This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft File: QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft (raw, json) Hash identifier: xDObptgwtKDOB+UFc2dZvOoeMB/Kcfw46LUd97RhSnI= Subject key identifier: FE:29:62:7E:4F:61:36:D1:3F:E9:CE:D0:A3:D1:C9:95:63:45:4D:28 Authority key identifier: 40:D9:33:E8:24:74:65:0C:6A:A3:E9:CB:F0:57:4D:27:28:65:92:E7 Certificate issuer: /CN=40d933e82474650c6aa3e9cbf0574d27286592e7 Certificate serial: 019B4D040CEE6029E63A39102657657A37A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft Manifest number: 179C Signing time: Tue 23 Dec 2025 21:01:09 +0000 Manifest this update: Tue 23 Dec 2025 21:01:09 +0000 Manifest next update: Wed 24 Dec 2025 21:01:09 +0000 Files and hashes: 1: QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl (hash: sABUVqzk7ntRKqRk7UKYdLRSdrErS6aFtK4A8wG1mwo=) 2: ULw_e6rY6wER2z1dGFmp31jEgd0.roa (hash: MY5YBBTJCozx9Da4ab7Dr9d2mlZWfjLXtBL3DR2CzxU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 19:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4d:04:0c:ee:60:29:e6:3a:39:10:26:57:65:7a:37:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40d933e82474650c6aa3e9cbf0574d27286592e7 Validity Not Before: Dec 23 21:01:09 2025 GMT Not After : Dec 24 21:01:09 2025 GMT Subject: CN=fe29627e4f6136d13fe9ced0a3d1c99563454d28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c6:be:ae:cb:0f:e4:b8:82:a2:3e:6f:16:8e: 46:d7:79:1a:c8:61:fc:78:02:70:95:ff:4b:bb:f3: 1b:c2:c2:75:b6:ac:05:a2:e0:66:b2:3f:fa:99:ed: 25:8a:7c:00:55:2c:5f:5f:b2:d6:84:5a:43:31:a0: 22:9a:3d:c2:5d:45:98:70:d3:55:0b:cc:37:40:10: 99:f9:39:35:a9:a6:e8:a2:fa:ad:59:2e:aa:48:8c: 9c:d3:10:fc:3d:f6:eb:0d:a6:3f:93:ae:2c:0b:26: 3c:59:42:cc:db:09:f2:bf:36:aa:b0:43:50:45:41: 99:01:f9:a7:2b:01:b1:ff:ee:20:82:cd:b1:df:f6: bf:79:aa:21:0a:16:49:1e:ec:5a:4e:b8:6d:60:d3: 7e:84:b5:e5:f7:e7:27:ad:84:fb:3f:4b:b9:47:e6: 68:53:57:16:d1:6e:ef:c0:d8:86:e5:13:1e:6a:b6: b1:47:22:4a:6b:4a:8f:26:34:11:38:dd:cb:44:88: 01:7b:90:c2:cd:b1:6b:20:18:ce:3a:a4:59:7b:41: ee:77:03:53:5a:d3:2e:a0:0d:3f:83:9a:f2:68:ce: 94:8b:bf:03:23:db:ff:45:cc:ae:9c:34:3e:cf:28: f2:cb:d4:2f:57:b7:1e:7c:3b:6f:c3:50:6e:b3:d2: 6f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:29:62:7E:4F:61:36:D1:3F:E9:CE:D0:A3:D1:C9:95:63:45:4D:28 X509v3 Authority Key Identifier: keyid:40:D9:33:E8:24:74:65:0C:6A:A3:E9:CB:F0:57:4D:27:28:65:92:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:cf:ab:f2:2e:7b:1a:3a:35:a2:2f:6b:eb:81:66:6f:67:ef: 72:4f:db:e4:7c:5f:5c:22:8e:95:5b:19:bf:4d:fe:fb:a3:74: 8c:b2:89:cb:3c:4a:bc:a9:b8:07:a8:0a:b4:70:98:cf:dd:ee: 9c:53:bc:7f:fc:35:36:07:99:39:ac:56:3e:83:17:a6:cd:6b: 29:0a:79:10:75:38:dd:84:0b:d1:1d:4c:61:16:6f:64:73:5f: e9:5b:d4:b0:8d:59:b3:89:8e:9c:ab:cd:32:a4:03:a9:04:86: 29:e1:c6:63:b5:b7:34:4a:a8:33:80:26:07:63:86:e9:14:d8: d5:4f:d6:07:6e:7a:81:be:9a:8b:73:66:11:b7:0b:37:da:e3: d2:b4:0d:19:49:c3:1a:75:fc:f0:fb:83:0d:4f:55:65:5f:af: c2:59:10:9d:21:ec:bd:a3:03:26:f9:0d:00:af:78:56:be:f7: 6e:98:3a:b8:d6:66:bd:c8:e0:fa:bf:fc:a8:3b:ef:e3:d5:f4: 36:97:a4:33:f7:ca:fc:ec:43:de:6f:4e:cb:28:81:4c:ff:34: fd:f4:05:06:4d:07:e4:f8:63:3e:72:5d:84:fb:81:21:42:c9: fc:e2:9f:66:46:8f:a6:b4:18:e4:81:04:e7:27:07:f5:be:69: af:04:4a:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtNBAzuYCnmOjkQJldlejekMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZDkzM2U4MjQ3NDY1MGM2YWEzZTljYmYwNTc0ZDI3Mjg2 NTkyZTcwHhcNMjUxMjIzMjEwMTA5WhcNMjUxMjI0MjEwMTA5WjAzMTEwLwYDVQQD EyhmZTI5NjI3ZTRmNjEzNmQxM2ZlOWNlZDBhM2QxYzk5NTYzNDU0ZDI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzsa+rssP5LiCoj5vFo5G13kayGH8 eAJwlf9Lu/MbwsJ1tqwFouBmsj/6me0linwAVSxfX7LWhFpDMaAimj3CXUWYcNNV C8w3QBCZ+Tk1qaboovqtWS6qSIyc0xD8PfbrDaY/k64sCyY8WULM2wnyvzaqsENQ RUGZAfmnKwGx/+4ggs2x3/a/eaohChZJHuxaTrhtYNN+hLXl9+cnrYT7P0u5R+Zo U1cW0W7vwNiG5RMearaxRyJKa0qPJjQRON3LRIgBe5DCzbFrIBjOOqRZe0HudwNT WtMuoA0/g5ryaM6Ui78DI9v/RcyunDQ+zyjyy9QvV7cefDtvw1Bus9JvTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP4pYn5PYTbRP+nO0KPRyZVjRU0oMB8GA1UdIwQY MBaAFEDZM+gkdGUMaqPpy/BXTScoZZLnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU5rejZDUjBaUXhxby1uTDhGZE5KeWhsa3VjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8zODc5ZGQtZWY5NS00NWU2LTg3Njct ZTY4MWViYmE0YTRhLzEvUU5rejZDUjBaUXhxby1uTDhGZE5KeWhsa3VjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8zODc5ZGQtZWY5NS00NWU2LTg3NjctZTY4MWViYmE0YTRh LzEvUU5rejZDUjBaUXhxby1uTDhGZE5KeWhsa3VjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE8+r8i57 Gjo1oi9r64Fmb2fvck/b5HxfXCKOlVsZv03++6N0jLKJyzxKvKm4B6gKtHCYz93u nFO8f/w1NgeZOaxWPoMXps1rKQp5EHU43YQL0R1MYRZvZHNf6VvUsI1Zs4mOnKvN MqQDqQSGKeHGY7W3NEqoM4AmB2OG6RTY1U/WB256gb6ai3NmEbcLN9rj0rQNGUnD GnX88PuDDU9VZV+vwlkQnSHsvaMDJvkNAK94Vr73bpg6uNZmvcjg+r/8qDvv49X0 NpekM/fK/OxD3m9OyyiBTP80/fQFBk0H5PhjPnJdhPuBIULJ/OKfZkaPprQY5IEE 5ycH9b5prwRKBA== -----END CERTIFICATE-----Generated at Wed Dec 24 04:45:10 2025 by rpki-client