This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft File: QpXD7wDP_s4vcbYZkcbG09pJwRA.mft (raw, json) Hash identifier: nDuCWU9etedSz3G4Sg2m/APMgm9NjqvsazZlyGStb74= Subject key identifier: F0:53:76:9E:F3:9F:C0:F7:12:5C:2C:7D:7E:94:38:AC:29:B6:37:6C Authority key identifier: 42:95:C3:EF:00:CF:FE:CE:2F:71:B6:19:91:C6:C6:D3:DA:49:C1:10 Certificate issuer: /CN=4295c3ef00cffece2f71b61991c6c6d3da49c110 Certificate serial: 019AF276E90F396FECFF53C51F0AE04CB7E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft Manifest number: 044B Signing time: Sat 06 Dec 2025 07:01:10 +0000 Manifest this update: Sat 06 Dec 2025 07:01:10 +0000 Manifest next update: Sun 07 Dec 2025 07:01:10 +0000 Files and hashes: 1: QpXD7wDP_s4vcbYZkcbG09pJwRA.crl (hash: zb0miCS66FaUj2dRRzIchpNMkVr+udmLprv1msz2NGM=) 2: SGxwV5wEplv2xVzvW6jMMH0Hi4k.roa (hash: p0OjWToBEfnkzQw/yjz+AdE3+kwiUg0q1pmwBXRywUk=) 3: eC0FosjTUlbZcnWZVWIH359Lcd8.roa (hash: qDWdvtB5VIYnR+iPBmUfW1ayU92Br+j2BjK1vo1fUg0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.crl rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:e9:0f:39:6f:ec:ff:53:c5:1f:0a:e0:4c:b7:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4295c3ef00cffece2f71b61991c6c6d3da49c110 Validity Not Before: Dec 6 07:01:10 2025 GMT Not After : Dec 7 07:01:10 2025 GMT Subject: CN=f053769ef39fc0f7125c2c7d7e9438ac29b6376c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:00:ec:0f:38:2e:9e:86:8b:39:7a:8a:85:97: 37:6b:22:3b:ce:1b:1e:61:66:2a:77:f9:ef:09:b3: a7:39:d4:9f:1d:70:09:eb:34:55:e0:61:52:c6:4c: ca:4c:65:f9:0c:11:33:3e:a2:af:a5:9e:bb:84:66: 58:97:cc:ee:a4:e1:d4:77:9e:27:da:30:f7:58:9c: 8f:f9:0c:a7:74:fc:f8:00:8a:9b:fb:e9:62:54:26: eb:63:76:77:b4:7b:42:ea:0b:ec:01:03:00:3e:76: 70:cc:82:5e:da:2e:12:97:99:fc:74:23:01:ce:d0: b1:fd:e0:61:2b:4a:14:5d:a2:ba:69:1a:ed:0f:5f: 6f:1a:25:e0:52:ac:8b:7a:78:0a:bf:9e:06:74:d2: d9:12:9c:d2:aa:9f:b5:f4:10:bc:83:72:82:1f:8b: a4:4b:e8:54:d4:e2:28:f9:d6:1e:b4:fc:85:f2:c8: bc:7d:94:93:12:65:4a:09:74:91:0b:8c:3c:5c:22: 37:41:d6:b3:06:a8:50:87:7c:19:35:2e:07:93:0e: b0:c7:ba:60:19:5f:ab:ae:9a:6e:51:89:c0:24:dd: 8d:95:1a:76:0b:89:96:3d:19:39:a1:a9:7d:fe:a4: f9:0f:35:0e:e6:de:e8:9f:76:20:86:39:b2:54:2b: 19:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:53:76:9E:F3:9F:C0:F7:12:5C:2C:7D:7E:94:38:AC:29:B6:37:6C X509v3 Authority Key Identifier: keyid:42:95:C3:EF:00:CF:FE:CE:2F:71:B6:19:91:C6:C6:D3:DA:49:C1:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:89:77:7e:8f:77:8a:2b:04:3b:4f:73:4e:e3:c6:62:10:f8: 7e:a6:6f:72:cd:7f:c8:b9:f0:ef:71:da:cd:d2:7e:d2:db:d1: c3:ee:1d:be:b4:9f:46:a3:e5:3d:5d:24:47:d2:8e:41:5d:2a: 91:d9:e3:00:70:93:7e:cf:88:62:55:a0:2e:28:dd:d9:9d:c3: 98:2c:97:60:8e:23:1c:96:02:b8:75:0f:04:e2:0f:a0:12:e3: 96:9e:db:15:d2:9b:68:91:58:63:96:80:3c:e2:8a:c5:4f:f4: 9a:1d:c3:f6:1d:b1:8b:8c:bc:62:46:4e:3d:82:de:52:0b:b3: e5:1d:b1:f7:22:4c:72:3c:2d:9e:4f:2d:8c:f2:ed:45:f6:5d: e5:c8:f5:05:2c:56:da:6b:5a:97:e1:52:20:f2:a9:4f:ce:d0: 38:1d:b5:2a:28:8c:fd:48:7e:a7:0c:b5:fc:9a:47:c6:67:a8: e0:e7:f5:da:0a:61:bc:a4:fb:85:0e:1a:d6:57:c6:b2:c4:c7: c9:3c:a8:d4:d4:5a:2d:60:03:7e:06:e1:e4:0e:8d:71:5c:db: aa:23:b9:28:79:9e:b3:f1:a1:84:bf:c5:2b:c8:43:91:bc:69: 87:d7:3b:32:3e:6e:67:72:17:5d:8c:7c:75:20:5c:95:14:8f: 75:c9:40:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydukPOW/s/1PFHwrgTLfiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyOTVjM2VmMDBjZmZlY2UyZjcxYjYxOTkxYzZjNmQzZGE0 OWMxMTAwHhcNMjUxMjA2MDcwMTEwWhcNMjUxMjA3MDcwMTEwWjAzMTEwLwYDVQQD EyhmMDUzNzY5ZWYzOWZjMGY3MTI1YzJjN2Q3ZTk0MzhhYzI5YjYzNzZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4gDsDzgunoaLOXqKhZc3ayI7zhse YWYqd/nvCbOnOdSfHXAJ6zRV4GFSxkzKTGX5DBEzPqKvpZ67hGZYl8zupOHUd54n 2jD3WJyP+QyndPz4AIqb++liVCbrY3Z3tHtC6gvsAQMAPnZwzIJe2i4Sl5n8dCMB ztCx/eBhK0oUXaK6aRrtD19vGiXgUqyLengKv54GdNLZEpzSqp+19BC8g3KCH4uk S+hU1OIo+dYetPyF8si8fZSTEmVKCXSRC4w8XCI3QdazBqhQh3wZNS4Hkw6wx7pg GV+rrppuUYnAJN2NlRp2C4mWPRk5oal9/qT5DzUO5t7on3YghjmyVCsZtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPBTdp7zn8D3ElwsfX6UOKwptjdsMB8GA1UdIwQY MBaAFEKVw+8Az/7OL3G2GZHGxtPaScEQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXBYRDd3RFBfczR2Y2JZWmtjYkcwOXBKd1JBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8zYzdmODMtYmMyOC00MjgyLWFhMDIt OTY5ZjJhMDBlZGUwLzEvUXBYRDd3RFBfczR2Y2JZWmtjYkcwOXBKd1JBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS8zYzdmODMtYmMyOC00MjgyLWFhMDItOTY5ZjJhMDBlZGUw LzEvUXBYRDd3RFBfczR2Y2JZWmtjYkcwOXBKd1JBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPYl3fo93 iisEO09zTuPGYhD4fqZvcs1/yLnw73HazdJ+0tvRw+4dvrSfRqPlPV0kR9KOQV0q kdnjAHCTfs+IYlWgLijd2Z3DmCyXYI4jHJYCuHUPBOIPoBLjlp7bFdKbaJFYY5aA POKKxU/0mh3D9h2xi4y8YkZOPYLeUguz5R2x9yJMcjwtnk8tjPLtRfZd5cj1BSxW 2mtal+FSIPKpT87QOB21KiiM/Uh+pwy1/JpHxmeo4Of12gphvKT7hQ4a1lfGssTH yTyo1NRaLWADfgbh5A6NcVzbqiO5KHmes/GhhL/FK8hDkbxph9c7Mj5uZ3IXXYx8 dSBclRSPdclAJQ== -----END CERTIFICATE-----Generated at Sat Dec 6 15:25:06 2025 by rpki-client