This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft File: QHznj0rDupAqDDjcAaDF8hJlGbA.mft (raw, json) Hash identifier: ffLJRvXxWZngc+/2YAmDx/1Ddt8acWifJ1xxmuk85is= Subject key identifier: 49:A4:DE:79:6F:63:6E:4D:09:76:BB:61:7A:57:0F:1F:0B:30:97:E6 Authority key identifier: 40:7C:E7:8F:4A:C3:BA:90:2A:0C:38:DC:01:A0:C5:F2:12:65:19:B0 Certificate issuer: /CN=407ce78f4ac3ba902a0c38dc01a0c5f2126519b0 Certificate serial: 019B2175BA536D9FB006D1E9C5B1EA2F4F1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHznj0rDupAqDDjcAaDF8hJlGbA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft Manifest number: 0BE8 Signing time: Mon 15 Dec 2025 10:02:02 +0000 Manifest this update: Mon 15 Dec 2025 10:02:02 +0000 Manifest next update: Tue 16 Dec 2025 10:02:02 +0000 Files and hashes: 1: QHznj0rDupAqDDjcAaDF8hJlGbA.crl (hash: zcU7RSumofKqqw33xYkvOlcFygv+mkqWKNeFKzjZLR0=) 2: UJVJt5_Arh5oP7MnvKcbCGODOc4.roa (hash: cSJe9mPxkDM+ny/+GoKSWRH8dkU4qbTNsxlZ1deFGeo=) 3: epRoE1oSS28-kMoVUvbovqDaftI.roa (hash: vf7QEJn0ywPdqhUagZXAfAdq0fp3vefGorgZKG9IKIg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft rsync://rpki.ripe.net/repository/DEFAULT/QHznj0rDupAqDDjcAaDF8hJlGbA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 10:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:75:ba:53:6d:9f:b0:06:d1:e9:c5:b1:ea:2f:4f:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=407ce78f4ac3ba902a0c38dc01a0c5f2126519b0 Validity Not Before: Dec 15 10:02:02 2025 GMT Not After : Dec 16 10:02:02 2025 GMT Subject: CN=49a4de796f636e4d0976bb617a570f1f0b3097e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:06:06:41:55:e3:11:09:85:9e:14:bb:cf:b2: 73:c5:f1:50:66:03:55:43:0c:2b:14:58:ff:d8:05: 74:b4:94:19:a2:8f:57:1e:e6:72:fc:18:89:e2:4e: d7:f4:f2:ed:0b:62:81:98:2e:e0:8a:20:61:29:e7: 76:ed:69:df:e9:77:4c:df:28:56:a1:eb:e4:52:e9: 20:3a:b5:6c:59:4a:75:c6:53:cd:b4:af:bc:ff:2a: 24:dc:15:06:33:1c:ac:33:06:0f:4f:83:3e:f9:66: 7c:54:e3:ee:de:68:bc:7f:b1:f2:88:fc:9c:f5:01: 1f:55:8e:96:cc:94:ed:e6:7e:b0:17:57:fc:c1:d6: 51:83:78:9f:03:01:1b:40:79:83:c6:85:4c:75:8b: 9d:2e:85:f5:b7:d8:87:a6:0a:e2:95:ac:bc:e8:3c: 4c:4e:22:a5:65:6a:e9:b4:f6:e2:06:ba:93:d0:0f: b6:17:de:a7:c6:0b:34:c7:09:b2:3e:f1:65:89:ed: 16:33:4a:08:06:01:f5:b7:80:4f:b3:bc:3d:6e:cb: 25:a6:8c:cb:ce:09:67:2e:5e:8b:1f:b5:df:b6:27: 36:43:79:c3:ae:33:85:df:bb:f7:35:36:d1:00:1f: f1:15:43:ca:61:aa:f4:83:96:46:fd:24:35:b8:8c: 54:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A4:DE:79:6F:63:6E:4D:09:76:BB:61:7A:57:0F:1F:0B:30:97:E6 X509v3 Authority Key Identifier: keyid:40:7C:E7:8F:4A:C3:BA:90:2A:0C:38:DC:01:A0:C5:F2:12:65:19:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHznj0rDupAqDDjcAaDF8hJlGbA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:d2:51:8b:cb:ee:5d:b5:76:be:a6:13:da:4f:c7:6b:01:62: cc:e5:43:0d:52:4d:76:c0:47:b5:ee:5b:2c:8f:ea:d3:8e:90: 99:bd:6f:78:18:a7:42:eb:85:8d:a9:54:70:85:3f:68:03:8d: 4d:ff:ac:9a:48:e5:b7:42:61:c8:a5:45:77:75:e2:8e:72:67: 37:d4:86:c9:31:17:9a:03:f7:bf:9e:c0:12:d8:4d:d7:9b:2c: 57:3a:51:fd:bb:d0:84:f7:cd:f9:c4:31:5d:cf:2b:2c:62:fe: a7:c9:5f:3e:4b:dc:96:a2:6d:68:7e:55:3e:83:5e:6a:ec:f3: 2c:06:96:9e:05:93:6d:68:0f:b6:35:84:d6:92:a4:13:7c:2c: e1:bd:3e:50:78:75:b9:f8:8e:9d:6c:8b:73:12:40:48:57:8f: fe:ee:67:73:e2:eb:0b:90:f4:6d:30:23:d2:6d:7c:1b:35:4e: 23:f8:a2:44:01:9f:eb:95:a7:f3:b3:b3:ca:0b:86:0a:fa:35: e3:66:99:3f:10:6b:d1:78:20:68:49:74:44:07:91:5b:df:62: 2d:5f:cf:14:d7:ff:b8:06:1e:93:94:1a:4c:23:ca:42:37:fd: 42:c2:ba:c8:69:ae:a1:fd:d1:72:ff:ae:c9:f9:b8:47:d7:f4: 55:ec:59:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZshdbpTbZ+wBtHpxbHqL08fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwN2NlNzhmNGFjM2JhOTAyYTBjMzhkYzAxYTBjNWYyMTI2 NTE5YjAwHhcNMjUxMjE1MTAwMjAyWhcNMjUxMjE2MTAwMjAyWjAzMTEwLwYDVQQD Eyg0OWE0ZGU3OTZmNjM2ZTRkMDk3NmJiNjE3YTU3MGYxZjBiMzA5N2U2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQYGQVXjEQmFnhS7z7JzxfFQZgNV QwwrFFj/2AV0tJQZoo9XHuZy/BiJ4k7X9PLtC2KBmC7giiBhKed27Wnf6XdM3yhW oevkUukgOrVsWUp1xlPNtK+8/yok3BUGMxysMwYPT4M++WZ8VOPu3mi8f7HyiPyc 9QEfVY6WzJTt5n6wF1f8wdZRg3ifAwEbQHmDxoVMdYudLoX1t9iHpgrilay86DxM TiKlZWrptPbiBrqT0A+2F96nxgs0xwmyPvFlie0WM0oIBgH1t4BPs7w9bsslpozL zglnLl6LH7Xftic2Q3nDrjOF37v3NTbRAB/xFUPKYar0g5ZG/SQ1uIxUqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEmk3nlvY25NCXa7YXpXDx8LMJfmMB8GA1UdIwQY MBaAFEB8549Kw7qQKgw43AGgxfISZRmwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUh6bmowckR1cEFxRERqY0FhREY4aEpsR2JBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hODdlYTgtYzNiNi00NzJkLWE5NmMt YTk3MWEzMzRmYWE0LzEvUUh6bmowckR1cEFxRERqY0FhREY4aEpsR2JBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hODdlYTgtYzNiNi00NzJkLWE5NmMtYTk3MWEzMzRmYWE0 LzEvUUh6bmowckR1cEFxRERqY0FhREY4aEpsR2JBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh9JRi8vu XbV2vqYT2k/HawFizOVDDVJNdsBHte5bLI/q046Qmb1veBinQuuFjalUcIU/aAON Tf+smkjlt0JhyKVFd3XijnJnN9SGyTEXmgP3v57AEthN15ssVzpR/bvQhPfN+cQx Xc8rLGL+p8lfPkvclqJtaH5VPoNeauzzLAaWngWTbWgPtjWE1pKkE3ws4b0+UHh1 ufiOnWyLcxJASFeP/u5nc+LrC5D0bTAj0m18GzVOI/iiRAGf65Wn87OzyguGCvo1 42aZPxBr0XggaEl0RAeRW99iLV/PFNf/uAYek5QaTCPKQjf9QsK6yGmuof3Rcv+u yfm4R9f0VexZGQ== -----END CERTIFICATE-----Generated at Mon Dec 15 20:00:22 2025 by rpki-client