This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft File: QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft (raw, json) Hash identifier: sFqncmER4UZqm8Y4SRltVa6ITMdJfqWyG9OT5wl0pYA= Subject key identifier: DC:37:24:80:04:EB:A8:F1:F5:58:4A:7C:F8:28:56:FF:63:80:AD:63 Authority key identifier: 42:F9:A9:69:52:77:7F:10:74:33:83:03:EC:B6:50:25:C4:E2:B8:B5 Certificate issuer: /CN=42f9a96952777f1074338303ecb65025c4e2b8b5 Certificate serial: 019B1125F1B568769BB0AEAF4F195B21E6C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft Manifest number: 08AC Signing time: Fri 12 Dec 2025 06:00:57 +0000 Manifest this update: Fri 12 Dec 2025 06:00:57 +0000 Manifest next update: Sat 13 Dec 2025 06:00:57 +0000 Files and hashes: 1: QvmpaVJ3fxB0M4MD7LZQJcTiuLU.crl (hash: OeECbK4YKoxCXixDReAVK70wzvLprzEqTazM9f48Cm4=) 2: WM6_PiLJimZu3-ntno5nf1L2TeI.roa (hash: e9e0PlmYtdK9jnTu2i/jKOaMfxsR3gJ7UU2ch7hTNjU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft rsync://rpki.ripe.net/repository/DEFAULT/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:11:25:f1:b5:68:76:9b:b0:ae:af:4f:19:5b:21:e6:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42f9a96952777f1074338303ecb65025c4e2b8b5 Validity Not Before: Dec 12 06:00:57 2025 GMT Not After : Dec 13 06:00:57 2025 GMT Subject: CN=dc37248004eba8f1f5584a7cf82856ff6380ad63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:12:e3:10:dc:1e:ee:2e:a3:b3:93:45:66:71: 69:14:12:bc:85:c0:9b:8c:7e:42:5f:57:80:8d:9d: a3:ed:eb:6f:3d:1e:02:ef:75:eb:40:b6:3b:a3:de: 3a:0e:ba:2b:ee:86:ec:5b:30:08:e0:92:70:12:15: 06:63:73:16:d7:fc:a4:dc:5b:e8:f1:bd:1c:8d:57: 0e:16:e0:9e:16:ae:b2:a5:78:01:08:96:74:ca:28: e2:9e:be:7a:95:5e:6a:27:5e:b6:40:95:3d:ee:ad: 04:63:f9:3a:ce:3d:80:3f:c9:ff:09:89:8c:dc:c4: 59:07:46:5b:b2:20:a0:1d:6b:71:b5:fc:68:78:44: d5:3b:3f:66:f9:a8:73:d2:19:ed:91:11:8b:29:62: 72:bf:94:33:58:9b:1e:e5:65:22:55:97:73:de:ee: 10:e4:4b:b3:bc:6d:38:a1:a3:48:10:99:6f:2e:e9: e0:c4:a6:f3:59:da:b1:fb:d5:f6:b4:84:28:1c:f6: 87:24:cc:2b:86:f6:2f:f0:4f:41:b5:ae:27:91:10: 15:52:b8:bf:69:03:2a:a7:5e:13:cf:93:82:2d:8b: ba:3a:f3:f9:87:f7:c8:b7:c2:dd:7e:86:28:c2:ac: be:03:e3:2f:99:3e:b7:30:e6:91:af:71:58:a8:cb: 5d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:37:24:80:04:EB:A8:F1:F5:58:4A:7C:F8:28:56:FF:63:80:AD:63 X509v3 Authority Key Identifier: keyid:42:F9:A9:69:52:77:7F:10:74:33:83:03:EC:B6:50:25:C4:E2:B8:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:7c:ad:1e:47:43:ac:ee:3c:d6:14:7f:b0:b5:ef:ed:35:14: 55:2d:f7:66:13:b1:27:84:64:8f:29:04:91:7a:fb:81:d1:f7: de:0c:0d:45:88:fa:36:ff:9c:ee:de:14:bd:b7:04:fe:79:de: 7e:39:b7:99:cc:e9:9b:e1:29:0d:d3:dd:13:f8:4b:5d:f5:d2: a0:87:c6:da:de:2f:4b:8f:34:0f:43:13:95:01:1d:24:33:e7: 08:2a:0a:1f:d4:a1:18:dd:97:bc:7a:a9:fc:ec:63:08:c2:6d: 53:83:69:d6:b3:ee:2d:d6:9d:21:e5:eb:b5:7a:81:fa:55:cf: 2c:53:d8:72:31:28:83:bf:66:cf:0e:6b:36:a3:50:a6:04:53: 99:28:c3:45:43:cb:ac:e7:1d:ad:14:7f:3a:d9:7b:b5:9c:80: 8b:49:ba:d3:10:62:cb:a3:db:97:d8:2d:04:04:fc:f9:ee:de: 85:6d:f6:fd:be:4e:2d:86:92:e6:e5:a9:49:e1:43:d6:93:cf: 3d:bb:52:d6:ca:d7:81:7d:86:d8:0b:13:44:fd:ae:06:3b:e7: 5e:a6:d3:20:68:01:b7:42:c4:25:82:9b:14:9b:65:e6:8d:3e: b9:ff:de:46:5e:b5:31:06:11:98:bf:eb:ee:7c:a9:13:84:ed: ac:5b:07:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsRJfG1aHabsK6vTxlbIebAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyZjlhOTY5NTI3NzdmMTA3NDMzODMwM2VjYjY1MDI1YzRl MmI4YjUwHhcNMjUxMjEyMDYwMDU3WhcNMjUxMjEzMDYwMDU3WjAzMTEwLwYDVQQD EyhkYzM3MjQ4MDA0ZWJhOGYxZjU1ODRhN2NmODI4NTZmZjYzODBhZDYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxLjENwe7i6js5NFZnFpFBK8hcCb jH5CX1eAjZ2j7etvPR4C73XrQLY7o946Dror7obsWzAI4JJwEhUGY3MW1/yk3Fvo 8b0cjVcOFuCeFq6ypXgBCJZ0yijinr56lV5qJ162QJU97q0EY/k6zj2AP8n/CYmM 3MRZB0ZbsiCgHWtxtfxoeETVOz9m+ahz0hntkRGLKWJyv5QzWJse5WUiVZdz3u4Q 5EuzvG04oaNIEJlvLungxKbzWdqx+9X2tIQoHPaHJMwrhvYv8E9Bta4nkRAVUri/ aQMqp14Tz5OCLYu6OvP5h/fIt8LdfoYowqy+A+MvmT63MOaRr3FYqMtd9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNw3JIAE66jx9VhKfPgoVv9jgK1jMB8GA1UdIwQY MBaAFEL5qWlSd38QdDODA+y2UCXE4ri1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXZtcGFWSjNmeEIwTTRNRDdMWlFKY1RpdUxVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8yZjdiYzUtYTAzNi00MjE5LWFkOGUt NzdmYTI5MTI5OTRkLzEvUXZtcGFWSjNmeEIwTTRNRDdMWlFKY1RpdUxVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi8yZjdiYzUtYTAzNi00MjE5LWFkOGUtNzdmYTI5MTI5OTRk LzEvUXZtcGFWSjNmeEIwTTRNRDdMWlFKY1RpdUxVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApHytHkdD rO481hR/sLXv7TUUVS33ZhOxJ4RkjykEkXr7gdH33gwNRYj6Nv+c7t4UvbcE/nne fjm3mczpm+EpDdPdE/hLXfXSoIfG2t4vS480D0MTlQEdJDPnCCoKH9ShGN2XvHqp /OxjCMJtU4Np1rPuLdadIeXrtXqB+lXPLFPYcjEog79mzw5rNqNQpgRTmSjDRUPL rOcdrRR/Otl7tZyAi0m60xBiy6Pbl9gtBAT8+e7ehW32/b5OLYaS5uWpSeFD1pPP PbtS1srXgX2G2AsTRP2uBjvnXqbTIGgBt0LEJYKbFJtl5o0+uf/eRl61MQYRmL/r 7nypE4TtrFsHyA== -----END CERTIFICATE-----Generated at Fri Dec 12 09:23:50 2025 by rpki-client