This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft File: QBY91EFO8-eS4AUB80786UQKnE4.mft (raw, json) Hash identifier: ymk77T2iljsqTB6dmjTClovdN2IOl9kQpC0XLmkZHVo= Subject key identifier: ED:79:B7:34:86:0C:B8:7C:C5:51:4E:50:38:52:39:8F:6D:2F:F5:99 Authority key identifier: 40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E Certificate issuer: /CN=40163dd4414ef3e792e00501f34efce9440a9c4e Certificate serial: 019B27AD8C6A5FF4530DD3DCBBEC82A8D66A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft Manifest number: 177F Signing time: Tue 16 Dec 2025 15:00:43 +0000 Manifest this update: Tue 16 Dec 2025 15:00:43 +0000 Manifest next update: Wed 17 Dec 2025 15:00:43 +0000 Files and hashes: 1: QBY91EFO8-eS4AUB80786UQKnE4.crl (hash: UHMrLzlPjjR5dzpWcRD3vjmYxta0SGCnMVn13hyEFTw=) 2: gYnUiXQeHZXoU2ZAN-fbsd-Pbx0.roa (hash: V+jQPfwx3Xoa/wL9PzJ6rz+juFyDwb1B2F2Hpp1ngN4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:27:ad:8c:6a:5f:f4:53:0d:d3:dc:bb:ec:82:a8:d6:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40163dd4414ef3e792e00501f34efce9440a9c4e Validity Not Before: Dec 16 15:00:43 2025 GMT Not After : Dec 17 15:00:43 2025 GMT Subject: CN=ed79b734860cb87cc5514e503852398f6d2ff599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a4:5e:50:a3:18:44:8c:a9:33:55:78:e6:b8: 6d:6a:a4:cc:46:90:0e:16:26:90:5a:83:c2:0b:a2: 91:8e:03:ad:75:cb:5a:ad:37:85:32:19:19:4f:e9: b2:f0:73:49:9f:72:4e:8b:d7:c3:f5:ba:ad:29:1b: ff:2a:8a:9e:08:b0:bb:95:30:11:f8:a2:24:84:0b: a7:db:72:92:39:4e:95:7b:56:24:73:6e:03:3f:f6: 2e:dc:b4:7e:00:50:85:a4:bc:23:8c:54:c3:1d:e6: 1f:70:02:ba:51:e3:32:30:be:64:47:8f:d9:f9:40: 22:c3:a6:bc:72:a2:15:88:87:d1:f7:19:e8:79:47: 80:ad:62:76:01:8a:3b:80:e5:8b:0b:86:9b:16:a3: bc:63:52:ea:1b:fe:e1:b9:9f:f5:70:03:81:d5:36: a7:e1:89:79:c7:e6:bf:84:d9:e6:2b:c0:56:34:69: 1e:1b:8f:32:ed:7c:30:c8:15:2b:d8:1a:de:89:3c: df:16:68:35:47:b3:01:0a:04:83:31:82:75:f9:50: 62:28:9b:da:2e:e3:d8:02:a1:73:28:ab:d0:41:6f: 71:63:34:9e:7c:dc:24:e2:74:e6:20:8b:45:54:f7: bf:7b:e5:f0:7f:1e:f0:b1:be:aa:e4:11:1e:d9:ae: 15:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:79:B7:34:86:0C:B8:7C:C5:51:4E:50:38:52:39:8F:6D:2F:F5:99 X509v3 Authority Key Identifier: keyid:40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:a2:2a:65:5c:d1:fa:6f:9a:13:8f:11:23:ac:31:50:d3:82: 67:56:a5:6f:db:31:80:7e:2c:76:33:4e:0a:2b:60:b0:0e:65: 53:2e:6d:00:79:80:db:89:f3:c1:27:77:6b:76:e3:5b:6a:78: d9:ee:07:06:3a:c1:87:44:24:82:e4:52:35:8a:a4:83:5d:19: b5:72:2b:03:34:d6:93:f7:46:ce:69:22:91:9a:ad:6b:c1:64: 8d:d0:93:da:b2:3b:d3:ba:2c:17:09:88:e6:e8:67:3e:d7:b4: fe:80:cb:ad:a4:af:96:ba:16:8c:46:94:ee:c2:bb:39:d1:be: 75:96:65:67:21:4f:19:f3:78:eb:e2:dc:04:46:62:3f:7a:45: 88:b7:87:26:85:49:8a:ce:07:6c:9f:51:0c:86:38:74:6d:49: 3f:79:7e:0a:85:0a:52:19:50:7b:53:5f:db:5a:8b:a8:e8:e6: a8:74:72:18:da:a6:77:6b:33:f4:1c:bc:8c:62:ce:e0:ce:ca: a4:16:9e:10:30:44:22:9e:fb:3f:5c:a7:b9:35:c1:ea:5e:63: 2e:88:d5:35:c6:c3:fb:e6:4a:e6:74:a5:bf:b7:ad:d1:38:47: 9d:b3:58:99:41:54:17:9d:ff:6a:ef:82:6b:84:77:d1:50:75: 2d:2f:1c:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsnrYxqX/RTDdPcu+yCqNZqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwMTYzZGQ0NDE0ZWYzZTc5MmUwMDUwMWYzNGVmY2U5NDQw YTljNGUwHhcNMjUxMjE2MTUwMDQzWhcNMjUxMjE3MTUwMDQzWjAzMTEwLwYDVQQD EyhlZDc5YjczNDg2MGNiODdjYzU1MTRlNTAzODUyMzk4ZjZkMmZmNTk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6qReUKMYRIypM1V45rhtaqTMRpAO FiaQWoPCC6KRjgOtdctarTeFMhkZT+my8HNJn3JOi9fD9bqtKRv/KoqeCLC7lTAR +KIkhAun23KSOU6Ve1Ykc24DP/Yu3LR+AFCFpLwjjFTDHeYfcAK6UeMyML5kR4/Z +UAiw6a8cqIViIfR9xnoeUeArWJ2AYo7gOWLC4abFqO8Y1LqG/7huZ/1cAOB1Tan 4Yl5x+a/hNnmK8BWNGkeG48y7XwwyBUr2BreiTzfFmg1R7MBCgSDMYJ1+VBiKJva LuPYAqFzKKvQQW9xYzSefNwk4nTmIItFVPe/e+Xwfx7wsb6q5BEe2a4VvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO15tzSGDLh8xVFOUDhSOY9tL/WZMB8GA1UdIwQY MBaAFEAWPdRBTvPnkuAFAfNO/OlECpxOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUJZOTFFRk84LWVTNEFVQjgwNzg2VVFLbkU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy81MjE0MzgtM2UwNC00ZDcyLTg4ZGUt MzYyMmFjN2Q2NWNjLzEvUUJZOTFFRk84LWVTNEFVQjgwNzg2VVFLbkU0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy81MjE0MzgtM2UwNC00ZDcyLTg4ZGUtMzYyMmFjN2Q2NWNj LzEvUUJZOTFFRk84LWVTNEFVQjgwNzg2VVFLbkU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfKIqZVzR +m+aE48RI6wxUNOCZ1alb9sxgH4sdjNOCitgsA5lUy5tAHmA24nzwSd3a3bjW2p4 2e4HBjrBh0QkguRSNYqkg10ZtXIrAzTWk/dGzmkikZqta8FkjdCT2rI707osFwmI 5uhnPte0/oDLraSvlroWjEaU7sK7OdG+dZZlZyFPGfN46+LcBEZiP3pFiLeHJoVJ is4HbJ9RDIY4dG1JP3l+CoUKUhlQe1Nf21qLqOjmqHRyGNqmd2sz9By8jGLO4M7K pBaeEDBEIp77P1ynuTXB6l5jLojVNcbD++ZK5nSlv7et0ThHnbNYmUFUF53/au+C a4R30VB1LS8cdw== -----END CERTIFICATE-----Generated at Tue Dec 16 16:54:18 2025 by rpki-client