This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft File: QqbmQBmAE94SolHwhgMM14xzJRY.mft (raw, json) Hash identifier: s98yPLQU/+KSji1kKy8xV0B5wgdXsS8pN1ePUfLZoq4= Subject key identifier: 90:84:D0:02:C6:4B:9D:82:09:CE:21:BC:BD:2B:D6:93:77:B4:18:6C Authority key identifier: 42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16 Certificate issuer: /CN=42a6e640198013de12a251f086030cd78c732516 Certificate serial: 019B717DE8DBC7BFAFC97FE349020EF45C9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft Manifest number: 1733 Signing time: Tue 30 Dec 2025 23:00:35 +0000 Manifest this update: Tue 30 Dec 2025 23:00:35 +0000 Manifest next update: Wed 31 Dec 2025 23:00:35 +0000 Files and hashes: 1: QqbmQBmAE94SolHwhgMM14xzJRY.crl (hash: F7Fz+fWAAE+a5G+IWErjZN/8YBdJZAVY9CdrNacvc1Y=) 2: j37XoMC3UG0E_oUwTDht88JJrh8.roa (hash: cqy63HfmTCUoUdF/JZjPLrFzuSfjpRSNk0rinu9lqNQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 15:21:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:71:7d:e8:db:c7:bf:af:c9:7f:e3:49:02:0e:f4:5c:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42a6e640198013de12a251f086030cd78c732516 Validity Not Before: Dec 30 23:00:35 2025 GMT Not After : Dec 31 23:00:35 2025 GMT Subject: CN=9084d002c64b9d8209ce21bcbd2bd69377b4186c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:09:6a:d5:ee:14:22:59:8f:df:f5:9a:c5:f3: 1c:dd:cf:9c:48:07:b4:1e:d3:74:ee:93:d0:89:7a: fb:0f:4d:44:37:4f:9b:81:dd:af:1b:ec:93:3d:f2: 61:2a:48:43:e0:66:94:33:b7:50:a0:b6:cf:65:f8: ff:84:29:88:5e:b1:48:16:a3:1e:bc:25:01:9a:b1: 17:5d:cb:05:da:aa:9f:ed:11:f9:f8:7c:4b:b4:a4: 03:20:ae:2d:7f:10:9a:c4:db:74:45:58:70:40:28: f4:ef:09:04:0b:67:ef:88:7d:1e:36:56:b7:eb:db: ad:eb:33:1f:d3:e0:96:c2:6c:d2:de:27:63:b8:ed: 19:ef:0a:61:1a:38:74:9c:4a:96:08:24:06:58:c6: 2b:4d:32:68:31:10:96:35:4a:88:cc:b0:c5:27:05: a7:bc:05:14:f0:ef:7e:15:ad:81:f6:eb:23:3f:93: df:a2:96:75:25:d9:12:bd:80:d0:bd:8b:fe:e9:a6: 9b:4c:79:da:fb:d3:3c:3a:d2:4c:3a:89:06:d9:0f: 36:f8:a0:44:52:d6:fc:6e:43:bb:d7:91:0d:eb:e7: 3f:0f:9f:7b:66:59:bf:83:77:ba:66:bd:38:ac:a1: 70:83:52:b7:12:e0:18:58:04:68:d0:36:67:9f:e3: 7f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:84:D0:02:C6:4B:9D:82:09:CE:21:BC:BD:2B:D6:93:77:B4:18:6C X509v3 Authority Key Identifier: keyid:42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:9b:85:26:fd:4e:f8:e7:b1:89:55:22:37:7f:f5:42:92:9e: 2e:5d:a3:b3:d4:86:f9:3b:8f:9b:24:be:c3:af:83:a7:3e:97: 42:e9:15:f3:98:d5:a7:7a:01:eb:46:fe:a3:ec:c5:6a:15:db: 66:57:81:94:07:3e:46:c4:5a:5c:88:b7:e5:6c:dc:96:27:3a: 6c:d1:8c:1b:18:6a:57:1a:ff:0c:a5:94:4f:e1:98:65:61:c2: 67:07:d7:3a:f4:db:63:0f:e3:af:08:19:d1:fd:50:69:75:8e: 66:65:aa:cc:e1:d1:16:ed:cf:09:6d:04:b8:aa:02:1a:fb:a3: 89:22:99:cc:8d:e6:94:92:ab:6e:a7:39:5e:a8:d2:35:cd:57: 3f:63:a9:19:55:71:c1:b4:0d:ba:d0:56:fe:fb:da:97:ec:60: f4:d8:db:4d:e0:dc:c4:08:9a:4f:48:fa:db:15:71:8f:ae:22: 8a:b7:40:25:ac:ee:76:cf:52:c8:93:8e:fa:ee:3c:d0:7f:1e: b2:34:ea:b2:45:34:06:90:90:3f:c2:47:e4:cd:65:31:01:c1: c5:68:73:39:69:54:13:4b:5f:78:45:5d:ca:c0:11:ae:7e:62: f4:f1:ac:f7:e5:08:90:cf:db:a2:eb:e9:c5:31:2d:31:d9:03: 1e:d9:b6:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtxfejbx7+vyX/jSQIO9FydMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyYTZlNjQwMTk4MDEzZGUxMmEyNTFmMDg2MDMwY2Q3OGM3 MzI1MTYwHhcNMjUxMjMwMjMwMDM1WhcNMjUxMjMxMjMwMDM1WjAzMTEwLwYDVQQD Eyg5MDg0ZDAwMmM2NGI5ZDgyMDljZTIxYmNiZDJiZDY5Mzc3YjQxODZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Alq1e4UIlmP3/WaxfMc3c+cSAe0 HtN07pPQiXr7D01EN0+bgd2vG+yTPfJhKkhD4GaUM7dQoLbPZfj/hCmIXrFIFqMe vCUBmrEXXcsF2qqf7RH5+HxLtKQDIK4tfxCaxNt0RVhwQCj07wkEC2fviH0eNla3 69ut6zMf0+CWwmzS3idjuO0Z7wphGjh0nEqWCCQGWMYrTTJoMRCWNUqIzLDFJwWn vAUU8O9+Fa2B9usjP5PfopZ1JdkSvYDQvYv+6aabTHna+9M8OtJMOokG2Q82+KBE Utb8bkO715EN6+c/D597Zlm/g3e6Zr04rKFwg1K3EuAYWARo0DZnn+N/fQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJCE0ALGS52CCc4hvL0r1pN3tBhsMB8GA1UdIwQY MBaAFEKm5kAZgBPeEqJR8IYDDNeMcyUWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXFibVFCbUFFOTRTb2xId2hnTU0xNHh6SlJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9iYTJmM2QtNmJkMi00ZjMyLTgxYWYt YzI4NzY3MGNjZTUxLzEvUXFibVFCbUFFOTRTb2xId2hnTU0xNHh6SlJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9iYTJmM2QtNmJkMi00ZjMyLTgxYWYtYzI4NzY3MGNjZTUx LzEvUXFibVFCbUFFOTRTb2xId2hnTU0xNHh6SlJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZJuFJv1O +OexiVUiN3/1QpKeLl2js9SG+TuPmyS+w6+Dpz6XQukV85jVp3oB60b+o+zFahXb ZleBlAc+RsRaXIi35Wzclic6bNGMGxhqVxr/DKWUT+GYZWHCZwfXOvTbYw/jrwgZ 0f1QaXWOZmWqzOHRFu3PCW0EuKoCGvujiSKZzI3mlJKrbqc5XqjSNc1XP2OpGVVx wbQNutBW/vval+xg9NjbTeDcxAiaT0j62xVxj64iirdAJazuds9SyJOO+u480H8e sjTqskU0BpCQP8JH5M1lMQHBxWhzOWlUE0tfeEVdysARrn5i9PGs9+UIkM/bouvp xTEtMdkDHtm2AQ== -----END CERTIFICATE-----Generated at Wed Dec 31 00:28:46 2025 by rpki-client