This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft File: QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft (raw, json) Hash identifier: JGarxFBETrbzikSI/fyQ34wc3Oe0RGCSX0d9xVGtwLw= Subject key identifier: 48:09:4D:FC:85:B0:24:08:53:0B:40:95:39:F4:60:4C:E2:22:69:D3 Authority key identifier: 40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72 Certificate issuer: /CN=40e3953c5cb452f159f8e1505fc702e883657e72 Certificate serial: 019B443957F64D8AF76205D070765170F45F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft Manifest number: 1793 Signing time: Mon 22 Dec 2025 04:02:47 +0000 Manifest this update: Mon 22 Dec 2025 04:02:47 +0000 Manifest next update: Tue 23 Dec 2025 04:02:47 +0000 Files and hashes: 1: 0UiMAD3K1Vd_o1ukey_EamOgfsg.roa (hash: /lgJM2bqi/sUpmdCb7crrQqVayvXqEJ8evDSByU3DJU=) 2: QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl (hash: f0adMFSIROjJ6nZjuJ9jrcyNj9foSI7w1yX0p24eSSA=) 3: aVnXSxl3A9imF58Ni6PA9o97Lt0.roa (hash: 1b03aGZyiDI4vZq8xAQwMk9wWsMeLl0pjrQrWqhenxw=) 4: misEsljA75nAA5oIsh_k4GVCg4w.roa (hash: p4BzWp3j9j27Wjuz+V0a+txHqIiOhQ+ybn3eqzzf6rU=) 5: ujK7196Gk_c3ddVaz2vNjb1yuKM.roa (hash: oPbTKsm4Ke6sVA27ztN+8OGkGTX5DqK9hqJSWTYFs3k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:39:57:f6:4d:8a:f7:62:05:d0:70:76:51:70:f4:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40e3953c5cb452f159f8e1505fc702e883657e72 Validity Not Before: Dec 22 04:02:47 2025 GMT Not After : Dec 23 04:02:47 2025 GMT Subject: CN=48094dfc85b02408530b409539f4604ce22269d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1b:9b:84:de:cf:c9:77:f5:5d:87:55:79:79: 01:3a:f3:6a:f2:c6:8f:7a:7b:d7:19:4c:dd:c6:fa: 6f:e3:d6:47:91:bd:fe:63:14:38:b1:4a:8e:43:29: 62:22:2a:8e:dc:cd:21:f5:a7:b9:17:bb:16:e5:67: 52:76:4c:76:87:58:a2:a3:9b:04:43:2d:5f:22:54: ed:2f:6f:7a:77:3d:67:2d:fa:bc:67:be:a4:c0:9c: f8:f9:94:ed:f5:f0:0a:47:d8:9b:8a:75:1b:4c:3d: f2:26:1b:28:7a:79:9f:cf:0e:82:9d:e1:15:3d:cf: 1e:d1:84:ee:58:7c:e3:6f:8c:af:44:17:f7:46:26: fd:ba:51:93:55:4f:7f:bc:1e:aa:cc:3a:e2:04:f2: 73:cf:73:cd:07:a5:dc:e6:32:70:ac:1c:a6:6f:27: a5:cc:18:e4:0a:e1:4a:46:51:cd:2f:d1:03:47:87: ca:ed:39:24:b6:3c:91:e0:80:f8:8b:5c:7a:82:d8: 75:2c:98:44:f4:c1:e3:e2:d6:b5:d9:a0:f8:50:9a: 43:8a:1c:b3:83:bf:b9:52:49:dc:a1:2a:59:88:92: 98:b2:0b:de:00:91:f8:ce:12:9b:47:bc:ba:b4:4a: ef:40:02:65:d8:c8:bf:c7:f2:23:ff:56:49:db:a1: 07:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:09:4D:FC:85:B0:24:08:53:0B:40:95:39:F4:60:4C:E2:22:69:D3 X509v3 Authority Key Identifier: keyid:40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:f2:c6:ea:f8:46:3e:e9:b9:39:bc:23:e3:cd:a1:92:98:10: 71:5f:70:e6:c1:8f:a5:ae:d8:ea:a7:cc:12:f6:42:05:4a:b2: 0b:6e:44:1f:a9:82:80:43:b3:34:4f:14:f6:66:7b:ab:2e:a4: 6c:d1:c3:5f:5f:87:0b:52:7a:e4:56:1a:d8:78:e8:b3:c9:78: c5:b5:38:04:0d:d9:b1:53:cf:af:c8:74:1c:1e:f2:75:01:43: e7:c1:d1:22:0b:17:f7:9d:c2:82:a4:2c:3d:c3:c8:c5:56:fe: d7:ed:45:a9:4b:c0:33:ce:72:d9:ff:3b:9c:92:64:e0:3e:6b: 47:f9:0b:d3:a4:2a:62:b8:28:c9:9c:22:49:49:8b:2b:8e:38: 95:7a:76:32:e7:6e:7e:78:28:c5:a9:09:8a:f9:98:95:5d:72: 76:15:bd:25:bc:bb:8b:1d:50:72:ba:d8:ab:17:db:2b:af:a2: f2:5c:49:40:f6:b5:f0:15:34:df:1f:69:55:2d:b0:75:a6:d6: fd:42:9e:df:61:20:63:28:7a:de:94:04:74:9c:9c:c8:70:1f: 62:a2:f7:30:43:37:a7:b1:9e:bd:f0:d3:74:6d:e3:64:0f:a1: f8:44:fd:80:b9:69:d8:89:2a:22:96:65:eb:c9:40:c0:67:dd: 8c:8f:46:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEOVf2TYr3YgXQcHZRcPRfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZTM5NTNjNWNiNDUyZjE1OWY4ZTE1MDVmYzcwMmU4ODM2 NTdlNzIwHhcNMjUxMjIyMDQwMjQ3WhcNMjUxMjIzMDQwMjQ3WjAzMTEwLwYDVQQD Eyg0ODA5NGRmYzg1YjAyNDA4NTMwYjQwOTUzOWY0NjA0Y2UyMjI2OWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwRubhN7PyXf1XYdVeXkBOvNq8saP envXGUzdxvpv49ZHkb3+YxQ4sUqOQyliIiqO3M0h9ae5F7sW5WdSdkx2h1iio5sE Qy1fIlTtL296dz1nLfq8Z76kwJz4+ZTt9fAKR9ibinUbTD3yJhsoenmfzw6CneEV Pc8e0YTuWHzjb4yvRBf3Rib9ulGTVU9/vB6qzDriBPJzz3PNB6Xc5jJwrBymbyel zBjkCuFKRlHNL9EDR4fK7TkktjyR4ID4i1x6gth1LJhE9MHj4ta12aD4UJpDihyz g7+5UkncoSpZiJKYsgveAJH4zhKbR7y6tErvQAJl2Mi/x/Ij/1ZJ26EHHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEgJTfyFsCQIUwtAlTn0YEziImnTMB8GA1UdIwQY MBaAFEDjlTxctFLxWfjhUF/HAuiDZX5yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEt ZmE1YWYzOGRlYjVlLzEvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEtZmE1YWYzOGRlYjVl LzEvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFPLG6vhG Pum5Obwj482hkpgQcV9w5sGPpa7Y6qfMEvZCBUqyC25EH6mCgEOzNE8U9mZ7qy6k bNHDX1+HC1J65FYa2Hjos8l4xbU4BA3ZsVPPr8h0HB7ydQFD58HRIgsX953CgqQs PcPIxVb+1+1FqUvAM85y2f87nJJk4D5rR/kL06QqYrgoyZwiSUmLK444lXp2Mudu fngoxakJivmYlV1ydhW9Jby7ix1QcrrYqxfbK6+i8lxJQPa18BU03x9pVS2wdabW /UKe32EgYyh63pQEdJycyHAfYqL3MEM3p7GevfDTdG3jZA+h+ET9gLlp2IkqIpZl 68lAwGfdjI9G0Q== -----END CERTIFICATE-----Generated at Mon Dec 22 07:54:24 2025 by rpki-client