This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft File: QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft (raw, json) Hash identifier: iCjmJ5raI7f91BpC/p7chKC3Q4iYwIbMmUaSgRxKlSM= Subject key identifier: A7:24:EB:4C:7B:62:C0:0D:34:6D:5C:86:14:1F:5D:5C:64:7A:6E:C9 Authority key identifier: 40:5F:FC:74:AE:92:38:6A:FB:7C:E7:70:F0:39:0E:90:D4:CD:E3:06 Certificate issuer: /CN=405ffc74ae92386afb7ce770f0390e90d4cde306 Certificate serial: 019AF12EBA17F3591AB217EE50A59CB2AFCD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QF_8dK6SOGr7fOdw8DkOkNTN4wY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft Manifest number: 03A8 Signing time: Sat 06 Dec 2025 01:02:42 +0000 Manifest this update: Sat 06 Dec 2025 01:02:42 +0000 Manifest next update: Sun 07 Dec 2025 01:02:42 +0000 Files and hashes: 1: QF_8dK6SOGr7fOdw8DkOkNTN4wY.crl (hash: MXby3Z3L7p1yjfeSEyod8jTGiEZGQlEhnP2nMuHc08E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.crl rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft rsync://rpki.ripe.net/repository/DEFAULT/QF_8dK6SOGr7fOdw8DkOkNTN4wY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:ba:17:f3:59:1a:b2:17:ee:50:a5:9c:b2:af:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=405ffc74ae92386afb7ce770f0390e90d4cde306 Validity Not Before: Dec 6 01:02:42 2025 GMT Not After : Dec 7 01:02:42 2025 GMT Subject: CN=a724eb4c7b62c00d346d5c86141f5d5c647a6ec9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e5:46:2e:9d:59:62:d4:84:8e:03:d8:d4:8f: b8:96:95:26:27:9a:3a:67:cd:ea:59:8f:26:06:f9: d6:ac:50:9a:d4:5b:3f:76:60:4a:da:9d:89:cd:28: ef:75:23:58:c5:55:99:a0:af:ca:90:12:a6:fe:23: 90:8d:1e:90:cb:44:8e:af:68:53:d8:05:c8:c8:cb: 09:00:aa:8e:aa:37:c7:47:a1:87:6b:84:ee:78:b8: e5:f6:91:15:77:7a:4b:8d:c3:2d:f1:42:6c:07:49: 47:b7:05:29:07:38:54:9a:d8:ba:4b:a4:1d:12:bb: dc:16:3a:a6:d7:6c:39:73:8f:42:d8:b1:33:ec:67: f9:78:db:5b:bd:d7:0f:a6:3d:bc:8d:bb:7a:5b:08: ba:c0:3f:22:b5:51:d8:80:49:9c:06:ae:76:b8:b8: d9:34:1d:44:20:24:4d:84:76:a9:ea:b2:9d:2f:f9: 4b:56:2a:ac:3f:0a:a4:de:06:f8:16:d2:cc:c5:3b: cd:aa:ce:83:66:3c:a3:a1:f0:3b:65:05:ff:6a:f1: 35:28:74:b3:a1:10:1f:9f:b2:6a:a5:ad:e2:50:1d: 5f:91:02:4a:4a:7c:ce:d9:2c:6e:15:35:2c:c1:bc: 48:d9:c6:fa:af:e1:e5:e5:12:55:14:36:25:a5:1d: a7:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:24:EB:4C:7B:62:C0:0D:34:6D:5C:86:14:1F:5D:5C:64:7A:6E:C9 X509v3 Authority Key Identifier: keyid:40:5F:FC:74:AE:92:38:6A:FB:7C:E7:70:F0:39:0E:90:D4:CD:E3:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QF_8dK6SOGr7fOdw8DkOkNTN4wY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:d2:2b:ed:c6:93:38:d6:92:c6:2e:23:15:16:7d:14:95:3d: f9:0f:1e:81:70:ab:81:79:ec:3d:a0:e2:84:b8:17:be:09:95: ed:9a:c7:34:59:71:4a:6c:09:ff:c6:7f:d5:ba:bd:cb:cb:a7: 8a:11:a4:fc:d9:e9:cd:e9:8a:09:80:76:81:e3:bc:ee:85:eb: b2:f3:81:ee:2a:67:12:33:71:13:c8:94:ec:e9:83:18:77:26: bf:45:f0:63:8b:ed:e2:44:2e:f1:78:2e:b6:7f:7f:b1:6d:b8: 68:f9:1d:88:f7:54:b4:e2:ac:77:ce:d0:69:31:04:40:1a:d7: f7:5f:f9:67:32:61:cf:2f:4f:aa:0e:22:3d:f6:b4:19:65:0d: 43:8b:4c:bd:ba:1f:db:0d:fa:28:76:70:ef:c9:dd:e3:a6:d1: e6:9a:9c:bc:88:4b:44:40:81:e3:74:d6:5b:67:8a:cc:2c:9e: 9c:8a:6a:de:be:2f:6c:ef:36:4a:e7:85:00:6b:a1:fa:23:f0: 23:40:b7:1e:4c:73:0b:d3:b1:ed:10:bc:dc:82:4a:8f:06:5f: f0:36:30:62:c2:5c:1b:bf:b0:20:b3:03:9f:10:39:ab:f9:15: 86:ff:3c:47:30:ba:a1:92:10:0e:89:77:fb:d8:8f:7f:0b:c4: 88:6c:12:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLroX81kashfuUKWcsq/NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwNWZmYzc0YWU5MjM4NmFmYjdjZTc3MGYwMzkwZTkwZDRj ZGUzMDYwHhcNMjUxMjA2MDEwMjQyWhcNMjUxMjA3MDEwMjQyWjAzMTEwLwYDVQQD EyhhNzI0ZWI0YzdiNjJjMDBkMzQ2ZDVjODYxNDFmNWQ1YzY0N2E2ZWM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+VGLp1ZYtSEjgPY1I+4lpUmJ5o6 Z83qWY8mBvnWrFCa1Fs/dmBK2p2JzSjvdSNYxVWZoK/KkBKm/iOQjR6Qy0SOr2hT 2AXIyMsJAKqOqjfHR6GHa4TueLjl9pEVd3pLjcMt8UJsB0lHtwUpBzhUmti6S6Qd ErvcFjqm12w5c49C2LEz7Gf5eNtbvdcPpj28jbt6Wwi6wD8itVHYgEmcBq52uLjZ NB1EICRNhHap6rKdL/lLViqsPwqk3gb4FtLMxTvNqs6DZjyjofA7ZQX/avE1KHSz oRAfn7Jqpa3iUB1fkQJKSnzO2SxuFTUswbxI2cb6r+Hl5RJVFDYlpR2niwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKck60x7YsANNG1chhQfXVxkem7JMB8GA1UdIwQY MBaAFEBf/HSukjhq+3zncPA5DpDUzeMGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUZfOGRLNlNPR3I3Zk9kdzhEa09rTlRONHdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9iMWZkN2EtMmUyNi00YTVkLTgwMmQt NzI0NmFlZmNkMjcyLzEvUUZfOGRLNlNPR3I3Zk9kdzhEa09rTlRONHdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My9iMWZkN2EtMmUyNi00YTVkLTgwMmQtNzI0NmFlZmNkMjcy LzEvUUZfOGRLNlNPR3I3Zk9kdzhEa09rTlRONHdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAktIr7caT ONaSxi4jFRZ9FJU9+Q8egXCrgXnsPaDihLgXvgmV7ZrHNFlxSmwJ/8Z/1bq9y8un ihGk/NnpzemKCYB2geO87oXrsvOB7ipnEjNxE8iU7OmDGHcmv0XwY4vt4kQu8Xgu tn9/sW24aPkdiPdUtOKsd87QaTEEQBrX91/5ZzJhzy9Pqg4iPfa0GWUNQ4tMvbof 2w36KHZw78nd46bR5pqcvIhLRECB43TWW2eKzCyenIpq3r4vbO82SueFAGuh+iPw I0C3HkxzC9Ox7RC83IJKjwZf8DYwYsJcG7+wILMDnxA5q/kVhv88RzC6oZIQDol3 +9iPfwvEiGwS/A== -----END CERTIFICATE-----Generated at Sat Dec 6 08:13:36 2025 by rpki-client