This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft File: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft (raw, json) Hash identifier: SVIn1prscNuJ6j08eo33jitpihYMtkMyhHrovyXgG7M= Subject key identifier: C2:31:54:D8:5F:E6:96:28:05:C7:E1:99:01:54:FB:50:FF:18:FF:64 Authority key identifier: 40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C Certificate issuer: /CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c Certificate serial: 019AF240190DCD57E742499EF60FE135ACCC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 06:01:18 +0000 Manifest this update: Sat 06 Dec 2025 06:01:18 +0000 Manifest next update: Sun 07 Dec 2025 06:01:18 +0000 Files and hashes: 1: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl (hash: ac+Sjjf6t+NsvVIRlpTv5AKAFWnOnaCrtVSUUOB6Rb0=) 2: zxt5ioQXS4YKJLP4ilCQM5v8g2Y.roa (hash: RY5SWWwhf3VR6uGt8AADVTrl85kwmlR4e1dP9tOTtrg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:19:0d:cd:57:e7:42:49:9e:f6:0f:e1:35:ac:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c Validity Not Before: Dec 6 06:01:18 2025 GMT Not After : Dec 7 06:01:18 2025 GMT Subject: CN=c23154d85fe6962805c7e1990154fb50ff18ff64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ed:1e:bd:01:aa:a9:12:31:4e:17:4e:81:4b: 77:5d:de:71:c7:bd:de:2c:59:e7:04:bf:b3:34:a6: 22:da:d4:c4:bd:97:65:74:53:1c:e5:b0:02:1e:4b: ae:e3:97:68:66:93:2d:ce:c5:f0:05:f0:79:be:a9: 35:aa:10:3d:9d:0a:40:ec:62:d3:7b:7f:5f:5d:35: ba:48:88:60:3c:a3:7a:e9:63:44:9e:c0:2a:44:1d: dd:cc:40:ff:aa:49:40:02:19:39:9f:f0:25:47:1c: 17:88:0f:0f:d6:80:0a:95:08:e4:74:3a:a6:30:a4: 55:c6:b5:18:ee:81:c4:dc:23:77:38:5f:44:06:e9: 93:b8:a2:2f:73:6c:a7:24:32:4b:05:ab:b8:8b:09: 0a:75:12:d4:a9:ba:a4:a3:51:d6:ae:ee:17:3b:6d: 28:f3:56:f1:1a:2a:b9:eb:ef:02:c7:b8:e4:e1:49: 72:3c:52:82:68:d4:84:61:ee:70:f4:0b:a1:d2:59: d2:93:ba:53:1c:3d:6a:0e:db:65:92:67:74:e9:9f: 8f:79:39:cf:4f:cf:03:c4:4c:22:f6:99:40:95:73: 64:ad:5f:16:1e:12:1a:1a:34:c1:a0:30:1c:de:79: f7:03:c1:d7:30:9f:f8:ce:2c:de:07:0c:03:38:26: 0d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:31:54:D8:5F:E6:96:28:05:C7:E1:99:01:54:FB:50:FF:18:FF:64 X509v3 Authority Key Identifier: keyid:40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:1f:53:8f:f6:56:f0:89:a2:70:9f:8b:66:27:f5:f0:0e:a1: 0e:60:f4:76:cd:c2:7a:54:d0:fc:b1:b4:41:c3:43:4a:76:84: 90:12:16:15:ad:63:ae:50:e1:4e:08:01:94:c7:b1:5f:41:1a: a7:94:06:38:6a:a1:4c:61:89:e9:14:01:93:9c:37:e9:83:e9: c2:0e:0f:45:d8:a3:6f:68:71:90:8e:e7:3d:52:09:01:1f:38: e2:1f:2e:92:08:1b:75:8e:5e:16:f3:0f:08:96:3d:16:4a:0a: 22:b1:af:dc:d1:69:48:7c:fa:da:f2:28:d8:fd:57:99:13:6c: 2d:c1:c3:39:d1:50:ce:b1:60:26:79:c6:01:4f:4c:cb:a7:38: 57:a3:f1:54:a7:04:fc:47:14:30:94:4c:45:9b:f3:40:88:74: 99:a4:3a:a3:40:fa:52:68:80:21:22:59:ef:10:b6:f0:4e:5c: 8c:e1:b2:e6:72:38:f0:33:69:db:a0:4e:bb:42:d0:9f:1e:01: bf:12:4a:b8:74:7d:0b:16:b6:46:e2:c9:a7:62:d6:77:c5:2d: 6e:42:44:4a:53:3f:ae:60:91:0e:09:78:f1:8c:ae:ac:7b:05: ad:b1:4a:9d:5f:c5:c1:56:66:f4:8b:d0:7c:2a:f2:d6:35:2f: d2:3c:20:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQBkNzVfnQkme9g/hNazMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwYWE3MTE1N2UyMGQ5ODAzNmJiZDY5M2I4ZWNiYjJiOTlm MGYwM2MwHhcNMjUxMjA2MDYwMTE4WhcNMjUxMjA3MDYwMTE4WjAzMTEwLwYDVQQD EyhjMjMxNTRkODVmZTY5NjI4MDVjN2UxOTkwMTU0ZmI1MGZmMThmZjY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2O0evQGqqRIxThdOgUt3Xd5xx73e LFnnBL+zNKYi2tTEvZdldFMc5bACHkuu45doZpMtzsXwBfB5vqk1qhA9nQpA7GLT e39fXTW6SIhgPKN66WNEnsAqRB3dzED/qklAAhk5n/AlRxwXiA8P1oAKlQjkdDqm MKRVxrUY7oHE3CN3OF9EBumTuKIvc2ynJDJLBau4iwkKdRLUqbqko1HWru4XO20o 81bxGiq56+8Cx7jk4UlyPFKCaNSEYe5w9Auh0lnSk7pTHD1qDttlkmd06Z+PeTnP T88DxEwi9plAlXNkrV8WHhIaGjTBoDAc3nn3A8HXMJ/4zizeBwwDOCYN8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMIxVNhf5pYoBcfhmQFU+1D/GP9kMB8GA1UdIwQY MBaAFECqcRV+INmANrvWk7jsuyuZ8PA8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yZTJjOGUtNGMyYi00OGU5LWFmZDUt MjM1YWJhMTlkOWY5LzEvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yZTJjOGUtNGMyYi00OGU5LWFmZDUtMjM1YWJhMTlkOWY5 LzEvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiR9Tj/ZW 8ImicJ+LZif18A6hDmD0ds3CelTQ/LG0QcNDSnaEkBIWFa1jrlDhTggBlMexX0Ea p5QGOGqhTGGJ6RQBk5w36YPpwg4PRdijb2hxkI7nPVIJAR844h8ukggbdY5eFvMP CJY9FkoKIrGv3NFpSHz62vIo2P1XmRNsLcHDOdFQzrFgJnnGAU9My6c4V6PxVKcE /EcUMJRMRZvzQIh0maQ6o0D6UmiAISJZ7xC28E5cjOGy5nI48DNp26BOu0LQnx4B vxJKuHR9Cxa2RuLJp2LWd8UtbkJESlM/rmCRDgl48YyurHsFrbFKnV/FwVZm9IvQ fCry1jUv0jwgQw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:20:45 2025 by rpki-client