This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft File: QBY91EFO8-eS4AUB80786UQKnE4.mft (raw, json) Hash identifier: sw0r45HhUFck5JEwPbefl25K7xUts3rmYEjjKbDfGYw= Subject key identifier: 0D:98:A2:46:83:9D:6D:AB:F0:62:4E:15:D1:AE:3D:8C:EF:DF:59:A4 Authority key identifier: 40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E Certificate issuer: /CN=40163dd4414ef3e792e00501f34efce9440a9c4e Certificate serial: 019AF19B5FB24ECF55ADF24C7CF7318334E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 03:01:22 +0000 Manifest this update: Sat 06 Dec 2025 03:01:22 +0000 Manifest next update: Sun 07 Dec 2025 03:01:22 +0000 Files and hashes: 1: QBY91EFO8-eS4AUB80786UQKnE4.crl (hash: YWXzOwu+WbzKW7eBNQ2GaBhW9qivPH2IritCghMRWGk=) 2: gYnUiXQeHZXoU2ZAN-fbsd-Pbx0.roa (hash: V+jQPfwx3Xoa/wL9PzJ6rz+juFyDwb1B2F2Hpp1ngN4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:5f:b2:4e:cf:55:ad:f2:4c:7c:f7:31:83:34:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40163dd4414ef3e792e00501f34efce9440a9c4e Validity Not Before: Dec 6 03:01:22 2025 GMT Not After : Dec 7 03:01:22 2025 GMT Subject: CN=0d98a246839d6dabf0624e15d1ae3d8cefdf59a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:25:8f:38:9a:32:47:3f:1c:c1:a1:3d:5a:03: 37:c5:67:d6:bb:bc:28:e3:05:7c:51:3a:74:ba:a8: 68:04:04:e2:ae:7f:87:2a:3e:5e:74:b8:e1:d3:d3: e1:5f:36:57:26:4f:c7:4a:22:3e:76:8c:1a:c8:ae: 6f:55:1c:a8:61:ab:b5:0a:07:f2:22:48:6f:bf:42: d9:d9:9e:fa:14:f1:22:4d:92:9b:fd:c1:54:02:32: 85:e6:f5:a2:4d:8e:ca:c3:aa:8b:ed:97:67:a8:d5: 67:a3:57:15:03:68:8c:13:e1:51:aa:d4:fc:8e:f9: 07:4a:e2:7c:b4:b7:7d:22:12:87:6e:79:b6:59:a4: 53:39:12:c0:c7:e6:ac:c5:0d:08:3a:69:f6:67:dd: e0:6f:0e:3a:d7:44:d8:d6:ac:cf:c4:8c:53:5a:12: 5d:4b:f5:bf:b5:ff:c3:17:7e:4f:06:0d:45:b7:90: f4:54:19:15:8e:2a:da:41:10:2c:ee:4e:b0:15:28: 32:d2:d7:34:79:87:fb:05:56:72:69:1d:58:72:ba: e1:4f:70:7e:f6:f1:a8:28:a3:a0:f6:e3:bc:ef:89: 70:64:53:16:c0:2e:b2:f0:f6:d9:b7:0d:cd:92:83: 58:2b:cc:70:f1:ff:89:e0:ae:ec:1d:ce:83:87:60: 98:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:98:A2:46:83:9D:6D:AB:F0:62:4E:15:D1:AE:3D:8C:EF:DF:59:A4 X509v3 Authority Key Identifier: keyid:40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:10:0d:fa:cc:fe:79:2d:f7:ca:38:cd:1c:f4:e3:79:44:1e: 83:01:b5:12:b6:ee:7b:ef:27:d9:6b:46:fb:7c:3e:52:01:08: e7:6a:83:3d:1e:6c:85:50:05:8a:41:e8:8c:a9:fc:aa:55:91: da:00:b4:17:ec:10:66:ce:a3:2b:1c:56:34:ec:0f:7a:25:8a: d7:81:87:7a:af:dc:e9:fa:50:8b:c3:b2:48:b0:d9:ae:b9:b5: 5a:a0:76:25:8d:bf:04:6d:48:23:38:7b:2d:f0:75:a2:02:6b: b2:6e:e7:7d:1a:69:14:7b:1f:80:56:db:7f:c5:b7:9e:21:dc: 7b:02:ad:2d:ae:8f:b2:62:77:0b:20:a1:71:9e:12:e4:3a:a0: 44:2a:cc:cb:3d:90:d3:33:90:21:ac:56:b4:5d:37:bc:c4:8f: ba:8f:78:de:68:24:44:80:cd:29:8c:15:87:f8:09:b4:71:db: 1b:6c:37:bb:28:2e:0a:37:b6:2c:15:07:ba:f4:12:16:18:35: c9:38:dc:b8:3a:62:05:27:28:99:98:b8:d0:e2:2c:f2:42:09: 9e:9f:d2:c9:64:c3:39:68:20:d7:5c:e6:7e:b6:4d:f6:bf:c6: 1f:f2:15:e9:66:85:c9:6b:f3:bb:41:4b:c2:be:b3:95:21:ad: 4e:fd:f3:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm1+yTs9VrfJMfPcxgzTgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwMTYzZGQ0NDE0ZWYzZTc5MmUwMDUwMWYzNGVmY2U5NDQw YTljNGUwHhcNMjUxMjA2MDMwMTIyWhcNMjUxMjA3MDMwMTIyWjAzMTEwLwYDVQQD EygwZDk4YTI0NjgzOWQ2ZGFiZjA2MjRlMTVkMWFlM2Q4Y2VmZGY1OWE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyWPOJoyRz8cwaE9WgM3xWfWu7wo 4wV8UTp0uqhoBATirn+HKj5edLjh09PhXzZXJk/HSiI+dowayK5vVRyoYau1Cgfy Ikhvv0LZ2Z76FPEiTZKb/cFUAjKF5vWiTY7Kw6qL7ZdnqNVno1cVA2iME+FRqtT8 jvkHSuJ8tLd9IhKHbnm2WaRTORLAx+asxQ0IOmn2Z93gbw4610TY1qzPxIxTWhJd S/W/tf/DF35PBg1Ft5D0VBkVjiraQRAs7k6wFSgy0tc0eYf7BVZyaR1YcrrhT3B+ 9vGoKKOg9uO874lwZFMWwC6y8PbZtw3NkoNYK8xw8f+J4K7sHc6Dh2CYbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA2YokaDnW2r8GJOFdGuPYzv31mkMB8GA1UdIwQY MBaAFEAWPdRBTvPnkuAFAfNO/OlECpxOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUJZOTFFRk84LWVTNEFVQjgwNzg2VVFLbkU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy81MjE0MzgtM2UwNC00ZDcyLTg4ZGUt MzYyMmFjN2Q2NWNjLzEvUUJZOTFFRk84LWVTNEFVQjgwNzg2VVFLbkU0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy81MjE0MzgtM2UwNC00ZDcyLTg4ZGUtMzYyMmFjN2Q2NWNj LzEvUUJZOTFFRk84LWVTNEFVQjgwNzg2VVFLbkU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAxAN+sz+ eS33yjjNHPTjeUQegwG1Erbue+8n2WtG+3w+UgEI52qDPR5shVAFikHojKn8qlWR 2gC0F+wQZs6jKxxWNOwPeiWK14GHeq/c6fpQi8OySLDZrrm1WqB2JY2/BG1IIzh7 LfB1ogJrsm7nfRppFHsfgFbbf8W3niHcewKtLa6PsmJ3CyChcZ4S5DqgRCrMyz2Q 0zOQIaxWtF03vMSPuo943mgkRIDNKYwVh/gJtHHbG2w3uyguCje2LBUHuvQSFhg1 yTjcuDpiBScomZi40OIs8kIJnp/SyWTDOWgg11zmfrZN9r/GH/IV6WaFyWvzu0FL wr6zlSGtTv3zNg== -----END CERTIFICATE-----Generated at Sat Dec 6 12:18:36 2025 by rpki-client