This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft File: QA4H15n7NVyVICXz0nsA6bTuNO0.mft (raw, json) Hash identifier: NuP3+Z7EW4mHdL0irl9mB0Iyi/9Ri1omSCxVYQGMfSo= Subject key identifier: EE:00:8A:ED:E0:78:95:B8:CA:93:32:A8:0C:8E:87:23:27:31:1F:52 Authority key identifier: 40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED Certificate issuer: /CN=400e07d799fb355c952025f3d27b00e9b4ee34ed Certificate serial: 019AF19B70525129E34A543F38B26E814C04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft Manifest number: 09CA Signing time: Sat 06 Dec 2025 03:01:27 +0000 Manifest this update: Sat 06 Dec 2025 03:01:27 +0000 Manifest next update: Sun 07 Dec 2025 03:01:27 +0000 Files and hashes: 1: QA4H15n7NVyVICXz0nsA6bTuNO0.crl (hash: QUivk8U1MQ9Juda+zXBxsljRoLo5cAr3vt1Obay5ZDA=) 2: bysUciiIqYU9vJ8UfK9pbwZkqG0.roa (hash: JZVYwqtyAp0nMHO1FDIE6qYD96KGmAzDi7aqiaMlMrU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:70:52:51:29:e3:4a:54:3f:38:b2:6e:81:4c:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=400e07d799fb355c952025f3d27b00e9b4ee34ed Validity Not Before: Dec 6 03:01:27 2025 GMT Not After : Dec 7 03:01:27 2025 GMT Subject: CN=ee008aede07895b8ca9332a80c8e872327311f52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fa:59:e8:6d:6b:45:9b:9c:22:72:0e:9c:46: db:a0:3d:cd:a7:be:53:1e:40:41:1e:d4:d8:e8:77: a2:f1:28:e0:69:8a:7b:87:c3:2e:83:2c:1c:4f:42: 27:25:d0:20:1d:e9:32:0a:b4:ee:af:02:26:a1:33: 8b:5a:24:7f:19:f2:0e:cf:87:7b:bb:ac:2a:31:85: dd:00:70:cb:9e:77:5a:29:9b:71:a6:00:5b:5d:5c: 80:20:25:54:48:96:16:22:7a:8a:dc:6a:8b:b2:02: 68:bb:e2:36:16:ef:f4:70:bd:f4:c5:f2:56:cf:03: c8:0a:34:e6:7b:84:b6:9a:ba:26:3b:bb:88:7d:ab: 5d:4e:dd:9a:ea:64:6f:80:3f:b4:31:d4:9f:9f:83: 75:d6:82:02:c7:cb:c9:4a:5b:30:6a:20:dc:06:4b: db:5d:85:97:67:3e:2d:c5:c5:b8:24:13:97:41:36: da:b4:58:67:c8:17:da:e5:79:f4:12:0b:14:4a:d7: 60:a4:9c:83:82:b0:d8:58:1e:20:aa:4c:6f:9a:39: 3f:76:10:e8:53:b4:a8:46:c3:20:ed:65:99:60:b9: 42:6e:61:79:e4:be:95:dc:02:49:2f:98:31:95:08: 93:21:4a:a0:8e:15:d2:5d:2f:b1:42:ce:10:6d:bf: ba:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:00:8A:ED:E0:78:95:B8:CA:93:32:A8:0C:8E:87:23:27:31:1F:52 X509v3 Authority Key Identifier: keyid:40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:ba:5f:51:0e:b1:17:53:16:d2:f7:be:cf:e8:51:0b:d2:7d: 02:0f:37:f4:2c:9b:9d:ba:36:45:7a:b4:39:69:6b:03:61:17: 8a:fe:17:c9:f3:c6:25:c3:50:23:40:b0:96:03:21:8a:af:d2: 6b:a2:a6:26:21:31:31:f3:7d:0e:ae:f0:c1:f7:25:40:3b:94: a2:92:08:8a:1f:a4:69:33:f5:86:04:de:c3:7b:23:04:5c:02: a8:cf:1c:d9:41:cc:06:8c:c9:01:33:98:56:90:e9:b7:60:40: de:b5:f1:03:de:64:f8:2d:f9:48:84:48:2b:e7:c9:2a:1c:81: 17:14:67:4d:fe:7a:c7:3d:bd:9e:22:e6:28:18:76:e1:9a:66: 82:f2:73:f9:11:02:87:f9:55:7b:13:32:65:b8:f8:8d:d2:0b: f7:55:e1:6a:9b:a6:61:b1:3d:58:aa:4d:e1:df:d3:5a:da:bb: 4a:6c:59:b1:b3:ab:ed:a7:19:46:cd:44:32:0e:be:86:eb:ab: 19:8a:13:46:2a:88:cf:c5:a9:99:00:8e:95:25:f3:c9:c7:ab: a2:3d:6e:c4:49:07:35:8b:52:0b:71:8e:60:f0:1c:39:0c:38: 76:90:78:b1:3b:c9:4b:93:27:54:4d:1e:a8:cd:77:41:f8:08: 5e:7b:26:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm3BSUSnjSlQ/OLJugUwEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwMGUwN2Q3OTlmYjM1NWM5NTIwMjVmM2QyN2IwMGU5YjRl ZTM0ZWQwHhcNMjUxMjA2MDMwMTI3WhcNMjUxMjA3MDMwMTI3WjAzMTEwLwYDVQQD EyhlZTAwOGFlZGUwNzg5NWI4Y2E5MzMyYTgwYzhlODcyMzI3MzExZjUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/pZ6G1rRZucInIOnEbboD3Np75T HkBBHtTY6Hei8SjgaYp7h8MugywcT0InJdAgHekyCrTurwImoTOLWiR/GfIOz4d7 u6wqMYXdAHDLnndaKZtxpgBbXVyAICVUSJYWInqK3GqLsgJou+I2Fu/0cL30xfJW zwPICjTme4S2mromO7uIfatdTt2a6mRvgD+0MdSfn4N11oICx8vJSlswaiDcBkvb XYWXZz4txcW4JBOXQTbatFhnyBfa5Xn0EgsUStdgpJyDgrDYWB4gqkxvmjk/dhDo U7SoRsMg7WWZYLlCbmF55L6V3AJJL5gxlQiTIUqgjhXSXS+xQs4Qbb+6BwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO4Aiu3geJW4ypMyqAyOhyMnMR9SMB8GA1UdIwQY MBaAFEAOB9eZ+zVclSAl89J7AOm07jTtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUE0SDE1bjdOVnlWSUNYejBuc0E2YlR1Tk8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8yZjM2YjYtZDcwMS00MzM1LWFmMzAt NDhmZTYzM2IxYjNmLzEvUUE0SDE1bjdOVnlWSUNYejBuc0E2YlR1Tk8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC8yZjM2YjYtZDcwMS00MzM1LWFmMzAtNDhmZTYzM2IxYjNm LzEvUUE0SDE1bjdOVnlWSUNYejBuc0E2YlR1Tk8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATbpfUQ6x F1MW0ve+z+hRC9J9Ag839Cybnbo2RXq0OWlrA2EXiv4XyfPGJcNQI0CwlgMhiq/S a6KmJiExMfN9Dq7wwfclQDuUopIIih+kaTP1hgTew3sjBFwCqM8c2UHMBozJATOY VpDpt2BA3rXxA95k+C35SIRIK+fJKhyBFxRnTf56xz29niLmKBh24ZpmgvJz+REC h/lVexMyZbj4jdIL91XhapumYbE9WKpN4d/TWtq7SmxZsbOr7acZRs1EMg6+huur GYoTRiqIz8WpmQCOlSXzyceroj1uxEkHNYtSC3GOYPAcOQw4dpB4sTvJS5MnVE0e qM13QfgIXnsmzw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:19:02 2025 by rpki-client