This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft File: QB0ZYVrOK7vPoJFpCAgIdipksX4.mft (raw, json) Hash identifier: IkvNZ82aRxHAOEjqEkS/xmzCkdbrq8X4d6N9E/y+Q4Q= Subject key identifier: 6A:55:86:19:6E:87:81:B2:71:E4:96:91:47:2E:94:8B:A5:28:50:53 Authority key identifier: 40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E Certificate issuer: /CN=401d19615ace2bbbcfa09169080808762a64b17e Certificate serial: 019AF42E518274A4662C798EB53D67C880D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft Manifest number: 0631 Signing time: Sat 06 Dec 2025 15:01:07 +0000 Manifest this update: Sat 06 Dec 2025 15:01:07 +0000 Manifest next update: Sun 07 Dec 2025 15:01:07 +0000 Files and hashes: 1: KrtTh6gsfptfdAcGq3CmJjqfV2o.roa (hash: eRRAdGSdFwP7Zvo2rxHWeAe37W0cOjnKNlia+tVBb+M=) 2: QB0ZYVrOK7vPoJFpCAgIdipksX4.crl (hash: x1k6ael033FelLV3EXvksFw2sdiPUJB8Yu50+vOb0Ak=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 15:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:51:82:74:a4:66:2c:79:8e:b5:3d:67:c8:80:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=401d19615ace2bbbcfa09169080808762a64b17e Validity Not Before: Dec 6 15:01:07 2025 GMT Not After : Dec 7 15:01:07 2025 GMT Subject: CN=6a5586196e8781b271e49691472e948ba5285053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:03:33:d6:00:02:39:44:e5:0d:f0:e8:29:28: 77:80:28:c3:f0:bb:e7:66:7f:22:d3:d6:a5:9c:2a: 53:57:f3:0d:8b:ba:80:8b:ba:55:e6:dc:65:40:51: 15:a0:57:1b:ce:7c:2f:ab:a0:d6:ff:c8:7a:bc:3d: f6:3f:26:07:66:b5:e5:8e:7f:d0:c2:42:b0:79:66: d2:bd:06:01:75:78:ec:75:bc:1b:81:d8:3a:c9:b9: de:c6:23:78:bd:67:39:e7:00:29:5d:92:80:38:42: e5:08:fc:1d:1f:7f:40:93:22:35:e3:58:41:1a:18: 56:82:8e:64:8b:39:82:74:8c:41:f0:16:39:5f:65: 9c:b2:9a:4c:10:35:e7:bf:11:3e:97:ae:a4:fb:68: ce:b3:36:31:29:bb:6f:3c:ea:33:e2:d0:d0:b4:87: 7a:64:2c:d4:7f:87:38:07:e9:cc:ec:9e:09:3a:a4: 9a:51:5a:61:f5:fc:6f:02:da:2d:97:23:4a:75:1f: fb:a3:0d:0d:0e:3e:9b:54:8d:b2:c9:7a:d3:06:fa: 06:cc:08:62:12:63:f6:28:a1:0d:7c:dd:0e:18:93: 19:99:65:3c:c7:21:0d:57:61:d1:9f:1a:1f:15:97: dd:e2:90:b5:b5:7f:a4:02:2b:f1:37:6d:b2:c3:79: e4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:55:86:19:6E:87:81:B2:71:E4:96:91:47:2E:94:8B:A5:28:50:53 X509v3 Authority Key Identifier: keyid:40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:7b:b1:28:5c:08:bc:09:73:83:73:b5:e5:df:e0:a1:5b:ee: fd:62:a4:7c:64:bf:f7:f7:a3:9c:60:00:cb:c6:42:3e:9a:c2: 57:34:68:51:e7:65:ea:e3:a8:8a:1d:6f:96:fd:0a:d9:ca:5d: d4:36:c0:cd:bb:ab:05:2c:a4:0b:b5:e5:30:d3:d5:0b:97:1f: d8:25:5a:7d:6e:bc:cd:50:a4:e3:4f:60:27:53:1e:34:e5:51: f6:5a:e3:62:47:ab:05:a3:3b:eb:0d:ff:c9:cb:ee:b5:3f:3e: 6d:02:9d:7d:ed:ef:66:0c:33:b8:71:54:25:26:80:6d:d0:1a: ee:1f:4b:95:55:6d:7c:d7:ee:e2:18:3c:03:57:54:4e:8d:35: 1c:b7:46:a6:f0:6b:99:65:c3:6c:52:e1:5e:60:b6:ce:ed:13: 03:b3:5c:fa:61:08:4b:65:3a:67:ae:9f:b0:0b:a7:7a:14:89: b7:30:77:48:a8:fb:45:38:6d:e3:bb:8f:74:72:e8:db:3f:97: fa:1d:83:c3:f1:bd:5d:b2:fe:9d:09:f1:c3:ae:27:2f:e0:73: 4b:64:ce:f1:e0:54:66:aa:a2:39:b1:d2:5a:3f:98:ad:1e:8c: 6b:14:f9:40:30:9c:de:38:50:d4:b9:ab:14:2c:83:b1:50:2c: f4:2d:7e:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LlGCdKRmLHmOtT1nyIDUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwMWQxOTYxNWFjZTJiYmJjZmEwOTE2OTA4MDgwODc2MmE2 NGIxN2UwHhcNMjUxMjA2MTUwMTA3WhcNMjUxMjA3MTUwMTA3WjAzMTEwLwYDVQQD Eyg2YTU1ODYxOTZlODc4MWIyNzFlNDk2OTE0NzJlOTQ4YmE1Mjg1MDUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQMz1gACOUTlDfDoKSh3gCjD8Lvn Zn8i09alnCpTV/MNi7qAi7pV5txlQFEVoFcbznwvq6DW/8h6vD32PyYHZrXljn/Q wkKweWbSvQYBdXjsdbwbgdg6ybnexiN4vWc55wApXZKAOELlCPwdH39AkyI141hB GhhWgo5kizmCdIxB8BY5X2WcsppMEDXnvxE+l66k+2jOszYxKbtvPOoz4tDQtId6 ZCzUf4c4B+nM7J4JOqSaUVph9fxvAtotlyNKdR/7ow0NDj6bVI2yyXrTBvoGzAhi EmP2KKENfN0OGJMZmWU8xyENV2HRnxofFZfd4pC1tX+kAivxN22yw3nkfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGpVhhluh4GyceSWkUculIulKFBTMB8GA1UdIwQY MBaAFEAdGWFaziu7z6CRaQgICHYqZLF+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUIwWllWck9LN3ZQb0pGcENBZ0lkaXBrc1g0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9iNWRhNzAtNDIxMC00NjNlLTlkYzYt OTc5OTcyYTAwMTRkLzEvUUIwWllWck9LN3ZQb0pGcENBZ0lkaXBrc1g0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS9iNWRhNzAtNDIxMC00NjNlLTlkYzYtOTc5OTcyYTAwMTRk LzEvUUIwWllWck9LN3ZQb0pGcENBZ0lkaXBrc1g0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOHuxKFwI vAlzg3O15d/goVvu/WKkfGS/9/ejnGAAy8ZCPprCVzRoUedl6uOoih1vlv0K2cpd 1DbAzburBSykC7XlMNPVC5cf2CVafW68zVCk409gJ1MeNOVR9lrjYkerBaM76w3/ ycvutT8+bQKdfe3vZgwzuHFUJSaAbdAa7h9LlVVtfNfu4hg8A1dUTo01HLdGpvBr mWXDbFLhXmC2zu0TA7Nc+mEIS2U6Z66fsAunehSJtzB3SKj7RTht47uPdHLo2z+X +h2Dw/G9XbL+nQnxw64nL+BzS2TO8eBUZqqiObHSWj+YrR6MaxT5QDCc3jhQ1Lmr FCyDsVAs9C1+4A== -----END CERTIFICATE-----Generated at Sun Dec 7 00:55:09 2025 by rpki-client