eb: 2e:d1:72:86:01:ed:47:c8:45:7a:9b:8d:81:ac:d9: f6:97:60:5c:e5:08:57:9e:8a:38:54:36:6e:79:1e: 35:b6:c7:66:93:01:ce:e0:46:52:3c:14:a5:01:60: 64:97:9d:1c:c3:df:63:4d:56:65:93:51:15:83:d4: 7c:d9:e6:af:a4:61:fe:41:de:dd:80:81:9c:13:9a: 10:41:7f:14:47:2a:20:05:0b:ab:9b:47:53:e8:32: 50:51:bd:8e:9c:f1:0c:13:cf:14:74:7b:43:ac:28: 44:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:40:7D:1B:DE:93:AD:95:86:43:CF:22:04:3E:95:E0:01:0C:11:3A X509v3 Authority Key Identifier: keyid:40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:18:ed:ce:1c:63:00:ea:c3:07:81:0f:de:1c:5e:fa:7d:30: c1:0f:b6:ae:ad:48:69:84:82:c8:dc:38:f4:4a:f9:85:1f:6b: d1:61:86:e6:db:3b:f7:1b:7e:ba:47:10:09:2f:1e:02:46:a9: 98:8e:61:de:04:fe:42:e8:e5:47:5f:f8:77:21:28:81:aa:f7: d6:2b:0f:07:29:09:7a:f1:f1:97:15:c6:b6:3b:12:95:ec:38: 34:8b:51:db:0a:05:01:06:06:b6:b5:f3:70:34:7a:75:88:a5: 0b:50:af:77:21:d2:97:55:dd:14:1f:c3:fe:58:b5:06:ef:c0: 03:65:2f:89:aa:f3:21:24:85:b7:65:82:fa:74:6e:43:e5:4b: b5:70:65:d0:35:81:42:9c:0b:3d:70:62:5c:14:31:75:8c:2f: c6:e3:4a:9c:7e:6c:30:49:8b:a8:6d:93:5f:7d:56:e0:f5:a0: 38:a8:be:21:96:06:42:82:2e:2e:4f:99:bd:a2:d0:4f:61:c1: 40:08:5d:88:2d:a2:56:b6:68:ce:8f:af:5b:2b:29:53:c2:68: f5:47:c5:c9:58:58:f0:12:25:cb:67:3e:62:9d:88:7e:69:d3: 39:7b:ee:a9:e1:3e:2e:ed:a1:07:08:6e:43:32:cc:fd:50:0b: 35:66:43:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydl9n+6/JEryLoyCwTmtkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwY2Y2OWNjYTJjODZlMTk0NzU0Nzg4ZWRjZDg4ZTM1MmVk NGUxMWMwHhcNMjUxMjA2MDcwMDM1WhcNMjUxMjA3MDcwMDM1WjAzMTEwLwYDVQQD Eyg0NzQwN2QxYmRlOTNhZDk1ODY0M2NmMjIwNDNlOTVlMDAxMGMxMTNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0YF+dokWaq5QTV0bSvATeC4L4LJj Wp1biUwQczUF9C/spzMhfGA88eS/TgK91cfxySZw/gSRbTaoy3XHdKx5OxpVTOW4 ABmn2CyyjwbAP8VGBceur3Cj+xlRQUeOxnrUN0pBSNWx9WwrEjB6G57+laPw1hL9 05fH0dTpfPASmMn42CtHKht2u7d7fsQHnyGSb6g72+su0XKGAe1HyEV6m42BrNn2 l2Bc5QhXnoo4VDZueR41tsdmkwHO4EZSPBSlAWBkl50cw99jTVZlk1EVg9R82eav pGH+Qd7dgIGcE5oQQX8URyogBQurm0dT6DJQUb2OnPEME88UdHtDrChE5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEdAfRvek62VhkPPIgQ+leABDBE6MB8GA1UdIwQY MBaAFEDPacyiyG4ZR1R4jtzYjjUu1OEcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU05cHpLTEliaGxIVkhpTzNOaU9OUzdVNFJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9iOGI2MDYtYzY1YS00MDlhLWJhOGQt Y2YxYTVkOGU1ZjZkLzEvUU05cHpLTEliaGxIVkhpTzNOaU9OUzdVNFJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9iOGI2MDYtYzY1YS00MDlhLWJhOGQtY2YxYTVkOGU1ZjZk LzEvUU05cHpLTEliaGxIVkhpTzNOaU9OUzdVNFJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoRjtzhxj AOrDB4EP3hxe+n0wwQ+2rq1IaYSCyNw49Er5hR9r0WGG5ts79xt+ukcQCS8eAkap mI5h3gT+QujlR1/4dyEogar31isPBykJevHxlxXGtjsSlew4NItR2woFAQYGtrXz cDR6dYilC1CvdyHSl1XdFB/D/li1Bu/AA2UviarzISSFt2WC+nRuQ+VLtXBl0DWB QpwLPXBiXBQxdYwvxuNKnH5sMEmLqG2TX31W4PWgOKi+IZYGQoIuLk+ZvaLQT2HB QAhdiC2iVrZozo+vWyspU8Jo9UfFyVhY8BIly2c+Yp2IfmnTOXvuqeE+Lu2hBwhu QzLM/VALNWZD8g== -----END CERTIFICATE-----Generated at Sat Dec 6 09:20:04 2025 by rpki-client