This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft File: QA4H15n7NVyVICXz0nsA6bTuNO0.mft (raw, json) Hash identifier: Qr8NyWKnlYxflR3iARJg1jv5F6wZ7APClkT3D92NLrI= Subject key identifier: AF:26:D5:AE:1E:78:4F:CA:D2:40:8E:88:4E:58:21:74:FF:9F:42:D8 Authority key identifier: 40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED Certificate issuer: /CN=400e07d799fb355c952025f3d27b00e9b4ee34ed Certificate serial: 019B710FCE89BF986B987CABAC85E3EB8F1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft Manifest number: 0A0C Signing time: Tue 30 Dec 2025 21:00:19 +0000 Manifest this update: Tue 30 Dec 2025 21:00:19 +0000 Manifest next update: Wed 31 Dec 2025 21:00:19 +0000 Files and hashes: 1: QA4H15n7NVyVICXz0nsA6bTuNO0.crl (hash: jKp6LKJcgbfeoaibr66MR5jCStefk5rHqu7mpcIG7YY=) 2: bysUciiIqYU9vJ8UfK9pbwZkqG0.roa (hash: JZVYwqtyAp0nMHO1FDIE6qYD96KGmAzDi7aqiaMlMrU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 21:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:71:0f:ce:89:bf:98:6b:98:7c:ab:ac:85:e3:eb:8f:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=400e07d799fb355c952025f3d27b00e9b4ee34ed Validity Not Before: Dec 30 21:00:19 2025 GMT Not After : Dec 31 21:00:19 2025 GMT Subject: CN=af26d5ae1e784fcad2408e884e582174ff9f42d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1c:6a:ac:a7:a4:ec:53:f5:ef:4e:08:0e:76: 88:3f:85:85:e2:86:99:a2:06:04:0b:24:83:9f:4f: 06:4d:be:42:93:d9:43:a0:bd:7b:e9:e0:af:94:b1: 46:4f:8e:2f:42:07:82:9a:6d:1e:8c:9a:cc:fe:91: da:18:24:23:1d:22:9a:e5:fa:ba:0e:e2:7c:38:18: 10:f2:a0:02:f2:e7:ee:03:45:d5:c1:94:83:a8:91: 16:78:8b:25:91:45:ea:cb:06:c9:e6:f3:4f:67:01: 71:25:81:80:1b:1d:76:f5:06:a2:00:00:fd:fb:74: aa:de:8c:c7:e6:97:4c:46:f8:c9:dd:53:59:3d:c9: 4a:b7:1a:61:b0:b8:81:8f:ff:86:f3:2f:ab:b5:6d: 7f:88:ab:83:df:4b:25:28:63:51:9c:a1:fc:39:c1: 2d:b9:df:ff:fe:54:02:be:c7:a9:bf:00:a4:21:77: 73:93:2b:32:b5:a5:d6:fc:a6:7b:d4:45:16:a0:da: bb:58:a5:a6:be:d0:45:5f:a8:b5:bd:67:c6:0f:6a: e4:60:c1:99:62:ef:f3:92:d6:33:b0:03:33:f5:ab: 2d:68:76:58:57:67:01:85:18:c5:d7:4b:ee:60:bb: 44:9b:2a:d6:45:d3:bb:8e:c4:ab:fe:43:f4:72:7e: 8f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:26:D5:AE:1E:78:4F:CA:D2:40:8E:88:4E:58:21:74:FF:9F:42:D8 X509v3 Authority Key Identifier: keyid:40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:a5:f1:74:59:a7:80:d1:9a:32:45:56:43:c0:1c:14:ce:57: 10:29:f3:cb:7b:5e:b5:e1:4d:db:b7:ad:ef:f5:86:50:4b:66: 0f:90:71:ec:e0:3b:3e:a2:63:6b:53:1d:85:70:5c:70:ec:3a: e9:ca:e5:a9:ca:d6:74:84:15:ee:da:6b:2b:34:d7:e8:52:79: 59:a1:f7:de:18:a3:98:a0:df:64:47:7f:66:28:7b:f9:c8:ce: 77:eb:96:72:ff:65:96:01:2c:d0:19:85:92:1f:d0:ef:64:47: 0b:42:17:e9:b3:2a:7b:f0:95:ef:ab:73:5d:81:84:93:74:96: 95:94:d0:97:c3:ec:0c:2d:dc:8d:45:e4:5f:26:68:f4:2b:f6: 2a:7b:65:1b:b0:47:4d:c2:03:ec:3d:01:f0:d6:71:02:1d:73: 97:de:bd:2b:2f:02:35:8e:47:66:d1:c2:db:e7:68:f4:7d:83: 9c:09:74:27:7f:cb:16:37:c4:92:52:e4:5b:08:8f:74:79:69: 62:e6:b1:f8:11:c2:7b:84:a0:14:4f:6a:76:93:f3:4c:b2:ea: 37:09:b2:0d:7a:4d:ef:fe:7a:6d:40:96:6b:78:bb:25:0c:49: 69:1d:02:e5:da:04:a3:30:b0:51:13:fd:2d:65:57:fb:cb:77: ce:30:2f:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtxD86Jv5hrmHyrrIXj648dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwMGUwN2Q3OTlmYjM1NWM5NTIwMjVmM2QyN2IwMGU5YjRl ZTM0ZWQwHhcNMjUxMjMwMjEwMDE5WhcNMjUxMjMxMjEwMDE5WjAzMTEwLwYDVQQD EyhhZjI2ZDVhZTFlNzg0ZmNhZDI0MDhlODg0ZTU4MjE3NGZmOWY0MmQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxBxqrKek7FP1704IDnaIP4WF4oaZ ogYECySDn08GTb5Ck9lDoL176eCvlLFGT44vQgeCmm0ejJrM/pHaGCQjHSKa5fq6 DuJ8OBgQ8qAC8ufuA0XVwZSDqJEWeIslkUXqywbJ5vNPZwFxJYGAGx129QaiAAD9 +3Sq3ozH5pdMRvjJ3VNZPclKtxphsLiBj/+G8y+rtW1/iKuD30slKGNRnKH8OcEt ud///lQCvsepvwCkIXdzkysytaXW/KZ71EUWoNq7WKWmvtBFX6i1vWfGD2rkYMGZ Yu/zktYzsAMz9astaHZYV2cBhRjF10vuYLtEmyrWRdO7jsSr/kP0cn6PcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK8m1a4eeE/K0kCOiE5YIXT/n0LYMB8GA1UdIwQY MBaAFEAOB9eZ+zVclSAl89J7AOm07jTtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUE0SDE1bjdOVnlWSUNYejBuc0E2YlR1Tk8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8yZjM2YjYtZDcwMS00MzM1LWFmMzAt NDhmZTYzM2IxYjNmLzEvUUE0SDE1bjdOVnlWSUNYejBuc0E2YlR1Tk8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC8yZjM2YjYtZDcwMS00MzM1LWFmMzAtNDhmZTYzM2IxYjNm LzEvUUE0SDE1bjdOVnlWSUNYejBuc0E2YlR1Tk8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa6XxdFmn gNGaMkVWQ8AcFM5XECnzy3teteFN27et7/WGUEtmD5Bx7OA7PqJja1MdhXBccOw6 6crlqcrWdIQV7tprKzTX6FJ5WaH33hijmKDfZEd/Zih7+cjOd+uWcv9llgEs0BmF kh/Q72RHC0IX6bMqe/CV76tzXYGEk3SWlZTQl8PsDC3cjUXkXyZo9Cv2KntlG7BH TcID7D0B8NZxAh1zl969Ky8CNY5HZtHC2+do9H2DnAl0J3/LFjfEklLkWwiPdHlp Yuax+BHCe4SgFE9qdpPzTLLqNwmyDXpN7/56bUCWa3i7JQxJaR0C5doEozCwURP9 LWVX+8t3zjAv2Q== -----END CERTIFICATE-----Generated at Wed Dec 31 03:31:31 2025 by rpki-client