This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft File: QD8Iu6_6QWGEMgOop1erbpVGsM4.mft (raw, json) Hash identifier: uDw+pzHvTEO0IL5pAS1otjIcRiMiSeS+j8It3WIfl18= Subject key identifier: 07:AD:FC:79:A7:2D:84:07:73:B2:DC:23:B2:83:2D:60:2B:F8:A2:22 Authority key identifier: 40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE Certificate issuer: /CN=403f08bbaffa4161843203a8a757ab6e9546b0ce Certificate serial: 019B6278CBA4EF2D36EC4211B01C9BA6DFB4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft Manifest number: 06AF Signing time: Sun 28 Dec 2025 01:00:42 +0000 Manifest this update: Sun 28 Dec 2025 01:00:42 +0000 Manifest next update: Mon 29 Dec 2025 01:00:42 +0000 Files and hashes: 1: 4PjPPpWKgAtzAAOasr7gIk0JbPI.roa (hash: yiKX1aQ5yWrVl7HwLmjfK1M9G+FpWFiXbyU5qVlLbDY=) 2: QD8Iu6_6QWGEMgOop1erbpVGsM4.crl (hash: gUrRFTZuxH9i9SFUfmBs7mtAnBENUHKMdLEQx8i3Ai4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:62:78:cb:a4:ef:2d:36:ec:42:11:b0:1c:9b:a6:df:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=403f08bbaffa4161843203a8a757ab6e9546b0ce Validity Not Before: Dec 28 01:00:42 2025 GMT Not After : Dec 29 01:00:42 2025 GMT Subject: CN=07adfc79a72d840773b2dc23b2832d602bf8a222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:57:8e:ca:56:22:81:cc:e4:06:f2:24:c8:7c: 19:25:62:da:e1:30:cb:e0:3d:3e:00:e1:d8:3f:8b: 8a:01:25:34:32:4e:3b:54:43:42:46:6f:8c:b8:7d: b5:a8:81:67:33:06:22:07:0a:4d:ec:6c:12:37:e3: 04:42:59:09:e7:b1:f1:9d:3a:64:a1:71:26:b5:13: 7b:1a:1d:f2:88:1a:38:b2:78:5e:7a:1e:0e:99:51: 52:6c:7f:bc:b6:b1:b4:4e:5a:7b:78:f5:4e:7c:9d: ec:f5:a8:56:0b:38:4f:76:c2:d2:d7:af:f2:f9:39: e6:45:d7:83:79:53:70:c7:04:10:8f:eb:1e:a4:33: 2e:e0:e1:10:42:14:fd:1e:01:03:c0:a2:cd:03:66: 74:3a:7f:6d:d5:4b:7f:a5:9f:a0:09:0c:8b:be:77: c7:7c:d8:44:71:90:1b:89:d4:1b:0c:23:a7:df:fc: a1:ed:e6:77:04:96:45:d6:87:93:21:15:81:db:fd: de:b1:bb:42:f7:d4:da:66:6a:50:2e:5c:17:2c:22: 82:d6:c5:e4:f2:fb:aa:c5:36:e3:cd:81:ad:7f:fa: 28:5e:59:ef:45:55:3c:75:97:8b:bd:75:f7:6b:23: 86:42:a4:3b:9b:7f:bf:88:32:07:8d:5c:46:ef:fb: 88:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:AD:FC:79:A7:2D:84:07:73:B2:DC:23:B2:83:2D:60:2B:F8:A2:22 X509v3 Authority Key Identifier: keyid:40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:7c:51:a4:61:93:8d:ce:de:dd:57:2c:7c:d0:4a:45:0d:8c: 9c:dd:c6:a3:f1:4f:bc:57:ff:b0:4d:ce:49:f4:e5:ac:8f:45: 58:a1:7d:7e:be:fc:73:44:7b:0b:b4:3a:33:71:d2:a4:d3:e8: ab:44:03:26:70:d1:0c:1c:c7:0e:52:05:8b:ae:ed:0e:d3:57: 88:93:45:5b:d7:9b:55:8d:8c:1a:82:05:f2:e2:3a:48:44:8b: 1f:0c:c1:24:67:57:ea:e7:d7:91:45:17:67:4e:61:06:a6:7a: ae:3b:fe:33:15:b4:7a:60:bd:a3:cd:d6:b9:1d:65:23:9d:57: 2a:c3:92:84:3e:9a:a5:27:11:c6:db:64:b1:63:c5:1e:c0:81: 61:46:d9:03:c5:5e:db:96:5b:f4:10:52:e2:24:72:8e:df:23: 70:fe:5e:f7:d3:f0:85:fa:a5:54:d8:9a:9f:b8:d0:4b:80:a4: 79:6b:1d:49:4c:19:ad:30:58:35:3c:19:6c:ad:d0:aa:64:0a: 9c:70:92:17:7b:82:11:1e:d8:84:8b:f4:fe:4a:28:73:e3:c1: f8:06:67:69:80:64:1a:20:9a:b8:1e:8f:de:38:76:14:1a:51: 2d:55:58:d9:10:6e:e1:c8:09:21:6b:7e:8a:5f:84:64:66:c9: 3b:e7:a7:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtieMuk7y027EIRsBybpt+0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwM2YwOGJiYWZmYTQxNjE4NDMyMDNhOGE3NTdhYjZlOTU0 NmIwY2UwHhcNMjUxMjI4MDEwMDQyWhcNMjUxMjI5MDEwMDQyWjAzMTEwLwYDVQQD EygwN2FkZmM3OWE3MmQ4NDA3NzNiMmRjMjNiMjgzMmQ2MDJiZjhhMjIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzFeOylYigczkBvIkyHwZJWLa4TDL 4D0+AOHYP4uKASU0Mk47VENCRm+MuH21qIFnMwYiBwpN7GwSN+MEQlkJ57HxnTpk oXEmtRN7Gh3yiBo4snheeh4OmVFSbH+8trG0Tlp7ePVOfJ3s9ahWCzhPdsLS16/y +TnmRdeDeVNwxwQQj+sepDMu4OEQQhT9HgEDwKLNA2Z0On9t1Ut/pZ+gCQyLvnfH fNhEcZAbidQbDCOn3/yh7eZ3BJZF1oeTIRWB2/3esbtC99TaZmpQLlwXLCKC1sXk 8vuqxTbjzYGtf/ooXlnvRVU8dZeLvXX3ayOGQqQ7m3+/iDIHjVxG7/uIoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAet/HmnLYQHc7LcI7KDLWAr+KIiMB8GA1UdIwQY MBaAFEA/CLuv+kFhhDIDqKdXq26VRrDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5Yjgt MzhkOGE3OGE0ODYyLzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5YjgtMzhkOGE3OGE0ODYy LzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAHxRpGGT jc7e3VcsfNBKRQ2MnN3Go/FPvFf/sE3OSfTlrI9FWKF9fr78c0R7C7Q6M3HSpNPo q0QDJnDRDBzHDlIFi67tDtNXiJNFW9ebVY2MGoIF8uI6SESLHwzBJGdX6ufXkUUX Z05hBqZ6rjv+MxW0emC9o83WuR1lI51XKsOShD6apScRxttksWPFHsCBYUbZA8Ve 25Zb9BBS4iRyjt8jcP5e99PwhfqlVNian7jQS4CkeWsdSUwZrTBYNTwZbK3QqmQK nHCSF3uCER7YhIv0/kooc+PB+AZnaYBkGiCauB6P3jh2FBpRLVVY2RBu4cgJIWt+ il+EZGbJO+en2w== -----END CERTIFICATE-----Generated at Sun Dec 28 06:22:17 2025 by rpki-client