This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft File: QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft (raw, json) Hash identifier: 4m4wmrAS3woL3Me1j9b3wQ0UA8KXYFN6s8MjoQnZIBQ= Subject key identifier: B9:09:66:74:2C:0C:22:CE:D0:A3:F4:AF:98:71:24:C4:8B:03:35:1B Authority key identifier: 41:D6:45:1B:92:3A:07:E3:65:B2:F1:90:FA:A5:5A:57:2D:D0:FA:FC Certificate issuer: /CN=41d6451b923a07e365b2f190faa55a572dd0fafc Certificate serial: 019B1F86AD9CAC18EE208C99E6828B885F1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft Manifest number: 0A42 Signing time: Mon 15 Dec 2025 01:01:18 +0000 Manifest this update: Mon 15 Dec 2025 01:01:18 +0000 Manifest next update: Tue 16 Dec 2025 01:01:18 +0000 Files and hashes: 1: QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl (hash: oYmpcKFLV7MDv/hz7gOpK3iqSSMaFWVM9NooPgQw3WQ=) 2: dwbiIWEratA3KWkL5imPi021V8I.roa (hash: uBYUZ2jEhyVMlLuwkanT9PAiy5t/N1UtpXaLMB0jCDs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1f:86:ad:9c:ac:18:ee:20:8c:99:e6:82:8b:88:5f:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41d6451b923a07e365b2f190faa55a572dd0fafc Validity Not Before: Dec 15 01:01:18 2025 GMT Not After : Dec 16 01:01:18 2025 GMT Subject: CN=b90966742c0c22ced0a3f4af987124c48b03351b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:66:70:89:7a:00:76:37:d8:a9:59:6e:d0:5a: 18:b6:64:60:bd:e9:99:55:26:6e:28:4c:32:b8:b5: e2:50:1d:ea:c6:d6:1c:cb:96:76:8e:7a:ab:62:9b: fe:31:59:c4:12:cd:6f:f5:af:00:03:b0:66:fd:47: d9:bf:a2:0c:e0:30:42:01:53:1c:b1:4d:b8:85:60: c1:81:d1:ed:a0:35:50:9c:11:2e:f3:9a:e7:98:2a: 34:62:8b:6c:0d:ef:6a:3f:4c:99:a8:b0:b9:24:a7: 83:77:95:3a:2b:ed:93:a6:a3:24:89:88:61:7c:22: 69:07:31:38:58:c5:27:83:8e:0d:91:36:a1:49:ec: 6e:ed:c5:b7:c4:05:d2:1f:ca:f0:69:d9:7e:1c:6e: 0e:8e:02:58:64:36:d2:ea:4f:bb:37:3c:f6:3e:42: 0a:03:b4:a3:4c:86:0b:7e:91:be:c5:a2:0a:28:df: cd:d7:38:f8:b0:27:8d:a7:e8:09:09:c9:fc:4d:65: cf:cc:3a:b7:52:9e:fc:e3:64:ca:d3:3b:fc:fd:8f: 70:a9:d4:59:b7:a6:f8:09:4f:31:28:e1:ad:e2:f3: 56:12:18:23:d3:c2:29:fe:28:ee:48:15:4a:67:0b: d2:0d:c4:21:92:ce:e9:78:48:43:25:af:a1:cd:a6: e8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:09:66:74:2C:0C:22:CE:D0:A3:F4:AF:98:71:24:C4:8B:03:35:1B X509v3 Authority Key Identifier: keyid:41:D6:45:1B:92:3A:07:E3:65:B2:F1:90:FA:A5:5A:57:2D:D0:FA:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:ef:df:73:99:d6:de:83:25:6b:fe:ac:fb:4b:61:de:56:62: 5f:d7:35:a1:cb:ed:7e:30:8c:f7:6c:d7:75:10:93:9a:fe:be: 3a:cb:ab:7c:9a:6f:ff:26:72:2a:dc:f9:e2:2e:76:65:e5:18: 16:52:54:dc:fd:00:e7:8e:93:1f:33:67:cb:49:69:e8:4f:a9: f0:9f:9d:24:2a:1f:73:a5:53:a9:5d:9a:16:8d:03:e0:84:b0: 0a:40:96:06:54:2a:47:34:de:1d:c9:48:bc:ee:13:30:e3:52: 0a:5d:67:31:dc:d0:f2:0d:c6:e8:54:86:29:66:c0:d4:70:a9: 9d:a2:bc:e9:db:ec:61:9f:b1:11:70:0c:d4:11:8f:d7:cd:6a: a5:08:a3:36:c7:24:4c:b6:06:f8:1a:53:81:79:a9:67:cd:9a: b0:d7:11:08:e3:de:ba:84:a5:51:d7:d3:a2:41:b5:4a:46:e7: 42:55:30:d5:d5:3e:df:77:ac:c7:84:d7:eb:3e:3a:2f:10:fe: ff:68:f2:16:ff:4e:07:5e:e7:08:59:93:80:5f:6f:b5:e6:de: 73:2c:a3:67:ed:f9:eb:f9:ff:5f:1d:af:7f:03:77:d2:3c:ff: 66:0e:e9:52:a6:b2:81:1f:e8:29:1d:26:e9:a7:ba:6a:05:fe: 1b:9b:27:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsfhq2crBjuIIyZ5oKLiF8dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxZDY0NTFiOTIzYTA3ZTM2NWIyZjE5MGZhYTU1YTU3MmRk MGZhZmMwHhcNMjUxMjE1MDEwMTE4WhcNMjUxMjE2MDEwMTE4WjAzMTEwLwYDVQQD EyhiOTA5NjY3NDJjMGMyMmNlZDBhM2Y0YWY5ODcxMjRjNDhiMDMzNTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGZwiXoAdjfYqVlu0FoYtmRgvemZ VSZuKEwyuLXiUB3qxtYcy5Z2jnqrYpv+MVnEEs1v9a8AA7Bm/UfZv6IM4DBCAVMc sU24hWDBgdHtoDVQnBEu85rnmCo0YotsDe9qP0yZqLC5JKeDd5U6K+2TpqMkiYhh fCJpBzE4WMUng44NkTahSexu7cW3xAXSH8rwadl+HG4OjgJYZDbS6k+7Nzz2PkIK A7SjTIYLfpG+xaIKKN/N1zj4sCeNp+gJCcn8TWXPzDq3Up7842TK0zv8/Y9wqdRZ t6b4CU8xKOGt4vNWEhgj08Ip/ijuSBVKZwvSDcQhks7peEhDJa+hzaboBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLkJZnQsDCLO0KP0r5hxJMSLAzUbMB8GA1UdIwQY MBaAFEHWRRuSOgfjZbLxkPqlWlct0Pr8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWRaRkc1STZCLU5sc3ZHUS1xVmFWeTNRLXZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9kZWU3NDQtMDg1NC00Y2YxLWFmNmEt ZjU2Yzg0OTQzYTdkLzEvUWRaRkc1STZCLU5sc3ZHUS1xVmFWeTNRLXZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9kZWU3NDQtMDg1NC00Y2YxLWFmNmEtZjU2Yzg0OTQzYTdk LzEvUWRaRkc1STZCLU5sc3ZHUS1xVmFWeTNRLXZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACe/fc5nW 3oMla/6s+0th3lZiX9c1ocvtfjCM92zXdRCTmv6+OsurfJpv/yZyKtz54i52ZeUY FlJU3P0A546THzNny0lp6E+p8J+dJCofc6VTqV2aFo0D4ISwCkCWBlQqRzTeHclI vO4TMONSCl1nMdzQ8g3G6FSGKWbA1HCpnaK86dvsYZ+xEXAM1BGP181qpQijNsck TLYG+BpTgXmpZ82asNcRCOPeuoSlUdfTokG1SkbnQlUw1dU+33esx4TX6z46LxD+ /2jyFv9OB17nCFmTgF9vtebecyyjZ+356/n/Xx2vfwN30jz/Zg7pUqaygR/oKR0m 6ae6agX+G5snHA== -----END CERTIFICATE-----Generated at Mon Dec 15 04:59:15 2025 by rpki-client