This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft File: QRoqlAW9oWccEHdvRCYnPJBOStA.mft (raw, json) Hash identifier: vLlbykTyMM2AWW1SsS9sZbHXfZdPnX2DnW9l9hOTJMk= Subject key identifier: DF:55:1E:F7:48:B8:06:16:92:7B:DB:D0:7A:BE:75:BC:09:92:2D:81 Authority key identifier: 41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0 Certificate issuer: /CN=411a2a9405bda1671c10776f4426273c904e4ad0 Certificate serial: 019AF20983F69DC1457B6DF0F200032C76C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 05:01:41 +0000 Manifest this update: Sat 06 Dec 2025 05:01:41 +0000 Manifest next update: Sun 07 Dec 2025 05:01:41 +0000 Files and hashes: 1: 7kOLb5agTvJNiZmHbg7oPOSBoq0.roa (hash: 0jza8HkowMAhNdk3rHbioNC6hwm48YtOGKmOL8x2OVw=) 2: OltzXJJiE9XyxoEWZKwac5KxNNc.roa (hash: MXwRj0eiEFB7lamZjGpRz17XKhXqe6VMpTtPXa7Dwss=) 3: QRoqlAW9oWccEHdvRCYnPJBOStA.crl (hash: hukbAH2TYW2f3vn2uP7AtGPiEEABk5sfaUmDTc7RU78=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:83:f6:9d:c1:45:7b:6d:f0:f2:00:03:2c:76:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=411a2a9405bda1671c10776f4426273c904e4ad0 Validity Not Before: Dec 6 05:01:41 2025 GMT Not After : Dec 7 05:01:41 2025 GMT Subject: CN=df551ef748b80616927bdbd07abe75bc09922d81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:1b:b3:a0:55:43:b5:72:7e:fe:5b:c7:2a:05: 33:f1:06:92:59:e2:ed:b8:ee:b4:66:a5:e3:81:c5: aa:5c:b9:eb:66:d6:84:a4:d0:f9:8d:12:9a:79:14: 3e:5d:cb:d5:87:eb:d3:ac:2d:c5:57:55:0b:ae:70: eb:d3:14:9a:1f:b2:92:59:fa:a9:d3:27:8b:fb:b7: d3:ef:33:57:60:98:62:e8:cb:e6:78:48:a2:9f:9d: 10:ef:36:a8:a9:6f:d3:61:12:c1:41:d0:b6:34:5d: 89:b8:b5:87:5b:39:45:95:28:8e:75:5b:67:2c:8e: 84:45:9e:df:0d:59:b6:53:b2:d2:4d:94:94:14:56: b9:21:df:3a:65:d6:29:60:4d:11:09:f7:5d:76:6c: 62:a3:be:01:ff:e8:6e:16:30:45:5c:d6:88:db:9f: 20:b4:ec:37:27:3c:8c:70:81:f2:e0:e2:11:95:3a: bb:d2:f1:96:ed:db:10:16:56:3e:e6:b1:52:73:50: 2f:ca:33:7a:a9:37:41:75:30:1e:27:1e:c0:13:11: 79:ff:57:84:07:17:fe:e8:18:d1:3c:f7:5e:a2:a8: e4:09:b1:6e:9d:f4:2f:df:55:28:96:20:32:a1:00: 05:13:ce:cc:a3:0f:bd:b3:f5:27:c5:0e:91:e8:a7: 75:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:55:1E:F7:48:B8:06:16:92:7B:DB:D0:7A:BE:75:BC:09:92:2D:81 X509v3 Authority Key Identifier: keyid:41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:fe:63:4b:d0:3d:53:6d:43:30:7d:c6:52:27:e3:f6:37:0b: 68:94:81:79:e9:7a:3b:16:71:82:e9:3d:28:48:1a:94:b8:76: 20:fc:2b:3d:20:8e:71:5f:e6:49:db:1b:b6:cf:1c:71:39:6a: c6:28:2c:e9:71:59:de:29:08:f0:d8:e7:a8:f1:97:dc:d2:51: 93:c6:07:7f:26:4c:fd:d3:94:14:f8:d9:8d:2e:4f:e8:47:bf: eb:40:51:74:be:73:c3:8f:a0:a1:ba:72:cf:a5:2c:7a:e0:bc: 14:4f:4d:28:b5:55:62:9f:44:c2:cc:e0:0a:98:0a:b1:b5:53: cc:53:22:3b:b3:18:96:37:8f:09:cb:26:fd:eb:5f:de:a8:6c: c9:16:3d:b2:55:45:00:48:82:9c:73:d7:54:88:39:5b:95:d2: e0:c7:39:32:3c:29:e6:9f:fd:ae:dd:33:5b:74:dc:d3:8b:90: 9a:57:8b:46:92:a5:af:9a:02:66:4f:bb:59:d0:e5:8e:32:2b: 15:a6:03:c4:0d:1e:3b:2f:e1:95:8a:93:19:ed:29:b3:0e:61: 87:8d:b7:ba:cd:6c:c4:eb:5f:3e:54:ca:bc:6f:ab:9c:b7:ef: f5:94:45:d6:a7:41:64:33:e5:27:89:55:41:f0:15:aa:fe:03: 83:3d:0e:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCYP2ncFFe23w8gADLHbDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxMWEyYTk0MDViZGExNjcxYzEwNzc2ZjQ0MjYyNzNjOTA0 ZTRhZDAwHhcNMjUxMjA2MDUwMTQxWhcNMjUxMjA3MDUwMTQxWjAzMTEwLwYDVQQD EyhkZjU1MWVmNzQ4YjgwNjE2OTI3YmRiZDA3YWJlNzViYzA5OTIyZDgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8huzoFVDtXJ+/lvHKgUz8QaSWeLt uO60ZqXjgcWqXLnrZtaEpND5jRKaeRQ+XcvVh+vTrC3FV1ULrnDr0xSaH7KSWfqp 0yeL+7fT7zNXYJhi6MvmeEiin50Q7zaoqW/TYRLBQdC2NF2JuLWHWzlFlSiOdVtn LI6ERZ7fDVm2U7LSTZSUFFa5Id86ZdYpYE0RCfdddmxio74B/+huFjBFXNaI258g tOw3JzyMcIHy4OIRlTq70vGW7dsQFlY+5rFSc1AvyjN6qTdBdTAeJx7AExF5/1eE Bxf+6BjRPPdeoqjkCbFunfQv31UoliAyoQAFE87Mow+9s/UnxQ6R6Kd1BwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN9VHvdIuAYWknvb0Hq+dbwJki2BMB8GA1UdIwQY MBaAFEEaKpQFvaFnHBB3b0QmJzyQTkrQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVJvcWxBVzlvV2NjRUhkdlJDWW5QSkJPU3RBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9mZTY4NzAtMDk5MC00YzIxLTllNGQt OGM1MmU2NjZhOGEyLzEvUVJvcWxBVzlvV2NjRUhkdlJDWW5QSkJPU3RBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9mZTY4NzAtMDk5MC00YzIxLTllNGQtOGM1MmU2NjZhOGEy LzEvUVJvcWxBVzlvV2NjRUhkdlJDWW5QSkJPU3RBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe/5jS9A9 U21DMH3GUifj9jcLaJSBeel6OxZxguk9KEgalLh2IPwrPSCOcV/mSdsbts8ccTlq xigs6XFZ3ikI8NjnqPGX3NJRk8YHfyZM/dOUFPjZjS5P6Ee/60BRdL5zw4+gobpy z6UseuC8FE9NKLVVYp9EwszgCpgKsbVTzFMiO7MYljePCcsm/etf3qhsyRY9slVF AEiCnHPXVIg5W5XS4Mc5Mjwp5p/9rt0zW3Tc04uQmleLRpKlr5oCZk+7WdDljjIr FaYDxA0eOy/hlYqTGe0psw5hh423us1sxOtfPlTKvG+rnLfv9ZRF1qdBZDPlJ4lV QfAVqv4Dgz0ODQ== -----END CERTIFICATE-----Generated at Sat Dec 6 13:15:55 2025 by rpki-client