This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft File: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft (raw, json) Hash identifier: YrfWD/XnW9H5mfOoPgGfTq9qKqZCBbnRSFsmOhII/7M= Subject key identifier: 91:39:07:A9:CB:02:2C:A0:20:74:86:88:34:E8:68:F1:7F:38:9F:F8 Authority key identifier: 40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F Certificate issuer: /CN=40ea5e39f8635736e48df53822a5cacc10b43a1f Certificate serial: 019AF2AD857DC705AEDDDD8909E8CD816CD2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 08:00:49 +0000 Manifest this update: Sat 06 Dec 2025 08:00:49 +0000 Manifest next update: Sun 07 Dec 2025 08:00:49 +0000 Files and hashes: 1: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl (hash: 2Kv/sz+kZgt/ZIHyTU8ygQMHbckldZT1X4Fi4g22Fw4=) 2: ybs61exhN0sYw1YgpfqdbmCmhqk.roa (hash: PW/e8DJb4WqsNiI0ODBUiDNLr0vhf0OlyJoAR5NWnhE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:85:7d:c7:05:ae:dd:dd:89:09:e8:cd:81:6c:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40ea5e39f8635736e48df53822a5cacc10b43a1f Validity Not Before: Dec 6 08:00:49 2025 GMT Not After : Dec 7 08:00:49 2025 GMT Subject: CN=913907a9cb022ca02074868834e868f17f389ff8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:35:b7:37:92:e9:86:dd:ab:02:b2:b1:64:59: e9:1c:7a:0d:b6:84:ae:c3:8a:86:89:91:3c:84:28: 0c:c1:12:71:ee:9a:fa:9f:78:fc:1e:a4:64:51:29: b1:07:a8:62:20:3b:20:e5:7f:35:9e:c6:f6:48:ac: d3:3a:db:a9:90:ad:11:76:f5:1d:fe:3f:23:f0:cb: 05:56:7a:75:b6:2e:a2:54:cb:43:5f:df:d1:46:89: bf:1b:cf:c0:db:1d:39:54:1d:5d:6d:7e:3e:ba:bf: 8d:47:32:d2:4d:b8:86:f3:96:b9:8e:1d:95:24:e2: 6c:9e:5a:4d:b1:b8:61:c7:3c:a0:00:30:10:86:9b: 2a:6d:a4:43:17:87:3e:43:30:37:72:41:8d:4c:3e: 33:8d:2d:0d:6d:e1:d0:97:cf:87:8c:c9:7e:d1:33: 7d:31:21:b9:2f:9e:08:e1:81:e3:ed:35:ee:e6:74: 8e:42:f2:15:79:9b:ce:58:49:a3:2e:db:7a:56:69: d8:59:d9:dc:3d:68:b7:cb:83:52:7a:f5:e9:25:3c: a6:da:99:1f:f6:55:c0:3b:85:26:b5:48:a5:d0:ec: 27:12:25:fd:b3:aa:e4:fb:9e:1f:a5:d9:bd:46:60: c4:34:84:98:b6:3f:75:eb:3c:92:fb:dd:d9:4f:dc: ef:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:39:07:A9:CB:02:2C:A0:20:74:86:88:34:E8:68:F1:7F:38:9F:F8 X509v3 Authority Key Identifier: keyid:40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:7d:d8:c7:34:70:1e:02:44:39:35:b9:ac:87:de:d7:3f:87: 62:b0:00:6f:51:4b:b4:c6:60:43:5c:35:f4:57:2a:d0:46:b5: 14:29:2c:4a:12:a7:75:e4:e9:cd:ea:40:0b:e0:e4:26:cf:0c: 24:eb:c0:5b:8a:b6:e7:b9:8a:27:e2:99:5f:0d:19:7b:91:b0: 1c:30:a4:6d:a4:ff:bd:f1:f8:a8:25:f8:93:c6:0a:09:a0:54: 05:bc:4c:10:1c:9a:74:79:f2:06:97:e3:d5:a3:86:a0:75:e5: c1:00:c8:0c:38:65:fb:dc:99:df:8f:94:e3:d2:e0:3f:3a:45: 5e:cb:99:09:87:94:30:00:e1:f3:df:1c:6f:37:89:33:31:b2: 11:92:d9:eb:42:73:97:69:ec:e1:8a:1f:0a:33:1a:45:48:40: c7:c8:00:7b:a2:78:1f:2a:70:1f:cd:a1:04:0d:5e:29:4f:44: ed:90:b5:de:28:6b:22:94:9a:58:27:f3:fc:38:00:f1:5c:c9: 4c:4f:4d:fc:75:3d:df:bb:c6:32:5f:09:17:20:98:44:75:6e: ab:24:b6:34:a1:9d:3c:d9:aa:37:6e:67:8a:6d:15:2b:72:1c: 5c:77:ab:e4:02:c6:9f:d0:5e:1f:d5:30:9c:13:b7:22:1e:bb: b9:ef:1b:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrYV9xwWu3d2JCejNgWzSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZWE1ZTM5Zjg2MzU3MzZlNDhkZjUzODIyYTVjYWNjMTBi NDNhMWYwHhcNMjUxMjA2MDgwMDQ5WhcNMjUxMjA3MDgwMDQ5WjAzMTEwLwYDVQQD Eyg5MTM5MDdhOWNiMDIyY2EwMjA3NDg2ODgzNGU4NjhmMTdmMzg5ZmY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjW3N5Lpht2rArKxZFnpHHoNtoSu w4qGiZE8hCgMwRJx7pr6n3j8HqRkUSmxB6hiIDsg5X81nsb2SKzTOtupkK0RdvUd /j8j8MsFVnp1ti6iVMtDX9/RRom/G8/A2x05VB1dbX4+ur+NRzLSTbiG85a5jh2V JOJsnlpNsbhhxzygADAQhpsqbaRDF4c+QzA3ckGNTD4zjS0NbeHQl8+HjMl+0TN9 MSG5L54I4YHj7TXu5nSOQvIVeZvOWEmjLtt6VmnYWdncPWi3y4NSevXpJTym2pkf 9lXAO4UmtUil0OwnEiX9s6rk+54fpdm9RmDENISYtj916zyS+93ZT9zvtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJE5B6nLAiygIHSGiDToaPF/OJ/4MB8GA1UdIwQY MBaAFEDqXjn4Y1c25I31OCKlyswQtDofMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU9wZU9maGpWemJramZVNElxWEt6QkMwT2g4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9iNjI0MzktN2U0Ny00MmUxLThmZGMt MThlOTEyOTYwMjJkLzEvUU9wZU9maGpWemJramZVNElxWEt6QkMwT2g4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC9iNjI0MzktN2U0Ny00MmUxLThmZGMtMThlOTEyOTYwMjJk LzEvUU9wZU9maGpWemJramZVNElxWEt6QkMwT2g4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMn3YxzRw HgJEOTW5rIfe1z+HYrAAb1FLtMZgQ1w19Fcq0Ea1FCksShKndeTpzepAC+DkJs8M JOvAW4q257mKJ+KZXw0Ze5GwHDCkbaT/vfH4qCX4k8YKCaBUBbxMEByadHnyBpfj 1aOGoHXlwQDIDDhl+9yZ34+U49LgPzpFXsuZCYeUMADh898cbzeJMzGyEZLZ60Jz l2ns4YofCjMaRUhAx8gAe6J4HypwH82hBA1eKU9E7ZC13ihrIpSaWCfz/DgA8VzJ TE9N/HU937vGMl8JFyCYRHVuqyS2NKGdPNmqN25nim0VK3IcXHer5ALGn9BeH9Uw nBO3Ih67ue8baA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:12:57 2025 by rpki-client