This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft File: QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft (raw, json) Hash identifier: uO6b14B997uZfn6LpZztNf2Xq6wbNE3AZe0v8VGuHxs= Subject key identifier: 78:93:7E:AC:0E:29:85:3B:D2:7C:67:E0:43:54:D5:EE:0F:A0:63:CF Authority key identifier: 40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72 Certificate issuer: /CN=40e3953c5cb452f159f8e1505fc702e883657e72 Certificate serial: 019AF6F9D7FE315FFBDC02763D9C2125E841 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft Manifest number: 176B Signing time: Sun 07 Dec 2025 04:02:40 +0000 Manifest this update: Sun 07 Dec 2025 04:02:40 +0000 Manifest next update: Mon 08 Dec 2025 04:02:40 +0000 Files and hashes: 1: 0UiMAD3K1Vd_o1ukey_EamOgfsg.roa (hash: /lgJM2bqi/sUpmdCb7crrQqVayvXqEJ8evDSByU3DJU=) 2: QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl (hash: SrqO9npSwJ9tgfxHydvcXdyPNvSmfEEBieGzFr6pMYM=) 3: aVnXSxl3A9imF58Ni6PA9o97Lt0.roa (hash: 1b03aGZyiDI4vZq8xAQwMk9wWsMeLl0pjrQrWqhenxw=) 4: misEsljA75nAA5oIsh_k4GVCg4w.roa (hash: p4BzWp3j9j27Wjuz+V0a+txHqIiOhQ+ybn3eqzzf6rU=) 5: ujK7196Gk_c3ddVaz2vNjb1yuKM.roa (hash: oPbTKsm4Ke6sVA27ztN+8OGkGTX5DqK9hqJSWTYFs3k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:f9:d7:fe:31:5f:fb:dc:02:76:3d:9c:21:25:e8:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40e3953c5cb452f159f8e1505fc702e883657e72 Validity Not Before: Dec 7 04:02:40 2025 GMT Not After : Dec 8 04:02:40 2025 GMT Subject: CN=78937eac0e29853bd27c67e04354d5ee0fa063cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:6e:1c:5c:38:80:fb:74:76:6d:aa:63:62:06: 16:c6:d3:97:95:8f:37:83:1e:d9:90:da:47:9c:0d: fb:8a:f3:10:8e:03:d5:c3:af:25:d3:9c:ad:33:81: 41:b5:4d:79:ea:28:96:88:a9:56:2d:02:13:c3:be: 37:4b:5c:31:8b:44:e4:e8:e1:5d:51:34:dc:bf:25: c1:83:fa:84:42:67:5c:22:d8:1d:ce:3b:66:93:62: f4:2a:4a:8b:80:99:79:1b:09:aa:dd:87:13:e8:49: 49:39:e3:03:a6:5e:2e:8d:cf:25:2a:c7:93:df:f5: 73:41:4e:a5:53:0e:40:77:18:b4:a2:2e:91:54:b1: 53:83:a4:17:87:c3:74:20:c7:17:69:92:17:4a:2c: 50:1f:61:43:10:cb:a4:63:8f:10:e8:a1:70:9f:12: 88:cd:e9:1e:de:6f:55:5f:b2:82:92:19:e5:33:c5: e2:5c:fb:0c:ec:10:09:c1:f9:14:00:0e:46:ae:43: 98:f9:a1:ac:5c:98:3e:c3:dd:3d:99:6d:76:d0:ad: f9:7c:56:f8:97:f9:51:1c:59:51:6b:a9:3b:94:da: cc:ad:43:b7:22:c2:ca:a6:ef:dd:be:55:dc:8b:02: 66:6a:87:49:f8:ba:0a:ba:a4:2c:c3:ff:d5:43:45: 9a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:93:7E:AC:0E:29:85:3B:D2:7C:67:E0:43:54:D5:EE:0F:A0:63:CF X509v3 Authority Key Identifier: keyid:40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:ec:29:a3:04:1a:c5:30:ed:86:10:5d:54:a8:1b:8e:11:1c: f7:9b:48:7f:1b:74:fe:29:aa:37:02:23:e3:d9:10:60:f3:5f: b3:32:a3:d9:71:14:6a:2d:1e:42:80:10:1d:0a:f8:db:93:d2: f7:5a:83:ae:6b:01:3b:62:78:a9:8d:c3:25:75:91:b7:0b:9f: c0:d2:52:dc:d9:82:05:c2:09:8c:d8:e4:b6:98:af:7d:08:9c: 88:c4:b3:55:ad:c9:9a:21:5d:e2:64:c8:75:e0:58:eb:75:a4: 48:9f:d6:89:06:67:8e:8a:8f:4c:be:08:32:f4:29:96:14:c7: de:17:10:8d:0a:64:62:f9:21:29:ad:31:ab:1d:09:9a:66:62: ec:db:d7:dc:b9:86:a6:93:68:90:98:bc:9e:34:61:16:1c:63: 2d:ed:27:2f:20:e0:4e:f3:93:85:71:66:67:db:9a:b8:61:a4: 0b:54:60:78:4a:06:b6:e8:26:cb:e9:35:44:6b:35:66:97:52: b0:db:bc:cd:6f:16:83:cd:af:e4:ae:b7:b8:c9:02:d9:ce:6a: 26:19:64:99:45:82:8d:e1:10:2c:36:55:9d:7c:af:92:af:db: fa:86:4c:cd:3a:4b:66:78:08:17:ec:25:c7:55:9c:f3:62:5e: c5:06:53:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2+df+MV/73AJ2PZwhJehBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZTM5NTNjNWNiNDUyZjE1OWY4ZTE1MDVmYzcwMmU4ODM2 NTdlNzIwHhcNMjUxMjA3MDQwMjQwWhcNMjUxMjA4MDQwMjQwWjAzMTEwLwYDVQQD Eyg3ODkzN2VhYzBlMjk4NTNiZDI3YzY3ZTA0MzU0ZDVlZTBmYTA2M2NmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA824cXDiA+3R2bapjYgYWxtOXlY83 gx7ZkNpHnA37ivMQjgPVw68l05ytM4FBtU156iiWiKlWLQITw743S1wxi0Tk6OFd UTTcvyXBg/qEQmdcItgdzjtmk2L0KkqLgJl5Gwmq3YcT6ElJOeMDpl4ujc8lKseT 3/VzQU6lUw5Adxi0oi6RVLFTg6QXh8N0IMcXaZIXSixQH2FDEMukY48Q6KFwnxKI zeke3m9VX7KCkhnlM8XiXPsM7BAJwfkUAA5GrkOY+aGsXJg+w909mW120K35fFb4 l/lRHFlRa6k7lNrMrUO3IsLKpu/dvlXciwJmaodJ+LoKuqQsw//VQ0WaFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHiTfqwOKYU70nxn4ENU1e4PoGPPMB8GA1UdIwQY MBaAFEDjlTxctFLxWfjhUF/HAuiDZX5yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEt ZmE1YWYzOGRlYjVlLzEvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEtZmE1YWYzOGRlYjVl LzEvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA+wpowQa xTDthhBdVKgbjhEc95tIfxt0/imqNwIj49kQYPNfszKj2XEUai0eQoAQHQr425PS 91qDrmsBO2J4qY3DJXWRtwufwNJS3NmCBcIJjNjktpivfQiciMSzVa3JmiFd4mTI deBY63WkSJ/WiQZnjoqPTL4IMvQplhTH3hcQjQpkYvkhKa0xqx0JmmZi7NvX3LmG ppNokJi8njRhFhxjLe0nLyDgTvOThXFmZ9uauGGkC1RgeEoGtugmy+k1RGs1ZpdS sNu8zW8Wg82v5K63uMkC2c5qJhlkmUWCjeEQLDZVnXyvkq/b+oZMzTpLZngIF+wl x1Wc82JexQZTsQ== -----END CERTIFICATE-----Generated at Sun Dec 7 06:01:00 2025 by rpki-client