This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft File: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft (raw, json) Hash identifier: TsfHhaQxQXZxBMeVaEYEOs2rQYKwMJ6bssvMF/hwGf0= Subject key identifier: 4D:17:66:64:3A:E1:5D:09:FB:0B:E4:9F:86:A1:C9:61:B1:D9:87:65 Authority key identifier: 40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F Certificate issuer: /CN=40ea5e39f8635736e48df53822a5cacc10b43a1f Certificate serial: 019B5AF69E33298FCF183F018A4E29CC5A37 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft Manifest number: 1799 Signing time: Fri 26 Dec 2025 14:01:10 +0000 Manifest this update: Fri 26 Dec 2025 14:01:10 +0000 Manifest next update: Sat 27 Dec 2025 14:01:10 +0000 Files and hashes: 1: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl (hash: OEqc2H0sxr6Izf7BhrWExV//3w8deqWEiZk2D0hGr6Q=) 2: ybs61exhN0sYw1YgpfqdbmCmhqk.roa (hash: PW/e8DJb4WqsNiI0ODBUiDNLr0vhf0OlyJoAR5NWnhE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:f6:9e:33:29:8f:cf:18:3f:01:8a:4e:29:cc:5a:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40ea5e39f8635736e48df53822a5cacc10b43a1f Validity Not Before: Dec 26 14:01:10 2025 GMT Not After : Dec 27 14:01:10 2025 GMT Subject: CN=4d1766643ae15d09fb0be49f86a1c961b1d98765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9f:48:c3:36:4c:dd:1d:7d:e1:a1:ee:32:72: 8d:fa:94:60:60:36:34:f9:90:0a:1a:8f:a5:87:70: b4:aa:9b:02:16:51:0b:14:9f:66:3d:6c:2e:f4:e5: ae:c3:2e:ac:30:36:f0:83:b3:c5:8a:bd:8a:b1:ee: 9e:6a:6d:69:90:27:d9:1b:c0:4d:86:01:88:0d:29: fb:de:60:d7:4e:57:a7:d8:0d:5c:85:5c:6c:6e:c7: 44:88:58:70:2d:d8:5a:10:89:3b:b3:7a:59:9c:d2: 5e:75:27:1a:f5:22:76:0f:b4:74:28:9e:68:e2:65: e0:ad:3b:0c:52:49:b0:3d:b6:1d:2f:05:f4:d9:c8: 06:30:63:be:e6:79:e3:cb:da:14:48:a0:ac:79:3b: d3:bb:d9:33:00:55:e7:24:c6:4b:4f:33:5e:52:4f: a2:6c:bf:e2:96:56:09:6b:eb:f6:cd:fa:4e:6b:d5: 7a:e8:48:8b:34:3a:5f:79:7e:ed:76:df:4a:5f:a7: f9:1a:4a:4f:c2:b6:a1:77:35:44:5e:02:1e:bf:61: fa:9c:4c:0a:75:8e:29:49:32:1d:6c:fe:3c:3b:ff: 12:4c:ec:28:9d:6d:05:8a:f9:99:42:98:e3:03:0a: d6:78:25:4c:34:12:99:d6:f7:12:19:e8:57:3c:f8: 8f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:17:66:64:3A:E1:5D:09:FB:0B:E4:9F:86:A1:C9:61:B1:D9:87:65 X509v3 Authority Key Identifier: keyid:40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:2b:d5:9d:bc:af:d8:5b:c8:77:72:ba:d6:38:b8:45:d1:bd: 1c:25:f5:7c:f7:e3:da:87:39:e8:88:6a:e4:88:4c:66:01:76: cb:a3:d1:32:8f:d9:c8:4b:89:ba:b8:83:dc:c9:ae:af:02:0f: 06:55:a5:d6:49:da:3d:33:31:00:42:a3:6d:2c:6d:26:23:70: cf:18:40:f5:70:bf:a0:55:ea:d7:6b:39:62:36:d7:a0:c9:18: c2:9b:a6:48:36:97:90:e6:f3:b5:74:ff:d9:ce:ce:27:43:61: 3b:c9:7f:c3:08:0e:2b:6b:9f:ee:73:01:db:7b:26:76:c2:c1: 64:ba:19:31:8e:25:fb:4e:0d:14:e1:18:97:cc:ca:db:4e:c9: fe:9d:aa:be:6b:6b:1a:9d:e3:40:da:71:3c:8a:ca:0c:e6:63: 8e:33:58:33:26:9c:7e:2c:b2:8b:33:bc:67:c9:52:fc:81:fa: 04:f5:84:a7:cd:43:3a:74:51:eb:fb:be:4a:6b:76:fb:c8:0d: ae:f8:51:cb:29:a3:a9:a3:e8:bd:1a:95:7e:81:8f:a4:37:b2: cf:3b:18:04:49:bc:ab:1f:c4:3e:a8:56:56:f7:a1:8c:52:0a: 3f:91:29:1c:e6:9d:7d:c8:2f:a8:a6:46:69:22:9d:ac:26:df: 72:64:aa:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZta9p4zKY/PGD8Bik4pzFo3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZWE1ZTM5Zjg2MzU3MzZlNDhkZjUzODIyYTVjYWNjMTBi NDNhMWYwHhcNMjUxMjI2MTQwMTEwWhcNMjUxMjI3MTQwMTEwWjAzMTEwLwYDVQQD Eyg0ZDE3NjY2NDNhZTE1ZDA5ZmIwYmU0OWY4NmExYzk2MWIxZDk4NzY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJ9IwzZM3R194aHuMnKN+pRgYDY0 +ZAKGo+lh3C0qpsCFlELFJ9mPWwu9OWuwy6sMDbwg7PFir2Kse6eam1pkCfZG8BN hgGIDSn73mDXTlen2A1chVxsbsdEiFhwLdhaEIk7s3pZnNJedSca9SJ2D7R0KJ5o 4mXgrTsMUkmwPbYdLwX02cgGMGO+5nnjy9oUSKCseTvTu9kzAFXnJMZLTzNeUk+i bL/illYJa+v2zfpOa9V66EiLNDpfeX7tdt9KX6f5GkpPwrahdzVEXgIev2H6nEwK dY4pSTIdbP48O/8STOwonW0FivmZQpjjAwrWeCVMNBKZ1vcSGehXPPiPAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE0XZmQ64V0J+wvkn4ahyWGx2YdlMB8GA1UdIwQY MBaAFEDqXjn4Y1c25I31OCKlyswQtDofMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU9wZU9maGpWemJramZVNElxWEt6QkMwT2g4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9iNjI0MzktN2U0Ny00MmUxLThmZGMt MThlOTEyOTYwMjJkLzEvUU9wZU9maGpWemJramZVNElxWEt6QkMwT2g4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC9iNjI0MzktN2U0Ny00MmUxLThmZGMtMThlOTEyOTYwMjJk LzEvUU9wZU9maGpWemJramZVNElxWEt6QkMwT2g4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkCvVnbyv 2FvId3K61ji4RdG9HCX1fPfj2oc56Ihq5IhMZgF2y6PRMo/ZyEuJuriD3MmurwIP BlWl1knaPTMxAEKjbSxtJiNwzxhA9XC/oFXq12s5YjbXoMkYwpumSDaXkObztXT/ 2c7OJ0NhO8l/wwgOK2uf7nMB23smdsLBZLoZMY4l+04NFOEYl8zK207J/p2qvmtr Gp3jQNpxPIrKDOZjjjNYMyacfiyyizO8Z8lS/IH6BPWEp81DOnRR6/u+Smt2+8gN rvhRyymjqaPovRqVfoGPpDeyzzsYBEm8qx/EPqhWVvehjFIKP5EpHOadfcgvqKZG aSKdrCbfcmSqBA== -----END CERTIFICATE-----Generated at Fri Dec 26 16:06:31 2025 by rpki-client