This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft File: QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft (raw, json) Hash identifier: L4JYegTK5Pn4a1lIV27u4d2FXi5082HkYsWQTVieYkc= Subject key identifier: F4:BA:E2:32:6A:11:4F:2E:7D:A6:87:0D:CB:D4:A4:1A:C7:A9:1D:D6 Authority key identifier: 40:D5:59:1A:75:BD:69:3E:9D:3B:76:68:34:BF:07:4F:7B:1E:EE:3A Certificate issuer: /CN=40d5591a75bd693e9d3b766834bf074f7b1eee3a Certificate serial: 019AF12E417B2FDADB6FBD35E40EDD520BA8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft Manifest number: 0B6E Signing time: Sat 06 Dec 2025 01:02:11 +0000 Manifest this update: Sat 06 Dec 2025 01:02:11 +0000 Manifest next update: Sun 07 Dec 2025 01:02:11 +0000 Files and hashes: 1: QNVZGnW9aT6dO3ZoNL8HT3se7jo.crl (hash: RDeNPlcEzjUu7XJt3WeQZgd/vjTbnNxe3oWXEcMkFro=) 2: dmWwMKmVtBjrQ943YS9mH5Wi3ME.roa (hash: prLT1d+yXEMIyzM51qGGgQHR5qaRcSsmNt9aZioq8kg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:41:7b:2f:da:db:6f:bd:35:e4:0e:dd:52:0b:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40d5591a75bd693e9d3b766834bf074f7b1eee3a Validity Not Before: Dec 6 01:02:11 2025 GMT Not After : Dec 7 01:02:11 2025 GMT Subject: CN=f4bae2326a114f2e7da6870dcbd4a41ac7a91dd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8c:ea:03:47:1d:97:46:5b:73:1a:d5:42:d9: fd:3b:54:29:ab:6b:1f:fc:e8:5f:38:17:10:0a:f0: f3:38:b0:38:62:74:40:a2:92:25:e2:79:0d:c3:4b: 17:1b:11:8c:d8:27:25:77:e6:b6:03:41:fc:2e:4f: 04:20:e7:68:64:3c:f7:e8:7f:76:15:7c:cd:9b:0c: 00:f5:0a:52:a6:7c:ad:35:8a:81:fa:4b:e3:41:48: 6b:a5:e0:ad:16:81:8d:c3:b1:01:a1:ba:32:b2:e3: b9:92:ec:e5:3c:b8:20:09:42:55:e5:1b:8b:4f:c1: 93:f1:8f:c2:92:eb:34:29:53:6e:ee:37:65:55:d7: 79:f2:ba:23:48:18:69:a0:91:4e:ca:ac:b9:1d:51: 14:ec:e9:33:9b:19:47:79:81:7a:c1:07:92:6d:c8: 90:39:95:5d:3e:1d:02:b4:a1:0a:e0:c5:3b:a7:85: da:1a:12:5e:2b:fb:ea:1e:b3:8a:a1:09:48:42:d5: 62:90:e5:5c:44:1a:5f:b9:4b:1d:70:01:0a:31:a5: 0e:16:2b:5f:f1:2d:8a:87:46:e4:77:42:bf:9b:c1: 73:37:be:de:88:a8:ba:9e:95:a8:a7:13:89:c9:42: d8:e9:e6:14:10:33:aa:e9:13:6e:a9:a2:65:be:10: a2:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:BA:E2:32:6A:11:4F:2E:7D:A6:87:0D:CB:D4:A4:1A:C7:A9:1D:D6 X509v3 Authority Key Identifier: keyid:40:D5:59:1A:75:BD:69:3E:9D:3B:76:68:34:BF:07:4F:7B:1E:EE:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:b3:61:3d:2c:aa:ad:4a:06:f0:3b:a7:7f:f2:2b:38:33:35: 02:5a:93:4b:e3:b3:55:e1:90:b9:e2:9f:42:50:bf:80:36:2e: d6:3d:05:f0:55:d8:42:0e:69:7b:ce:6a:c1:06:c7:fe:76:9c: 32:69:e4:3a:20:bf:6c:7b:72:e6:eb:f1:ee:fd:db:b6:f8:0c: 81:0f:ee:e6:59:45:f6:98:9d:50:9d:e8:3f:9d:3b:58:73:47: 55:f0:60:bf:bc:45:ec:27:d4:f6:e1:02:b9:8f:38:33:25:b7: 2d:f0:f6:5d:bd:62:10:6c:a8:3b:c9:d3:6e:9d:cf:12:e4:ae: f1:5e:fe:e0:12:eb:de:81:55:c6:8f:b3:13:d9:1d:79:f4:1c: 17:c0:f6:80:d8:bf:db:01:3f:c1:2a:b7:28:d6:e5:b8:61:c4: f4:2a:79:60:02:d5:11:75:0b:1f:d2:be:2e:1f:1b:dd:0a:2a: 7f:84:eb:8c:44:88:69:1a:a4:5c:da:48:ac:e0:3f:7d:d2:b6: 5c:0f:73:61:24:62:f7:54:55:16:bd:fa:de:98:69:43:62:3b: 3e:de:be:ab:dd:ab:14:1e:32:b5:0e:c9:a9:c9:27:48:25:67: c2:af:14:b7:ed:82:f1:5b:0c:06:51:30:55:ac:91:cf:23:c1: 8a:41:39:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLkF7L9rbb7015A7dUguoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZDU1OTFhNzViZDY5M2U5ZDNiNzY2ODM0YmYwNzRmN2Ix ZWVlM2EwHhcNMjUxMjA2MDEwMjExWhcNMjUxMjA3MDEwMjExWjAzMTEwLwYDVQQD EyhmNGJhZTIzMjZhMTE0ZjJlN2RhNjg3MGRjYmQ0YTQxYWM3YTkxZGQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4zqA0cdl0ZbcxrVQtn9O1Qpq2sf /OhfOBcQCvDzOLA4YnRAopIl4nkNw0sXGxGM2Ccld+a2A0H8Lk8EIOdoZDz36H92 FXzNmwwA9QpSpnytNYqB+kvjQUhrpeCtFoGNw7EBoboysuO5kuzlPLggCUJV5RuL T8GT8Y/Ckus0KVNu7jdlVdd58rojSBhpoJFOyqy5HVEU7OkzmxlHeYF6wQeSbciQ OZVdPh0CtKEK4MU7p4XaGhJeK/vqHrOKoQlIQtVikOVcRBpfuUsdcAEKMaUOFitf 8S2Kh0bkd0K/m8FzN77eiKi6npWopxOJyULY6eYUEDOq6RNuqaJlvhCihQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPS64jJqEU8ufaaHDcvUpBrHqR3WMB8GA1UdIwQY MBaAFEDVWRp1vWk+nTt2aDS/B097Hu46MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU5WWkduVzlhVDZkTzNab05MOEhUM3NlN2pvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy85YzlmMjgtNGY0MS00NzJkLWE2M2Ut YTEwYTNhNDk2M2ZiLzEvUU5WWkduVzlhVDZkTzNab05MOEhUM3NlN2pvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy85YzlmMjgtNGY0MS00NzJkLWE2M2UtYTEwYTNhNDk2M2Zi LzEvUU5WWkduVzlhVDZkTzNab05MOEhUM3NlN2pvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAprNhPSyq rUoG8Dunf/IrODM1AlqTS+OzVeGQueKfQlC/gDYu1j0F8FXYQg5pe85qwQbH/nac MmnkOiC/bHty5uvx7v3btvgMgQ/u5llF9pidUJ3oP507WHNHVfBgv7xF7CfU9uEC uY84MyW3LfD2Xb1iEGyoO8nTbp3PEuSu8V7+4BLr3oFVxo+zE9kdefQcF8D2gNi/ 2wE/wSq3KNbluGHE9Cp5YALVEXULH9K+Lh8b3Qoqf4TrjESIaRqkXNpIrOA/fdK2 XA9zYSRi91RVFr363phpQ2I7Pt6+q92rFB4ytQ7JqcknSCVnwq8Ut+2C8VsMBlEw VayRzyPBikE5gg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:06:39 2025 by rpki-client