This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft File: qvNQYhzAHooe03KB3zKwlxy95Vc.mft (raw, json) Hash identifier: 48gfKUvKMbqUnPi8hNU06mVtxBYxK0J7eukRg7scdf0= Subject key identifier: 6A:2E:37:C7:EA:AA:5C:90:F5:0D:01:77:6E:00:85:7E:67:8A:98:FC Authority key identifier: AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57 Certificate issuer: /CN=aaf350621cc01e8a1ed37281df32b0971cbde557 Certificate serial: 019AF19B28A48EDDF349DF2CF9548D82895E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 03:01:08 +0000 Manifest this update: Sat 06 Dec 2025 03:01:08 +0000 Manifest next update: Sun 07 Dec 2025 03:01:08 +0000 Files and hashes: 1: qvNQYhzAHooe03KB3zKwlxy95Vc.crl (hash: B+K8DyiQxN8VBM4upSvc6XAiVeJJatM36lIAtqcvYec=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:28:a4:8e:dd:f3:49:df:2c:f9:54:8d:82:89:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aaf350621cc01e8a1ed37281df32b0971cbde557 Validity Not Before: Dec 6 03:01:08 2025 GMT Not After : Dec 7 03:01:08 2025 GMT Subject: CN=6a2e37c7eaaa5c90f50d01776e00857e678a98fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6f:14:fd:b0:45:cf:0f:0b:c9:2f:24:7f:67: 62:62:0f:5c:f7:b6:b4:83:66:f3:98:2e:20:00:f7: ab:09:2b:71:6f:63:35:8e:d6:24:44:8a:e3:b2:6f: 22:51:fb:67:24:6c:e9:05:9e:4e:57:36:6c:8d:d9: e2:2e:32:45:a8:73:04:c1:05:a3:7f:1d:ef:7c:e5: c4:e2:93:25:24:53:7f:e0:f0:5e:f6:44:9b:fe:dd: f6:20:cf:86:01:70:ec:59:ee:45:f4:78:83:0f:2c: 89:ee:8f:3e:3c:c0:2f:4e:ac:2c:45:80:6f:73:0f: 1a:21:29:ae:6e:56:a8:23:3c:f7:9f:c9:48:cf:ca: df:4d:9e:df:4b:92:ff:96:cf:1a:d8:ff:7d:48:64: 8b:81:dc:57:00:08:77:29:47:26:f6:51:af:44:3a: 58:0f:78:7a:9d:4c:ee:82:3b:30:f9:16:a4:49:1b: cd:6e:45:ab:dd:dd:58:c8:75:f3:0e:ea:d7:23:10: 6d:cc:0a:a2:eb:2e:11:f3:ef:a3:24:58:78:e4:22: 38:c3:99:e2:86:1f:a6:af:0c:b2:7a:1b:db:77:d9: b1:3f:49:27:7c:cc:7d:d8:93:5c:7b:e4:23:fb:99: 76:a7:a7:5d:5c:1c:cb:9f:26:5e:36:49:2b:a0:57: 1e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:2E:37:C7:EA:AA:5C:90:F5:0D:01:77:6E:00:85:7E:67:8A:98:FC X509v3 Authority Key Identifier: keyid:AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:3d:46:6d:44:b1:07:8b:43:55:a8:a9:4a:4b:5d:67:d4:16: 0e:0b:1b:26:d1:8e:4e:92:af:c0:41:c2:1c:5b:24:02:18:6d: 49:0b:bb:1d:56:66:c2:6e:57:bc:2b:8c:00:df:3c:35:d7:6d: dd:c0:61:2c:21:27:66:26:0c:12:e7:8f:e1:e8:08:8a:4e:16: d1:a3:03:b7:5d:8e:7f:89:e2:9a:3d:f6:ea:22:bc:f8:d9:c3: 26:c5:90:3e:d8:f7:34:a0:f7:87:ec:1b:65:a8:e9:47:87:35: 4a:06:a7:71:25:05:7c:8c:25:1e:29:0d:27:fb:8d:59:a3:3e: 24:44:e7:8f:21:11:92:fc:1d:85:b7:7c:9d:a9:4d:1a:5f:a6: 36:4c:b5:17:cb:f6:e7:59:21:53:b6:9a:70:08:67:9d:47:87: 12:3e:f3:9f:c9:7c:67:c6:a9:89:b5:91:7b:52:7b:ed:63:be: ae:cd:f0:4c:3d:48:6f:d5:4d:a8:d8:03:bb:4b:9a:aa:fd:38: 26:94:69:83:77:01:47:93:ef:bf:8a:d3:fe:fd:72:b1:57:80: de:04:b4:6b:05:7f:da:3b:ef:fe:28:79:33:a6:ef:5e:9b:69: 0f:94:75:3c:49:06:0a:8b:57:f3:95:a5:6f:8c:74:a6:8c:e9: fd:10:82:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmyikjt3zSd8s+VSNgoleMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhZjM1MDYyMWNjMDFlOGExZWQzNzI4MWRmMzJiMDk3MWNi ZGU1NTcwHhcNMjUxMjA2MDMwMTA4WhcNMjUxMjA3MDMwMTA4WjAzMTEwLwYDVQQD Eyg2YTJlMzdjN2VhYWE1YzkwZjUwZDAxNzc2ZTAwODU3ZTY3OGE5OGZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1m8U/bBFzw8LyS8kf2diYg9c97a0 g2bzmC4gAPerCStxb2M1jtYkRIrjsm8iUftnJGzpBZ5OVzZsjdniLjJFqHMEwQWj fx3vfOXE4pMlJFN/4PBe9kSb/t32IM+GAXDsWe5F9HiDDyyJ7o8+PMAvTqwsRYBv cw8aISmublaoIzz3n8lIz8rfTZ7fS5L/ls8a2P99SGSLgdxXAAh3KUcm9lGvRDpY D3h6nUzugjsw+RakSRvNbkWr3d1YyHXzDurXIxBtzAqi6y4R8++jJFh45CI4w5ni hh+mrwyyehvbd9mxP0knfMx92JNce+Qj+5l2p6ddXBzLnyZeNkkroFceSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGouN8fqqlyQ9Q0Bd24AhX5nipj8MB8GA1UdIwQY MBaAFKrzUGIcwB6KHtNygd8ysJccveVXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXZOUVloekFIb29lMDNLQjN6S3dseHk5NVZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9mODEyYzctYTg1ZC00MDQwLThiOTkt NzVhOGIwOTc0ZTIwLzEvcXZOUVloekFIb29lMDNLQjN6S3dseHk5NVZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS9mODEyYzctYTg1ZC00MDQwLThiOTktNzVhOGIwOTc0ZTIw LzEvcXZOUVloekFIb29lMDNLQjN6S3dseHk5NVZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhD1GbUSx B4tDVaipSktdZ9QWDgsbJtGOTpKvwEHCHFskAhhtSQu7HVZmwm5XvCuMAN88Nddt 3cBhLCEnZiYMEueP4egIik4W0aMDt12Of4nimj326iK8+NnDJsWQPtj3NKD3h+wb ZajpR4c1SgancSUFfIwlHikNJ/uNWaM+JETnjyERkvwdhbd8nalNGl+mNky1F8v2 51khU7aacAhnnUeHEj7zn8l8Z8apibWRe1J77WO+rs3wTD1Ib9VNqNgDu0uaqv04 JpRpg3cBR5Pvv4rT/v1ysVeA3gS0awV/2jvv/ih5M6bvXptpD5R1PEkGCotX85Wl b4x0pozp/RCCjw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:19:45 2025 by rpki-client