This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft File: QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft (raw, json) Hash identifier: RZuxnojfike6B7JeleOTzUtN6IJegSXRgWquslz/XN0= Subject key identifier: 01:5B:F8:C9:45:6A:53:69:F5:A0:2B:5F:04:F0:32:45:7C:2E:41:E5 Authority key identifier: 40:D9:33:E8:24:74:65:0C:6A:A3:E9:CB:F0:57:4D:27:28:65:92:E7 Certificate issuer: /CN=40d933e82474650c6aa3e9cbf0574d27286592e7 Certificate serial: 019B1314B7CA3EA4F3E2C81D441D94922802 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft Manifest number: 177E Signing time: Fri 12 Dec 2025 15:01:23 +0000 Manifest this update: Fri 12 Dec 2025 15:01:23 +0000 Manifest next update: Sat 13 Dec 2025 15:01:23 +0000 Files and hashes: 1: QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl (hash: bzHfqNXLoiHydCNBwZprBt70VI0NkJs7WBIlV2dwQHU=) 2: ULw_e6rY6wER2z1dGFmp31jEgd0.roa (hash: MY5YBBTJCozx9Da4ab7Dr9d2mlZWfjLXtBL3DR2CzxU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 15:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:13:14:b7:ca:3e:a4:f3:e2:c8:1d:44:1d:94:92:28:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40d933e82474650c6aa3e9cbf0574d27286592e7 Validity Not Before: Dec 12 15:01:23 2025 GMT Not After : Dec 13 15:01:23 2025 GMT Subject: CN=015bf8c9456a5369f5a02b5f04f032457c2e41e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:e4:1c:81:71:49:93:b2:bd:2f:1f:de:b7:02: d6:1b:96:f1:37:92:8a:00:cd:31:d3:85:af:9d:09: 9e:60:86:23:3c:23:14:09:26:43:b0:85:ee:14:7c: 25:8c:d3:64:13:f8:83:69:5a:85:ff:2f:d6:8a:2c: b6:a4:1d:15:67:45:f0:43:f5:07:0a:d2:5f:1a:f0: 82:33:39:4d:f5:ea:62:ee:0c:42:44:3a:ee:b7:6f: 27:94:ed:ae:bf:69:4f:30:36:70:8c:99:6c:85:4c: 6b:f1:55:d2:d6:c8:d6:dc:31:59:a9:3f:15:19:88: a4:cd:12:49:ce:bb:90:7d:14:88:21:b5:c6:e9:f7: b6:4c:f1:da:ca:69:12:7c:e2:b5:1f:3b:6b:55:e9: 5f:95:e7:1c:59:b9:51:cb:f7:40:05:ab:22:6c:b5: da:fe:fd:08:99:b1:13:a4:d8:57:74:2a:2b:c7:51: 3f:4b:97:7c:c3:72:ad:c8:81:d2:8a:03:08:b9:99: d5:b0:f2:e6:e2:af:2c:3b:e2:53:23:8a:ed:58:f6: bd:cd:84:c3:c1:d2:08:df:5d:9e:1c:e3:cd:b2:21: dc:95:af:c6:2d:eb:a5:0f:34:54:0c:cc:a6:8e:90: d4:bc:1c:1d:da:ff:3a:d1:4b:25:69:af:af:af:6d: 77:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:5B:F8:C9:45:6A:53:69:F5:A0:2B:5F:04:F0:32:45:7C:2E:41:E5 X509v3 Authority Key Identifier: keyid:40:D9:33:E8:24:74:65:0C:6A:A3:E9:CB:F0:57:4D:27:28:65:92:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:6d:a8:74:ca:8f:fd:18:c7:cb:6e:47:b9:23:ce:6d:db:d1: 0f:fa:bd:80:75:29:a0:62:05:4c:68:2f:31:97:dc:16:68:2a: 47:e2:27:20:64:e5:83:27:b8:e2:5f:f0:90:2f:bf:6c:11:a1: e6:35:65:80:c1:88:c3:70:66:04:f5:8c:1a:9c:3e:67:4a:0d: fe:dd:a2:92:2a:33:f5:fe:bc:c6:4d:8f:6f:fd:7c:00:45:0d: 0f:34:05:72:e0:fa:8d:ac:06:75:39:32:f6:b6:50:a7:dd:dc: 12:5b:7d:0d:f9:f3:34:7c:92:d9:16:e7:d2:f8:a6:77:1c:ee: 9a:e3:cd:cc:1f:70:f5:ef:95:e8:e4:b7:29:6f:f8:fa:11:e3: f8:3e:59:23:58:13:ad:8d:70:88:fd:99:a9:5f:ae:34:d6:f6: 47:dd:85:2c:ee:02:f5:ab:6f:75:ff:b7:b8:b8:a7:8e:70:18: 12:86:1d:04:83:51:56:41:47:4a:5a:7e:56:f2:0f:ef:9d:91: 22:96:59:91:74:b3:4b:69:ff:e2:98:56:e7:0a:5b:15:bc:06: 4f:62:17:ab:27:23:85:c4:c8:af:d9:97:a4:3c:72:6e:30:bd: 0e:d0:ab:ae:e1:08:49:10:1b:3f:eb:7a:b9:59:91:09:fe:26: 80:84:71:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsTFLfKPqTz4sgdRB2UkigCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZDkzM2U4MjQ3NDY1MGM2YWEzZTljYmYwNTc0ZDI3Mjg2 NTkyZTcwHhcNMjUxMjEyMTUwMTIzWhcNMjUxMjEzMTUwMTIzWjAzMTEwLwYDVQQD EygwMTViZjhjOTQ1NmE1MzY5ZjVhMDJiNWYwNGYwMzI0NTdjMmU0MWU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkeQcgXFJk7K9Lx/etwLWG5bxN5KK AM0x04WvnQmeYIYjPCMUCSZDsIXuFHwljNNkE/iDaVqF/y/Wiiy2pB0VZ0XwQ/UH CtJfGvCCMzlN9epi7gxCRDrut28nlO2uv2lPMDZwjJlshUxr8VXS1sjW3DFZqT8V GYikzRJJzruQfRSIIbXG6fe2TPHaymkSfOK1HztrVelfleccWblRy/dABasibLXa /v0ImbETpNhXdCorx1E/S5d8w3KtyIHSigMIuZnVsPLm4q8sO+JTI4rtWPa9zYTD wdII312eHOPNsiHcla/GLeulDzRUDMymjpDUvBwd2v860Uslaa+vr213OQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAFb+MlFalNp9aArXwTwMkV8LkHlMB8GA1UdIwQY MBaAFEDZM+gkdGUMaqPpy/BXTScoZZLnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU5rejZDUjBaUXhxby1uTDhGZE5KeWhsa3VjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8zODc5ZGQtZWY5NS00NWU2LTg3Njct ZTY4MWViYmE0YTRhLzEvUU5rejZDUjBaUXhxby1uTDhGZE5KeWhsa3VjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8zODc5ZGQtZWY5NS00NWU2LTg3NjctZTY4MWViYmE0YTRh LzEvUU5rejZDUjBaUXhxby1uTDhGZE5KeWhsa3VjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARG2odMqP /RjHy25HuSPObdvRD/q9gHUpoGIFTGgvMZfcFmgqR+InIGTlgye44l/wkC+/bBGh 5jVlgMGIw3BmBPWMGpw+Z0oN/t2ikioz9f68xk2Pb/18AEUNDzQFcuD6jawGdTky 9rZQp93cElt9DfnzNHyS2Rbn0vimdxzumuPNzB9w9e+V6OS3KW/4+hHj+D5ZI1gT rY1wiP2ZqV+uNNb2R92FLO4C9atvdf+3uLinjnAYEoYdBINRVkFHSlp+VvIP752R IpZZkXSzS2n/4phW5wpbFbwGT2IXqycjhcTIr9mXpDxybjC9DtCrruEISRAbP+t6 uVmRCf4mgIRx6A== -----END CERTIFICATE-----Generated at Fri Dec 12 19:36:07 2025 by rpki-client