This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft File: QdD5FclU2DtKG_GEz7wTjEftpR4.mft (raw, json) Hash identifier: UGO8RgZDPIDmL47kQN5zgaK7wgtidRL6763aGU995vk= Subject key identifier: 79:02:D0:99:A0:A6:DF:15:83:36:9E:CA:45:70:8C:6C:8C:11:3A:4A Authority key identifier: 41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E Certificate issuer: /CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e Certificate serial: 019B405C5CEA42C5664FF8FEA45D30232D84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft Manifest number: 141C Signing time: Sun 21 Dec 2025 10:02:33 +0000 Manifest this update: Sun 21 Dec 2025 10:02:33 +0000 Manifest next update: Mon 22 Dec 2025 10:02:33 +0000 Files and hashes: 1: QdD5FclU2DtKG_GEz7wTjEftpR4.crl (hash: HLVoptbLwOXVVIlp9vuMCvScIZDMAu/lqZxeEWbn+oA=) 2: f6uKeUIzMA-uVptKc1ueYhFBFxM.roa (hash: yRxjbOfn/yIPjsEZSwuKIczmA3RcTEjtjojH+74JQXs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:5c:5c:ea:42:c5:66:4f:f8:fe:a4:5d:30:23:2d:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e Validity Not Before: Dec 21 10:02:33 2025 GMT Not After : Dec 22 10:02:33 2025 GMT Subject: CN=7902d099a0a6df1583369eca45708c6c8c113a4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:65:6d:52:a6:30:76:1b:2a:65:a9:2b:1f:f4: b5:f9:91:b6:3e:15:25:33:40:f6:5b:11:8c:60:a6: 4b:c2:23:be:e7:6c:99:a8:c1:51:11:99:fd:1c:28: 8e:f4:0f:c4:7a:af:ec:61:85:8c:65:71:ff:15:3f: 49:7a:ec:2e:36:27:2d:5e:f4:32:77:f7:04:da:35: 27:05:fe:b0:b6:79:58:4a:d9:3f:59:d7:bc:c3:b6: 4e:79:20:02:b3:c6:3e:a1:1f:ee:07:47:a4:5d:f1: 94:46:12:64:17:fb:42:19:b1:ae:f2:05:ba:b5:16: 49:5c:75:c6:88:de:f9:09:de:ba:45:97:bb:27:d8: 12:98:2b:8b:03:48:3a:a3:d3:43:d1:d5:9d:cd:3b: 4b:9c:17:20:d6:17:83:66:89:0b:8a:3e:87:e1:b9: be:41:84:7c:88:a2:ee:05:01:5a:bc:bb:ff:3b:a6: ae:9f:f4:82:d9:5e:e3:fd:b3:c4:3c:6b:a6:cf:1b: 20:7a:ac:35:80:a6:16:bb:91:af:33:b3:41:76:48: 9c:48:81:9e:01:73:2d:25:12:a4:4a:1f:1b:2f:94: 30:50:de:07:7b:40:82:4a:f3:a8:8d:a3:21:67:50: 45:00:ed:a3:94:b2:95:81:f9:be:b8:dd:59:ea:b1: 18:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:02:D0:99:A0:A6:DF:15:83:36:9E:CA:45:70:8C:6C:8C:11:3A:4A X509v3 Authority Key Identifier: keyid:41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:5b:eb:0c:53:61:d4:c6:93:23:ae:98:36:48:4b:ac:ba:f6: 5c:0d:30:33:3d:d9:3a:a8:de:8f:96:b8:70:e2:1f:0f:2e:59: 63:58:5c:d5:01:8f:9f:40:63:3c:cc:ac:fe:12:3e:1b:39:3b: e2:ad:10:5b:57:56:d7:99:33:1d:92:5d:2f:0c:9e:eb:4c:f8: 8c:f3:77:fa:2a:9f:35:e8:46:20:5b:3a:b9:aa:09:5a:97:45: 01:0c:4f:35:ae:2f:09:2f:55:ac:7a:99:fe:23:ee:37:91:b1: 1d:ab:76:46:53:cf:7c:7e:ed:14:b7:ce:55:99:0f:73:95:60: 07:9f:05:20:a1:64:0b:ab:15:d4:bd:ac:2e:4b:ec:58:2c:3d: e1:d5:f7:01:81:20:56:f1:2a:a6:97:e5:3c:32:91:99:a2:e0: 5e:aa:ba:59:8d:95:c8:aa:82:15:65:85:13:0d:df:72:47:29: 04:d7:90:39:7b:af:1f:81:6c:6c:61:20:9a:a9:26:5f:16:b9: 9c:45:78:28:10:05:3e:e5:01:a7:66:ee:9d:24:93:43:6c:e6: 31:c7:11:9b:25:5e:d8:69:a9:16:d2:e6:b6:51:47:0a:34:df: 2d:b2:e4:47:bc:ad:43:e7:aa:68:35:8b:ba:4d:d1:6a:4e:1f: 46:f9:bd:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAXFzqQsVmT/j+pF0wIy2EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxZDBmOTE1Yzk1NGQ4M2I0YTFiZjE4NGNmYmMxMzhjNDdl ZGE1MWUwHhcNMjUxMjIxMTAwMjMzWhcNMjUxMjIyMTAwMjMzWjAzMTEwLwYDVQQD Eyg3OTAyZDA5OWEwYTZkZjE1ODMzNjllY2E0NTcwOGM2YzhjMTEzYTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGVtUqYwdhsqZakrH/S1+ZG2PhUl M0D2WxGMYKZLwiO+52yZqMFREZn9HCiO9A/Eeq/sYYWMZXH/FT9JeuwuNictXvQy d/cE2jUnBf6wtnlYStk/Wde8w7ZOeSACs8Y+oR/uB0ekXfGURhJkF/tCGbGu8gW6 tRZJXHXGiN75Cd66RZe7J9gSmCuLA0g6o9ND0dWdzTtLnBcg1heDZokLij6H4bm+ QYR8iKLuBQFavLv/O6aun/SC2V7j/bPEPGumzxsgeqw1gKYWu5GvM7NBdkicSIGe AXMtJRKkSh8bL5QwUN4He0CCSvOojaMhZ1BFAO2jlLKVgfm+uN1Z6rEYawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHkC0Jmgpt8VgzaeykVwjGyMETpKMB8GA1UdIwQY MBaAFEHQ+RXJVNg7ShvxhM+8E4xH7aUeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWRENUZjbFUyRHRLR19HRXo3d1RqRWZ0cFI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC82NjYwM2QtM2NiNC00NzMwLWI4OWMt ZWU1MDBjM2ViODE5LzEvUWRENUZjbFUyRHRLR19HRXo3d1RqRWZ0cFI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC82NjYwM2QtM2NiNC00NzMwLWI4OWMtZWU1MDBjM2ViODE5 LzEvUWRENUZjbFUyRHRLR19HRXo3d1RqRWZ0cFI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPlvrDFNh 1MaTI66YNkhLrLr2XA0wMz3ZOqjej5a4cOIfDy5ZY1hc1QGPn0BjPMys/hI+Gzk7 4q0QW1dW15kzHZJdLwye60z4jPN3+iqfNehGIFs6uaoJWpdFAQxPNa4vCS9VrHqZ /iPuN5GxHat2RlPPfH7tFLfOVZkPc5VgB58FIKFkC6sV1L2sLkvsWCw94dX3AYEg VvEqppflPDKRmaLgXqq6WY2VyKqCFWWFEw3fckcpBNeQOXuvH4FsbGEgmqkmXxa5 nEV4KBAFPuUBp2bunSSTQ2zmMccRmyVe2GmpFtLmtlFHCjTfLbLkR7ytQ+eqaDWL uk3Rak4fRvm9ng== -----END CERTIFICATE-----Generated at Sun Dec 21 13:58:01 2025 by rpki-client