This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft File: QM1aUDjV4S_hydn1yGZAdMPdCsc.mft (raw, json) Hash identifier: r4AAhUQbGmrk//L2kU3FPVRLJE5BCgbwC7basK03icI= Subject key identifier: 9C:64:5B:5A:0E:42:08:00:41:67:47:2E:36:11:74:7F:CB:F3:59:A1 Authority key identifier: 40:CD:5A:50:38:D5:E1:2F:E1:C9:D9:F5:C8:66:40:74:C3:DD:0A:C7 Certificate issuer: /CN=40cd5a5038d5e12fe1c9d9f5c8664074c3dd0ac7 Certificate serial: 019AF2764BE6FAC0ACDB6EFA14E6F42FAAD5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM1aUDjV4S_hydn1yGZAdMPdCsc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft Manifest number: 090F Signing time: Sat 06 Dec 2025 07:00:30 +0000 Manifest this update: Sat 06 Dec 2025 07:00:30 +0000 Manifest next update: Sun 07 Dec 2025 07:00:30 +0000 Files and hashes: 1: KVvOGYEyHhWhRHwS9LQjG3XK8EI.roa (hash: AFMADJ+EdA++truR6oHaQkzeXGaM562uJumCeUqnVzo=) 2: MHGZA5Y3PVpWBImn85tARMZRftQ.roa (hash: bnJhZwRrO7KGALVUCy1om+i/htb3dvM6lJ1uAmGl2G8=) 3: O1UMqFY4UYla6Wia0-cx5UTbNYo.roa (hash: yk9XmbWdQVbHd1Fk+ePRsax442yqoQX1eANsND8ceoU=) 4: QM1aUDjV4S_hydn1yGZAdMPdCsc.crl (hash: 6PtjqrZhmqE1IaXTs9qKI2UZcdfUbX5jVDl0499/T6U=) 5: TNSMUQvHGS8vGJs7QmyW0_jz86Y.roa (hash: qI6N5+Q6nkQDs5kBZ+Upq2gzqwGu3xE2kqSgmDsGATI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.crl rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft rsync://rpki.ripe.net/repository/DEFAULT/QM1aUDjV4S_hydn1yGZAdMPdCsc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:4b:e6:fa:c0:ac:db:6e:fa:14:e6:f4:2f:aa:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40cd5a5038d5e12fe1c9d9f5c8664074c3dd0ac7 Validity Not Before: Dec 6 07:00:30 2025 GMT Not After : Dec 7 07:00:30 2025 GMT Subject: CN=9c645b5a0e4208004167472e3611747fcbf359a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c1:f3:d9:da:12:a3:07:21:ae:28:77:2c:af: e4:a5:4c:81:d3:71:8e:3d:64:85:97:6b:4b:c5:af: 1e:c1:4a:18:ec:a0:b0:ed:a3:2f:6e:90:40:47:e5: 20:03:13:34:90:c3:d2:be:f7:38:1c:66:2c:51:94: 1c:4c:95:e1:21:b5:2d:b4:2f:32:e6:a8:3f:c6:93: 45:4c:d1:c2:43:8f:fb:11:43:40:90:50:ce:a5:2e: f2:e6:95:07:cc:29:0b:d4:6c:12:95:56:e9:ea:8d: b7:7f:09:50:ec:35:18:19:19:b0:96:05:83:41:e9: 92:84:9f:a6:e5:bc:91:46:ea:ac:a7:94:b8:82:f5: 3a:93:cb:29:19:cf:9c:f2:49:84:42:f8:78:7d:e8: 1c:3d:25:aa:a1:65:64:6f:f9:16:ce:0d:de:35:c0: df:5a:81:37:aa:59:ee:4d:f7:46:7f:6e:cc:68:0a: cb:76:a4:5a:15:40:fa:e6:cc:78:52:26:a8:90:99: ef:d3:ea:2e:ec:6c:11:90:8c:b7:20:93:39:46:a2: 0f:f9:69:dc:7f:a1:92:28:9a:bc:95:c6:7b:8c:df: d9:ad:a3:bc:24:ef:8b:2b:93:de:59:17:d2:d4:37: ba:58:15:5b:1e:65:53:52:25:dd:b8:06:a4:58:b8: 36:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:64:5B:5A:0E:42:08:00:41:67:47:2E:36:11:74:7F:CB:F3:59:A1 X509v3 Authority Key Identifier: keyid:40:CD:5A:50:38:D5:E1:2F:E1:C9:D9:F5:C8:66:40:74:C3:DD:0A:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM1aUDjV4S_hydn1yGZAdMPdCsc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:80:43:67:bd:d4:cb:4b:07:e7:3d:3e:1e:80:17:fd:5f:be: 39:e5:ae:2a:f7:d8:c4:bc:10:3e:3f:b3:12:f9:b7:d1:95:64: d4:b8:7b:e5:67:16:45:9c:de:7b:74:63:97:94:83:cf:8f:47: 50:6c:df:8d:08:70:d0:94:fc:e0:21:63:a3:2e:5a:df:2f:e2: 9c:8c:2a:1a:4e:04:3e:4d:bd:53:4f:ba:4a:ba:04:3c:d2:d1: 54:81:9c:e6:e8:19:3c:2d:83:99:91:28:83:73:24:89:97:03: 73:21:86:60:92:51:8e:87:63:c1:33:86:32:24:09:73:31:3e: 6b:99:d1:ee:13:a6:b3:3c:71:19:e5:23:14:97:c3:89:40:43: 79:6a:83:c7:ab:36:f2:3f:89:3b:85:cc:f1:79:f7:d6:6b:09: 7c:10:1e:7d:b1:f4:c0:27:0a:c7:2c:30:7e:3d:b9:d7:00:94: 71:cd:21:bd:8d:8c:ec:87:76:d0:dc:e1:ae:e6:09:be:20:a9: fb:11:39:98:83:2c:84:70:59:da:ea:6f:82:df:6e:04:74:fc: bf:3f:6d:16:8b:c2:d4:d3:12:d6:9e:70:b2:e7:06:88:8f:5b: 6f:76:e7:0b:45:a2:69:64:8e:e7:7f:11:f4:49:78:ed:7e:67: f3:23:ef:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydkvm+sCs2276FOb0L6rVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwY2Q1YTUwMzhkNWUxMmZlMWM5ZDlmNWM4NjY0MDc0YzNk ZDBhYzcwHhcNMjUxMjA2MDcwMDMwWhcNMjUxMjA3MDcwMDMwWjAzMTEwLwYDVQQD Eyg5YzY0NWI1YTBlNDIwODAwNDE2NzQ3MmUzNjExNzQ3ZmNiZjM1OWExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAocHz2doSowchrih3LK/kpUyB03GO PWSFl2tLxa8ewUoY7KCw7aMvbpBAR+UgAxM0kMPSvvc4HGYsUZQcTJXhIbUttC8y 5qg/xpNFTNHCQ4/7EUNAkFDOpS7y5pUHzCkL1GwSlVbp6o23fwlQ7DUYGRmwlgWD QemShJ+m5byRRuqsp5S4gvU6k8spGc+c8kmEQvh4fegcPSWqoWVkb/kWzg3eNcDf WoE3qlnuTfdGf27MaArLdqRaFUD65sx4UiaokJnv0+ou7GwRkIy3IJM5RqIP+Wnc f6GSKJq8lcZ7jN/ZraO8JO+LK5PeWRfS1De6WBVbHmVTUiXduAakWLg2RQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJxkW1oOQggAQWdHLjYRdH/L81mhMB8GA1UdIwQY MBaAFEDNWlA41eEv4cnZ9chmQHTD3QrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU0xYVVEalY0U19oeWRuMXlHWkFkTVBkQ3NjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9jZWMxMTktNGM5OS00MTU4LTk5ZjEt NjU5YzY3MTkxMWYxLzEvUU0xYVVEalY0U19oeWRuMXlHWkFkTVBkQ3NjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My9jZWMxMTktNGM5OS00MTU4LTk5ZjEtNjU5YzY3MTkxMWYx LzEvUU0xYVVEalY0U19oeWRuMXlHWkFkTVBkQ3NjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnoBDZ73U y0sH5z0+HoAX/V++OeWuKvfYxLwQPj+zEvm30ZVk1Lh75WcWRZzee3Rjl5SDz49H UGzfjQhw0JT84CFjoy5a3y/inIwqGk4EPk29U0+6SroEPNLRVIGc5ugZPC2DmZEo g3MkiZcDcyGGYJJRjodjwTOGMiQJczE+a5nR7hOmszxxGeUjFJfDiUBDeWqDx6s2 8j+JO4XM8Xn31msJfBAefbH0wCcKxywwfj251wCUcc0hvY2M7Id20NzhruYJviCp +xE5mIMshHBZ2upvgt9uBHT8vz9tFovC1NMS1p5wsucGiI9bb3bnC0WiaWSO538R 9El47X5n8yPvtA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:05:14 2025 by rpki-client