This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft File: QGYnM7yHPRPh-fZujf91yCDV0vc.mft (raw, json) Hash identifier: dmZvq5HnddFOM9hJc0+ydUiNvG1BeaLJb/svy7AO9XQ= Subject key identifier: F7:A3:7D:DD:B5:48:96:F1:78:BE:89:C0:A5:44:21:0D:17:8F:F4:8D Authority key identifier: 40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7 Certificate issuer: /CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7 Certificate serial: 019B5A5175C10F918B2D73D3DEF554A6DBD3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft Manifest number: 0F9A Signing time: Fri 26 Dec 2025 11:00:46 +0000 Manifest this update: Fri 26 Dec 2025 11:00:46 +0000 Manifest next update: Sat 27 Dec 2025 11:00:46 +0000 Files and hashes: 1: NiWsr1aAeWW2oN08xcS5Irqnn3Q.roa (hash: 2xUbIvKWWmEdUess43urc5rTq8I0ZstZadOhJMax4HI=) 2: QGYnM7yHPRPh-fZujf91yCDV0vc.crl (hash: mMproffQSnnv/lzTUbOVNOcaKfs78KgonTwVHynDqXM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:51:75:c1:0f:91:8b:2d:73:d3:de:f5:54:a6:db:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7 Validity Not Before: Dec 26 11:00:46 2025 GMT Not After : Dec 27 11:00:46 2025 GMT Subject: CN=f7a37dddb54896f178be89c0a544210d178ff48d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:80:6f:89:4b:23:62:e6:10:f3:35:f0:16:30: 7b:f4:ac:3a:bf:95:86:d6:d9:88:db:d5:3c:53:10: 0e:96:93:04:8f:fa:d5:5d:3b:a3:e9:04:a7:5c:7e: af:e1:fe:2f:38:a7:17:f0:a0:2b:82:6e:62:ea:32: 0f:d6:81:5a:70:ed:1b:3f:b9:fc:21:61:44:98:ff: 9a:fb:f6:5b:55:65:2c:c0:53:b2:26:96:e9:16:c4: 5f:fa:96:85:a5:16:0f:bc:aa:6e:33:8c:07:0f:d5: 7d:3e:00:39:ee:d7:5d:58:7e:b2:4d:20:ab:b6:b7: da:1b:8b:5e:30:b1:9d:70:23:62:f3:89:c0:f7:d4: 1a:17:95:f2:a1:55:64:1c:d3:c0:2f:3c:cc:55:09: 26:86:37:90:9c:c7:a4:58:b4:de:31:b8:23:84:42: f7:f7:08:8b:96:2a:11:6e:ac:46:38:be:0b:a4:de: 2f:d1:49:3a:fc:51:19:4d:c8:0b:7c:9e:6a:61:27: 8a:c0:3a:74:5e:29:41:e7:4b:00:ff:c7:f1:47:36: 3f:a9:6f:9f:ac:a1:4c:80:2e:e1:08:55:e8:7d:51: f3:ba:ff:63:b7:0c:f8:82:28:28:90:13:c3:16:99: 7f:1b:e3:1c:fc:25:02:66:15:11:eb:27:02:b2:cd: 19:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A3:7D:DD:B5:48:96:F1:78:BE:89:C0:A5:44:21:0D:17:8F:F4:8D X509v3 Authority Key Identifier: keyid:40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:7d:0d:85:ae:4c:15:a4:34:0f:be:62:f5:da:5c:cc:af:5f: 16:a7:02:d7:1e:be:15:47:b8:58:ce:f2:e1:37:87:c4:13:58: 21:93:09:8f:70:5d:ad:9d:4d:92:3a:3d:d0:b7:1e:54:c1:eb: 1e:e5:b7:1e:66:b6:12:e7:51:0c:dd:85:a7:f0:78:b8:34:1e: 39:d5:57:90:30:5e:21:c9:ca:48:64:71:02:b8:9a:cc:f4:ca: d4:5f:50:1c:8b:20:b0:cb:4f:5c:c3:7a:83:1f:17:84:1c:d4: b8:86:35:5b:08:08:6f:a0:74:19:d5:4c:d6:25:91:9b:d6:77: 45:b7:d9:2e:8e:41:1f:b5:bc:a4:0b:b3:c1:0c:f9:43:d3:a1: 81:7c:96:da:96:bf:a9:43:20:06:87:a3:ac:50:cc:45:29:ef: 48:a0:c2:36:42:4c:c8:64:0a:59:45:5a:96:25:bc:f0:de:ae: 02:35:92:fc:76:c1:d7:4a:33:e0:95:e6:44:78:50:d9:59:a7: 2b:78:8a:0f:73:09:42:27:fc:7e:69:fd:5c:b5:e5:46:1c:c4: 76:43:ae:35:8f:60:5f:91:8a:01:7e:a1:fa:bd:57:23:0f:ac: a7:91:a1:55:3e:f3:82:4d:bb:05:6f:19:d9:d2:a9:e9:55:c1: bf:11:b6:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaUXXBD5GLLXPT3vVUptvTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwNjYyNzMzYmM4NzNkMTNlMWY5ZjY2ZThkZmY3NWM4MjBk NWQyZjcwHhcNMjUxMjI2MTEwMDQ2WhcNMjUxMjI3MTEwMDQ2WjAzMTEwLwYDVQQD EyhmN2EzN2RkZGI1NDg5NmYxNzhiZTg5YzBhNTQ0MjEwZDE3OGZmNDhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi4BviUsjYuYQ8zXwFjB79Kw6v5WG 1tmI29U8UxAOlpMEj/rVXTuj6QSnXH6v4f4vOKcX8KArgm5i6jIP1oFacO0bP7n8 IWFEmP+a+/ZbVWUswFOyJpbpFsRf+paFpRYPvKpuM4wHD9V9PgA57tddWH6yTSCr trfaG4teMLGdcCNi84nA99QaF5XyoVVkHNPALzzMVQkmhjeQnMekWLTeMbgjhEL3 9wiLlioRbqxGOL4LpN4v0Uk6/FEZTcgLfJ5qYSeKwDp0XilB50sA/8fxRzY/qW+f rKFMgC7hCFXofVHzuv9jtwz4gigokBPDFpl/G+Mc/CUCZhUR6ycCss0Z8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPejfd21SJbxeL6JwKVEIQ0Xj/SNMB8GA1UdIwQY MBaAFEBmJzO8hz0T4fn2bo3/dcgg1dL3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUdZbk03eUhQUlBoLWZadWpmOTF5Q0RWMHZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9kOTEwZDEtOTRjNi00NDEyLTg1MDYt OWNiNTFlNTFmZjc3LzEvUUdZbk03eUhQUlBoLWZadWpmOTF5Q0RWMHZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS9kOTEwZDEtOTRjNi00NDEyLTg1MDYtOWNiNTFlNTFmZjc3 LzEvUUdZbk03eUhQUlBoLWZadWpmOTF5Q0RWMHZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALn0Nha5M FaQ0D75i9dpczK9fFqcC1x6+FUe4WM7y4TeHxBNYIZMJj3BdrZ1Nkjo90LceVMHr HuW3Hma2EudRDN2Fp/B4uDQeOdVXkDBeIcnKSGRxAriazPTK1F9QHIsgsMtPXMN6 gx8XhBzUuIY1WwgIb6B0GdVM1iWRm9Z3RbfZLo5BH7W8pAuzwQz5Q9OhgXyW2pa/ qUMgBoejrFDMRSnvSKDCNkJMyGQKWUValiW88N6uAjWS/HbB10oz4JXmRHhQ2Vmn K3iKD3MJQif8fmn9XLXlRhzEdkOuNY9gX5GKAX6h+r1XIw+sp5GhVT7zgk27BW8Z 2dKp6VXBvxG2cw== -----END CERTIFICATE-----Generated at Fri Dec 26 17:44:14 2025 by rpki-client