This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft File: QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft (raw, json) Hash identifier: dbxq97zdeN4tOWESqgEYlSD4mDwp/ALVjLcvrCKet7k= Subject key identifier: B9:D2:9A:13:63:B1:94:D8:1D:3E:46:CE:F1:E5:27:03:C4:0D:06:22 Authority key identifier: 40:E6:34:BD:C3:0C:0C:4B:5F:79:45:F3:D0:41:E2:35:05:BC:D1:59 Certificate issuer: /CN=40e634bdc30c0c4b5f7945f3d041e23505bcd159 Certificate serial: 019AF19B79D89E35776072875537619DBC4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOY0vcMMDEtfeUXz0EHiNQW80Vk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft Manifest number: C4 Signing time: Sat 06 Dec 2025 03:01:29 +0000 Manifest this update: Sat 06 Dec 2025 03:01:29 +0000 Manifest next update: Sun 07 Dec 2025 03:01:29 +0000 Files and hashes: 1: AIdhkvHghh0oY4Bo_26XXaHpKGs.roa (hash: 1OYUp8CdXRHv9dQxmnoj+je7+ykfhffiZAjyffapZ9I=) 2: QOY0vcMMDEtfeUXz0EHiNQW80Vk.crl (hash: Tw+DGDan4/85RbVhgbEAc9Red5yjs8IHzQ0bVut9S+0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.crl rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft rsync://rpki.ripe.net/repository/DEFAULT/QOY0vcMMDEtfeUXz0EHiNQW80Vk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:79:d8:9e:35:77:60:72:87:55:37:61:9d:bc:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40e634bdc30c0c4b5f7945f3d041e23505bcd159 Validity Not Before: Dec 6 03:01:29 2025 GMT Not After : Dec 7 03:01:29 2025 GMT Subject: CN=b9d29a1363b194d81d3e46cef1e52703c40d0622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cd:08:29:20:71:b1:7f:de:df:23:76:f9:e7: 33:c9:b1:24:47:76:cf:60:5f:8b:03:38:d1:75:bd: 1d:b6:7e:0c:cb:1c:b5:22:19:4b:f6:da:b8:d7:80: e7:45:d3:de:ca:0f:80:73:34:01:ba:e4:bc:64:99: 8f:81:c3:03:94:e7:67:8b:b2:56:7e:af:d9:e0:a4: 37:d6:cd:c5:02:98:84:59:09:aa:41:2d:bf:b4:93: 94:5d:2e:39:51:ab:a3:43:84:e8:6d:6a:36:8a:6c: 1d:3f:40:9b:3b:36:92:63:da:df:72:07:7b:57:fe: 7f:d0:52:05:e6:af:a3:a0:44:5e:12:a2:7b:d2:9c: ed:7c:a2:14:24:81:43:96:2d:8b:f2:25:a6:f0:c2: f7:0d:ad:c6:ba:ae:20:a1:08:04:2c:fa:b1:c6:dc: 79:2b:03:c2:db:74:b3:11:6d:fa:67:74:64:15:45: cb:5c:ba:6b:77:ef:f6:cd:cb:93:80:ca:c6:47:3e: c2:48:3a:ff:da:a4:55:f5:59:0c:b3:93:77:37:9d: 2d:c9:a4:fe:1f:ee:38:7e:c9:b7:08:8c:51:e9:2d: 4f:37:e7:67:97:f1:71:e7:83:4c:2d:4a:51:43:71: b0:3f:fa:7d:d2:fc:11:17:fc:5f:3b:9e:25:9b:b3: 28:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:D2:9A:13:63:B1:94:D8:1D:3E:46:CE:F1:E5:27:03:C4:0D:06:22 X509v3 Authority Key Identifier: keyid:40:E6:34:BD:C3:0C:0C:4B:5F:79:45:F3:D0:41:E2:35:05:BC:D1:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOY0vcMMDEtfeUXz0EHiNQW80Vk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:86:82:c7:8a:2a:6e:c4:05:d3:fe:3b:df:cc:17:df:e4:fb: 7b:55:11:31:61:03:4c:0c:6b:d2:da:5f:1f:42:9c:c8:68:f1: e2:e3:6d:e7:33:77:c9:68:c8:a2:3d:ba:aa:09:e7:b1:7d:e7: 00:82:cf:09:d3:2b:23:ac:b2:24:04:de:2d:45:5f:e1:d3:01: aa:ff:bc:5f:18:ff:f9:85:b8:a7:98:49:82:0d:4c:13:ac:c1: 54:e3:78:22:7f:13:79:c4:85:d7:86:70:73:fb:dc:79:33:2b: 84:76:ea:44:cc:4b:4a:56:96:30:bf:52:74:f5:70:0f:08:f3: d0:e0:f5:cd:97:c8:4e:4c:44:4b:d0:c0:0d:3e:8d:2f:c1:6c: 17:5d:8c:37:82:80:bc:13:be:6a:fa:a5:c4:11:80:41:79:fa: d9:b2:c7:5f:4f:fb:c3:c9:c3:08:a4:43:40:77:e2:25:5c:4d: 54:73:e8:7e:bf:fe:40:20:6e:2d:71:71:5e:27:45:d8:d0:1d: 2c:00:bf:d3:60:4f:95:40:11:39:cc:76:e8:50:99:09:51:3b: d4:05:b0:3e:99:b5:c3:47:e8:d1:40:d1:05:ee:08:d1:00:1f: fe:1a:58:c8:ab:04:05:73:ec:c3:bc:37:85:48:0c:34:75:2b: d3:7b:58:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm3nYnjV3YHKHVTdhnbxOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZTYzNGJkYzMwYzBjNGI1Zjc5NDVmM2QwNDFlMjM1MDVi Y2QxNTkwHhcNMjUxMjA2MDMwMTI5WhcNMjUxMjA3MDMwMTI5WjAzMTEwLwYDVQQD EyhiOWQyOWExMzYzYjE5NGQ4MWQzZTQ2Y2VmMWU1MjcwM2M0MGQwNjIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuM0IKSBxsX/e3yN2+eczybEkR3bP YF+LAzjRdb0dtn4Myxy1IhlL9tq414DnRdPeyg+AczQBuuS8ZJmPgcMDlOdni7JW fq/Z4KQ31s3FApiEWQmqQS2/tJOUXS45UaujQ4TobWo2imwdP0CbOzaSY9rfcgd7 V/5/0FIF5q+joEReEqJ70pztfKIUJIFDli2L8iWm8ML3Da3Guq4goQgELPqxxtx5 KwPC23SzEW36Z3RkFUXLXLprd+/2zcuTgMrGRz7CSDr/2qRV9VkMs5N3N50tyaT+ H+44fsm3CIxR6S1PN+dnl/Fx54NMLUpRQ3GwP/p90vwRF/xfO54lm7MovQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLnSmhNjsZTYHT5GzvHlJwPEDQYiMB8GA1UdIwQY MBaAFEDmNL3DDAxLX3lF89BB4jUFvNFZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU9ZMHZjTU1ERXRmZVVYejBFSGlOUVc4MFZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9jMzM3MzEtM2M1Mi00Yzg1LTk3ODkt YmQyN2FmYWQ5YzNkLzEvUU9ZMHZjTU1ERXRmZVVYejBFSGlOUVc4MFZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9jMzM3MzEtM2M1Mi00Yzg1LTk3ODktYmQyN2FmYWQ5YzNk LzEvUU9ZMHZjTU1ERXRmZVVYejBFSGlOUVc4MFZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcoaCx4oq bsQF0/4738wX3+T7e1URMWEDTAxr0tpfH0KcyGjx4uNt5zN3yWjIoj26qgnnsX3n AILPCdMrI6yyJATeLUVf4dMBqv+8Xxj/+YW4p5hJgg1ME6zBVON4In8TecSF14Zw c/vceTMrhHbqRMxLSlaWML9SdPVwDwjz0OD1zZfITkxES9DADT6NL8FsF12MN4KA vBO+avqlxBGAQXn62bLHX0/7w8nDCKRDQHfiJVxNVHPofr/+QCBuLXFxXidF2NAd LAC/02BPlUAROcx26FCZCVE71AWwPpm1w0fo0UDRBe4I0QAf/hpYyKsEBXPsw7w3 hUgMNHUr03tYyQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:58:51 2025 by rpki-client