This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft File: QHznj0rDupAqDDjcAaDF8hJlGbA.mft (raw, json) Hash identifier: +5kW0+g9Z/armbdYFxZ2/pH4yY17ma92LePsbDOwYyA= Subject key identifier: E0:8A:1A:58:B9:EA:73:AC:FE:9C:11:3C:B7:40:1F:A1:14:82:7C:A7 Authority key identifier: 40:7C:E7:8F:4A:C3:BA:90:2A:0C:38:DC:01:A0:C5:F2:12:65:19:B0 Certificate issuer: /CN=407ce78f4ac3ba902a0c38dc01a0c5f2126519b0 Certificate serial: 019AF12ED066F348756B91A25B99BC1F825B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHznj0rDupAqDDjcAaDF8hJlGbA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft Manifest number: 0BCF Signing time: Sat 06 Dec 2025 01:02:48 +0000 Manifest this update: Sat 06 Dec 2025 01:02:48 +0000 Manifest next update: Sun 07 Dec 2025 01:02:48 +0000 Files and hashes: 1: QHznj0rDupAqDDjcAaDF8hJlGbA.crl (hash: TMC/fdzgaP19t8lUH4GERlFp49BZHpJBogBMBIrsPUI=) 2: UJVJt5_Arh5oP7MnvKcbCGODOc4.roa (hash: cSJe9mPxkDM+ny/+GoKSWRH8dkU4qbTNsxlZ1deFGeo=) 3: epRoE1oSS28-kMoVUvbovqDaftI.roa (hash: vf7QEJn0ywPdqhUagZXAfAdq0fp3vefGorgZKG9IKIg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft rsync://rpki.ripe.net/repository/DEFAULT/QHznj0rDupAqDDjcAaDF8hJlGbA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:d0:66:f3:48:75:6b:91:a2:5b:99:bc:1f:82:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=407ce78f4ac3ba902a0c38dc01a0c5f2126519b0 Validity Not Before: Dec 6 01:02:48 2025 GMT Not After : Dec 7 01:02:48 2025 GMT Subject: CN=e08a1a58b9ea73acfe9c113cb7401fa114827ca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:63:13:85:3e:3b:14:f8:6f:9d:d7:d9:b2:17: dc:15:44:33:0f:7f:f9:b6:3d:f3:c6:18:1f:8e:85: ca:3c:85:4d:5a:88:fa:2c:42:1d:5c:1c:f4:f5:2c: 5d:be:f9:16:c4:dc:d1:dc:c5:6e:12:19:7b:6d:b0: a8:2e:8b:c4:05:fa:b1:de:4e:58:be:00:9e:1d:34: e3:b0:28:e6:15:24:1a:bc:37:f3:8d:82:6f:74:dd: c9:fd:f9:c1:63:9b:ba:ea:87:af:77:70:92:5d:58: e0:0e:3a:b9:ab:90:65:b0:d9:7c:bf:7f:32:33:c8: f1:f3:40:e1:ff:a9:63:77:02:86:a4:bc:1f:91:2d: 31:55:da:4d:47:67:7f:7c:60:d7:24:a5:2b:25:51: d7:e4:ec:fc:99:d5:cb:30:85:85:0d:d0:89:01:82: e2:e4:38:5e:97:dd:fe:21:0e:d2:8e:35:ce:d0:5f: 47:08:2b:85:b8:dd:8c:82:ce:d1:65:7b:0c:ff:13: 59:cd:66:16:7b:0b:97:0b:49:37:13:f4:9f:68:86: 7b:54:00:6a:89:60:17:28:44:79:cc:a4:09:04:a3: 21:06:e2:25:70:f8:8b:58:d0:f6:b7:3f:0b:6d:d4: 4d:10:63:33:84:cb:f8:c7:a6:6e:16:e8:cf:45:99: cf:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:8A:1A:58:B9:EA:73:AC:FE:9C:11:3C:B7:40:1F:A1:14:82:7C:A7 X509v3 Authority Key Identifier: keyid:40:7C:E7:8F:4A:C3:BA:90:2A:0C:38:DC:01:A0:C5:F2:12:65:19:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHznj0rDupAqDDjcAaDF8hJlGbA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:3f:ab:b3:a9:df:f8:28:ae:42:05:10:a2:1a:20:0d:54:a6: c1:50:60:7d:64:b1:6d:99:4d:a8:b4:8d:51:53:3a:f6:8f:fb: c1:a7:ff:d2:51:81:83:17:f4:09:4e:a1:4b:40:e4:ca:c7:b0: 4e:68:a9:6e:9b:e1:61:2d:53:7c:15:18:22:19:2c:a8:61:22: f7:a9:89:d6:a7:16:99:db:17:ff:26:e3:c5:33:25:1f:d0:5b: 3c:1a:85:08:99:4e:a7:9e:ec:6e:a2:55:e0:d2:0a:fb:69:d0: 1f:73:a9:4a:3c:39:10:6f:b9:53:98:40:6e:a5:d6:8b:45:72: 70:13:7b:57:45:14:32:89:0d:40:4c:b2:ef:4a:77:bf:d8:e7: 25:e3:89:2f:6d:9b:6f:e8:98:c2:65:0f:97:50:d5:36:23:15: 6d:f9:88:e9:ca:74:ba:4b:c1:8f:ed:46:1c:b2:cd:92:a7:98: 8c:3b:ba:37:88:ae:59:89:e5:d6:c3:ff:e3:db:b7:59:10:65: 51:04:7a:a5:fd:ba:a0:ac:f8:9f:4f:59:5e:58:72:2c:e2:28: ee:9d:59:31:9f:ba:9b:8f:fd:df:dc:f1:47:1d:0b:c9:ef:53: 07:63:7d:67:2f:97:aa:df:ce:43:bb:ad:cc:44:0c:93:e5:b4: 86:5c:2e:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLtBm80h1a5GiW5m8H4JbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwN2NlNzhmNGFjM2JhOTAyYTBjMzhkYzAxYTBjNWYyMTI2 NTE5YjAwHhcNMjUxMjA2MDEwMjQ4WhcNMjUxMjA3MDEwMjQ4WjAzMTEwLwYDVQQD EyhlMDhhMWE1OGI5ZWE3M2FjZmU5YzExM2NiNzQwMWZhMTE0ODI3Y2E3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumMThT47FPhvndfZshfcFUQzD3/5 tj3zxhgfjoXKPIVNWoj6LEIdXBz09SxdvvkWxNzR3MVuEhl7bbCoLovEBfqx3k5Y vgCeHTTjsCjmFSQavDfzjYJvdN3J/fnBY5u66oevd3CSXVjgDjq5q5BlsNl8v38y M8jx80Dh/6ljdwKGpLwfkS0xVdpNR2d/fGDXJKUrJVHX5Oz8mdXLMIWFDdCJAYLi 5Dhel93+IQ7SjjXO0F9HCCuFuN2Mgs7RZXsM/xNZzWYWewuXC0k3E/SfaIZ7VABq iWAXKER5zKQJBKMhBuIlcPiLWND2tz8LbdRNEGMzhMv4x6ZuFujPRZnP3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOCKGli56nOs/pwRPLdAH6EUgnynMB8GA1UdIwQY MBaAFEB8549Kw7qQKgw43AGgxfISZRmwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUh6bmowckR1cEFxRERqY0FhREY4aEpsR2JBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hODdlYTgtYzNiNi00NzJkLWE5NmMt YTk3MWEzMzRmYWE0LzEvUUh6bmowckR1cEFxRERqY0FhREY4aEpsR2JBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hODdlYTgtYzNiNi00NzJkLWE5NmMtYTk3MWEzMzRmYWE0 LzEvUUh6bmowckR1cEFxRERqY0FhREY4aEpsR2JBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACj+rs6nf +CiuQgUQohogDVSmwVBgfWSxbZlNqLSNUVM69o/7waf/0lGBgxf0CU6hS0Dkysew TmipbpvhYS1TfBUYIhksqGEi96mJ1qcWmdsX/ybjxTMlH9BbPBqFCJlOp57sbqJV 4NIK+2nQH3OpSjw5EG+5U5hAbqXWi0VycBN7V0UUMokNQEyy70p3v9jnJeOJL22b b+iYwmUPl1DVNiMVbfmI6cp0ukvBj+1GHLLNkqeYjDu6N4iuWYnl1sP/49u3WRBl UQR6pf26oKz4n09ZXlhyLOIo7p1ZMZ+6m4/939zxRx0Lye9TB2N9Zy+Xqt/OQ7ut zEQMk+W0hlwuWg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:58:56 2025 by rpki-client