This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft File: QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft (raw, json) Hash identifier: tCcIfx3HjgSBmYqPl3nybI0l1Jeyc1vhG9jaAsSptzA= Subject key identifier: D1:61:6B:6A:FC:39:54:C1:55:E8:4F:19:F4:9D:7C:3E:9B:27:13:64 Authority key identifier: 40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72 Certificate issuer: /CN=40e3953c5cb452f159f8e1505fc702e883657e72 Certificate serial: 019B3E6C929A60CCDFEF1A6817A236578F05 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft Manifest number: 1790 Signing time: Sun 21 Dec 2025 01:01:01 +0000 Manifest this update: Sun 21 Dec 2025 01:01:01 +0000 Manifest next update: Mon 22 Dec 2025 01:01:01 +0000 Files and hashes: 1: 0UiMAD3K1Vd_o1ukey_EamOgfsg.roa (hash: /lgJM2bqi/sUpmdCb7crrQqVayvXqEJ8evDSByU3DJU=) 2: QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl (hash: Umd9NdSamWRRskS1FsRtyva0fzolucb3IWmC/IM7+lo=) 3: aVnXSxl3A9imF58Ni6PA9o97Lt0.roa (hash: 1b03aGZyiDI4vZq8xAQwMk9wWsMeLl0pjrQrWqhenxw=) 4: misEsljA75nAA5oIsh_k4GVCg4w.roa (hash: p4BzWp3j9j27Wjuz+V0a+txHqIiOhQ+ybn3eqzzf6rU=) 5: ujK7196Gk_c3ddVaz2vNjb1yuKM.roa (hash: oPbTKsm4Ke6sVA27ztN+8OGkGTX5DqK9hqJSWTYFs3k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6c:92:9a:60:cc:df:ef:1a:68:17:a2:36:57:8f:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40e3953c5cb452f159f8e1505fc702e883657e72 Validity Not Before: Dec 21 01:01:01 2025 GMT Not After : Dec 22 01:01:01 2025 GMT Subject: CN=d1616b6afc3954c155e84f19f49d7c3e9b271364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:04:18:db:e9:47:92:9f:63:63:98:2b:0a:dd: 8e:4d:cb:b0:b2:ad:bd:c3:08:e3:a6:48:33:e8:96: 8f:d4:32:46:b0:63:69:29:08:bc:5f:4c:cd:d8:8c: e7:ef:6b:fb:47:91:9b:bf:b0:e5:e0:86:68:8d:71: 74:fb:d3:ba:6a:a6:98:06:02:e3:86:0a:39:84:d2: b1:c3:ad:6a:1a:af:29:ab:bc:86:fb:7c:5b:19:4a: f2:7e:de:3d:86:58:27:1c:14:c8:e5:b9:5f:d8:17: 5b:8a:3c:d0:06:ff:01:bf:16:1e:4a:5e:25:a5:55: 70:d9:f6:31:d1:70:cf:c3:7e:b5:e5:82:7b:ae:b7: a5:c5:33:f8:f7:0f:70:8a:3b:e5:70:b0:a4:43:ce: 58:40:21:52:ee:bd:91:14:86:45:b2:58:08:35:bf: db:0a:3d:b8:3d:b1:5f:69:00:bc:78:9c:4a:42:e1: 8c:7f:49:69:07:34:71:3b:fb:bb:a5:1d:f6:f6:c1: 2a:9c:ef:1b:12:c0:71:c4:62:b2:63:4b:f9:de:30: ff:07:36:54:6c:c5:58:ae:a5:4c:95:08:2c:30:fe: 1e:3a:3a:5b:51:c8:ab:25:a5:ab:89:06:b2:2e:1c: 35:ce:5f:c8:5f:5d:ab:6a:a7:60:1b:75:1a:50:ed: 78:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:61:6B:6A:FC:39:54:C1:55:E8:4F:19:F4:9D:7C:3E:9B:27:13:64 X509v3 Authority Key Identifier: keyid:40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:72:88:f6:8f:02:a0:5a:bb:bc:91:23:02:b1:9c:ac:b3:47: a4:31:56:80:96:c5:0c:28:41:bd:15:16:7b:6c:8a:c0:e0:96: 29:1f:38:96:a6:a3:99:05:bd:5a:f5:8c:47:31:d9:ff:2a:d7: f8:a6:e9:61:ba:2b:5b:88:6f:4d:05:d3:f7:d3:d9:df:d3:68: 8f:f1:e7:e5:90:2c:33:8f:6a:2a:b1:e0:1c:b4:5a:f5:6f:43: e3:3b:ad:e9:f0:86:e8:c9:15:d6:7e:41:23:56:ce:d3:81:28: 02:e2:76:ea:6d:4b:44:90:ac:3d:8a:27:9a:76:7e:9c:6f:5f: 78:39:45:02:98:d8:af:09:7a:08:5e:b4:53:6d:32:e4:05:ca: 5f:04:37:c3:4e:03:42:17:6b:80:50:b4:8b:79:a4:f0:ce:77: 5d:cb:6a:3d:ec:44:96:df:59:ed:c0:40:91:bd:65:35:4c:15: 3d:26:8f:c7:17:ee:d0:fd:51:e6:20:38:e5:87:76:df:81:31: b2:a9:ab:97:29:da:5a:3f:52:51:7f:a9:fb:f9:2c:2e:75:59: e8:8a:38:09:d8:a9:66:a3:8f:c1:63:81:bd:09:90:e6:5c:cf: fe:f9:bd:03:73:f9:61:ad:84:e2:d8:15:d3:67:50:d6:2f:54: 6f:b0:05:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bJKaYMzf7xpoF6I2V48FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZTM5NTNjNWNiNDUyZjE1OWY4ZTE1MDVmYzcwMmU4ODM2 NTdlNzIwHhcNMjUxMjIxMDEwMTAxWhcNMjUxMjIyMDEwMTAxWjAzMTEwLwYDVQQD EyhkMTYxNmI2YWZjMzk1NGMxNTVlODRmMTlmNDlkN2MzZTliMjcxMzY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQQY2+lHkp9jY5grCt2OTcuwsq29 wwjjpkgz6JaP1DJGsGNpKQi8X0zN2Izn72v7R5Gbv7Dl4IZojXF0+9O6aqaYBgLj hgo5hNKxw61qGq8pq7yG+3xbGUryft49hlgnHBTI5blf2BdbijzQBv8BvxYeSl4l pVVw2fYx0XDPw3615YJ7rrelxTP49w9wijvlcLCkQ85YQCFS7r2RFIZFslgINb/b Cj24PbFfaQC8eJxKQuGMf0lpBzRxO/u7pR329sEqnO8bEsBxxGKyY0v53jD/BzZU bMVYrqVMlQgsMP4eOjpbUcirJaWriQayLhw1zl/IX12raqdgG3UaUO14jwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNFha2r8OVTBVehPGfSdfD6bJxNkMB8GA1UdIwQY MBaAFEDjlTxctFLxWfjhUF/HAuiDZX5yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEt ZmE1YWYzOGRlYjVlLzEvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEtZmE1YWYzOGRlYjVl LzEvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK3KI9o8C oFq7vJEjArGcrLNHpDFWgJbFDChBvRUWe2yKwOCWKR84lqajmQW9WvWMRzHZ/yrX +KbpYborW4hvTQXT99PZ39Noj/Hn5ZAsM49qKrHgHLRa9W9D4zut6fCG6MkV1n5B I1bO04EoAuJ26m1LRJCsPYonmnZ+nG9feDlFApjYrwl6CF60U20y5AXKXwQ3w04D QhdrgFC0i3mk8M53XctqPexElt9Z7cBAkb1lNUwVPSaPxxfu0P1R5iA45Yd234Ex sqmrlynaWj9SUX+p+/ksLnVZ6Io4CdipZqOPwWOBvQmQ5lzP/vm9A3P5Ya2E4tgV 02dQ1i9Ub7AFew== -----END CERTIFICATE-----Generated at Sun Dec 21 04:05:48 2025 by rpki-client