This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft File: QA8uoVe7tTqwJgEazlzRNg7y930.mft (raw, json) Hash identifier: 8yKZVEWKWhdnwMeU8E2MSpKy3cx3u9y8Wh9+ckbazEI= Subject key identifier: E9:EC:D9:BE:E5:33:DD:FB:C7:72:15:8D:25:53:21:70:F0:44:BE:66 Authority key identifier: 40:0F:2E:A1:57:BB:B5:3A:B0:26:01:1A:CE:5C:D1:36:0E:F2:F7:7D Certificate issuer: /CN=400f2ea157bbb53ab026011ace5cd1360ef2f77d Certificate serial: 019AF12DC6BA4402DDF206229390B83762E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA8uoVe7tTqwJgEazlzRNg7y930.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft Manifest number: 16B5 Signing time: Sat 06 Dec 2025 01:01:40 +0000 Manifest this update: Sat 06 Dec 2025 01:01:40 +0000 Manifest next update: Sun 07 Dec 2025 01:01:40 +0000 Files and hashes: 1: QA8uoVe7tTqwJgEazlzRNg7y930.crl (hash: cmCMcev0GMBxUM1yecdXHarVLaHrheGOcOvHTi6WLDw=) 2: XYTPsqrRjFt2AcvYCap2e2yz93s.roa (hash: Kn1lsHWRvXKbCBaB+H+cKPNwO5N2Gs/SXNbPpw2oiTI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft rsync://rpki.ripe.net/repository/DEFAULT/QA8uoVe7tTqwJgEazlzRNg7y930.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:c6:ba:44:02:dd:f2:06:22:93:90:b8:37:62:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=400f2ea157bbb53ab026011ace5cd1360ef2f77d Validity Not Before: Dec 6 01:01:40 2025 GMT Not After : Dec 7 01:01:40 2025 GMT Subject: CN=e9ecd9bee533ddfbc772158d25532170f044be66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:c7:78:22:f2:f0:3a:ce:7d:95:61:63:41:fd: 71:a5:34:35:5e:5e:02:26:4d:55:3d:7d:5c:d9:3e: fb:8a:46:d2:e9:05:75:a2:48:3e:18:4b:5f:b7:5e: 2a:9e:97:04:91:1f:9e:75:90:43:3e:70:e9:94:df: b2:fa:34:45:73:de:28:42:a7:aa:cb:7d:45:bc:b4: 71:f0:fb:65:70:5d:ae:2a:01:28:79:01:25:6b:21: 3a:45:d9:61:77:04:3b:37:f0:bb:27:0a:ee:fd:36: 8b:05:02:9c:a8:b5:68:83:da:02:d8:58:70:d6:7c: 68:13:cf:38:b3:d8:2d:29:12:45:1d:f7:7e:c9:ce: 6b:2d:eb:cf:17:7e:9d:91:ea:32:f6:9e:f4:5c:6d: de:33:8a:25:9a:72:22:d8:30:29:bc:5a:d4:46:bd: 56:7c:18:ab:e5:c2:d3:5c:85:23:ff:b5:02:06:93: 0d:ab:0f:ef:be:73:77:50:4f:96:a3:fc:15:ab:ff: be:b3:2d:1e:43:6c:6d:d5:81:ff:a3:cb:a7:79:47: 0a:c1:b0:78:69:5a:b1:b9:e5:a7:45:7b:a5:8d:bb: 9b:d2:7d:79:34:45:0a:b4:95:70:1f:ff:9a:60:e8: 42:1c:00:3a:f8:79:27:a4:91:d2:02:39:c4:cc:3f: 70:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:EC:D9:BE:E5:33:DD:FB:C7:72:15:8D:25:53:21:70:F0:44:BE:66 X509v3 Authority Key Identifier: keyid:40:0F:2E:A1:57:BB:B5:3A:B0:26:01:1A:CE:5C:D1:36:0E:F2:F7:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA8uoVe7tTqwJgEazlzRNg7y930.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:90:fd:07:a9:e5:a6:d6:9f:82:41:89:7b:70:2e:9e:9b:b8: 4a:4c:b1:36:d7:fe:79:e3:8a:45:46:06:8e:c7:08:e8:51:ce: ad:2b:3d:56:eb:eb:19:1c:2f:04:4c:b1:34:e1:2a:22:92:90: a7:75:88:72:03:78:48:00:fa:e4:de:25:03:02:36:a7:58:ec: 13:a3:8a:6e:c5:87:9c:56:bb:59:a6:d8:c7:b7:d8:b3:a4:a7: 5c:55:30:bc:16:fa:30:51:e5:a7:83:7c:30:39:28:1b:73:bc: 3f:ef:1e:8d:54:15:62:8e:2b:d0:5f:94:01:54:aa:4a:35:fb: 03:0e:11:e3:d5:5b:e3:fc:96:9e:01:39:54:0a:f9:48:77:69: c9:55:3f:13:80:9f:53:36:12:f7:f4:83:4f:d3:92:f1:c6:9c: 02:2f:60:c8:b2:a3:87:4c:df:fc:0a:60:ef:95:2e:90:94:57: 68:c4:21:cd:b2:91:75:c3:a5:a1:7e:f7:89:bf:f6:3b:86:96: 6a:50:86:14:20:b4:d6:69:26:64:9c:f2:92:fd:e4:f9:54:f5: bb:5b:f8:7e:db:cc:3a:93:d6:81:10:72:74:d4:3c:17:8f:88: 39:56:a0:4a:11:8b:ea:60:f8:9e:b7:1a:bd:db:cc:a6:53:05: 0f:92:df:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLca6RALd8gYik5C4N2LmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwMGYyZWExNTdiYmI1M2FiMDI2MDExYWNlNWNkMTM2MGVm MmY3N2QwHhcNMjUxMjA2MDEwMTQwWhcNMjUxMjA3MDEwMTQwWjAzMTEwLwYDVQQD EyhlOWVjZDliZWU1MzNkZGZiYzc3MjE1OGQyNTUzMjE3MGYwNDRiZTY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAksd4IvLwOs59lWFjQf1xpTQ1Xl4C Jk1VPX1c2T77ikbS6QV1okg+GEtft14qnpcEkR+edZBDPnDplN+y+jRFc94oQqeq y31FvLRx8PtlcF2uKgEoeQElayE6RdlhdwQ7N/C7Jwru/TaLBQKcqLVog9oC2Fhw 1nxoE884s9gtKRJFHfd+yc5rLevPF36dkeoy9p70XG3eM4olmnIi2DApvFrURr1W fBir5cLTXIUj/7UCBpMNqw/vvnN3UE+Wo/wVq/++sy0eQ2xt1YH/o8uneUcKwbB4 aVqxueWnRXuljbub0n15NEUKtJVwH/+aYOhCHAA6+HknpJHSAjnEzD9wTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOns2b7lM937x3IVjSVTIXDwRL5mMB8GA1UdIwQY MBaAFEAPLqFXu7U6sCYBGs5c0TYO8vd9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUE4dW9WZTd0VHF3SmdFYXpselJOZzd5OTMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS80YmZkNTYtODgwZC00OTliLTg3MjQt ZDc5NzFmMWU1OTlkLzEvUUE4dW9WZTd0VHF3SmdFYXpselJOZzd5OTMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS80YmZkNTYtODgwZC00OTliLTg3MjQtZDc5NzFmMWU1OTlk LzEvUUE4dW9WZTd0VHF3SmdFYXpselJOZzd5OTMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZJD9B6nl ptafgkGJe3Aunpu4SkyxNtf+eeOKRUYGjscI6FHOrSs9VuvrGRwvBEyxNOEqIpKQ p3WIcgN4SAD65N4lAwI2p1jsE6OKbsWHnFa7WabYx7fYs6SnXFUwvBb6MFHlp4N8 MDkoG3O8P+8ejVQVYo4r0F+UAVSqSjX7Aw4R49Vb4/yWngE5VAr5SHdpyVU/E4Cf UzYS9/SDT9OS8cacAi9gyLKjh0zf/Apg75UukJRXaMQhzbKRdcOloX73ib/2O4aW alCGFCC01mkmZJzykv3k+VT1u1v4ftvMOpPWgRBydNQ8F4+IOVagShGL6mD4nrca vdvMplMFD5Lf7A== -----END CERTIFICATE-----Generated at Sat Dec 6 08:21:55 2025 by rpki-client