This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft File: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft (raw, json) Hash identifier: ZYWjkUhYcWQknD5DD71cnl/AWmPLNC8Zs4Gk6gK1awo= Subject key identifier: BF:42:B7:B2:1B:E2:4D:A7:BB:D9:DC:E4:39:FE:67:D0:17:E2:FF:A7 Authority key identifier: 40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C Certificate issuer: /CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c Certificate serial: 019B2098CE5B11E03318C85B83E5867FAE44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft Manifest number: 1777 Signing time: Mon 15 Dec 2025 06:00:43 +0000 Manifest this update: Mon 15 Dec 2025 06:00:43 +0000 Manifest next update: Tue 16 Dec 2025 06:00:43 +0000 Files and hashes: 1: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl (hash: VtvL153PfZ5URAQZ6C2H+wPOGgap+dH+EFM3hN6GGcE=) 2: zxt5ioQXS4YKJLP4ilCQM5v8g2Y.roa (hash: RY5SWWwhf3VR6uGt8AADVTrl85kwmlR4e1dP9tOTtrg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 06:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:20:98:ce:5b:11:e0:33:18:c8:5b:83:e5:86:7f:ae:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c Validity Not Before: Dec 15 06:00:43 2025 GMT Not After : Dec 16 06:00:43 2025 GMT Subject: CN=bf42b7b21be24da7bbd9dce439fe67d017e2ffa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:c0:a0:bf:e2:84:f8:28:6f:eb:66:a5:ec:41: 03:e8:99:10:54:b7:32:41:23:d1:e9:a2:10:39:09: a9:7a:d7:ac:8d:ba:77:76:bb:27:59:cd:d7:c3:6a: ff:9d:76:01:16:36:33:84:86:e2:64:68:f4:93:da: de:f5:fe:34:c9:1e:f8:29:af:dd:bc:c1:2a:25:96: 13:42:d2:14:bc:5a:60:0f:28:5f:33:b5:2b:2c:4d: 37:45:e2:14:c2:f8:49:62:05:c1:27:83:30:6e:29: da:05:11:d3:81:bf:25:9e:da:e9:65:35:05:21:e3: 7e:4d:b5:34:0a:7a:62:56:c3:14:ad:f7:78:5f:5e: 00:af:55:cf:f2:fa:1e:39:4b:23:01:f4:ac:d5:05: 62:59:b6:2e:06:d9:78:38:18:5d:f9:54:c8:3b:4d: d1:a5:84:45:99:19:b5:17:24:c8:d9:e2:85:3c:2c: d1:73:54:92:e0:e3:eb:8d:dc:22:11:2d:5b:fb:a6: 05:56:bd:78:16:2c:b9:02:63:3a:1c:61:73:8f:8b: 80:65:60:e5:de:0a:e1:b1:6c:ca:d6:90:72:4e:5d: b3:e9:b5:c8:0b:e0:12:a3:d6:b9:35:71:65:ac:d4: 0e:98:1e:ac:55:34:6d:b2:f3:42:a8:f0:70:2b:ef: 9b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:42:B7:B2:1B:E2:4D:A7:BB:D9:DC:E4:39:FE:67:D0:17:E2:FF:A7 X509v3 Authority Key Identifier: keyid:40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:f0:ea:c9:bf:7b:5b:3b:26:03:d6:47:b6:cd:34:0e:00:b3: e2:5b:ab:94:19:cd:c8:3e:d9:ce:e6:9d:0c:88:f2:12:ba:4f: 93:b1:b5:f4:81:f5:b5:08:cd:9b:60:fd:8b:79:ef:2a:7a:3c: d8:c9:cd:c7:b3:27:b8:00:c9:c2:68:35:30:7b:ba:b3:47:cc: 69:7f:09:2a:fb:40:a1:28:92:82:53:85:2c:73:c1:e4:cd:cf: d3:b7:95:41:00:49:ac:d5:f0:19:48:30:9d:07:65:d2:bf:e1: 3e:a3:29:8f:92:59:a0:ad:e3:26:f5:69:68:86:b5:4d:40:52: c4:ac:4d:a8:37:81:1c:b4:92:fc:5a:8a:5c:7c:32:d6:95:c6: 01:bd:6d:38:51:5a:5d:2c:15:19:80:e0:e4:8c:e8:b4:40:db: 1b:d9:ef:9e:a5:b3:dd:1c:94:87:1b:fb:3a:63:b7:94:48:5a: 2b:2a:01:7f:a7:c9:ec:89:46:36:7c:a3:69:73:a9:05:f5:f6: 34:db:95:15:4e:51:bd:81:f4:ec:ee:f6:f5:3f:c9:b5:11:d1: f3:4f:71:d3:dd:73:0e:4a:8f:4c:b1:e6:aa:9d:dd:8b:0d:c3: ac:98:45:d5:0f:70:bd:1e:50:a7:e0:5e:0c:1b:8c:df:94:85: f2:9d:b8:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsgmM5bEeAzGMhbg+WGf65EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwYWE3MTE1N2UyMGQ5ODAzNmJiZDY5M2I4ZWNiYjJiOTlm MGYwM2MwHhcNMjUxMjE1MDYwMDQzWhcNMjUxMjE2MDYwMDQzWjAzMTEwLwYDVQQD EyhiZjQyYjdiMjFiZTI0ZGE3YmJkOWRjZTQzOWZlNjdkMDE3ZTJmZmE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAksCgv+KE+Chv62al7EED6JkQVLcy QSPR6aIQOQmpetesjbp3drsnWc3Xw2r/nXYBFjYzhIbiZGj0k9re9f40yR74Ka/d vMEqJZYTQtIUvFpgDyhfM7UrLE03ReIUwvhJYgXBJ4MwbinaBRHTgb8lntrpZTUF IeN+TbU0CnpiVsMUrfd4X14Ar1XP8voeOUsjAfSs1QViWbYuBtl4OBhd+VTIO03R pYRFmRm1FyTI2eKFPCzRc1SS4OPrjdwiES1b+6YFVr14Fiy5AmM6HGFzj4uAZWDl 3grhsWzK1pByTl2z6bXIC+ASo9a5NXFlrNQOmB6sVTRtsvNCqPBwK++bkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL9Ct7Ib4k2nu9nc5Dn+Z9AX4v+nMB8GA1UdIwQY MBaAFECqcRV+INmANrvWk7jsuyuZ8PA8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yZTJjOGUtNGMyYi00OGU5LWFmZDUt MjM1YWJhMTlkOWY5LzEvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yZTJjOGUtNGMyYi00OGU5LWFmZDUtMjM1YWJhMTlkOWY5 LzEvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAafDqyb97 WzsmA9ZHts00DgCz4lurlBnNyD7ZzuadDIjyErpPk7G19IH1tQjNm2D9i3nvKno8 2MnNx7MnuADJwmg1MHu6s0fMaX8JKvtAoSiSglOFLHPB5M3P07eVQQBJrNXwGUgw nQdl0r/hPqMpj5JZoK3jJvVpaIa1TUBSxKxNqDeBHLSS/FqKXHwy1pXGAb1tOFFa XSwVGYDg5IzotEDbG9nvnqWz3RyUhxv7OmO3lEhaKyoBf6fJ7IlGNnyjaXOpBfX2 NNuVFU5RvYH07O729T/JtRHR809x091zDkqPTLHmqp3diw3DrJhF1Q9wvR5Qp+Be DBuM35SF8p24Xg== -----END CERTIFICATE-----Generated at Mon Dec 15 13:34:26 2025 by rpki-client