This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft File: QYHCLrezLZAdElcA4UDrYAncxto.mft (raw, json) Hash identifier: UdlMIHhiovHzMYvUfGH/T2lCqP7LxyBWirWgvve+ZJU= Subject key identifier: B4:A3:7E:5E:44:33:01:C6:81:58:65:94:6B:15:89:EE:8D:FF:DF:DC Authority key identifier: 41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA Certificate issuer: /CN=4181c22eb7b32d901d125700e140eb6009dcc6da Certificate serial: 019AF20961D3C543960A4AD5B8D8B49CEBAE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft Manifest number: 1766 Signing time: Sat 06 Dec 2025 05:01:32 +0000 Manifest this update: Sat 06 Dec 2025 05:01:32 +0000 Manifest next update: Sun 07 Dec 2025 05:01:32 +0000 Files and hashes: 1: HitPQyHhpEoVidVOwqr2ddK23LE.roa (hash: UNtTyCfc7GR1gxgfjG0Y/XLw7gBd/DnSW8H0cz2SvrM=) 2: QYHCLrezLZAdElcA4UDrYAncxto.crl (hash: 8680IhEZIpo/3IEsQYjs+GeyUCEm057dEK+WgCU22YU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:61:d3:c5:43:96:0a:4a:d5:b8:d8:b4:9c:eb:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4181c22eb7b32d901d125700e140eb6009dcc6da Validity Not Before: Dec 6 05:01:32 2025 GMT Not After : Dec 7 05:01:32 2025 GMT Subject: CN=b4a37e5e443301c6815865946b1589ee8dffdfdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:48:33:ea:86:3a:f1:a0:c9:5a:99:11:db:13: 7c:01:c0:54:51:1c:b2:62:bd:6a:e3:4d:ab:0c:f4: fc:9c:da:49:15:fc:76:0a:ab:4a:46:26:11:5b:08: 8f:90:f4:4e:3e:0c:45:6f:74:a8:8f:fa:81:25:ef: 1d:f1:b0:5d:f2:1f:97:55:cd:73:12:de:01:cd:3d: eb:ce:ca:e9:7c:d7:e1:b7:8f:2b:bf:51:1f:66:a5: 61:6d:7e:8e:ce:ba:18:35:04:5a:ce:78:0b:61:72: 36:7e:c6:48:83:66:db:d0:15:8d:c0:d2:86:79:a9: c6:62:0d:4b:40:8c:64:33:5a:fe:e1:ac:dd:bd:75: 06:b6:a1:da:a0:54:c7:55:37:e7:44:e7:82:79:9e: c2:6e:e0:91:fa:8b:8d:87:be:53:6e:49:62:b6:a5: ef:bd:7e:d9:4d:47:a3:7c:7a:24:e0:dd:7e:44:50: 64:6c:05:f2:c8:41:0f:9d:34:ad:9c:ab:ed:b6:13: 2a:34:26:2b:12:74:d3:63:8b:ca:15:49:f1:0d:5f: 26:fc:fc:b8:73:eb:ef:26:d3:bf:00:26:70:8a:ac: e2:44:a3:ef:1d:bc:82:2b:10:20:4a:a4:19:64:b8: 77:37:06:1e:72:b0:53:db:1a:7d:92:ab:15:ba:0a: 0b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:A3:7E:5E:44:33:01:C6:81:58:65:94:6B:15:89:EE:8D:FF:DF:DC X509v3 Authority Key Identifier: keyid:41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:87:06:df:64:a8:3d:80:72:d0:43:95:8d:1d:21:8d:4a:14: 3d:79:b8:16:76:fb:f5:7b:42:9c:6d:d6:19:1b:bb:e5:35:8d: f8:d4:27:37:ee:69:af:d6:a0:e5:43:19:88:4a:e8:cd:c1:1e: 7a:1d:50:df:0f:a1:89:a0:1c:e7:b9:64:d8:80:c9:93:24:db: e4:7c:13:e5:50:d3:f2:9a:c8:f0:10:88:76:1c:a5:75:81:0d: 85:44:b5:bc:18:25:c9:b8:32:0f:a6:5b:ae:35:b4:41:0b:ae: d1:90:41:36:bf:dd:fc:49:3c:9f:17:44:07:46:ce:ba:f3:55: 66:11:8b:50:b8:06:c5:56:85:80:1b:83:73:92:0a:ed:9d:7d: c3:3d:51:06:00:bb:b3:75:48:48:7d:93:35:13:58:16:f1:55: 8a:56:23:56:86:98:63:49:6e:21:8e:0a:c1:ca:28:23:ed:b4: f0:bf:85:7d:6e:70:30:75:73:a7:21:0a:bf:65:9f:6b:94:5e: 63:65:85:cf:99:23:f7:89:28:df:5d:ac:ba:16:c1:36:f9:49: 93:72:27:9d:a6:d4:7c:61:46:f8:dc:1b:e0:03:ec:16:3a:47: b1:54:a7:2f:09:11:e5:a1:8a:32:66:ac:9c:77:99:83:01:fe: c9:32:7e:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCWHTxUOWCkrVuNi0nOuuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxODFjMjJlYjdiMzJkOTAxZDEyNTcwMGUxNDBlYjYwMDlk Y2M2ZGEwHhcNMjUxMjA2MDUwMTMyWhcNMjUxMjA3MDUwMTMyWjAzMTEwLwYDVQQD EyhiNGEzN2U1ZTQ0MzMwMWM2ODE1ODY1OTQ2YjE1ODllZThkZmZkZmRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Egz6oY68aDJWpkR2xN8AcBUURyy Yr1q402rDPT8nNpJFfx2CqtKRiYRWwiPkPROPgxFb3Soj/qBJe8d8bBd8h+XVc1z Et4BzT3rzsrpfNfht48rv1EfZqVhbX6OzroYNQRazngLYXI2fsZIg2bb0BWNwNKG eanGYg1LQIxkM1r+4azdvXUGtqHaoFTHVTfnROeCeZ7CbuCR+ouNh75TbklitqXv vX7ZTUejfHok4N1+RFBkbAXyyEEPnTStnKvtthMqNCYrEnTTY4vKFUnxDV8m/Py4 c+vvJtO/ACZwiqziRKPvHbyCKxAgSqQZZLh3NwYecrBT2xp9kqsVugoLTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLSjfl5EMwHGgVhllGsVie6N/9/cMB8GA1UdIwQY MBaAFEGBwi63sy2QHRJXAOFA62AJ3MbaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVlIQ0xyZXpMWkFkRWxjQTRVRHJZQW5jeHRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9mZmRhZjUtYWNhYS00ZGYzLTllNmMt YzIxNDA5NDQyZmFjLzEvUVlIQ0xyZXpMWkFkRWxjQTRVRHJZQW5jeHRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC9mZmRhZjUtYWNhYS00ZGYzLTllNmMtYzIxNDA5NDQyZmFj LzEvUVlIQ0xyZXpMWkFkRWxjQTRVRHJZQW5jeHRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo4cG32So PYBy0EOVjR0hjUoUPXm4Fnb79XtCnG3WGRu75TWN+NQnN+5pr9ag5UMZiErozcEe eh1Q3w+hiaAc57lk2IDJkyTb5HwT5VDT8prI8BCIdhyldYENhUS1vBglybgyD6Zb rjW0QQuu0ZBBNr/d/Ek8nxdEB0bOuvNVZhGLULgGxVaFgBuDc5IK7Z19wz1RBgC7 s3VISH2TNRNYFvFVilYjVoaYY0luIY4KwcooI+208L+FfW5wMHVzpyEKv2Wfa5Re Y2WFz5kj94ko312suhbBNvlJk3InnabUfGFG+Nwb4APsFjpHsVSnLwkR5aGKMmas nHeZgwH+yTJ+vg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:26:03 2025 by rpki-client