This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.mft File: QdFPKPmNO9zEXhkibx9WFw4xKr8.mft (raw, json) Hash identifier: 5S6c781VqrymkDgSE6uKJ5zCeF667OihG012EcPS0lY= Subject key identifier: 66:64:C5:E0:3C:19:24:55:1B:3C:4A:29:E7:91:61:6A:E0:E4:8C:6C Authority key identifier: 41:D1:4F:28:F9:8D:3B:DC:C4:5E:19:22:6F:1F:56:17:0E:31:2A:BF Certificate issuer: /CN=41d14f28f98d3bdcc45e19226f1f56170e312abf Certificate serial: 019B5ABF75F29906296E3BF4940C2F33A615 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdFPKPmNO9zEXhkibx9WFw4xKr8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.mft Manifest number: 1799 Signing time: Fri 26 Dec 2025 13:00:55 +0000 Manifest this update: Fri 26 Dec 2025 13:00:55 +0000 Manifest next update: Sat 27 Dec 2025 13:00:55 +0000 Files and hashes: 1: QdFPKPmNO9zEXhkibx9WFw4xKr8.crl (hash: cyoLk61sq0D3yMlt25jka8aCcqtaIA/xGYPjPMFiqbY=) 2: TfT6AZyh9UGWuKPzLXDw4XK7Cjc.roa (hash: 4OX2vbS8uyBAPoRn5NlTz3A25sxN9Wre4w3pzzWneG0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.crl rsync://rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.mft rsync://rpki.ripe.net/repository/DEFAULT/QdFPKPmNO9zEXhkibx9WFw4xKr8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 13:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:75:f2:99:06:29:6e:3b:f4:94:0c:2f:33:a6:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41d14f28f98d3bdcc45e19226f1f56170e312abf Validity Not Before: Dec 26 13:00:55 2025 GMT Not After : Dec 27 13:00:55 2025 GMT Subject: CN=6664c5e03c1924551b3c4a29e791616ae0e48c6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:15:2a:24:89:d4:67:06:bf:36:64:9d:ce:ee: 0f:b6:28:c0:e9:e4:27:44:9d:43:91:0e:5f:b1:dd: 37:7a:29:6b:a9:30:b9:b1:f6:cc:a6:bd:05:2b:d3: 30:e3:75:1f:41:16:f8:85:0e:36:a2:66:c2:5e:da: 1b:34:b8:38:c6:33:e3:8b:05:85:b6:4f:70:c1:97: 59:7c:2a:44:62:fa:26:e4:2f:15:d0:46:8a:07:d2: 9c:04:ca:ca:f4:c9:81:57:bb:32:3c:7f:b2:88:58: 60:41:39:cf:92:c4:5b:d2:68:b2:e0:55:e1:3c:02: e1:a7:6d:aa:29:1f:6e:ed:91:47:25:48:fe:2a:5d: d4:71:a1:d8:1f:4c:b2:78:ba:69:a4:d3:b1:8d:ec: 2b:dc:b6:bf:16:c9:fe:02:40:fd:b3:fc:7a:9d:88: 8d:5f:ce:7d:0e:e6:3f:40:75:1a:35:88:50:ec:bf: d9:3e:85:e7:93:22:da:44:9d:19:8c:33:a4:4f:9b: 7b:6e:b5:0f:66:34:2a:ff:7a:3b:f1:41:5b:f8:25: b0:79:74:3b:6f:e2:26:96:b7:e5:9f:f1:0d:5d:5e: d9:1b:7a:96:43:7e:8e:28:8d:b0:89:47:7f:63:81: d9:3a:0c:35:9d:fd:75:0c:22:06:de:e7:c6:e9:ad: 92:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:64:C5:E0:3C:19:24:55:1B:3C:4A:29:E7:91:61:6A:E0:E4:8C:6C X509v3 Authority Key Identifier: keyid:41:D1:4F:28:F9:8D:3B:DC:C4:5E:19:22:6F:1F:56:17:0E:31:2A:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdFPKPmNO9zEXhkibx9WFw4xKr8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:3e:9c:b4:4b:2a:ac:54:60:7a:00:d3:75:fa:8c:f5:ba:b9: 75:cf:cb:d3:ab:37:d1:fd:2c:4c:8e:23:01:39:00:2f:33:e0: ce:64:5a:55:91:a9:5b:5e:7a:c4:8e:fe:93:5f:af:9b:09:e7: 2c:da:03:eb:7c:ae:70:e2:b5:5f:c7:ae:f1:9d:72:50:46:3c: e5:0f:7c:e2:c7:9b:49:64:f5:7c:79:54:b6:80:8c:da:4a:f0: 0d:77:02:6e:99:4d:6f:a0:9e:ef:e3:15:a6:0b:c1:fb:c6:f9: f1:8b:a8:44:47:b4:12:bb:f0:84:55:fb:00:82:7e:9f:e9:5a: 4e:5d:57:d1:16:10:b1:2f:ea:2f:fa:8e:14:d9:52:68:11:48: 19:0a:2b:25:66:28:ac:c4:87:19:18:78:46:30:36:7a:7d:8a: 56:63:fe:6e:00:b1:27:c1:0f:31:7c:db:94:d4:15:58:c8:9c: f9:7d:a0:fc:60:07:c0:a4:4d:f7:9b:e1:85:8d:b5:44:33:8b: 0e:b6:f8:74:4c:cc:e6:c8:d1:0e:11:b5:d5:c0:20:c8:3f:72: eb:a8:ca:51:25:45:a7:4d:6d:01:7b:19:57:f1:0b:dc:e7:63: eb:fa:a3:79:65:0c:6c:e0:68:aa:1b:95:a0:5f:2f:68:24:0a: 4d:a1:83:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtav3XymQYpbjv0lAwvM6YVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxZDE0ZjI4Zjk4ZDNiZGNjNDVlMTkyMjZmMWY1NjE3MGUz MTJhYmYwHhcNMjUxMjI2MTMwMDU1WhcNMjUxMjI3MTMwMDU1WjAzMTEwLwYDVQQD Eyg2NjY0YzVlMDNjMTkyNDU1MWIzYzRhMjllNzkxNjE2YWUwZTQ4YzZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBUqJInUZwa/NmSdzu4PtijA6eQn RJ1DkQ5fsd03eilrqTC5sfbMpr0FK9Mw43UfQRb4hQ42ombCXtobNLg4xjPjiwWF tk9wwZdZfCpEYvom5C8V0EaKB9KcBMrK9MmBV7syPH+yiFhgQTnPksRb0miy4FXh PALhp22qKR9u7ZFHJUj+Kl3UcaHYH0yyeLpppNOxjewr3La/Fsn+AkD9s/x6nYiN X859DuY/QHUaNYhQ7L/ZPoXnkyLaRJ0ZjDOkT5t7brUPZjQq/3o78UFb+CWweXQ7 b+Imlrfln/ENXV7ZG3qWQ36OKI2wiUd/Y4HZOgw1nf11DCIG3ufG6a2SRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGZkxeA8GSRVGzxKKeeRYWrg5IxsMB8GA1UdIwQY MBaAFEHRTyj5jTvcxF4ZIm8fVhcOMSq/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWRGUEtQbU5POXpFWGhraWJ4OVdGdzR4S3I4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9hMDc0ZTItNjZlYS00M2NjLTk0YTct YjM4MDQ1MzI2N2Y5LzEvUWRGUEtQbU5POXpFWGhraWJ4OVdGdzR4S3I4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9hMDc0ZTItNjZlYS00M2NjLTk0YTctYjM4MDQ1MzI2N2Y5 LzEvUWRGUEtQbU5POXpFWGhraWJ4OVdGdzR4S3I4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiz6ctEsq rFRgegDTdfqM9bq5dc/L06s30f0sTI4jATkALzPgzmRaVZGpW156xI7+k1+vmwnn LNoD63yucOK1X8eu8Z1yUEY85Q984sebSWT1fHlUtoCM2krwDXcCbplNb6Ce7+MV pgvB+8b58YuoREe0ErvwhFX7AIJ+n+laTl1X0RYQsS/qL/qOFNlSaBFIGQorJWYo rMSHGRh4RjA2en2KVmP+bgCxJ8EPMXzblNQVWMic+X2g/GAHwKRN95vhhY21RDOL Drb4dEzM5sjRDhG11cAgyD9y66jKUSVFp01tAXsZV/EL3Odj6/qjeWUMbOBoqhuV oF8vaCQKTaGD+Q== -----END CERTIFICATE-----Generated at Fri Dec 26 22:46:14 2025 by rpki-client