This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft File: QD8Iu6_6QWGEMgOop1erbpVGsM4.mft (raw, json) Hash identifier: CL7IOiXOvSDi8Q6oZ60ETv8yXvKVBvsGfnq1Qn9+m5A= Subject key identifier: F6:A0:3C:E5:E0:3B:3C:78:27:62:56:6B:07:4A:89:FC:F8:3F:26:FD Authority key identifier: 40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE Certificate issuer: /CN=403f08bbaffa4161843203a8a757ab6e9546b0ce Certificate serial: 019B6FFD54FA96E574D871DFBF9B5AF83E94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft Manifest number: 06B6 Signing time: Tue 30 Dec 2025 16:00:31 +0000 Manifest this update: Tue 30 Dec 2025 16:00:31 +0000 Manifest next update: Wed 31 Dec 2025 16:00:31 +0000 Files and hashes: 1: 4PjPPpWKgAtzAAOasr7gIk0JbPI.roa (hash: yiKX1aQ5yWrVl7HwLmjfK1M9G+FpWFiXbyU5qVlLbDY=) 2: QD8Iu6_6QWGEMgOop1erbpVGsM4.crl (hash: UO15D4yCsR9pwbRJ64g25J4IzVWbfvDAOVJSIB3FOhg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 16:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6f:fd:54:fa:96:e5:74:d8:71:df:bf:9b:5a:f8:3e:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=403f08bbaffa4161843203a8a757ab6e9546b0ce Validity Not Before: Dec 30 16:00:31 2025 GMT Not After : Dec 31 16:00:31 2025 GMT Subject: CN=f6a03ce5e03b3c782762566b074a89fcf83f26fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c0:08:94:a9:f1:4a:79:af:11:0d:2a:87:59: 49:40:85:64:5b:5c:fd:69:ee:78:20:0c:b0:e2:e9: 82:52:05:8f:b9:94:16:f9:52:c1:2a:57:fd:1b:8c: 2d:d6:4a:4e:d6:3b:dd:13:6d:1d:06:22:a3:9b:85: 33:f2:29:68:1c:09:d7:6b:d8:40:9b:d9:20:fe:e6: 1c:43:8a:a7:7f:64:1b:91:59:a0:f1:8e:bd:10:72: 53:f7:f6:82:d1:8e:e5:51:58:87:7e:5d:b4:70:75: 7d:56:16:9d:fd:4d:44:81:b1:01:60:33:63:ae:c1: 94:cf:d8:9f:39:b4:cf:af:5f:af:4a:09:bd:7d:d6: 13:e0:ee:94:96:32:f9:8a:88:dd:a2:bd:34:29:0d: 74:48:ea:a9:ed:dd:7c:82:bb:91:ae:bc:25:ae:3b: 62:c9:a8:8d:b6:65:ae:7f:50:35:d3:48:ef:c6:7d: 53:80:b6:d6:fc:08:27:66:d4:52:c0:4e:1f:8b:b5: b7:58:4f:8e:e9:73:66:87:59:8f:e5:20:bf:d0:19: 2f:09:20:b9:34:78:4c:3d:23:27:0a:ce:19:0a:13: 01:e1:87:e7:3c:aa:41:fb:39:4b:9a:31:52:b8:8a: 37:ca:b4:25:0a:56:b0:4d:d1:b1:8b:61:78:64:f5: 40:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:A0:3C:E5:E0:3B:3C:78:27:62:56:6B:07:4A:89:FC:F8:3F:26:FD X509v3 Authority Key Identifier: keyid:40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:7f:e1:96:55:bb:bf:20:3a:ef:22:b9:c3:05:6e:9f:30:7f: 96:2f:f9:ef:5b:dc:5d:33:de:90:8a:d7:32:7e:d9:6c:22:42: 60:c9:9b:25:ab:09:4b:d2:b4:f7:c2:1e:fc:ea:12:68:c3:fa: 4a:44:e4:ad:59:e6:81:18:4c:01:39:75:7b:bb:fd:98:ac:c3: 93:bf:03:f4:6b:92:cd:f7:37:1c:a0:8f:bd:66:a7:2e:10:c3: 8a:3d:3a:d7:2e:ab:11:7a:35:6f:3b:d3:28:38:d8:7b:3b:cb: 79:0e:d9:f5:fa:72:17:50:f4:6d:77:ce:3c:ad:7b:4a:1b:72: 1d:58:91:7b:a7:f9:ca:9e:06:a3:6d:c7:29:57:f8:cb:45:3e: 74:f8:5d:0f:73:bc:fe:39:95:95:da:b7:12:b8:e9:00:3c:e8: b9:ad:06:ef:f8:90:89:2c:c8:f0:90:7d:cd:f6:ae:92:4f:85: 5c:da:15:61:6e:95:4f:11:18:e5:82:38:c6:23:83:c1:d7:63: a3:47:b3:2d:72:9a:5a:10:d9:f2:85:92:d0:65:79:9d:c1:98: b9:be:73:23:ec:ff:bc:ff:90:49:93:9a:a7:a6:36:d8:a8:de: fd:cd:fb:7e:1f:d6:98:b6:56:9b:d6:a6:01:6f:43:0a:76:1e: 0c:8d:1d:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtv/VT6luV02HHfv5ta+D6UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwM2YwOGJiYWZmYTQxNjE4NDMyMDNhOGE3NTdhYjZlOTU0 NmIwY2UwHhcNMjUxMjMwMTYwMDMxWhcNMjUxMjMxMTYwMDMxWjAzMTEwLwYDVQQD EyhmNmEwM2NlNWUwM2IzYzc4Mjc2MjU2NmIwNzRhODlmY2Y4M2YyNmZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMAIlKnxSnmvEQ0qh1lJQIVkW1z9 ae54IAyw4umCUgWPuZQW+VLBKlf9G4wt1kpO1jvdE20dBiKjm4Uz8iloHAnXa9hA m9kg/uYcQ4qnf2QbkVmg8Y69EHJT9/aC0Y7lUViHfl20cHV9Vhad/U1EgbEBYDNj rsGUz9ifObTPr1+vSgm9fdYT4O6UljL5iojdor00KQ10SOqp7d18gruRrrwlrjti yaiNtmWuf1A100jvxn1TgLbW/AgnZtRSwE4fi7W3WE+O6XNmh1mP5SC/0BkvCSC5 NHhMPSMnCs4ZChMB4YfnPKpB+zlLmjFSuIo3yrQlClawTdGxi2F4ZPVAGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPagPOXgOzx4J2JWawdKifz4Pyb9MB8GA1UdIwQY MBaAFEA/CLuv+kFhhDIDqKdXq26VRrDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5Yjgt MzhkOGE3OGE0ODYyLzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5YjgtMzhkOGE3OGE0ODYy LzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAln/hllW7 vyA67yK5wwVunzB/li/571vcXTPekIrXMn7ZbCJCYMmbJasJS9K098Ie/OoSaMP6 SkTkrVnmgRhMATl1e7v9mKzDk78D9GuSzfc3HKCPvWanLhDDij061y6rEXo1bzvT KDjYezvLeQ7Z9fpyF1D0bXfOPK17ShtyHViRe6f5yp4Go23HKVf4y0U+dPhdD3O8 /jmVldq3ErjpADzoua0G7/iQiSzI8JB9zfaukk+FXNoVYW6VTxEY5YI4xiODwddj o0ezLXKaWhDZ8oWS0GV5ncGYub5zI+z/vP+QSZOap6Y22Kje/c37fh/WmLZWm9am AW9DCnYeDI0dQQ== -----END CERTIFICATE-----Generated at Wed Dec 31 01:59:24 2025 by rpki-client